Showing posts with label technology. Show all posts
Showing posts with label technology. Show all posts

Friday, 18 February 2011

SCADA


SCADA

SCADA stands for supervisory control and data acquisition. It generally refers to industrial control systems: computer systems that monitor and control industrial, infrastructure, or facility-based processes, as described below:

Common system components


Supervision vs. control

There is, in several industries, considerable confusion over the differences between SCADA systems and distributed control systems (DCS). Generally speaking, a SCADA system always refers to a system that coordinates, but does not control processes in real time. The discussion on real-time control is muddied somewhat by newer telecommunications technology, enabling reliable, low latency, high speed communications over wide areas. Most differences between SCADA and DCS are culturally determined and can usually be ignored. As communication infrastructures with higher capacity become available, the difference between SCADA and DCS will fade.
Summary: 1. DCS is process oriented, while SCADA is data acquisition oriented. 2. DCS is process state driven, while SCADA is event driven. 3. DCS is commonly used to handle operations on a single locale, while SCADA is preferred for applications that are spread over a wide geographic location. 4. DCS operator stations are always connected to its I/O, while SCADA is expected to operate despite failure of field communications.


The term SCADA usually refers to centralized systems which monitor and control entire sites, or complexes of systems spread out over large areas (anything between an industrial plant and a country). Most control actions are performed automatically by Remote Terminal Units ("RTUs") or by programmable logic controllers ("PLCs"). Host control functions are usually restricted to basic overriding or supervisory level intervention. For example, a PLC may control the flow of cooling water through part of an industrial process, but the SCADA system may allow operators to change the set points for the flow, and enable alarm conditions, such as loss of flow and high temperature, to be displayed and recorded. The feedback control loop passes through the RTU or PLC, while the SCADA system monitors the overall performance of the loop.

SCADA schematic overview-s.svg

Data acquisition begins at the RTU or PLC level and includes meter readings and equipment status reports that are communicated to SCADA as required. Data is then compiled and formatted in such a way that a control room operator using the HMI can make supervisory decisions to adjust or override normal RTU (PLC) controls. Data may also be fed to a Historian, often built on a commodity Database Management System, to allow trending and other analytical auditing.
SCADA systems typically implement a distributed database, commonly referred to as a tag database, which contains data elements called tags or points. A point represents a single input or output value monitored or controlled by the system. Points can be either "hard" or "soft". A hard point represents an actual input or output within the system, while a soft point results from logic and math operations applied to other points. (Most implementations conceptually remove the distinction by making every property a "soft" point expression, which may, in the simplest case, equal a single hard point.) Points are normally stored as value-timestamp pairs: a value, and the timestamp when it was recorded or calculated. A series of value-timestamp pairs gives the history of that point. It's also common to store additional metadata with tags, such as the path to a field device or PLC register, design time comments, and alarm information.


Typical Basic SCADA Animations [1]
Human-Machine Interface or HMI is the apparatus which presents process data to a human operator, and through which the human operator controls the process.
An HMI is usually linked to the SCADA system's databases and software programs, to provide trending, diagnostic data, and management information such as scheduled maintenance procedures, logistic information, detailed schematics for a particular sensor or machine, and expert-system troubleshooting guides.
The HMI system usually presents the information to the operating personnel graphically, in the form of a mimic diagram. This means that the operator can see a schematic representation of the plant being controlled. For example, a picture of a pump connected to a pipe can show the operator that the pump is running and how much fluid it is pumping through the pipe at the moment. The operator can then switch the pump off. The HMI software will show the flow rate of the fluid in the pipe decrease in real time. Mimic diagrams may consist of line graphics and schematic symbols to represent process elements, or may consist of digital photographs of the process equipment overlain with animated symbols.
The HMI package for the SCADA system typically includes a drawing program that the operators or system maintenance personnel use to change the way these points are represented in the interface. These representations can be as simple as an on-screen traffic light, which represents the state of an actual traffic light in the field, or as complex as a multi-projector display representing the position of all of the elevators in a skyscraper or all of the trains on a railway.
An important part of most SCADA implementations is alarm handling. The system monitors whether certain alarm conditions are satisfied, to determine when an alarm event has occurred. Once an alarm event has been detected, one or more actions are taken (such as the activation of one or more alarm indicators, and perhaps the generation of email or text messages so that management or remote SCADA operators are informed). In many cases, a SCADA operator may have to acknowledge the alarm event; this may deactivate some alarm indicators, whereas other indicators remain active until the alarm conditions are cleared. Alarm conditions can be explicit - for example, an alarm point is a digital status point that has either the value NORMAL or ALARM that is calculated by a formula based on the values in other analogue and digital points - or implicit: the SCADA system might automatically monitor whether the value in an analogue point lies outside high and low limit values associated with that point. Examples of alarm indicators include a siren, a pop-up box on a screen, or a coloured or flashing area on a screen (that might act in a similar way to the "fuel tank empty" light in a car); in each case, the role of the alarm indicator is to draw the operator's attention to the part of the system 'in alarm' so that appropriate action can be taken. In designing SCADA systems, care is needed in coping with a cascade of alarm events occurring in a short time, otherwise the underlying cause (which might not be the earliest event detected) may get lost in the noise. Unfortunately, when used as a noun, the word 'alarm' is used rather loosely in the industry; thus, depending on context it might mean an alarm point, an alarm indicator, or an alarm event.


Hardware solutions

SCADA solutions often have Distributed Control System (DCS) components. Use of "smart" RTUs or PLCs, which are capable of autonomously executing simple logic processes without involving the master computer, is increasing. A functional block programming language, IEC 61131-3 (Ladder Logic), is frequently used to create programs which run on these RTUs and PLCs. Unlike a procedural language such as the C programming language or FORTRAN, IEC 61131-3 has minimal training requirements by virtue of resembling historic physical control arrays. This allows SCADA system engineers to perform both the design and implementation of a program to be executed on an RTU or PLC. A Programmable automation controller(PAC) is a compact controller that combines the features and capabilities of a PC-based control system with that of a typical PLC. PACs are deployed in SCADA systems to provide RTU and PLC functions. In many electrical substation SCADA applications, "distributed RTUs" use information processors or station computers to communicate with digital protective relays, PACs, and other devices for I/O, and communicate with the SCADA master in lieu of a traditional RTU.
Since about 1998, virtually all major PLC manufacturers have offered integrated HMI/SCADA systems, many of them using open and non-proprietary communications protocols. Numerous specialized third-party HMI/SCADA packages, offering built-in compatibility with most major PLCs, have also entered the market, allowing mechanical engineers, electrical engineers and technicians to configure HMIs themselves, without the need for a custom-made program written by a software developer.


The RTU connects to physical equipment. Typically, an RTU converts the electrical signals from the equipment to digital values such as the open/closed status from a switch or a valve, or measurements such as pressure, flow, voltage or current. By converting and sending these electrical signals out to equipment the RTU can control equipment, such as opening or closing a switch or a valve, or setting the speed of a pump.


The term "Supervisory Station" refers to the servers and software responsible for communicating with the field equipment (RTUs, PLCs, etc), and then to the HMI software running on workstations in the control room, or elsewhere. In smaller SCADA systems, the master station may be composed of a single PC. In larger SCADA systems, the master station may include multiple servers, distributed software applications, and disaster recovery sites. To increase the integrity of the system the multiple servers will often be configured in a dual-redundant or hot-standby formation providing continuous control and monitoring in the event of a server failure.


Operational philosophy

For some installations, the costs that would result from the control system failing are extremely high. Possibly even lives could be lost. Hardware for some SCADA systems is ruggedized to withstand temperature, vibration, and voltage extremes, but in most critical installations reliability is enhanced by having redundant hardware and communications channels, up to the point of having multiple fully equipped control centres. A failing part can be quickly identified and its functionality automatically taken over by backup hardware. A failed part can often be replaced without interrupting the process. The reliability of such systems can be calculated statistically and is stated as the mean time to failure, which is a variant of mean time between failures. The calculated mean time to failure of such high reliability systems can be on the order of centuries.


SCADA systems have traditionally used combinations of radio and direct serial or modem connections to meet communication requirements, although Ethernet and IP over SONET / SDH is also frequently used at large sites such as railways and power stations. The remote management or monitoring function of a SCADA system is often referred to as telemetry.
This has also come under threat with some customers wanting SCADA data to travel over their pre-established corporate networks or to share the network with other applications. The legacy of the early low-bandwidth protocols remains, though. SCADA protocols are designed to be very compact and many are designed to send information to the master station only when the master station polls the RTU. Typical legacy SCADA protocols include Modbus RTU, RP-570Profibus and Conitel. These communication protocols are all SCADA-vendor specific but are widely adopted and used. Standard protocols are IEC 60870-5-101 or 104IEC 61850 and DNP3. These communication protocols are standardized and recognized by all major SCADA vendors. Many of these protocols now contain extensions to operate over TCP/IP. It is good security engineering practice to avoid connecting SCADA systems to theInternet so the attack surface is reduced.
RTUs and other automatic controller devices were being developed before the advent of industry wide standards for interoperability. The result is that developers and their management created a multitude of control protocols. Among the larger vendors, there was also the incentive to create their own protocol to "lock in" their customer base. A list of automation protocols is being compiled here.
Recently, OLE for Process Control (OPC) has become a widely accepted solution for intercommunicating different hardware and software, allowing communication even between devices originally not intended to be part of an industrial network.


The United States Army's Training Manual 5-601 covers "SCADA Systems for C4ISRFacilities".
SCADA systems have evolved through 3 generations as follows:


In the first generation, computing was done by mainframe computers. Networks did not exist at the time SCADA was developed. Thus SCADA systems were independent systems with no connectivity to other systems. Wide Area Networks were later designed by RTU vendors to communicate with the RTU. The communication protocols used were often proprietary at that time. The first-generation SCADA system was redundant since a back-up mainframe system was connected at the bus level and was used in the event of failure of the primary mainframe system.


The processing was distributed across multiple stations which were connected through a LAN and they shared information in real time. Each station was responsible for a particular task thus making the size and cost of each station less than the one used in First Generation. The network protocols used were still mostly proprietary, which led to significant security problems for any SCADA system that received attention from a hacker. Since the protocols were proprietary, very few people beyond the developers and hackers knew enough to determine how secure a SCADA installation was. Since both parties had invested interests in keeping security issues quiet, the security of a SCADA installation was often badly overestimated, if it was considered at all.


These are the current generation SCADA systems which use open system architecture rather than a vendor-controlled proprietary environment. The SCADA system utilizes open standards and protocols, thus distributing functionality across a WAN rather than a LAN. It is easier to connect third party peripheral devices like printers, disk drives, and tape drives due to the use of open architecture. WAN protocols such as Internet Protocol (IP) are used for communication between the master station and communications equipment. Due to the usage of standard protocols and the fact that many networked SCADA systems are accessible from the Internet, the systems are potentially vulnerable to remote cyber-attacks. On the other hand, the usage of standard protocols and security techniques means that standard security improvements are applicable to the SCADA systems, assuming they receive timely maintenance and updates.

Trends in SCADA

North American Electric Reliability Corporation has specified that electrical system data should be time-tagged to the nearest millisecond. Electrical system SCADA systems provide this Sequence of events recorder function, using Radio clocks to synchronize the RTU or distributed RTU clocks.
SCADA systems are coming in line with standard networking technologies. Ethernet and TCP/IP based protocols are replacing the older proprietary standards. Although certain characteristics of frame-based network communication technology (determinism, synchronization, protocol selection, environment suitability) have restricted the adoption of Ethernet in a few specialized applications, the vast majority of markets have accepted Ethernet networks for HMI/SCADA.
A few vendors have begun offering application specific SCADA systems hosted on remote platforms over the Internet. This removes the need to install and commission systems at the end-user's facility and takes advantage of security features already available in Internet technology, VPNs and SSL. Some concerns include security,[2] Internet connection reliability, and latency.
SCADA systems are becoming increasingly ubiquitous. Thin clients, web portals, and web based products are gaining popularity with most major vendors. The increased convenience of end users viewing their processes remotely introduces security considerations. While these considerations are already considered solved in other sectors of Internet services, not all entities responsible for deploying SCADA systems have understood the changes in accessibility and threat scope implicit in connecting a system to the Internet.


Security issues

The move from proprietary technologies to more standardized and open solutions together with the increased number of connections between SCADA systems and office networks and the Internet has made them more vulnerable to attacks - see references. Consequently, the security of SCADA-based systems has come into question as they are increasingly seen as extremely vulnerable to cyberwarfare/cyberterrorism attacks.[3][4]
In particular, security researchers are concerned about:
  • the lack of concern about security and authentication in the design, deployment and operation of existing SCADA networks
  • the belief that SCADA systems have the benefit of security through obscurity through the use of specialized protocols and proprietary interfaces
  • the belief that SCADA networks are secure because they are physically secured
  • the belief that SCADA networks are secure because they are disconnected from the Internet
SCADA systems are used to control and monitor physical processes, examples of which are transmission of electricity, transportation of gas and oil in pipelines, water distribution, traffic lights, and other systems used as the basis of modern society. The security of these SCADA systems is important because compromise or destruction of these systems would impact multiple areas of society far removed from the original compromise. For example, a blackout caused by a compromised electrical SCADA system would cause financial losses to all the customers that received electricity from that source. How security will affect legacy SCADA and new deployments remains to be seen.
There are two distinct threats to a modern SCADA system. First is the threat of unauthorized access to the control software, whether it be human access or changes induced intentionally or accidentally by virus infections and other software threats residing on the control host machine. Second is the threat of packet access to the network segments hosting SCADA devices. In many cases, there is rudimentary or no security on the actual packet control protocol, so anyone who can send packets to the SCADA device can control it. In many cases SCADA users assume that a VPN is sufficient protection and are unaware that physical access to SCADA-related network jacks and switches provides the ability to totally bypass all security on the control software and fully control those SCADA networks. These kinds of physical access attacks bypass firewall and VPN security and are best addressed by endpoint-to-endpoint authentication and authorization such as are commonly provided in the non-SCADA world by in-device SSL or other cryptographic techniques.
Many SCADA systems are deployed in critical infrastructures. Attacks to these systems can impact public health and safety. A famous example of a computer-based attack to a SCADA system is the attack carried out on Maroochy Shire Council's sewage control system in Queensland, Australia.[5] Shortly after a contractor had installed the system in January 2000, it began to experience unexplainable problems. Pumps did not run when needed, alarms were not reported, and extensive flooding with sewage occurred in a nearby park and contamination of a river. After careful observation, it was determined that sewage valves were opening of their own accord. This was believed to be a system bug, until careful monitoring of the system logs revealed that these malfunctions were the result of a cyber attack. After 46 reported attacks, the culprit was identified as a disgruntled ex-employee of the contractor company that installed the system, and who was trying to be hired back to solve the problem.
Many vendors of SCADA and control products have begun to address these risks in a basic sense by developing lines of specialized industrial firewall and VPN solutions for TCP/IP-based SCADA networks as well as external SCADA monitoring and recording equipment.[6] Additionally, application whitelisting solutions are being implemented because of their ability to prevent malware and unauthorized application changes without the performance impacts of traditional antivirus scans.[citation needed] Also, the ISA Security Compliance Institute (ISCI) is emerging to formalize SCADA security testing starting as soon as 2009. ISCI is conceptually similar to private testing and certification that has been performed by vendors since 2007. Eventually, standards being defined by ISA99 WG4 will supersede the initial industry consortia efforts, but probably not before 2011.[citation needed]
The increased interest in SCADA vulnerabilities has resulted in vulnerability researchers discovering vulnerabilities in commercial SCADA software and more general offensive SCADA techniques presented to the general security community.[7][8] In electric and gas utility SCADA systems, the vulnerability of the large installed base of wired and wireless serial communications links is addressed in some cases by applying bump-in-the-wire devices that employ authentication and Advanced Encryption Standard encryption rather than replacing all existing nodes.[9]
In June 2010, VirusBlokAda reported the first detection of malware that attacks SCADA systems (Siemens' WinCC/PCS7 systems) running on Windows operating systems. The malware is called Stuxnet and uses four zero-day attacks to install a rootkit which in turn logs in to the SCADA's database and steals design and control files.[10][11] The malware is also capable of changing the control system and hiding those changes. The malware was found by an anti-virus security company on 14 systems with the majority in Iran.[12]

Source: wiki
Posted by Karthick at 08:51 0 comments
Labels: , , , , , , ,

How Does 3D Technology Work?


AdvertisementThe Innovative Entertainment Series is supported by Dolby. “Like” Dolby for a chance to have Adam West read your Facebook status update, live, on camera, February 18th.
In 1838, Sir Charles Wheatstone first described the process of stereopsis: the process by which humans perceive three dimensions from two highly similar, overlaid images. Or, the process by which Avatar looks like a mind-blowingly immersive alien landscape instead of a bunch of brightly colored fuzz.
3D technology has come a long way since Wheatstone developed his stereoscope, then used to view static images and eventually pictures. Now we get to wear Wayfarer knock-offs and enjoy 3D films, television shows and video games.
For some people, seeing cool images might be enough. But others might be curious how Pandora was brought to life, or how TRON: Legacy zapped them into its glowing world. The answer is both reassuringly simple and inordinately complex, depending on who you ask and how you look at it.
How do 3D films work? What’s the difference between polarity and anaglyph (we’ll get there), and what are the next steps for 3D gadgets and imagery? Have a look below for a breakdown of how today’s “it” technology functions. Plus, we put in some sweet looking pictures. What’s not to love?
A tremendous thank you to David Leitner, Rob Willox and Professor Ian Howard for their collective insight and help in describing the various forms of 3D technology below.

Stereoscopy 101



stereoscope image

Big words! Academic nomenclature! Relax, this is actually the easy part. 3D, or “stereoscopy,” refers to how your eyes and brain create the impression of a third dimension. Human eyes are approximately 50 mm to 75 mm apart — accordingly, each eye sees a slightly different part of the world. Don’t believe me? Hold up a pen, pencil or any other thin object. Close one eye. Now switch.
The image on either side should be pretty similar but slightly offset, like that line behind the woman’s head in the picture above. These two slightly different images enter the brain, at which point it does some high-powered geometry to make up for the disparity between the two images. This disparity is “3D” — essentially, your brain making up for the fact that you’re getting two different perspectives of the same thing.
This is also, essentially, what modern 3D technology is trying to replicate. All those silly sunglasses and silver-coated projectors are all designed to feed your individual eyes different perspectives of the same image. Easy, right?
Well, yes. It is pretty easy for your brain to figure out the disparity between the two images. Your brain can automatically figure out all the angles and math and geometry to sync the images. The hard part is getting a camera to do the same thing, and to get those individual images to your individual eyes without butchering the whole effect.

What We Watch

Films

Film has been one of the pioneers of 3D, thanks to its hefty budgets and some technological daring. There are largely two ways 3D has been achieved in motion pictures: anaglyph and polarized glasses.
anaglyph imageAnaglyph is a fancy way of referring to the red-and-blue glasses we used to wear. By projecting a film in those colors — one in red, one in blue — each eye would get an individual perspective and your brain would put the 3D effect together. Other colors could be used, providing they were distinct enough to be separated on screen. This technique, however, didn’t allow for a full range of color and had a tendency to “ghost,” or have the once-distinct images bleed into one another. Not cool.
Much more common is the use of polarized glasses, which take advantage of the fact that light can be polarized, or given different orientations. For example, one image can be projected in a horizontal direction while the second can be projected in a vertical direction. The corresponding glasses would allow horizontal polarization in one eye and vertical polarization in the other. The problem is that this kind of 3D requires you to keep your head still, à la A Clockwork Orange. Tilting your head can distort how the waves get to your eyes, messing with the color and 3D effect. Also not cool.


polarized glasses image

This is the tricky part. To counteract this, 3D now uses rotational polarity, meaning the film being projected actually has two different spins to it. The glasses then pick up those opposite rotations — clockwise in one eye, counterclockwise in another eye — to separate the image. Now you can tilt your head or place it on your boy/girlfriend’s shoulder and still be able to watch the movie.

Television

It’s possible to use the same techniques in film projectors for home theaters, but you would need some serious cash. Films use special silver-coated screens that are much better at reflecting light back to the viewing audience. Your television, unfortunately, is not silver-coated. There are, however, two ways to get 3D at home: active and passive.
The most common, active 3D, involves wearing those electronic RoboCop glasses. The glasses are synced up to your television and actively open and close shutters in front of your eyes, allowing only one eye to see the screen at a time. This sounds like a recipe for a stroke, but the shutters move so quickly that they’re hardly noticeable. These shutter lenses are made possible because of the refresh rate on televisions. 3D-enabled televisions have high image refresh rates, meaning the actual image on screen is quickly loaded and reloaded. Through the glasses, you receive one constant image instead of a flicker.


lenticular

Passive systems are less common but run much like your 3D film. These televisions have a thin, lenticular screen over the standard display. A lenticular screen is made up of a series of incredibly thin magnifying strips that show a slightly different perspective of the screen to each eye, as illustrated above. While this technology doesn’t require bulky, expensive glasses, it can limit the image quality. Essentially, each eye only sees one half of the screen at any given time. For example, if a screen had 100 pixels, 50 pixels would be magnified and sent to the left eye and the other 50 pixels would be magnified and sent to the right eye. In practice, your brain is actually able to put the two images together and retain the entire 100 pixel fidelity.

How It’s Made

Cameras

3d cameraThere is a lot of fancy footwork that goes into creating 3D. The real heavy lifting, however, is all just a matter of geometry and precision. To get a 3D image, you essentially need two versions of the same scene filmed from the precisely correct angle as if your eyes were seeing the same scene. Filmmakers need to triangulate the distance between the two cameras and make sure they are focused on the same object. They also need to zoom and track, or move, at the same speed, otherwise the images won’t sync up. In modern film rigs, these two cameras are bolted into place preventing any unwanted jostling or disparity.
Close-ups, a staple of modern film, are hard to capture in 3D because the cameras need to be extraordinarily close together to mimic the angle of your eyes. To solve this, filmmakers sometimes use mirror rigs. Mirror rigs film through one lens, and that image is then bounced by a tiny internal mirror to another camera where a second image can be recorded. Providing there are no imperfections on the mirror (including scratches, dirt or warping), the close-up will be filmed in 3D.

Computer Graphics



toy story 3 image

There is a difference between creating three-dimensional graphics and images that appear to be 3D in the theater. Again, it’s all just a matter of some high-tech geometry. To get a movie like Toy Story 3 into 3D, animators create two versions of each frame, one from the perspective of each eye. Because computer-generated movies don’t need cameras, it’s much easier to get perfectly synced images and to fine-tune any mistakes in post-production. The downside is that this technique requires a lot of time and elbow grease to get perfect.
It’s possible to create a 3D video game using the same technique; however, games add their own complications. Films and shows are largely pre-recorded and all have a fixed perspective — you can’t move the camera’s focus or orientation when you’re watching a film. Video games allow you to change the perspective by moving your on-screen character. This creates a labor-intensive problem since animators need to create objects that can be seen in 3D from a variety of angles depending on where the user is looking and moving.

The Future



3D future image

One of the toughest problems to solve with 3D technology is the fundamental halving of any image. Lenticular screens send half the image to each eye, shutter lens glasses physically block one eye from seeing the image, and polarized glasses only send half the displayed light to each eye.
The human eye needs approximately 50 frames per second in order to see film as one continuous image. 3D effectively halves that so each eye would only see 25 frames per second and get some nauseating flicker. Modern technology has been able to significantly up that frame rate (or refresh rate in televisions) so that we can achieve the illusion of 3D.
Advances in computing and memory have also made 3D possible in a number of handheld and consumer products. There are already prototypes for 3D laptops, cameras, camcorders, and a variety of other tech.


nintendo 3ds image

In the coming years, keep a look out for technology that uses autostereoscopy, or 3D that doesn’t require glasses in any way. The Nintendo 3DS, Nintendo’s newest portable 3D gaming device, is one such device. One of its tricks is syncing a lenticular display with its forward-facing camera. By using eye recognition, it can track where the user’s face is and shift the display to accurately display 3D no matter how the user views the screens. Look for autostereoscopy to test the waters on handheld devices before it heads to large format screens.
We’re just at the start of what 3D can offer, with a lot more successes and failures to occur in the meantime. Let us know in the comments what you hope to see for the future of 3D, or what 3D-enabled tech you’re looking to scoop up.
Posted by Karthick at 08:23 0 comments
Labels: , , , , , , ,
Subscribe to: Posts (Atom)