LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1
-
Upload
anonymous-hwrgcoe4x -
Category
Documents
-
view
8 -
download
0
description
Transcript of LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1
![Page 1: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/1.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved.
W1: Build a Solid Plant Floor Infrastructure through Network and Security Design and Implementation
Peter MorellManager, Networks & Security Services
![Page 2: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/2.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 2
Network & Security Services
1. Industry Trends
2. Network & Security Designs
3. Who wants to be a Millionaire:Network and Security Edition
4. Wrap-up: Question and Answers
![Page 3: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/3.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 3
Industry Trend Wide Adoption of Ethernet on Factory Floor
• Standardization of connectors such as RJ45 make use of traditional IT and consumer goods main stream markets
• Real-time control over Ethernet is a reality• Getting data from the shop floor via Ethernet is a natural fit
for the IT staff who has experience managing Ethernet infrastructure
• Adoption by many vendors to support Ethernet on the manufacturing floor offers a wide variety of devices and solutions
• Migration of wireless, video, voice and real-time control on the manufacturing network infrastructure
![Page 4: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/4.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 4
Industry Trend Increasing Need for “Real-Time” Information
• Decision makers need information to make product, material, purchasing and resource decisions
• Information contained within the manufacturing environment needs to feed different business systems– Quality, scheduling, lot tracking, computerized maintenance, etc.
• Connectivity to archive important data – Historians, disaster recovery and security systems, etc.
• Recall, retrace and proof of critical manufacturing variables during product inception, packaging and delivery lifecycle
![Page 5: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/5.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 5
Industry Trend Convergence of Manufacturing and IT
• With the proliferation of Ethernet, switches and other infrastructure devices have made IT and Manufacturing work together
• Information contained within the manufacturing environment must feed different business systems which are typically owned by IT
• IT has experience deploying and maintaining computers, servers and other computer assets
• Engineering and Maintenance departments are being asked to push data to higher level systems
Network Convergence
Organizational Convergence
Cultural Convergence
Technology Convergence
![Page 6: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/6.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 6
Industry Trend Security – A Concern Everyone Must Address
• Downtime – production control systems
• Lost data – manufacturing, scheduling, tracking, quality
• Theft of Intellectual Property• Physical incident
– Minor personal injury to loss of life– Loss of physical assets
• Loss time to market or the loss of public confidence
The potential of risks to manufacturing can be devastating
![Page 7: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/7.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 7
Network & Security Services
1. Industry Trends
2. Network & Security Designs
4. Wrap-up: Question and Answers
3. Who wants to be a Millionaire:Network & Security Edition
![Page 8: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/8.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 8
Physical Infrastructure
• Ethernet physical layer should always adhere to standards from TIA and ODVA
• Protection of the physical layer in a manufacturing environment
• Proper routing of cables• Selection of network hardware with the necessary
functionality• Use of industrial grade hardware in an industrial
environment
The foundation of every network is the physical layer
![Page 9: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/9.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 9
Network Topology
• Adherence to standards and guidelines such as SP99,Purdue Reference Model, Cisco and Rockwell Automation reference architecture
• Physical layout of network• Separation of traffic• Redundancy• Future growth capabilities
Properly designed topology is key to optimizing performance and increasing maintainability
![Page 10: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/10.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 10
Security
• Threat: An item (person or code in this context) with the intent and capability to exploit a vulnerability in an asset. – Malicious hacker, a disgruntled employee, accidental incident or code
• Vulnerability: Weakness in an asset that can be exploited• Risk: Probability of negative impacts resulting from the interactions
between threats and vulnerable assets– Impact = Threat + Vulnerability – Risk = Severity of impact x Likelihood of impact
• Managing risk– Accept– Transfer– Mitigate– Avoid
Risk exists in manufacturing IT environment
![Page 11: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/11.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 11
Benefits
• Information moves to key stakeholders with:– Availability– Integrity– Confidentiality
• Network is scalable– Add machines to the manufacturing environment– Add computing resources without bandwidth fear
• Security– Avoid accidental, unintentional process changes– Limit risk from outside malicious threats– Prove due diligence and due care
Because Infrastructure Matters
![Page 12: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/12.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 12
Network & Security Services
1. Industry Trends
2. Network & Security Designs
4. Wrap-up: Question and Answers
3. Who wants to be a Millionaire:Network & Security Edition
![Page 13: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/13.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 13
![Page 14: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/14.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 14
Network & Security Services
1. Industry Trends
2. Network & Security Designs
4. Wrap-up: Question and Answers
3. Who wants to be a Millionaire:Network & Security Edition
![Page 15: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/15.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 15
Conclusion
• Physical network consideration is key– The foundation of every network is the physical layer
• Network design is not an accident but rather a carefully thought out planned project– Control “real-time” and IT “real time” are different– Requirements of an enterprise and manufacturing network are very different but must
co-exist to meet the demands of today’s global marketplace• Rockwell Automation has a Network & Security Service business
– We design connectivity of Manufacturing to IT networks for a living– http://www.rockwellautomation.com/services/networks
![Page 16: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/16.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 16
Network & Security Services At-a-Glance
ASSESS• Assess the current state of the security program, design, policy• Assess the current state of the network design, implementation
DESIGN/PLAN• Design and plan a network infrastructure• Design and plan security program, policy, infrastructure, business continuity plan
IMPLEMENT• Installation and configuration of a network• Implementation of a security program, infrastructure design, policy training
AUDIT• Audit current architecture compared to governing body (ODVA, IEEE, ANSI/
TIA) • Audit security program compared to governing body (NERC CIP, ISA -99, NIST
800-53, NIST 800-82
MANAGE/MONITOR• Manage, maintain and monitor uptime and issues on the network• Managed Security Services (Incident response, disaster recovery, monitoring)
![Page 17: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/17.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved. 17
Network & Security Services Delivery Resources
Field Engineers and Consultants– Trained and equipped to provide complete design analysis and testing to confirm network operation, or to identify
and lead the repair of problems.Global Delivery
– Rockwell Automation delivers services through our consultants and field organization globally. Service deliverables are structured to augment our customer’s staff, or sub-contract turnkey network solutions. This approach provides a cost-effective method to you help attain the most value from network investments.
Standardized deliverables
RA Field Engineers200+ Globally Trained Resources
NSS Consultants
Customer Collaboration Delivered Results
![Page 18: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/18.jpg)
Global Resources, Local Support A comprehensive suite of offerings delivered through a global, integrated network to help you meet your everyday technical needs, as well as providing value-add maintenance, asset management and system optimization solutions to maximize your return on automation investments.
Services & Support – We’re Here to Help.
Online answers to technical questions
Email Support, Live Chat, Support Forums
Local language support
www.rockwellautomation.com/support
Knowledgebase
To learn more, contact your local Rockwell Automation sales office or authorized Allen-Bradley distributor.
Training Services
Online & Phone Support
Onsite Support
MRO AssetManagement
Repair Services
Safety & Energy Services
Network & Security Services
Managed Services
![Page 19: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/19.jpg)
Maximize your knowledge and skills by registering for an Open Enrollment course at the Services & Support booth.
Save 15% when you register at the booth today!
Ask us about: E-Learning, Job Aids, Training Workstations
Rockwell Automation Training Services
Save 15 %
Phone: 440.646.3434, select option #4
Email: [email protected]
Website: www.rockwellautomation.com/training
Contact Us
![Page 20: LITERATURA ADICIONAL - Network and Security Design and Implementation AF2009WSPres1](https://reader034.fdocuments.us/reader034/viewer/2022051115/55cf9308550346f57b9b21a1/html5/thumbnails/20.jpg)
Copyright © 2009 Rockwell Automation, Inc. All rights reserved.
Thank you for participating!
Please tidy up your workstationbefore leaving.