Embed Size (px)
Citation preview
www.newtec.de
Flexible Networking for Industrial AutomationNTSecureGateway 1000 Family
For machine builders, Industry 4.0 and Industrial Internet of Things (IIoT) play a key role today. Because production companies want to quickly implement specific IIoT use cases: optimize maintenance, measure efficiency, down-times and changeover times, or monitor quality and com-pliance.
Almost all machine and plant manufacturers are therefore planning to offer networked products and digital services as quickly as possible.
... network connections to read and analyze real-time data
... cloud services
... automated data exchange
... remote services
... predictive maintenance
... condition monitoring
... big-data services
84%
74 %
70 %
86 %
82 %
82 %
54 %
Multi-Network Communication: Fieldbus, Industrial Ethernet, Wireless
This requires, firstly, reliable data acquisition from machines, tools or moving parts and, secondly, the secure exchange of this data with the cloud.
Sensor integration: Data acquisition from the most diverse components, from machines, tools and workpieces to assembly lines, conveyor belts and containers
Networking at machine level: Flexible connection of sensors, actuators, drives and controls; connection of a wide variety of machines – old or new, with or without interfaces, stationary or mobile
Intranet and cloud connectivity: Data exchange between manufacturing, logistics, ERP/MES and cloud services
Flexible Networking for Industrial Automation
NTSecureGateway 1000 Family
The Solution: NTSecureGateway / NTSecureCloudSolutions
Solid building blocks for secure IIoT applicationsReady-to-use hardware and software for industrial networking, edge computing and protected cloud connectivity, providing support for numerous interfaces and wireless standards, advan-ced security functions and data processing
Out of the box or customer specificAvailable as standard product or customer-specific development depending on requirements
Support over the complete life cycle of IIoT productsFrom business idea to product development and architecture concept to integration, maintenance and managed services
1IDC Worldwide IoT Spending Guide, January 2019 · 2 VDMA-Report IT und Automation 2018
By 2021, companies in machinery and plant engineering want to offer ...
The Greatest Challenges
Ensure connectivityConnecting different communication standards, interfaces and protocols: Fieldbus, Industrial Ethernet, Radio technologies, OPC UA, MQTT, ...
Use wireless technology efficiently For short distances (e.g. BLE), local networks (WLAN) and long distances (e.g. LTE, NarroBand IoT)Ensure IT security
Securing data exchange and the corporate network – because every networked component could open a door for attackers and malware
NTSecureNode
NTSecureNode
NTSecureNode
NTSecureNode
NTCloudServices
SiemensMindsphere
Microsoft Azure
AmazonAWS IoT
Google Cloud IoT-Core
EthercatModbusCANbusProfi net
BLELoraLTE
OPC/UA
NB IoT
NTSecureGateway
Hardware-based _ bidirectional authentication_ end-to-end encryption
NTSecureCloud
Cloud Services
NT SCC NT SCC
The Solution: The Solution: The Greatest Challenges
Ensure connectivityConnecting different communication standards, interfaces and protocols: Fieldbus, Industrial Ethernet, Radio technologies, OPC
The Solution: The Greatest Challenges
· Developer-friendly extensibility & adaptability· Scalable, real-time edge processing· Flexible deployment on any cloud or data center· Supports industry standards such as OPC UA, MQTT, PROFINET· Intrinsic security features· Scalability
NTSecureGateway is offered as an out-of-the-box full stack networking solution that enables enterprises to quickly deploy various IIoT applications. Alternatively, the device is also available as a hardware-only solution.
NTSecureGateway 1000 Family :Easy and Secure Connectivity for Production Environments
Networked components, especially in IoT and industry 4.0 scenarios, must be protected against cyber attacks. New-Tec‘s secure gateway technology ensures that all systems involved – from machines, lines and systems to controllers to networked devices or sensors – communicate securely with each other and with the cloud.
The NTSecureGateway 1000 family is part of NewTec‘s NTSecureCloudSolutions, which enable companies to im-plement secure industrial IoT solutions with minimal effort. NTSecureGateway devices enable secure data transfer between production sites and the cloud. Numerous interfaces are available for the connection of your machines: CAN bus, BLE, RS485/MODbus, 4-20mA/0-10V, or Ethernet. Connection to the cloud is established via Ethernet or optionally wireless, for example via NarrowBand IoT, LoRa or LTE.
The platform enables real-time edge computing with data compression, buffering and filtering. It also provides advanced security features including ARM TrustZone®, tamper detection, secure boot, secure storage for keys and certificates, hardware encryption (AES, SHA) and true random number generator (TRNG).
NTSecureGateway 1000 Family
Customer Benefit
· Accelerate time to market · Reduction in costs for development and certification· Ready-to-use communication interfaces· Highly secure
Key Features· Microchip ATSAMA5D27 incl. 128
MB RAM - ARM Cortex-A5 core - Up to 500 MHz - 4 GB eMMC · Secure data transfer· End-to-end encryption· Edge computing platform· Parametrization via mobile app /
internet· Data compression, buffering and
selection· Extensible through individual appli-
cation programming · Configurable transmission parame-
ters · Interfaces: 2xEthernet, Wifi, USB
2.0 Host, BLE, CAN, RS485, 4-20mA, 0-10V
· Supported protocols: OPC/UA, MQTT, PROFINET
· DIN Rail (72 x 90 mm) and IP 67 housing available
· Power supply 7-32 V or passive POE (24 V)
Security and Encryption· Dedicated cryptographic hardware
engine (ARM TrustZone)· Cryptography and security
middleware services· Security Library · NTSecureCloudConnector· Device Life-Cycle-State
management· Key Management infrastructure· Secure Boot· Secure Update· Various supported encryption
algorithms, such as AES, RSA, Diffie-Hellman, Elliptic Curve ECC, etc.
· Tamper Protection· ATECC608 Secure Keystore
Hardware Block Diagram
Software Architecture
System Overview
Main ECUSAM A5 D27 (500 MHz, 128MB RAM)
Ethernet 1
100MBitPassive POE
Ethernet 2
100MBit
WIFI802.11 b/g/n
Power SupplyUSB/ 5V7 – 30V
RTC Battery
USB HostUSB 2.0
NOR Flash64MB / 512MBit
Secure Element
ECC608
BLEBLE 4.2 / 5.0
CAN Relay Driver RS485 4-20mA 0-10V
HMI2x LED + RGB
Button
Extension ConnectorsTop Side: 2x10
Bottom: 2x9 (HBUS)
Mounting Option choose one
RM
II
24V
US
B H
SIC
SD
IO
SP
I
USB
CA
N /
IO
UA
RT
/ A
DC
3V3
/ 1V8
I2C
QS
PI
AD
C
UA
RT
IO SP
I
I2C
IO
Mounting Option choose one
Flash4GB eMMC
SD
MM
C
Tamper Protection
3 Pin Connector
IO
Data Publisher
BLERaw
RFCP MQTT OPCUA CAN MindSphere
BLE COM Stack
NTSSP
NTSSP
RFCP
BLE Stack Abstraktion
BLE Stack
User SpaceMain Controller
Kernel Space
ZephyrBLE Modul
Configuration (JSON)
localsystem
data compression
data buffering
data selection
dataencryption
trustedplatformmodule
NTSecureGateway
NTSecureCloud
Ethernet
WLAN**
LTE*
LTE NB IoT*
Lora*
CANbus
Ethernet**
BLE**
4-20mA/0-10V**
RS485/Modbus**
Digital I/O*
Environmental sensors*
* Expansion module ** Assembly option
forms complex movements. With NTSecureGateway, the requi-red sensors can be linked wirelessly and connected directly to the control system without great effort thanks to BLE-OPC-UA conversion.
Adding Sensors to Legacy Machine Tools
In the portfolio of many manufacturers and also in many facto-ries there still exist many proven machine tools without much electronics. In some factory buildings high-tech lathes or mil-ling machines stand beside old machines, possibly even without CNC. Their integration into IIoT scenarios is complicated by prop-rietary or non-existent interfaces and communication protocols. The solution: upgrade existing machines with modern sensors. NewTec’s secure gateway technology ensures secure wireless connection via BLE and translates the sensor data into the uni-versal machine language OPC UA.
NTSecureGateway 1011: Wireless Sensor Connection via BLE and OPC UA
Sensors are the perception organs of machines and plants: their data can be analyzed to observe the condition of tools and workpieces, monitor production processes and detect deviations or overloads. The secure gateway technology from NewTec se-curely transmits any sensor data via Bluetooth Low Energy (BLE) to the control system or the cloud. The integrated OPC UA server (Open Platform Communications Unified Architecture) enables manufacturer-independent communication between machines and controllers. Sensors without BLE capabilities are connected via NewTec’s secure cloud nodes.
Equipping Tools with Sensors
Today, machine tools are highly complex, computer-controlled electromechanical systems. They usually already have network interfaces and support modern standards such as OPC UA. Unfortunately, this does not apply to the same extent to the tools, which are often connected to the machine via a chuck or special tool holders. It is often impossible to connect sen-sors attached to the tool via cables, for example if the tool per-
NTSecureGateway 1000 Family
Customer Benefit
· Ready for immediate use: Plug & Play· No effort for software development· No BLE know-how required· Easy integration into existing environments · Easy operation for customers (without proprietary dashboards, tablets etc.)· Connection of all BLE-capable sensors – also from other machines· Long sensor battery life thanks to low power consumption· Cloud-based data analysis possible
Platform for Individual Applications
The NTSecureGateway 1000 platform can be flexibly tailored to your indi-vidual application by using different interface and protocol options. Indi-vidually programmed extensions are also possible. There are no limits to the application spectrum, e. g.:
· Location data, fill levels etc. of forklifts, conveyors or containers for optimized logistics processes
· Measurement of quality-critical parameters of workpieces or products
· Data acquisition from subsystems for evaluations by suppliers
· MQTT support for more flexibility in remote connectivity
Hardware Block Diagram
Software Architecture
Main ECUSAM A5 D27 (500 MHz, 128MB RAM)
Ethernet 1
100MBitPassive POE
Ethernet 2
100MBit
WIFI802.11 b/g/n
Power SupplyUSB/ 5V7 – 30V
RTC Battery
USB HostUSB 2.0
NOR Flash64MB / 512MBit
Secure Element
ECC608
BLEBLE 4.2 / 5.0
CAN Relay Driver RS485 4-20mA 0-10V
HMI2x LED + RGB
Button
Extension ConnectorsTop Side: 2x10
Bottom: 2x9 (HBUS)
Mounting Option choose one
RM
II
24V
US
B H
SIC
SD
IO
SP
I
USB
CA
N /
IO
UA
RT
/ A
DC
3V3
/ 1V8
I2C
QS
PI
AD
C
UA
RT
IO SP
I
I2C
IO
Mounting Option choose one
Flash4GB eMMC
SD
MM
C
Tamper Protection
3 Pin Connector
IO
Data Publisher
BLERaw
RFCP MQTT OPCUA CAN MindSphere
BLE COM Stack
NTSSP
NTSSP
RFCP
BLE Stack Abstraktion
BLE Stack
User SpaceMain Controller
Kernel Space
ZephyrBLE Modul
Configuration (JSON)
NewTec GmbHBuchenweg 3 89284 Pfaffenhofen a. d. RothGermany Tel.: + 49 7302 9611-0 Fax: + 49 7302 [email protected]
F812
_111
9
NewTec is a leading specialist for functional safety and embedded security and provides so-lutions in medical technology, industry as well as automotive & transportation. The company provides guidance to its customers during the digital transformation, advises them on safety and security issues and helps them develop and launch new business models and innovative products.NewTec offers comprehensive services and solutions throughout the product lifecycle: holistic technology consulting, know-how transfer and safety and security concepts, customized hardware and software develop-ment, cloud solutions, platforms, and imme-diately implementable solutions for safe and secure product developments as well as assistance with market entry and certification.Founded in 1986, NewTec looks back on more than three decades of project experience in implementing complex safety and security requirements. Today, the company has more than 190 employees at six locations in Pfaffenhofen/Roth, Bremen, Freiburg, Mann-heim, Friedrichshafen and Taipei/Taiwan.
