WIND FORUM KOREA 2017 - mktg.co.kr

© 2017 WIND RIVER. ALL RIGHTS RESERVED.

WIND FORUM KOREA 2017

한상호 부장윈드리버 코리아


산업 시장의 변화와 솔루션한상호 부장

윈드리버 코리아

4 © 2017 WIND RIVER. ALL RIGHTS RESERVED.

AGENDA

▪ 산업 자동화 시장의 변화

▪ 안전과 디지털 신기술을 격리하는 솔루션


Industrial Automation산업 자동화 시장의 변화하이 레벨 트랜드


전통적인 산업 자동화 시스템

Cont

OR단독 운영

전용망 또는 폐쇄망


전통적인산업자동화시스템에서안전및보안

Physical “Air Gap”

Security

Safety where

required

Local

Security Policy

외부 위험요소

내부 위험요소



Enterprise IT

Private

& Public Cloud

On Premise

Real time FOG

IoT

Cloud

Big Data

AI

Analytics

Big data

FOG : Latency, Data volume Big Traffic, Security

산업자동화의 변화


1. IDC, 2016

2. Cisco, 2016

*Other names and brands may be claimed as the property of others

Sources:

Tyco

Connects fire safety panels—reducing

labor for annual sensor tests.

Monitors industrial turbines to anticipate

failures—avoiding customer downtime.

GE

Tesla

Provides remote fix to ~30k cars—driving

a hassle-free customer experience.

Monitors connected ATMs and fixes them

remotely—cutting service trips.

Diebold

Industry examples

실제 사례


변화에 따르는 위험

Enterprise IT

Private

& Public Cloud

On Premise

Real time FOG

Safety where

required

Network Safety

Global

Security

Policy

Internal

Threats

External

Threats


L1

Operator HMI

Digital Controller

8

L1

Open

Proprietary

Central Computer

Electronic Controller

1

Control

L2Central

Computer

Control, HMI &Historian

L2

Operator HMI

Computer Gateway

Digital Controller

100

Supervisory Control

Process Historian

L1

Operator HMI

Digital Controller

1000

Supervisory Control

Process Historian

L2 Virtualized System

DN

C

DN

C

Single-Chanel, Modular,

Distributed,Edge Device

Open

Real-Time Deterministic &

Reliable Distributed Control Node

General Computing

Appserver

App server

Appserver

L3: Access to

COTS technology

L3 L3

PneumaticControl

1

Control Loops

#

1920 1959 1970s 1980s 2000s 2020s

Stability & Productivity

Reliability & Speed

History, Networking, Flexible Configuration, Small HMI footprint & Wiring cos

L1: Function blocks, Sequence Control & Self-diagnosticsL2: Scalability/availibilityL3: Access to COTS

technoloy

L1: High-capacity Multi-function controllers w/HARTL2: Low-cost server

Low-cost Scalability & Replacement, Access to Leading Edge Performance, App portability, Integration of best-in-class components, Market for 3rd party software

Enterprise IT

Private

& Public Cloud

L4

Fog

Edge

13 © 2017 WIND RIVER. ALL RIGHTS RESERVED. 13

Things

+ Private + Public

Cloud

+On-premise

Real-Time FOG

Architecture disruption

• On-demand, flexible

• Open multi-vendor

• Rapid deployment

• OpEx instead of CapEx

Machine Function Virtualization

Edge Analytics

Personal Robotics

Security

Fabric

FAAS

REPLACE NEW

Ethernet

w/TSN

Real-time

Modular Station

FOG Servers

Enterprise IT

스마트 팩토리의 미래


안전과 디지털 신기술을격리하는 솔루션VxWorks7 Safety Profile


VxWorks 7 Safety Partitioning with VxPod—Portable Deterministic Containers

▪ Consolidate applications with different levels of safety criticality within one operating system

– Provides time, space, and resource partitioning

– Scalable to single and multi-core processors

– Provides homogenous environment

– Does not require hardware virtualization support

Single Kernel(single core)

App

Single Kernel(one to many cores)

Safe IoT


VxWorks Kernel

Technologies

/CPU = {CPU0, CPU1}

/시간

/메모리

Safe1 Safe2

Domain manager

/CPU = {CPU2, CPU3}

/시간

/메모리

IIOT 1 Analytics


User

Interface

Temp

Control

Pump

Control

Common Platform Common Platform

User

Interface

Chart

Recorder

Common Platform

Pump

Control

Safety Partitioning Module

Sensor

Control

User

Interface

Sensor

Control

VxPOD

Portable deterministic container

▪ VxWorks API

▪ POSIX API

▪ RTP and kernel objects

▪ Relative priorities

▪ Absolute time requirement

▪ Agnostic to number of cores


SAFETY 파티셔닝 스케쥴러

▪ Critical applications get a guaranteed time window to run▪ Core affinity avoids core transfers and brings the predictability needed for safety applications▪ Ability exists to avoid hardware-based inter-core interactions

VxWorks 7 Safety Scheduler

CPU 0 CPU 1 CPU n

Low Criticality Function (e.g., HMI,

logging, system checks)

Kernel Tasks

RTP 6

RTP 5

Medium Criticality Function (e.g.,

communication function)

IIoT Connectivity

RTP 2

High Criticality Function (e.g., motor control, emergency

handling)

Kernel Tasks

RTP 3

RTP 4

Time Partition 3

t3 Ticks

Time Partition 2

t2 Ticks

Time Partition 1

t1 Ticks

Time


RTP0

RTP1

RTP2

RTP3

Time Partition 0

100Tick

Time Partition 1

50Tick

Time Partition 2

100Tick

Time Partition 3

50Tick

RTP 3

BackgroundForeground

Idle Task

KernelTasks

RTP 2

RTP 0

RTP 1

Kernel Tasks

RTP 2

RTP 0

RTP 1

Kernel Tasks

Kernel Tasks

SystemViewer Log


ImpactValue

40% reduction in BOM cost,

overall savings of up to 60%

Run safe and non-safe

applications on the same device.

Save big costs in hardware,

maintenance, and inventory.

Update non-safe applications

without recertification of the

device.

Allow frequent modification of the

device without spending time and

money.

At least $500K in savings with

strategic competitive edge

Safety: Reduce Cost by Consolidation of Applications


안전인증을 위한 COTS


무엇을 준비해야 하나요? 프로그램이 가능한 전자기기 인증

Safety Critical

Applications

Safety Profile for

VxWorks RTOS

Safety Profile for

VxWorks BSP

Target Hardware

Wind River COTS

IEC 61508 SIL 3

Wind River

Professional Services

Customer

IEC 61508 SIL 3

Equipment

Under

Control

PE


▪ Safety Plan

▪ Software Validation Plan

▪ Software Configuration Management Plan (SCMP)

▪ Software Development Plan (SDP)

▪ Software requirements standards

▪ Software design standards

▪ Software coding standards

▪ Software Verification Plan (SVP)

▪ Software Requirements Specification (SRS)

▪ Software Design Document (SDD)

▪ Software Compliance Matrix

▪ Safety Manual

▪ Traceability Matrix

▪ Binaries

▪ Source Code

▪ Design reviews

▪ Code reviews

▪ Test reviews

▪ Functional tests

▪ Test results

▪ Coverage results

▪ Tool qualification documentation

▪ Development and Verification tools

The Certification Package consists of the following deliverables:

Software Design - Certification Artifacts


Code Cleanup

High Level Requirements (HLR)

Test Cases to cover LLR and HLR

Low Level Requirements (LLR)

For every line of code

Document every step in system

Maintain traceability

Review done by an independent person

Create change logs when making changes

MAINTAIN FOR YEARS

~$60 / Effective Line of Code (ELOC)

한화 약 7만원

Understanding Complexity of Certification


Architecture

ARM – 15,000 ELOC

Intel – 30,000 ELOC

PowerPC – 17,000 ELOC

Kernel, RTP, Mutli-core Scheduler

70,000 ELOC

Network Stack

15,000 ELOC

BSP

File System

12,000 ELOC$700K

한화 9억원

$900K

한화 11억원

$4.2M

한화 50억원

$900k ~ $1.8M

한화 11억원 ~ 20억원

ELOC : Total line of code

Raw Cost of Safety Profile Certification총합 = 50 + 20 + 11 + 9 = 90억원 OS만 (BSP 및 Application 제외)


PROVEN TRACK RECORD IN AVIONICS LEVERAGED ACROSS MULTIPLE FUNCTIONAL SAFETY MARKETS

300+ Customers

500+ Projects

90 Aircraft


VxWORKS 7 SAFETY MANUAL

How to use Safety Profile for VxWorks in a certified environment

Standards

▪ IEC 61508

▪ Cert authority

– TÜ V

– Determines compliance with standards

Best Practices

▪ Installation instructions

▪ Build environment

▪ User interface

▪ BSP

▪ Processor

▪ Error handling

Guidelines

▪ APIs

– RTPs

– DKMs

– VIP

– VSBs

▪ Restrictions

TPs, DKMs, VIP, VSB

Hazard Mitigation

▪ Failure mode and effect analysis (FMEA)

▪ Partitioning (VxPOD)

▪ Safe inter-process communications

▪ Hardware hazards


MULTI-CORE SYSTEM CERTIFICATION

Future Systems Architecture

▪ VxWorks 653 for Avionics

▪ Multiple levels of criticality

▪ Multiple cores for separation

▪ Time and space partitioning

▪ Abstraction interface

– ARINC 653 APIs

– VxWorks APIs

– POSIX APIs

▪ COTS Certification

Flight Management Application

DAL B

Payload ManagementApplication

DAL A

CommsApplication

DAL C

RTOS

Core 0 Core1 Core 2 Core 3

Avionics Bus (MIL-STD-1553, ARINC 429,ARINC 664, SAE AS6802 …)

Architecture Support Board Support

Multi-core Hardware

Resource Manager (SW Hypervisor) XML Data

▪Wind River is the industry leader with over 45% market

share and deep corporate support with our parent

company, Intel.

▪Wind River has more than 600 Industrial Automation

customers and its products are deployed over 2 billion

global devices.

▪ Industry-leading support, maintenance, services, and

education programs— eliminating headaches and risks

▪ Versatile portfolio with optional features and tools

customized to address specialized industry and market

needs, ready-made for IoT

Why Wind River?


™


Documents

WIND FORUM KOREA 2017 - mktg.co.kr