SlideShare une entreprise Scribd logo

Enabling Enterprise-wide OT Data access with Matrikon Data Broker.pdf

John Archer
John Archer

Highlights on new partnership between Red Hat and Matrikon for supporting OPC-UA on Red Hat edge infrastructure including bare metal, VMs and containers deployments for Matrikon Data Broker

Logiciels
1  sur  25
Télécharger pour lire hors ligne
Enabling Enterprise-wide OT Data access with Matrikon Data Broker John Archer Senior Principal BDM - AI & Edge archer@redhat.com Alex Kubacki Technical Architect Ecosystem akubacki@redhat.com Darek Kominek Marketing Director darek.kominek@matrikonopc.com
John Archer Sr Principal BDM - AI, Edge and Industrials BS Political Science Red Hat since 2015 Meet The Speakers Alex Kubacki Technical Architect - Global Partner Solutions & Technologies BS in Computer Engineering, Computer Science, and Electrical Engineering Red Hat Since 2021 Darek Kominek Marketing Director BSc Computer Engineering Matrikon since 2005
Where is Matrikon Technology and OPC-UA deployed today?
Business Value Story ● Universal OPC UA Based data connectivity ○ 3rd party vendor neutral ○ Improved data context ● Secure data connectivity ○ End-to-end encryption ○ Network traversal (Enterprise wide) ● Legacy infrastructure friendly (extends ROI) ● Low cost of ownership ● Better data quality (IM) ● Extended ROI ● Reduce Non-Productive Time Bottom Line ● Introduce DevSecOps into the OT domain ● Open Process Automation foundation ● OTA style updates and patches with rollback ● Improve Safety, Resiliency, Reliability concerns ● Zero Touch Deployments ● Declarative Security ● Sustainable pattern for complex industrial architecture deployments ● Safely explore new business goals in process industries ● Free engineers to focus on the analytics and custom workloads in highly regulated and HSE focused industries ● Move to autonomous operations and improve margins The combination of modern OT data connectivity with state of the art IT infrastructure multiplies business value. OT Focus IT Focus
Purdue Model / ISA-95 Mapping to Red Hat Edge Layers
Industrial Infrastructure Levels What are the different Levels for Industrial Infrastructure Operational Level Far Edge What is Far Edge? Far Edge is the Level 2 and below. This consists of Control Systems, Intelligent Devices and Physical Processes that make up the manufacturing.
Industrial Infrastructure Levels What are the different Levels for Industrial Infrastructure Operational Level Far Edge What is Far Edge Far Edge is the Level 2 and below. This consists of Control Systems, Intelligent Devices and Physical Processes that make up the manufacturing. Plant Level Near Edge What is Near Edge Near Edge consists of the DMZ and Level 3 of the Purdue Model. The DMZ is the security features such as firewalls and proxies, which isolate the environment from the outside world. Level 3 is the manufacturing operation systems which manage production workflow.
Industrial Infrastructure Levels What are the different Levels for Industrial Infrastructure Operational Level Far Edge What is Far Edge? Far Edge is the Level 2 and below. This consists of Control Systems, Intelligent Devices and Physical Processes that make up the manufacturing. Plant Level Near Edge What is Near Edge? Near Edge consists of the DMZ and Level 3 of the Purdue Model. The DMZ is the security features such as firewalls and proxies, which isolate the environment from the outside world. Level 3 is the manufacturing operation systems which manage production workflow. Enterprise Level Core What is Core? Core is equal to Level 4/5 of the Enterprise Levels. It is the primary level where business functions occurs. Common IT networking exists at level, along with workstations, Web Servers, DNSs, etc.
Industrial IT/OT Considerations Goals and Risks for either the IT or OT POV for each Level Operational Level Far Edge ● Network and IT security ● Data Access ● ML Model Inferencing ● Automation Plant Level Near Edge ● Configuration Changes ● Vulnerabilities ● Software Update and Patches Enterprise Level Core ● Privilege abuse attempts and escalations ● Financial Fraud ● Autonomous Operations OT Focus IT Focus ● Network traversal ● Platform Hacking ● Data Leaking, Tampering, Manipulation ● Device Manipulation ● Unscheduled Downtime ● 3rd party connectivity ● Operational Security ● Reliability ● Safety ● Data context ● Business and Operation Disruption ● Real-time Visibility
Level 2 Level 1 Level 3.5 Level 4 Sensors & Devices System DCS S-PLC OT applications Business Level 3 DMZ 3rd Party Cloud Providers Connectivity & Federation Data Model & Mapping Traversal (OT Side) Traversal (DMZ) Traversal (IT Side) Cloud communications MDB: Unified OT Data Platform
11 RAW COMPANY OT DATA ADVANCED APPLICATION FUNCTIONALITY + DATA CONTEXTUALIZATION (VENDOR SPECIFIC) On Prem Application 1 On Prem Application 2 Cloud Application 1 Access to OT data is dependent on Advanced Application(s) . Another type of Vendor Lock-in. Traditional Solution: An advanced application serves double duty: as an advanced function and as an access point to data for other applications. MDB: The Unified OT Data Layer
RAW COMPANY OT DATA MDB: The Unified OT Data Layer 12 MDB – Unified OT Data Layer (OPC UA OPEN STANDARD BASED) ADVANCED APPLICATION FUNCTIONALITY + DATA CONTEXTUALIZATION (VENDOR SPECIFIC) On Prem Application 1 On Prem Application 2 Cloud Application 1 Create a single, secure OT-data access point via a unified OT data layer Best Practice - OT Data Access :separate “data access” from “application functionality” by creating an open standard-based layer for OT data access for all applications.
RAW COMPANY OT DATA MDB: The Unified OT Data Layer 13 MDB – Unified OT Data Layer (OPC UA OPEN STANDARD BASED) ADVANCED APPLICATION FUNCTIONALITY On Prem Application 1 On Prem Application 2 Cloud Application 1 Use advanced applications for the functionality they provide Use a common, standards-based access OT data access point Best Practice - OT Data Access :separate “data access” from “application functionality” by creating an open standard-based layer for OT data access for applications across the enterprise and to-cloud.
RAW COMPANY OT DATA 14 MDB – Unified OT Data Layer (OPC UA OPEN STANDARD BASED) ADVANCED APPLICATION FUNCTIONALITY On Prem Application 1 On Prem Application 2 Cloud Application 1 Move beyond raw OT-data access by enhancing its context and structure whale protecting underlying sources. MDB: The Unified OT Data Layer Best Practice: Enhanced OT Data Value: Present OT data in the context(s) required by different users/applications using open, OPC UA standards-based Data Technology.
Unified OT Data Layer Connectivity Consolidation Context Collaboration Cloud Access 15 ADVANCED APPLICATION FUNCTIONALITY On Prem Application 1 On Prem Application 2 Cloud Application 1 MDB: Data Tech for a Unified OT Data Layer
MDB powered Unified OT-Data Layer vs Traditional Connectivity Traditional Solution Unified OT-Data Layer Best Practice ● Direct connections to data sources ● Little to no data context provided by sources, hard to add context. ● Custom solutions relied on for access to OT-data and context (vendor lock in) ● Inconsistent (home grown) security practices depend on expertise of integration team. ● Single connection made to data sources. ● Dynamic, user managed, 3rd party data context ● Separated data access and advanced application roles ● Sustainable open standards-based solution (ex. OPC UA, MQTT) ● Consistent, system-wide, security best-practices included ‘under the hood’
OT Data Centric View IT Network View IT Workflows View Two Sides of the Same Coin
Control plane Windows containerized workloads Matrikon OPC-UA Explorer Windows legacy VM workloads DataBroker Operator (ubi container)* Windows containers Linux containers Windows virtual machine Red Hat OpenShift virtualization Red Hat Enterprise Linux CoreOS Microsoft Windows Honeywell Matrikon Data Broker Deployment Options Roadmap Kubernetes Orchestrated Workloads Today Linux Edge Workloads (Bare Metal/ VM/Container) Red Hat Enterprise Linux Ansible Automation (Roadmap) DataBroker Podman (ubi container) DataBroker Bare Metal (AppImage) UA Explorer Bare Metal (AppImage)
Operational Level Far Edge Enterprise Level Core Plant Level Near Edge Industrial Edge Architecture 19 Trusted Software Factory & DevOps Platform System & Software Testing DevOps & Continuous Integration SW Release & Dependency Mgmt (Version Control) Edge Management & Control Development Tooling Security Enterprise IT & other Business Lines Central IT Platforms Production & Logistics collaboration & communication of OEM, Tier 1, Tier N, … Enterprise Resource Planning (SAP) Supply Chain Management (SCM) Product Lifecycle Management (PLM) Engineering, Requirements & Architecture (CAx) Plant Application / Factory Operations Manufacturing Execution Systems (MES) Asset Management Warehouse Management (with ERP) Custom Factory Applications Digital Twin Track & Trace Structured / unstructured Timeseries Analytics Visualization ML Development Data Platform Message Broker Protocol Transform Change Data Capture Event Streaming API Mmgt Integration Platform MSA Event Driven ML Inference Workflow Rules CI/CD, CfgMmgt Observability Serverless Application Platform Existing Operational Technology (PLC, RTU, HMI , …) IoT Gateway Supervisory control & data acquisition (SCADA) Machine, Device, Sensor, Robot Future Software Defined OT (PLC, RTU, HMI , …) Container Virtual Machines Low Latency Compute Network Storage Technical Platform
Current Projects - OT Investments and Roadmap IEC 62443 and OPAF O-PAS Modernization Path
A System with O-PAS™ Components
O-PAS Testbed on Red Hat Infrastructure
Finding Targets - Titles and Keywords Who to reach out to with these capabilities 1. Plant Supervisor 2. SCADA Manager 3. Compute Architect 4. Operations Lead 5. Cluster Administrator 6. Network Administrator 7. Project Engineer 8. Security Engineer 1. OPA/OPAF 2. SCADA 3. OPC-UA/Modbus 4. Predictive Maintenance 5. Real time Operations 6. Time-Series 7. Cybersecurity 8. Operations Edge 9. Purdue Model 10. ISA-95 11. Reliability 12. Safety 13. HMI 14. Industrial Controls Titles Keywords
Next Steps… For engagement support, here is what's next: 1. Contact John Archer - archer@redhat.com and Jennifer Owen at Matrikon - jennifer.owen@MatrikonOPC.com for assistance 2. Go to media.redhat.com and search for Industrials Solutions to learn more about industrial sales plays, OPC-UA, and Matrikon Data Broker solutions. 3. Reach out to Edge Solution Center Team for demo and engagement support.
Q & A Thanks Contact

Recommandé

Leveraging IoT as part of your digital transformation
Leveraging IoT as part of your digital transformationLeveraging IoT as part of your digital transformation
Leveraging IoT as part of your digital transformation
John Archer
 
Managing the Robotics Organization with Robotics – IoT
Managing the Robotics Organization with Robotics – IoTManaging the Robotics Organization with Robotics – IoT
Managing the Robotics Organization with Robotics – IoT
Rising Media, Inc.
 
Embrace network
Embrace networkEmbrace network
Embrace network
Michel Burger
 
Optimize the Value of Your Mainframe
Optimize the Value of Your MainframeOptimize the Value of Your Mainframe
Optimize the Value of Your Mainframe
Precisely
 
L'Internet des objets (IDO)
L'Internet des objets (IDO)L'Internet des objets (IDO)
L'Internet des objets (IDO)
Cisco Canada
 
New Design Patterns in Microservice Solutions
New Design Patterns in Microservice SolutionsNew Design Patterns in Microservice Solutions
New Design Patterns in Microservice Solutions
Michel Burger
 
Locationless data science on a modern secure edge
Locationless data science on a modern secure edgeLocationless data science on a modern secure edge
Locationless data science on a modern secure edge
John Archer
 
FIWARE Global Summit - Edge Computing - Near Edge for IoT Enablement
FIWARE Global Summit - Edge Computing - Near Edge for IoT EnablementFIWARE Global Summit - Edge Computing - Near Edge for IoT Enablement
FIWARE Global Summit - Edge Computing - Near Edge for IoT Enablement
FIWARE
 

Recommandé

Leveraging IoT as part of your digital transformation
Leveraging IoT as part of your digital transformationLeveraging IoT as part of your digital transformation
Leveraging IoT as part of your digital transformation
John Archer
 
Managing the Robotics Organization with Robotics – IoT
Managing the Robotics Organization with Robotics – IoTManaging the Robotics Organization with Robotics – IoT
Managing the Robotics Organization with Robotics – IoT
Rising Media, Inc.
 
Embrace network
Embrace networkEmbrace network
Embrace network
Michel Burger
 
Optimize the Value of Your Mainframe
Optimize the Value of Your MainframeOptimize the Value of Your Mainframe
Optimize the Value of Your Mainframe
Precisely
 
L'Internet des objets (IDO)
L'Internet des objets (IDO)L'Internet des objets (IDO)
L'Internet des objets (IDO)
Cisco Canada
 
New Design Patterns in Microservice Solutions
New Design Patterns in Microservice SolutionsNew Design Patterns in Microservice Solutions
New Design Patterns in Microservice Solutions
Michel Burger
 
Locationless data science on a modern secure edge
Locationless data science on a modern secure edgeLocationless data science on a modern secure edge
Locationless data science on a modern secure edge
John Archer
 
FIWARE Global Summit - Edge Computing - Near Edge for IoT Enablement
FIWARE Global Summit - Edge Computing - Near Edge for IoT EnablementFIWARE Global Summit - Edge Computing - Near Edge for IoT Enablement
FIWARE Global Summit - Edge Computing - Near Edge for IoT Enablement
FIWARE
 
Introduction to the Microsoft Azure Cloud.pptx
Introduction to the Microsoft Azure Cloud.pptxIntroduction to the Microsoft Azure Cloud.pptx
Introduction to the Microsoft Azure Cloud.pptx
EverestMedinilla2
 
Re-Imagining the Data Center with Intel
Re-Imagining the Data Center with IntelRe-Imagining the Data Center with Intel
Re-Imagining the Data Center with Intel
Intel IT Center
 
Are you ready to be edgy? Bringing applications to the edge of the network
Are you ready to be edgy? Bringing applications to the edge of the networkAre you ready to be edgy? Bringing applications to the edge of the network
Are you ready to be edgy? Bringing applications to the edge of the network
Megan O'Keefe
 
OPC UA Connectivity with InduSoft and the OPC Foundation
OPC UA Connectivity with InduSoft and the OPC FoundationOPC UA Connectivity with InduSoft and the OPC Foundation
OPC UA Connectivity with InduSoft and the OPC Foundation
AVEVA
 
DG_Architecture_Training.pptx
DG_Architecture_Training.pptxDG_Architecture_Training.pptx
DG_Architecture_Training.pptx
TranVu383073
 
Introduction to Symantec Endpoint Management75.pptx
Introduction to Symantec Endpoint Management75.pptxIntroduction to Symantec Endpoint Management75.pptx
Introduction to Symantec Endpoint Management75.pptx
Arrow ECS UK
 
The Hive Think Tank: Translating IoT into Innovation at Every Level by Prith ...
The Hive Think Tank: Translating IoT into Innovation at Every Level by Prith ...The Hive Think Tank: Translating IoT into Innovation at Every Level by Prith ...
The Hive Think Tank: Translating IoT into Innovation at Every Level by Prith ...
The Hive
 
Kura M2M IoT Gateway
Kura M2M IoT GatewayKura M2M IoT Gateway
Kura M2M IoT Gateway
Eurotech
 
Unique Value Proposition in M2M: Hardware, Software & Service Building Blocks...
Unique Value Proposition in M2M: Hardware, Software & Service Building Blocks...Unique Value Proposition in M2M: Hardware, Software & Service Building Blocks...
Unique Value Proposition in M2M: Hardware, Software & Service Building Blocks...
Eurotech
 
Technology Introduction Series: Edge Computing tutorial.pdf
Technology Introduction Series: Edge Computing tutorial.pdfTechnology Introduction Series: Edge Computing tutorial.pdf
Technology Introduction Series: Edge Computing tutorial.pdf
3G4G
 
Developing Interoperable Components for an Open IoT Foundation
Developing Interoperable Components for an Open IoT Foundation Developing Interoperable Components for an Open IoT Foundation
Developing Interoperable Components for an Open IoT Foundation
Eurotech
 
General io t_concepts
General io t_conceptsGeneral io t_concepts
General io t_concepts
Sinan Ozmen
 
Evolution from EDA to Data Mesh: Data in Motion
Evolution from EDA to Data Mesh: Data in MotionEvolution from EDA to Data Mesh: Data in Motion
Evolution from EDA to Data Mesh: Data in Motion
confluent
 
Real World IoT Architectures and Projects with Eclipse IoT
Real World IoT Architectures and Projects with Eclipse IoTReal World IoT Architectures and Projects with Eclipse IoT
Real World IoT Architectures and Projects with Eclipse IoT
Eurotech
 
Smart Manufacturing Connectivity for Brown-field Sensors Testbed at a glance
Smart Manufacturing Connectivity for Brown-field Sensors Testbed at a glanceSmart Manufacturing Connectivity for Brown-field Sensors Testbed at a glance
Smart Manufacturing Connectivity for Brown-field Sensors Testbed at a glance
Industrial Internet Consortium
 
Computer Port IT Solutions JNTU Lecture
Computer Port IT Solutions JNTU LectureComputer Port IT Solutions JNTU Lecture
Computer Port IT Solutions JNTU Lecture
Computer Port IT Solutions
 
NXP'S-PORTFOLIO-FOR-ADDRESSING-IOT-SECURITY.pdf
NXP'S-PORTFOLIO-FOR-ADDRESSING-IOT-SECURITY.pdfNXP'S-PORTFOLIO-FOR-ADDRESSING-IOT-SECURITY.pdf
NXP'S-PORTFOLIO-FOR-ADDRESSING-IOT-SECURITY.pdf
ssuser57b3e5
 
MT85 Challenges at the Edge: Dell Edge Gateways
MT85 Challenges at the Edge: Dell Edge GatewaysMT85 Challenges at the Edge: Dell Edge Gateways
MT85 Challenges at the Edge: Dell Edge Gateways
Dell EMC World
 
Parimal Resume
Parimal ResumeParimal Resume
Parimal Resume
Parimal Thakkar
 
IoT Solutions Made Simple with Everyware IoT
IoT Solutions Made Simple with Everyware IoTIoT Solutions Made Simple with Everyware IoT
IoT Solutions Made Simple with Everyware IoT
Eurotech
 
Extending open source and hybrid cloud to drive OT transformation - Future Oi...
Extending open source and hybrid cloud to drive OT transformation - Future Oi...Extending open source and hybrid cloud to drive OT transformation - Future Oi...
Extending open source and hybrid cloud to drive OT transformation - Future Oi...
John Archer
 
Red Hat Java Update and Quarkus Introduction
Red Hat Java Update and Quarkus IntroductionRed Hat Java Update and Quarkus Introduction
Red Hat Java Update and Quarkus Introduction
John Archer
 

Contenu connexe

Similaire à Enabling Enterprise-wide OT Data access with Matrikon Data Broker.pdf

Are you ready to be edgy? Bringing applications to the edge of the network
Are you ready to be edgy? Bringing applications to the edge of the networkAre you ready to be edgy? Bringing applications to the edge of the network
Are you ready to be edgy? Bringing applications to the edge of the network
Megan O'Keefe
 
The Hive Think Tank: Translating IoT into Innovation at Every Level by Prith ...
The Hive Think Tank: Translating IoT into Innovation at Every Level by Prith ...The Hive Think Tank: Translating IoT into Innovation at Every Level by Prith ...
The Hive Think Tank: Translating IoT into Innovation at Every Level by Prith ...
The Hive
 
Technology Introduction Series: Edge Computing tutorial.pdf
Technology Introduction Series: Edge Computing tutorial.pdfTechnology Introduction Series: Edge Computing tutorial.pdf
Technology Introduction Series: Edge Computing tutorial.pdf
3G4G
 
NXP'S-PORTFOLIO-FOR-ADDRESSING-IOT-SECURITY.pdf
NXP'S-PORTFOLIO-FOR-ADDRESSING-IOT-SECURITY.pdfNXP'S-PORTFOLIO-FOR-ADDRESSING-IOT-SECURITY.pdf
NXP'S-PORTFOLIO-FOR-ADDRESSING-IOT-SECURITY.pdf
ssuser57b3e5
 

Similaire à Enabling Enterprise-wide OT Data access with Matrikon Data Broker.pdf (20)

Introduction to the Microsoft Azure Cloud.pptx
Introduction to the Microsoft Azure Cloud.pptxIntroduction to the Microsoft Azure Cloud.pptx
Introduction to the Microsoft Azure Cloud.pptx
 
Re-Imagining the Data Center with Intel
Re-Imagining the Data Center with IntelRe-Imagining the Data Center with Intel
Re-Imagining the Data Center with Intel
 
Are you ready to be edgy? Bringing applications to the edge of the network
Are you ready to be edgy? Bringing applications to the edge of the networkAre you ready to be edgy? Bringing applications to the edge of the network
Are you ready to be edgy? Bringing applications to the edge of the network
 
OPC UA Connectivity with InduSoft and the OPC Foundation
OPC UA Connectivity with InduSoft and the OPC FoundationOPC UA Connectivity with InduSoft and the OPC Foundation
OPC UA Connectivity with InduSoft and the OPC Foundation
 
DG_Architecture_Training.pptx
DG_Architecture_Training.pptxDG_Architecture_Training.pptx
DG_Architecture_Training.pptx
 
Introduction to Symantec Endpoint Management75.pptx
Introduction to Symantec Endpoint Management75.pptxIntroduction to Symantec Endpoint Management75.pptx
Introduction to Symantec Endpoint Management75.pptx
 
The Hive Think Tank: Translating IoT into Innovation at Every Level by Prith ...
The Hive Think Tank: Translating IoT into Innovation at Every Level by Prith ...The Hive Think Tank: Translating IoT into Innovation at Every Level by Prith ...
The Hive Think Tank: Translating IoT into Innovation at Every Level by Prith ...
 
Kura M2M IoT Gateway
Kura M2M IoT GatewayKura M2M IoT Gateway
Kura M2M IoT Gateway
 
Unique Value Proposition in M2M: Hardware, Software & Service Building Blocks...
Unique Value Proposition in M2M: Hardware, Software & Service Building Blocks...Unique Value Proposition in M2M: Hardware, Software & Service Building Blocks...
Unique Value Proposition in M2M: Hardware, Software & Service Building Blocks...
 
Technology Introduction Series: Edge Computing tutorial.pdf
Technology Introduction Series: Edge Computing tutorial.pdfTechnology Introduction Series: Edge Computing tutorial.pdf
Technology Introduction Series: Edge Computing tutorial.pdf
 
Developing Interoperable Components for an Open IoT Foundation
Developing Interoperable Components for an Open IoT Foundation Developing Interoperable Components for an Open IoT Foundation
Developing Interoperable Components for an Open IoT Foundation
 
General io t_concepts
General io t_conceptsGeneral io t_concepts
General io t_concepts
 
Evolution from EDA to Data Mesh: Data in Motion
Evolution from EDA to Data Mesh: Data in MotionEvolution from EDA to Data Mesh: Data in Motion
Evolution from EDA to Data Mesh: Data in Motion
 
Real World IoT Architectures and Projects with Eclipse IoT
Real World IoT Architectures and Projects with Eclipse IoTReal World IoT Architectures and Projects with Eclipse IoT
Real World IoT Architectures and Projects with Eclipse IoT
 
Smart Manufacturing Connectivity for Brown-field Sensors Testbed at a glance
Smart Manufacturing Connectivity for Brown-field Sensors Testbed at a glanceSmart Manufacturing Connectivity for Brown-field Sensors Testbed at a glance
Smart Manufacturing Connectivity for Brown-field Sensors Testbed at a glance
 
Computer Port IT Solutions JNTU Lecture
Computer Port IT Solutions JNTU LectureComputer Port IT Solutions JNTU Lecture
Computer Port IT Solutions JNTU Lecture
 
NXP'S-PORTFOLIO-FOR-ADDRESSING-IOT-SECURITY.pdf
NXP'S-PORTFOLIO-FOR-ADDRESSING-IOT-SECURITY.pdfNXP'S-PORTFOLIO-FOR-ADDRESSING-IOT-SECURITY.pdf
NXP'S-PORTFOLIO-FOR-ADDRESSING-IOT-SECURITY.pdf
 
MT85 Challenges at the Edge: Dell Edge Gateways
MT85 Challenges at the Edge: Dell Edge GatewaysMT85 Challenges at the Edge: Dell Edge Gateways
MT85 Challenges at the Edge: Dell Edge Gateways
 
Parimal Resume
Parimal ResumeParimal Resume
Parimal Resume
 
IoT Solutions Made Simple with Everyware IoT
IoT Solutions Made Simple with Everyware IoTIoT Solutions Made Simple with Everyware IoT
IoT Solutions Made Simple with Everyware IoT
 

Plus de John Archer

Plus de John Archer (9)

Extending open source and hybrid cloud to drive OT transformation - Future Oi...
Extending open source and hybrid cloud to drive OT transformation - Future Oi...Extending open source and hybrid cloud to drive OT transformation - Future Oi...
Extending open source and hybrid cloud to drive OT transformation - Future Oi...
 
Red Hat Java Update and Quarkus Introduction
Red Hat Java Update and Quarkus IntroductionRed Hat Java Update and Quarkus Introduction
Red Hat Java Update and Quarkus Introduction
 
DDDP 2019 - Brown to Green
DDDP 2019 - Brown to GreenDDDP 2019 - Brown to Green
DDDP 2019 - Brown to Green
 
Delivering Agile Data Science on Openshift - Red Hat Summit 2019
Delivering Agile Data Science on Openshift - Red Hat Summit 2019Delivering Agile Data Science on Openshift - Red Hat Summit 2019
Delivering Agile Data Science on Openshift - Red Hat Summit 2019
 
Democratizing Data Science on Kubernetes
Democratizing Data Science on Kubernetes Democratizing Data Science on Kubernetes
Democratizing Data Science on Kubernetes
 
Openshift 3.10 & Container solutions for Blockchain, IoT and Data Science
Openshift 3.10 & Container solutions for Blockchain, IoT and Data ScienceOpenshift 3.10 & Container solutions for Blockchain, IoT and Data Science
Openshift 3.10 & Container solutions for Blockchain, IoT and Data Science
 
Single View of Well, Production and Assets
Single View of Well, Production and AssetsSingle View of Well, Production and Assets
Single View of Well, Production and Assets
 
Red Hat Openshift on Microsoft Azure
Red Hat Openshift on Microsoft AzureRed Hat Openshift on Microsoft Azure
Red Hat Openshift on Microsoft Azure
 
Field development and operational optimization for unconventionals
Field development and operational optimization for unconventionals Field development and operational optimization for unconventionals
Field development and operational optimization for unconventionals
 

Dernier

AI/ML Infra Meetup | ML explainability in Michelangelo
AI/ML Infra Meetup | ML explainability in MichelangeloAI/ML Infra Meetup | ML explainability in Michelangelo
AI/ML Infra Meetup | ML explainability in Michelangelo
Alluxio, Inc.
 
Tree in the Forest - Managing Details in BDD Scenarios (live2test 2024)
Tree in the Forest - Managing Details in BDD Scenarios (live2test 2024)Tree in the Forest - Managing Details in BDD Scenarios (live2test 2024)
Tree in the Forest - Managing Details in BDD Scenarios (live2test 2024)
Gáspár Nagy
 
AI/ML Infra Meetup | Reducing Prefill for LLM Serving in RAG
AI/ML Infra Meetup | Reducing Prefill for LLM Serving in RAGAI/ML Infra Meetup | Reducing Prefill for LLM Serving in RAG
AI/ML Infra Meetup | Reducing Prefill for LLM Serving in RAG
Alluxio, Inc.
 

Dernier (20)

APVP,apvp apvp High quality supplier safe spot transport, 98% purity
APVP,apvp apvp High quality supplier safe spot transport, 98% purityAPVP,apvp apvp High quality supplier safe spot transport, 98% purity
APVP,apvp apvp High quality supplier safe spot transport, 98% purity
 
How Does XfilesPro Ensure Security While Sharing Documents in Salesforce?
How Does XfilesPro Ensure Security While Sharing Documents in Salesforce?How Does XfilesPro Ensure Security While Sharing Documents in Salesforce?
How Does XfilesPro Ensure Security While Sharing Documents in Salesforce?
 
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital TransformationWSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
 
Advanced Flow Concepts Every Developer Should Know
Advanced Flow Concepts Every Developer Should KnowAdvanced Flow Concepts Every Developer Should Know
Advanced Flow Concepts Every Developer Should Know
 
OpenChain @ LF Japan Executive Briefing - May 2024
OpenChain @ LF Japan Executive Briefing - May 2024OpenChain @ LF Japan Executive Briefing - May 2024
OpenChain @ LF Japan Executive Briefing - May 2024
 
AI/ML Infra Meetup | ML explainability in Michelangelo
AI/ML Infra Meetup | ML explainability in MichelangeloAI/ML Infra Meetup | ML explainability in Michelangelo
AI/ML Infra Meetup | ML explainability in Michelangelo
 
5 Reasons Driving Warehouse Management Systems Demand
5 Reasons Driving Warehouse Management Systems Demand5 Reasons Driving Warehouse Management Systems Demand
5 Reasons Driving Warehouse Management Systems Demand
 
Tree in the Forest - Managing Details in BDD Scenarios (live2test 2024)
Tree in the Forest - Managing Details in BDD Scenarios (live2test 2024)Tree in the Forest - Managing Details in BDD Scenarios (live2test 2024)
Tree in the Forest - Managing Details in BDD Scenarios (live2test 2024)
 
AI/ML Infra Meetup | Reducing Prefill for LLM Serving in RAG
AI/ML Infra Meetup | Reducing Prefill for LLM Serving in RAGAI/ML Infra Meetup | Reducing Prefill for LLM Serving in RAG
AI/ML Infra Meetup | Reducing Prefill for LLM Serving in RAG
 
Facemoji Keyboard released its 2023 State of Emoji report, outlining the most...
Facemoji Keyboard released its 2023 State of Emoji report, outlining the most...Facemoji Keyboard released its 2023 State of Emoji report, outlining the most...
Facemoji Keyboard released its 2023 State of Emoji report, outlining the most...
 
A Guideline to Gorgias to to Re:amaze Data Migration
A Guideline to Gorgias to to Re:amaze Data MigrationA Guideline to Gorgias to to Re:amaze Data Migration
A Guideline to Gorgias to to Re:amaze Data Migration
 
GraphSummit Stockholm - Neo4j - Knowledge Graphs and Product Updates
GraphSummit Stockholm - Neo4j - Knowledge Graphs and Product UpdatesGraphSummit Stockholm - Neo4j - Knowledge Graphs and Product Updates
GraphSummit Stockholm - Neo4j - Knowledge Graphs and Product Updates
 
CompTIA Security+ (Study Notes) for cs.pdf
CompTIA Security+ (Study Notes) for cs.pdfCompTIA Security+ (Study Notes) for cs.pdf
CompTIA Security+ (Study Notes) for cs.pdf
 
Agnieszka Andrzejewska - BIM School Course in Kraków
Agnieszka Andrzejewska - BIM School Course in KrakówAgnieszka Andrzejewska - BIM School Course in Kraków
Agnieszka Andrzejewska - BIM School Course in Kraków
 
The Impact of PLM Software on Fashion Production
The Impact of PLM Software on Fashion ProductionThe Impact of PLM Software on Fashion Production
The Impact of PLM Software on Fashion Production
 
Top Mobile App Development Companies 2024
Top Mobile App Development Companies 2024Top Mobile App Development Companies 2024
Top Mobile App Development Companies 2024
 
Workforce Efficiency with Employee Time Tracking Software.pdf
Workforce Efficiency with Employee Time Tracking Software.pdfWorkforce Efficiency with Employee Time Tracking Software.pdf
Workforce Efficiency with Employee Time Tracking Software.pdf
 
Crafting the Perfect Measurement Sheet with PLM Integration
Crafting the Perfect Measurement Sheet with PLM IntegrationCrafting the Perfect Measurement Sheet with PLM Integration
Crafting the Perfect Measurement Sheet with PLM Integration
 
INGKA DIGITAL: Linked Metadata by Design
INGKA DIGITAL: Linked Metadata by DesignINGKA DIGITAL: Linked Metadata by Design
INGKA DIGITAL: Linked Metadata by Design
 
Implementing KPIs and Right Metrics for Agile Delivery Teams.pdf
Implementing KPIs and Right Metrics for Agile Delivery Teams.pdfImplementing KPIs and Right Metrics for Agile Delivery Teams.pdf
Implementing KPIs and Right Metrics for Agile Delivery Teams.pdf
 

Enabling Enterprise-wide OT Data access with Matrikon Data Broker.pdf

  • 1. Enabling Enterprise-wide OT Data access with Matrikon Data Broker John Archer Senior Principal BDM - AI & Edge archer@redhat.com Alex Kubacki Technical Architect Ecosystem akubacki@redhat.com Darek Kominek Marketing Director darek.kominek@matrikonopc.com
  • 2. John Archer Sr Principal BDM - AI, Edge and Industrials BS Political Science Red Hat since 2015 Meet The Speakers Alex Kubacki Technical Architect - Global Partner Solutions & Technologies BS in Computer Engineering, Computer Science, and Electrical Engineering Red Hat Since 2021 Darek Kominek Marketing Director BSc Computer Engineering Matrikon since 2005
  • 3. Where is Matrikon Technology and OPC-UA deployed today?
  • 4. Business Value Story ● Universal OPC UA Based data connectivity ○ 3rd party vendor neutral ○ Improved data context ● Secure data connectivity ○ End-to-end encryption ○ Network traversal (Enterprise wide) ● Legacy infrastructure friendly (extends ROI) ● Low cost of ownership ● Better data quality (IM) ● Extended ROI ● Reduce Non-Productive Time Bottom Line ● Introduce DevSecOps into the OT domain ● Open Process Automation foundation ● OTA style updates and patches with rollback ● Improve Safety, Resiliency, Reliability concerns ● Zero Touch Deployments ● Declarative Security ● Sustainable pattern for complex industrial architecture deployments ● Safely explore new business goals in process industries ● Free engineers to focus on the analytics and custom workloads in highly regulated and HSE focused industries ● Move to autonomous operations and improve margins The combination of modern OT data connectivity with state of the art IT infrastructure multiplies business value. OT Focus IT Focus
  • 5. Purdue Model / ISA-95 Mapping to Red Hat Edge Layers
  • 6. Industrial Infrastructure Levels What are the different Levels for Industrial Infrastructure Operational Level Far Edge What is Far Edge? Far Edge is the Level 2 and below. This consists of Control Systems, Intelligent Devices and Physical Processes that make up the manufacturing.
  • 7. Industrial Infrastructure Levels What are the different Levels for Industrial Infrastructure Operational Level Far Edge What is Far Edge Far Edge is the Level 2 and below. This consists of Control Systems, Intelligent Devices and Physical Processes that make up the manufacturing. Plant Level Near Edge What is Near Edge Near Edge consists of the DMZ and Level 3 of the Purdue Model. The DMZ is the security features such as firewalls and proxies, which isolate the environment from the outside world. Level 3 is the manufacturing operation systems which manage production workflow.
  • 8. Industrial Infrastructure Levels What are the different Levels for Industrial Infrastructure Operational Level Far Edge What is Far Edge? Far Edge is the Level 2 and below. This consists of Control Systems, Intelligent Devices and Physical Processes that make up the manufacturing. Plant Level Near Edge What is Near Edge? Near Edge consists of the DMZ and Level 3 of the Purdue Model. The DMZ is the security features such as firewalls and proxies, which isolate the environment from the outside world. Level 3 is the manufacturing operation systems which manage production workflow. Enterprise Level Core What is Core? Core is equal to Level 4/5 of the Enterprise Levels. It is the primary level where business functions occurs. Common IT networking exists at level, along with workstations, Web Servers, DNSs, etc.
  • 9. Industrial IT/OT Considerations Goals and Risks for either the IT or OT POV for each Level Operational Level Far Edge ● Network and IT security ● Data Access ● ML Model Inferencing ● Automation Plant Level Near Edge ● Configuration Changes ● Vulnerabilities ● Software Update and Patches Enterprise Level Core ● Privilege abuse attempts and escalations ● Financial Fraud ● Autonomous Operations OT Focus IT Focus ● Network traversal ● Platform Hacking ● Data Leaking, Tampering, Manipulation ● Device Manipulation ● Unscheduled Downtime ● 3rd party connectivity ● Operational Security ● Reliability ● Safety ● Data context ● Business and Operation Disruption ● Real-time Visibility
  • 10. Level 2 Level 1 Level 3.5 Level 4 Sensors & Devices System DCS S-PLC OT applications Business Level 3 DMZ 3rd Party Cloud Providers Connectivity & Federation Data Model & Mapping Traversal (OT Side) Traversal (DMZ) Traversal (IT Side) Cloud communications MDB: Unified OT Data Platform
  • 11. 11 RAW COMPANY OT DATA ADVANCED APPLICATION FUNCTIONALITY + DATA CONTEXTUALIZATION (VENDOR SPECIFIC) On Prem Application 1 On Prem Application 2 Cloud Application 1 Access to OT data is dependent on Advanced Application(s) . Another type of Vendor Lock-in. Traditional Solution: An advanced application serves double duty: as an advanced function and as an access point to data for other applications. MDB: The Unified OT Data Layer
  • 12. RAW COMPANY OT DATA MDB: The Unified OT Data Layer 12 MDB – Unified OT Data Layer (OPC UA OPEN STANDARD BASED) ADVANCED APPLICATION FUNCTIONALITY + DATA CONTEXTUALIZATION (VENDOR SPECIFIC) On Prem Application 1 On Prem Application 2 Cloud Application 1 Create a single, secure OT-data access point via a unified OT data layer Best Practice - OT Data Access :separate “data access” from “application functionality” by creating an open standard-based layer for OT data access for all applications.
  • 13. RAW COMPANY OT DATA MDB: The Unified OT Data Layer 13 MDB – Unified OT Data Layer (OPC UA OPEN STANDARD BASED) ADVANCED APPLICATION FUNCTIONALITY On Prem Application 1 On Prem Application 2 Cloud Application 1 Use advanced applications for the functionality they provide Use a common, standards-based access OT data access point Best Practice - OT Data Access :separate “data access” from “application functionality” by creating an open standard-based layer for OT data access for applications across the enterprise and to-cloud.
  • 14. RAW COMPANY OT DATA 14 MDB – Unified OT Data Layer (OPC UA OPEN STANDARD BASED) ADVANCED APPLICATION FUNCTIONALITY On Prem Application 1 On Prem Application 2 Cloud Application 1 Move beyond raw OT-data access by enhancing its context and structure whale protecting underlying sources. MDB: The Unified OT Data Layer Best Practice: Enhanced OT Data Value: Present OT data in the context(s) required by different users/applications using open, OPC UA standards-based Data Technology.
  • 15. Unified OT Data Layer Connectivity Consolidation Context Collaboration Cloud Access 15 ADVANCED APPLICATION FUNCTIONALITY On Prem Application 1 On Prem Application 2 Cloud Application 1 MDB: Data Tech for a Unified OT Data Layer
  • 16. MDB powered Unified OT-Data Layer vs Traditional Connectivity Traditional Solution Unified OT-Data Layer Best Practice ● Direct connections to data sources ● Little to no data context provided by sources, hard to add context. ● Custom solutions relied on for access to OT-data and context (vendor lock in) ● Inconsistent (home grown) security practices depend on expertise of integration team. ● Single connection made to data sources. ● Dynamic, user managed, 3rd party data context ● Separated data access and advanced application roles ● Sustainable open standards-based solution (ex. OPC UA, MQTT) ● Consistent, system-wide, security best-practices included ‘under the hood’
  • 17. OT Data Centric View IT Network View IT Workflows View Two Sides of the Same Coin
  • 18. Control plane Windows containerized workloads Matrikon OPC-UA Explorer Windows legacy VM workloads DataBroker Operator (ubi container)* Windows containers Linux containers Windows virtual machine Red Hat OpenShift virtualization Red Hat Enterprise Linux CoreOS Microsoft Windows Honeywell Matrikon Data Broker Deployment Options Roadmap Kubernetes Orchestrated Workloads Today Linux Edge Workloads (Bare Metal/ VM/Container) Red Hat Enterprise Linux Ansible Automation (Roadmap) DataBroker Podman (ubi container) DataBroker Bare Metal (AppImage) UA Explorer Bare Metal (AppImage)
  • 19. Operational Level Far Edge Enterprise Level Core Plant Level Near Edge Industrial Edge Architecture 19 Trusted Software Factory & DevOps Platform System & Software Testing DevOps & Continuous Integration SW Release & Dependency Mgmt (Version Control) Edge Management & Control Development Tooling Security Enterprise IT & other Business Lines Central IT Platforms Production & Logistics collaboration & communication of OEM, Tier 1, Tier N, … Enterprise Resource Planning (SAP) Supply Chain Management (SCM) Product Lifecycle Management (PLM) Engineering, Requirements & Architecture (CAx) Plant Application / Factory Operations Manufacturing Execution Systems (MES) Asset Management Warehouse Management (with ERP) Custom Factory Applications Digital Twin Track & Trace Structured / unstructured Timeseries Analytics Visualization ML Development Data Platform Message Broker Protocol Transform Change Data Capture Event Streaming API Mmgt Integration Platform MSA Event Driven ML Inference Workflow Rules CI/CD, CfgMmgt Observability Serverless Application Platform Existing Operational Technology (PLC, RTU, HMI , …) IoT Gateway Supervisory control & data acquisition (SCADA) Machine, Device, Sensor, Robot Future Software Defined OT (PLC, RTU, HMI , …) Container Virtual Machines Low Latency Compute Network Storage Technical Platform
  • 20. Current Projects - OT Investments and Roadmap IEC 62443 and OPAF O-PAS Modernization Path
  • 21. A System with O-PAS™ Components
  • 22. O-PAS Testbed on Red Hat Infrastructure
  • 23. Finding Targets - Titles and Keywords Who to reach out to with these capabilities 1. Plant Supervisor 2. SCADA Manager 3. Compute Architect 4. Operations Lead 5. Cluster Administrator 6. Network Administrator 7. Project Engineer 8. Security Engineer 1. OPA/OPAF 2. SCADA 3. OPC-UA/Modbus 4. Predictive Maintenance 5. Real time Operations 6. Time-Series 7. Cybersecurity 8. Operations Edge 9. Purdue Model 10. ISA-95 11. Reliability 12. Safety 13. HMI 14. Industrial Controls Titles Keywords
  • 24. Next Steps… For engagement support, here is what's next: 1. Contact John Archer - archer@redhat.com and Jennifer Owen at Matrikon - jennifer.owen@MatrikonOPC.com for assistance 2. Go to media.redhat.com and search for Industrials Solutions to learn more about industrial sales plays, OPC-UA, and Matrikon Data Broker solutions. 3. Reach out to Edge Solution Center Team for demo and engagement support.
  • 25. Q & A Thanks Contact