Copyright © 2009 Rockwell Automation, Inc. All rights reserved.

W1: Build a Solid Plant Floor Infrastructure through Network and Security Design and Implementation

Peter MorellManager, Networks & Security Services

AB Drives

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 2

Network & Security Services

1. Industry Trends

2. Network & Security Designs

3. Who wants to be a Millionaire:Network and Security Edition

4. Wrap-up: Question and Answers

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 3

Industry Trend Wide Adoption of Ethernet on Factory Floor

• Standardization of connectors such as RJ45 make use of traditional IT and consumer goods main stream markets

• Real-time control over Ethernet is a reality• Getting data from the shop floor via Ethernet is a natural fit

for the IT staff who has experience managing Ethernet infrastructure

• Adoption by many vendors to support Ethernet on the manufacturing floor offers a wide variety of devices and solutions

• Migration of wireless, video, voice and real-time control on the manufacturing network infrastructure

AB Drives

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 4

Industry Trend Increasing Need for “Real-Time” Information

• Decision makers need information to make product, material, purchasing and resource decisions

• Information contained within the manufacturing environment needs to feed different business systems– Quality, scheduling, lot tracking, computerized maintenance, etc.

• Connectivity to archive important data – Historians, disaster recovery and security systems, etc.

• Recall, retrace and proof of critical manufacturing variables during product inception, packaging and delivery lifecycle

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 5

Industry Trend Convergence of Manufacturing and IT

• With the proliferation of Ethernet, switches and other infrastructure devices have made IT and Manufacturing work together

• Information contained within the manufacturing environment must feed different business systems which are typically owned by IT

• IT has experience deploying and maintaining computers, servers and other computer assets

• Engineering and Maintenance departments are being asked to push data to higher level systems

Network Convergence

Organizational Convergence

Cultural Convergence

Technology Convergence

AB Drives

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 6

Industry Trend Security – A Concern Everyone Must Address

• Downtime – production control systems

• Lost data – manufacturing, scheduling, tracking, quality

• Theft of Intellectual Property• Physical incident

– Minor personal injury to loss of life– Loss of physical assets

• Loss time to market or the loss of public confidence

The potential of risks to manufacturing can be devastating

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 7

Network & Security Services

1. Industry Trends

2. Network & Security Designs

4. Wrap-up: Question and Answers

3. Who wants to be a Millionaire:Network & Security Edition

AB Drives

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 8

Physical Infrastructure

• Ethernet physical layer should always adhere to standards from TIA and ODVA

• Protection of the physical layer in a manufacturing environment

• Proper routing of cables• Selection of network hardware with the necessary

functionality• Use of industrial grade hardware in an industrial

environment

The foundation of every network is the physical layer

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 9

Network Topology

• Adherence to standards and guidelines such as SP99,Purdue Reference Model, Cisco and Rockwell Automation reference architecture

• Physical layout of network• Separation of traffic• Redundancy• Future growth capabilities

Properly designed topology is key to optimizing performance and increasing maintainability

AB Drives

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 10

Security

• Threat: An item (person or code in this context) with the intent and capability to exploit a vulnerability in an asset. – Malicious hacker, a disgruntled employee, accidental incident or code

• Vulnerability: Weakness in an asset that can be exploited• Risk: Probability of negative impacts resulting from the interactions

between threats and vulnerable assets– Impact = Threat + Vulnerability – Risk = Severity of impact x Likelihood of impact

• Managing risk– Accept– Transfer– Mitigate– Avoid

Risk exists in manufacturing IT environment

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 11

Benefits

• Information moves to key stakeholders with:– Availability– Integrity– Confidentiality

• Network is scalable– Add machines to the manufacturing environment– Add computing resources without bandwidth fear

• Security– Avoid accidental, unintentional process changes– Limit risk from outside malicious threats– Prove due diligence and due care

Because Infrastructure Matters

AB Drives

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 12

Network & Security Services

1. Industry Trends

2. Network & Security Designs

4. Wrap-up: Question and Answers

3. Who wants to be a Millionaire:Network & Security Edition

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 13AB Drives

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 14

Network & Security Services

1. Industry Trends

2. Network & Security Designs

4. Wrap-up: Question and Answers

3. Who wants to be a Millionaire:Network & Security Edition

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 15

Conclusion

• Physical network consideration is key– The foundation of every network is the physical layer

• Network design is not an accident but rather a carefully thought out planned project– Control “real-time” and IT “real time” are different– Requirements of an enterprise and manufacturing network are very different but must

co-exist to meet the demands of today’s global marketplace• Rockwell Automation has a Network & Security Service business

– We design connectivity of Manufacturing to IT networks for a living– http://www.rockwellautomation.com/services/networks

AB Drives

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 16

Network & Security Services At-a-Glance

ASSESS• Assess the current state of the security program, design, policy• Assess the current state of the network design, implementation

DESIGN/PLAN• Design and plan a network infrastructure• Design and plan security program, policy, infrastructure, business continuity plan

IMPLEMENT• Installation and configuration of a network• Implementation of a security program, infrastructure design, policy training

AUDIT• Audit current architecture compared to governing body (ODVA, IEEE, ANSI/

TIA) • Audit security program compared to governing body (NERC CIP, ISA -99, NIST

800-53, NIST 800-82

MANAGE/MONITOR• Manage, maintain and monitor uptime and issues on the network• Managed Security Services (Incident response, disaster recovery, monitoring)

Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 17

Network & Security Services Delivery Resources

Field Engineers and Consultants– Trained and equipped to provide complete design analysis and testing to confirm network operation, or to identify

and lead the repair of problems.Global Delivery

– Rockwell Automation delivers services through our consultants and field organization globally. Service deliverables are structured to augment our customer’s staff, or sub-contract turnkey network solutions. This approach provides a cost-effective method to you help attain the most value from network investments.

Standardized deliverables

RA Field Engineers200+ Globally Trained Resources

NSS Consultants

Customer Collaboration Delivered Results

AB Drives

Global Resources, Local Support A comprehensive suite of offerings delivered through a global, integrated network to help you meet your everyday technical needs, as well as providing value-add maintenance, asset management and system optimization solutions to maximize your return on automation investments.

Services & Support – We’re Here to Help.

Online answers to technical questions

Email Support, Live Chat, Support Forums

Local language support

www.rockwellautomation.com/support

Knowledgebase

To learn more, contact your local Rockwell Automation sales office or authorized Allen-Bradley distributor.

Training Services

Online & Phone Support

Onsite Support

MRO AssetManagement

Repair Services

Safety & Energy Services

Network & Security Services

Managed Services

Maximize your knowledge and skills by registering for an Open Enrollment course at the Services & Support booth.

Save 15% when you register at the booth today!

Ask us about: E-Learning, Job Aids, Training Workstations

Rockwell Automation Training Services

Save 15 %

Phone: 440.646.3434, select option #4

Email: trainingservices@ra.rockwell.com

Website: www.rockwellautomation.com/training

Contact Us

AB Drives

Copyright © 2009 Rockwell Automation, Inc. All rights reserved.

Thank you for participating!

Please tidy up your workstationbefore leaving.