AquaWeb System Build-up and Data Security

Jörgen Jäger | BD Manager Monitoring & Control | September 19, 2016

my Presentation 9/21/2016<© Sulzer > | slide 2

AquaWeb a Monitoring and Surveillance System

AquaWeb is a web based Monitoring and

Surveillance system with as well remote control

and Alarm handling capabilities.

The advanced alarm management is mainly aimed

at wastewater collection pumping stations. It’s a

whole range of services including everything from

pump controllers and modems at the station, via a

communication server, to a web interface.

AquaWeb can be used to

Show the status of the whole collection network on a map

Show the status of specific stations

Advanced alarm handling and routing

Categorization of alarms and reason

Collect and present events

Collect and present log data

my Presentation 9/21/2016<© Sulzer > | slide 3

Always reachable via internet

Low investment cost

No upgrade costs

No maintenance costs

Fixed running cost

Top of the range service and operation

High built-in security

Control & Monitoring functions to prevent/reduce overflows/flooding's

High system and data security

AquaWeb a Monitoring and Surveillance System

Advantage for collection operation

my Presentation 9/21/2016<© Sulzer > | slide 4

AquaWeb, Two Contract Levels Available

AquaWeb, a web based Monitoring and

Surveillance system.

AquaWeb 3G SIM card

(Telenor Connexion):

The SIM card including set-up instructions for connection to AquaWeb for the Sulzer Control & Monitoring devices

The basic version AquaWeb CMS 241

“Monitoring & Reporting” includes:

Remote on-line Monitoring with support for Geographical map and an interface to stations, indication of Historical Report & Trending with basic Alarm indication.

The upper level AquaWeb CMS 251 “Remote Control & Alarms” includes:

The basic version functionality plus support for Remote Control as well for advanced Alarm handling including Alarm Dispatch and Routing.

Event driven automatic pump blocking

Included in both levels:

IOS and Android supported App interface

A central online tracking tool of all connections

Remote connectivity of AquaProg via Ethernet.

A Parallel viewing and configuration interface

my Presentation 9/21/2016<© Sulzer > | slide 5

AquaWeb Technical solution

Solution in the Cloud.

Windows server Hyper-V.

Windows 2008 R2 Standard edition

Microsoft SQL Server 2008 R2 Web edition

CPU 2X2,4 GHz

RAM 16GB

HD1 75GB

HD2 150GB

Sulzer AquaVision and Repline

All solutions automated.

my Presentation 9/21/2016<© Sulzer > | slide 6

Sulzer’s AquaWeb servers are stored in the cloud.

The system is connected to one of the most stable and fastest fiber nets in the world.

UPS redundancy is guaranteed by hosting company (e.g. Amazon) via diesel powered generators.

Datacenter is fully equipped with HVAC to guarantee around the clock optimal running temperature.

The server redundancy is guaranteed by servers in Europe, USA and Asia.

The Datacenter is professionally built and is constantly supervised by guards and TV-supervising systems.

The hosting company is only working with well-known brands such as Microsoft, Cisco, Dell, HP and IBM.

High data security and availability

SMS, GPRS, 3G

Via a Secure private

APN network

Secure certificate

Https:// protocol

Controllers connected to

Customer’s equipment.

Smartphone for

receiving Push

messages

Mail, Push & SMS

Alarm forwarding via email or

Push notifications.

Reports and charts via email

Any computer

AquaVision™ SCADA software.

AquaWeb website.

Cloud server hosted by C&M.

Alarm list, map, charts et cetera

via internet.

Any computer

Smartphone

Android or iPhone

User

Any phone for SMS

APN - Access

- Point

- Name

my Presentation 9/21/2016<© Sulzer > | slide 7

SMS connected units are to report in every 24 h, if not the server will try to call the SMS alarm unit.

All GPRS / 3G connected units has an automatic heartbeat check every 30 minutes. Not just TCP IP connect but actual data transfer check.

If failed contact from either side a re-boot of the communication is initiated and a new test executed. If failed is an alarm sent out!

High data security and availability

Sulzer has put in great effort to secure the availability

and access of the whole AquaWeb system.

The system has built in check and monitoring routines

to increase data availability and if anything out of the

ordinary happens it will quickly detect and notify of

what and where the problem is located.

Station controller availability check

my Presentation 9/21/2016<© Sulzer > | slide 8

AquaWeb Technical solution

40 PowerShell scripts running for administration,

security and notifications such as:

Check system status. With action handling.

If tunnels are alive. With action handling

If Substations are connected. With action handling.

Check sensitive disk space. With action handling

Check databases. With action handling

Check SQL agent. With action handling.

Control logg files Webserver, AquaVision, Windows,

SQL Server and tunnel software logs.

Status Emails to C&M Tech_support.

Push messages in case of errors to admin John

Wikfors 24/7/365.

Full admin access 24/7/365 via Remote desktop.

Push messages to admin

Emails to C&M Tech_support

my Presentation 9/21/2016<© Sulzer > | slide 9

AquaWeb Technical solution

Secure backup solution for customer data.

T-SQL Scrips for backup on cloud server.

PowerShell script to zip and send backups to Linux ftp server.

PowerShell script on local server in Johanneshov for download

databases.

PowerShell script on local server to restore databases + run

check.

Full backup weekly.

Differential backup daily.

All actions supervised with alarm functionality.

Download backed databases to Johanneshov daily.

Local Windows 2008 R2 server with SQL Express for restore + check of databases + storage.

Linux FTP for security reasons.

Need for a middle layer

and for security reasons

no FTP functionality on Windows server

my Presentation 9/21/2016<© Sulzer > | slide 10

AquaWeb Technical solution

Different software's such as virtual serial ports.

VPN connections for GPRS/3G traffic.

SMS with Alarm notifications via SMSC Telenor over

TCP/IP sockets.

External email solution for sending out email with

reports and alarms to Sulzer SU and customers.

Virtual Serial communication to Johanneshov

IPSec tunnel to Telenor

Emails & SMS to Sulzer SU and customers

Substations communicate with AquaWeb via GPRS/3G

Alarmtransmitter communicate via SMS with AquaWeb

my Presentation 9/21/2016<© Sulzer > | slide 11

AquaWeb Technical solution

Push technology for sending out push notifications to customers.

Apps on Google Play and App store for tablets and smartphones.

Unique functionality with acknowledge possibility; meaning respond

to sender.

Substations communicate with AquaWeb

Push notification to customer

my Presentation 9/21/2016<© Sulzer > | slide 12

AquaWeb Technical solution

Over https:

my Presentation 9/21/2016<© Sulzer > | slide 13

Telenor Connexion and AquaWeb

APN aquaweb.cxn

Local operator

Settings override

Telenor settings

Telenor

Connexion

Handeling traffic

with correct APN

Telenor Connexion SMSC

A Secure Data Communication Set-Up

Access via VPN AquaWeb Cloud

based Server