Know Before You Buy: How to Find Secure IoT Devices
As the number of IoT devices skyrockets, we are seeing the amazing powers of connected networks. Businesses are able to transform as they approach operations with smart, informed decisions. In the industrial sectors, IT decision makers have visibility into the OT networks and are now able to execute logic locally at the edge devices and transport critical data globally – enabling intelligent command and control of the network. We are starting to see glimpses of a connected world we never knew possible just a few years ago. As adoption of IoT rapidly expands, the Achilles Heel of these devices continues to be security – at least in the minds of end-users and consumers. A Recent report circulating around IoT news outlets states that 90 percent of consumers lack confidence in the security of IoT devices. Yet more than half of these consumers own one or more IoT devices. The report, based on a survey conducted by Gemalto, revealed other concerning and somewhat astonishing statistics that have been reported in recent articles, including: 60 percent of respondents say their main fear is hackers taking control of their devices. 54 percent are concerned about personal information being accessed. 54 percent of the consumers surveyed said they own an IoT device but only 14 percent said they knew enough about how to protect it. Only 11 percent of manufacturers and service providers total IoT budget is spent on securing devices. Two thirds of organizations use encryption as their main means of security, with 62 percent encrypting data as soon as it hits the device and 59 percent as it leaves it. Only 50 percent of IoT companies have adopted a security-by-design approach. 92 percent of companies reported an increase in sales or product usage after devices have been made more secure, demonstrating a link between security and adoption 61 percent of businesses said regulation needs to be greater to specify who is responsible for security and data at each stage of its journey. 55 percent said safeguards are needed for ensuring non-compliance with security. 86 percent of businesses and 90 percent of consumers believe governments should handle regulation of the sector. Smart Device Selection Despite security concerns, adoption of IoT devices continues to rapidly expand. For industrial IoT (IIoT) networks, future business success is going to depend on connecting those edge networks in order optimize operations, drive production, reduce downtime, and create a safer work environment. When decision makers choose the IoT devices that will be deployed in their networks, it is critical to find products that meet the security and operating standards of the business. This can be determined through a careful evaluation of options. Are you looking to purchase IoT devices for your IIoT network? Consider carefully reviewing and answering these questions before you make your decision: What are your requirements? Must haves versus Nice to haves? Are there any regulatory considerations? What is the M2M communications technology controlling or automating? Is it essential that it operates without failure? What data is being collected and/or transmitted with this technology? Is it time sensitive and/or mission critical? What technology solutions have a proven track record for the applications being served? What external factors might impact the reliable transmission and receipt of critical data from one point to another? How does this M2M communications technology address challenges such as data encryption, network access control and signal interference? Can the vendor describe the security mechanisms? Can you understand them? Will this be secure even if everyone knows the security measures? (The right answer is yes, otherwise keep looking) Do we need this technology solution to be fail-safe, in order to prevent or eliminate catastrophic damage from occurring? What are the threat vectors I’m most concerned about? Is cyber security or physical security a greater concern for this deployment? What vulnerabilities have the Information Security community identified in the type or category of IIoT equipment I use? What is the right tradeoff between features, ease of use and security for my installation? Do I have a testing or evaluation plan in place? What ongoing improvements do I expect? While device security is going to be a lingering concern – especially as the lines between the IT and OT networks blur – companies have the power to prioritize security in their networks and make informed decisions when it comes to selecting their devices. Until there are more government guidelines in place, it is up to the IIoT decision maker to find these options in their quest for connectivity.
FreeWave Blog Series: The Intelligent Edge
Part 1: Novice App Dev – A Q&A with Greg Corey from FreeWave The Internet of Things (IoT) has changed the consumer world in ways no one ever imagined. By placing intelligence in the IoT network, the “Thing” can do whatever we want it to do. Now Industrial companies are seeking to take advantage of this edge-deployed intelligence in order to maximize profits, improve safety and streamline operations. In addition to the challenges IoT technology had to overcome such as cybersecurity, scalability and interoperability, Industrial IoT (IIoT) must also focus on reliability, ruggedness and more. FreeWave is uniquely positioned to understand and address all of these challenges. We have delivered world class IIoT platforms for almost 25 years to thousands of industrial and unmanned systems customers. With that experience, we’re now leading the charge to deploy intelligent applications at the edge of industrial networks and unmanned systems. In the second installment of “The Intelligent Edge,” we sat down with Greg Corey, FreeWave systems engineer, to talk about his new app – ZumDash – and the future of app development of the Internet of Things. FreeWave: Can you talk about how you got involved in IoT app development and what that means from an Industrial IoT perspective? Greg: I got involved with IoT app development when we [FreeWave] started the ZumIQ project. IoT app development revolves around developing software to interconnect devices, and there’s a huge need for that in the industrial space known as the IIoT. So, I started working with some graphical JavaScript-based environments like Node-RED, and I realized that this quickly allowed me to solve problems that were facing our customers. FreeWave: Are Node-RED and JavaScript the primary languages being used right now to develop those apps? Greg: Yes, mostly you’ll see a lot of Python stuff, a lot of Java, and hence JavaScript, and then you’ll see some stuff written in C as well, but, really, the web-based languages have taken off. People write apps in Java and PHP for the most part. And then Node-RED is a graphical frontend for JavaScript. FreeWave: Can you talk a little bit about the app that you developed for FreeWave – ZumDash – and where it resides within an IIoT network? Greg: So, FreeWave has traditionally made radio products where you just put data in and out of the system and that’s all it does. It’s just a complicated replacement for a physical cable. With the new ZumIQ platform, it allows us to add a lot of intelligence at the Edge of these networks where a radio is functioning much more than just a radio. It’s actually an application development environment. It’s an application platform. So, the app that I developed, I wanted to showcase the radio’s capabilities at the Edge of the network, and specifically, there’s a few other things I wanted to show. I wanted to show data storage: so, actually, it’s recording data on the radio itself. I wanted to show the display of that data in a dashboard format. I wanted to show communication, so the radio can still act as a radio and then you can have email alerts and other alerts based on data points. And then I wanted to show logic as well: If This Then That. So, to be able to read a sensor value and if it’s within a certain range to then take action on it. So, the app that I built was really meant to showcase those four things: data storage, dashboard, communication, and logic. FreeWave: So, for the storage part, how often are people trying to actually store data on those Edge devices as opposed to having them just be conduits for the data transmission? Is that a different way of approaching it? Greg: Yeah, it’s a different way of approaching it, and what it allows you to do is free up network capacity. So, if you’re continuously sending and receiving data from the field to a central source, you’re using throughput and bandwidth on that network. With some of these Edge networks, it could be in something that’s moving on the ground and there’s not a very high antenna height; it could be a really noisy environment; there could be a lot of metal obstructions in the way. Sometimes, in the industrial realm, the networks aren’t as rock solid as you would want them to be, or there’s limited capacity for connectivity. So, by moving some data storage operation to the Edge, we can then free up our network capacity for other resources. FreeWave: So then from there are you able to run analytics on that Edge device to filter out some of the data that you don’t need? Greg: Yeah. Iin ZumDash there’s a frontend on it that I use. Using the frontend, you can remotely log into the radio, you can examine every piece of data the radio has recorded, and you can do that graphically. Then, you can build charts based upon that data, and then you can also export to Excel. So, all the data that resides on the radio in the MySQL database is available for analytics remotely, on demand. FreeWave: Does this have a dual track function where you can store data and look at it later, but you can also get the data in real-time if you need it? Greg: Yes, and also, how often the app records data to the database is configurable. You can look at configured intervals. The quickest time I can do at the moment is five seconds. So, every five seconds it’ll record data from six different sensors. FreeWave: Why was the dashboard display an important part of this app? Greg: It allows easy access to data. Let’s say there’s a problem and you want check on the status of a device. I don’t want to have to look through logs or something like that. I want that data easily displayable. So, adding the dashboard allows anybody to be able to log in and
FreeWave Blog Series: The Intelligent Edge
A Blog Series Dedicated to IIoT, Application Development, and Intelligence at the Edge The Internet of Things (IoT) has changed the consumer world in ways no one ever imagined. By placing intelligence in the IoT network, the “Thing” can do whatever we want it to do. Now Industrial companies are seeking to take advantage of this edge-deployed intelligence in order to maximize profits, improve safety and streamline operations. In addition to the challenges IoT technology had to overcome such as cybersecurity, scalability and interoperability, Industrial IoT (IIoT) must also focus on reliability, ruggedness and more. FreeWave is uniquely positioned to understand and address all of these challenges. We have delivered world class IIoT platforms for almost 25 years to thousands of industrial and unmanned systems customers. With that experience, we’re now leading the charge to deploy intelligent applications at the edge of industrial networks and unmanned systems. In the first edition of “The Intelligent Edge,” we’re sitting down with Jesse Steiner, FreeWave systems engineer, to discuss how he is helping industrial customers understand the power of deploying intelligent applications in an industrial network. FreeWave: We’re starting this blog series to interview people who are contributing new applications and ideas for IIoT environments. You have an interesting story to tell around that — can you share that with us? Steiner: Sure — so I started getting involved with IoT apps once we released ZumIQ, the App Server Software platform that is deployed on our ZumLink 900 Series radios. I don’t have a whole lot of programming experience — I’ve used a handful of different languages at a pretty novice level over the years. The first thing I used it for was to write a simple app to monitor the level in the water tank out at a remote ranch location that wasn’t often manned. It was the second property for the ranch owner. He had this big water tank, 22,000 gallons, that he needed to keep an eye on the level because it provided irrigation water, drinking water, bathing water, all that. He’d had issues in the past where the circuit breaker on the pump tripped, or had a leak, and he went out to his second property to find he had no water to use. So we took a ZumLink 900 Series radio with ZumIQ, wrote an application for it that would pull a sensor for the level in the tank, it would format that data, and then send it over the radio network to the internet and to the cloud, and then to the ranch owner so he could look at his water tank anywhere. It was really done as proof of concept, and as a learning exercise for me, but it’s been deployed for a month, month and half maybe, and it’s already proven very useful on multiple occasions FreeWave: So how did you write the app? Steiner: I don’t want to call it a programming language, but I used a programming environment called Node-RED. It’s basically a graphical interface to Node.js. It’s a graphical thing where you lay these function blocks down and connect lines but you’ve also got the ability to write your own Javascript code that gets inserted and run in that environment. From there, it got sent to a cloud hosting service called dweet.io, which is really good for very beginner use — it doesn’t require any advanced IT knowledge or programming knowledge and you can get data in there and store it really quickly. And for actually viewing it, I used a service that’s owned by the same company as dweet called freeboard.io. You basically build a dashboard and point it towards the data you have stored in dweet, and it will pull that out and display it in a graphical way. FreeWave: What other applications could the tank level monitoring be used for? Steiner: That application caught the eye of the company who installed the pump and tank system out at that property in the first place, and they’ve since reached out us and said, “Hey, we’re interested in this. We’d like to see if we could develop it further.” As FreeWave, we’re not selling the software or any of the service. But we did provided the radios and pretty much the same code that we had used before to this company, so they can develop something that would be more than proof of concept — really, a marketable software product where you could choose the number of tanks, monitor multiple tanks of different sizes, keep an eye on pump status, potentially control the status of pumps and valves — really for a whole monitoring and control system when it comes to remote irrigation. What that comes down to is intelligence, monitoring and control in remote locations, where is kind of where FreeWave has been used for 20 years out in the oilfields. FreeWave: Any sort of learnings you took away from going through the process of writing the application? Steiner: For a non-developer, the Node-RED environment is a very useful, powerful tool. It’s great for getting simple projects up and running very quickly without vast programming knowledge. The projects I’ve worked on since then have become a bit more complicated, so more and more I wasn’t just using pre-made blocks in these applications, it was just more code in the traditional since. So Node-RED is a great platform for getting going — and I still use it, I just rely less and less on its built-in features and I’m kind of adding my own. Once we got in a situation where we needed to make things truly available anywhere, basically once I grew out of the freeboard.io dashboard, I started making things from scratch in Javascript and HTML, but it was really a good springboard to get me introduced. In terms of tips for somebody that would be just starting, really the biggest tip is don’t be intimidated. Don’t think you need to be an expert coder to put together
The Next Generation of IIoT: Micro & Macro Connectivity
From a consumer standpoint, the impact of IoT connectivity is clear. People can purchase smart home systems and automobiles with increasingly autonomous features. Looking at the potential changes to our daily lives in the coming years, all things point to connectivity. We are eyeing a future where we can monitor and control our homes, vehicles and business around the clock. The news stories are exciting and tangible because new products are frequently unveiled and we see them being used in our everyday lives. This impact has spread beyond the scope of the consumer market, which ultimately led to the Industrial Internet of Things (IIoT). Traditional businesses, like those in utilities, oil/gas and agriculture, face a future that has the potential to transform entire industries due to the power of digital disruption. Despite the growing pains and challenges of “going digital,” industrial businesses face almost limitless potential to streamline operations and control large distributed networks with a level of precision that was previously impossible. As these industries pick up on the value of data and connectivity, next generation applications have emerged that will drive competition and increase productivity. Data and analytics will be available via the cloud and accessible from any device. And even better, the quality of data will be controlled through automation and the incorporation of third party applications. What this means for businesses is they will be able to monitor their networks on a micro level. This allows problems to be stopped in their tracks and for precise process adjustments that streamline operations. With third party applications, there is not only substantial business opportunity for developers, but there are endless possibilities for process control, security and operational apps that will drive down costs and support increased production. Most business decision makers are aware that there is no stopping digital transformation because research shows that it’s already happening. Many businesses are in the process of digital transformation and have already thought about these next generation systems and the research proves this: 75 percent of IoT providers say that big data and analytics are among the top skills they look for when adding talent to their teams. 50 percent of companies look to hire specialists in mobile development. A recent TechBullion article states: “they already have noticed the close relationship of mobile and IoT and plan to launch IoT projects for their businesses within the nearest 5 years.” Gartner says that by the end of 2017 demand mobile application development will grow five times faster than the number of IT companies able to meet this demand. A new report from Frost & Sullivan anticipates a trend in the transition from connected devices to the use of cognitive or predictive computing and sentient tools in the next 12-18 months. So what does this mean for industrial business? It means they need to invest now in the communication technologies that will deliver the data that is absolutely critical for future networking needs. It means they need to think about how they can enable programmability at all network endpoints – even at the edge. And lastly, it means they need to start working through the challenges of a digital shift now so they are prepared for an automated, connected future.
IIoT Top News: Oil and Gas Early Adopters
The Industrial Internet of Things (IIoT) is not just a means for organizations to harvest and analyze vast amounts of data to drive better business decisions. It is driving innovative ways for companies to keep their employees safe and out of harm’s way. In the latest IIoT Top News, we’ll take a look at some trending stories from the oil and gas industry, a quickly growing user of the Industrial Internet of Things to help power data-driven decisions, business operation optimization, and employee safety. The possibility of an industrial wireless oilfield is now not just a pipe dream, but a reality. Wearable Technology and the IoT Improving Safety for Oil and Gas Workers For many folks, wearable technology is viewed as a simple fad of smart watches and health tracking hardware. In the grand scheme of things, we’re just beginning to scratch the surface of wearable tech, with biotechnology, embedded smart tracking hardware, and much more right on the horizon. As noted in this article from the EconoTimes, one of the industries beginning to leverage the power of wearable technology is oil and gas. Looking back at 2014, occupational fatalities nationally were 3 per 100,000 workers. In oil and gas, that number skyrockets to 15. That’s why some organizations in this hazardous industry are turning towards the IIoT and wearable tech to keep their employees safe. From fall risk mitigation, to toxin and fume inhalation prevention and diagnosis, the applications for wearable technology for oil and gas employees in the field are many. One of the current limitations for wearable tech in the field is the ruggedness of the technology, but as new devices are designed that can withstand harsh environments, you can expect to see more adoption of this potentially life-saving tech. The IIoT and Operationalizing Excellence For the oil and gas industry, the advent of the Industrial Internet of Things (sometimes referred to as Industry 4.0) holds massive promise. From reacting to changing global trade conditions in real-time, to instantaneous equipment feedback, there are myriad uses for connected tech. This recent article from IoT Business News cautions us to heed the warnings of the dot.com era and take a strategic approach. The article argues that expecting the IIoT to be a silver bullet for business decisions will only lead to more confusion. It notes that Industry 4.0 is an incredibly powerful tool, one with the ability to fundamentally change the way oil and gas organizations do business, but it is important to go “back to the basics” and understand business needs and objectives before trying to dive into the data. In the Oil Industry, IoT is Booming Oil and gas is not always known for its agility, but when it comes to the Internet of Things, the industry is moving at a decidedly rapid pace. This article from Offshore Engineer asserts that the IoT is not only increasingly becoming part of many organization’s strategies, but is fundamentally becoming embedded in the “oil psyche.” Dave Mackinnon, head of Technology Innovation at Total E&P UK, provides quite a bit of color around this assertion, and he believes that oil and gas is moving towards a “digital supply chain” that was fundamentally revolutionize the sector. Mackinnon also believes that when it comes to the IoT train, it’s either get on, or get left behind. “In an IoT world, many companies will discover that being just a manufacturing company or just an Internet company will no longer be sufficient; they will need to become both – or become subsumed in an ecosystem in which they play a smaller role,” Mackinnon said. Cyberattack Concerns Loom for Oil and Gas While the highest profile cyberattacks have been in the commerce and financial sectors, industrial targets remain at high risk. A recent article from Hydrocarbon Engineering notes that “because of its complex layers of supply chains, processes and industrial controls, makes [the oil and gas industry] a high value target for hackers.” As oil and gas organizations look to leverage the Internet of Things to bring increased value to their companies, it will become more and more important to build extra layers of security into their systems. Enabling the Connected Worker While the IIoT is indeed changing the way oil and gas companies make decisions, it is also changing the way employees perform their jobs. This article from Gas Today notes some of the ways the IoT is changing the roles of workers in the field. From AI planning and scheduling, to predictive maintenance on equipment, the connected worker faces a vastly different workplace landscape than even a few years in the past. Ultimately, oil and gas companies will look to leverage the IoT to help their employees make better decisions, as well as to stay safer and work more efficiently. Final Thoughts The Industrial Internet of Things is growing with rapid adoption across many verticals, but oil and gas is already reaping outstanding benefits from this next phase of industry. Lowering costs, optimizing oil production, and increasing worker safety are just a few of the ways oil and gas is leveraging this technological revolution.
Autonomous Tech and Self-Driving Cars Dominate the Headlines
The autonomous tech industry is poised to explode, driving job growth and technological innovation. Everything from self-driving vehicles to automated infrastructure is sitting on a precipice of advancement that can be a truly momentous step into the era of the connected world. This week, we are focusing on some of the industry news surrounding autonomous vehicles, including the manufacturing aspect, their space in a smart city, and how major metropolitan areas initially resistant to the technology are starting to come around. In Japan the Race is On for Self-Driving Cars IMAGE by Takashi Aoyama According to a recent study by the Boston Consulting Group, fully autonomous vehicles are expected to account for a quarter of all new cars by 2035 — a slice of the auto industry totaling around $77 billion. While automakers across the globe are racing to become a leader in this new tech, no where is the competition more intense than in the auto-manufacturer rich island nation of Japan. This recent article from the San Francisco Chronicle notes that Toyota, Nissan and Honda have all made significant investments in developing autonomous tech. The autonomous vehicle race is particularly impactful because of the major implications to not only car OEMs who have to fundamentally change the way they approach their product, but to the hardware and software companies building the technology that will support these highly sophisticated (and regulated) vehicles. Could Owning an Autonomous Car Make You “Traffic Elite”? IMAGE courtesy ZDNet If you end up being an early adopter of new autonomous tech, you may find your commute becomes shorter. ZDNet explains that a recent proposal from UC Berkeley grad students suggested the creation of a “Hyperland” — a special traffic lane reserved just for self-driving vehicles. If you want to be in the Hyperlane, you better not mind a brisk ride as the special lanes would allow for speeds over 100mph. The traffic on the Hyperlane would be controlled by a central computer that monitors traffic congestion, speed, and other variables through advanced sensor arrays and keeps traffic flowing freely. The project will cost a cool $11.4 per mile of road, so travel will likely come with a toll to ease the financial burden. Self-Driving Cars Job Market Booming IMAGE by Gene J. Puskar, AP With so much emphasis on autonomous driving, cities are rushing to cash in on the movement. According to the Detroit Free Press, the advanced driver assistance systems and autonomous vehicle market was around $5 billion in 2015. It’s projected to grow to $96 billion by 2025 and a staggering $290 billion by 2035. This massive market growth has led to a number of cities across the country pitching their location as the “place to be” for autonomous tech. From Austin to Pittsburgh, automakers, OEMs and even government officials are pushing for their city as the best spot for innovation in the autonomous vehicle space. So will it be Detroit or Silicon Valley? Or one of a host of other cities vying for a slice of this massive cash cow? Time will tell. Better Late than Never: New York Easing Up on Laws for Driverless Vehicles Back in 1971, New York passed a state law insisting all motor vehicles have a driver with at least one hand on the wheel at all times. Back then, this seemed that a pretty standard rule — but with the advent of self-driving cars, the rules of the game have changed. A recent article from the Democrat and Chronicle noted that until recently, New York was the only state the explicitly banned driverless cars from its roadways. However, the state has now approved a pilot program to allow the testing of driverless vehicles under certain conditions. State Senator Joe Robach was a vocal advocate for the new change. “While the technology for fully driverless cars is in the future, consumers certainly appreciate the automated technology that is currently in cars, including lane assist, self-braking, hands-free park assist and collision avoidance,” he said. “The legislation that was passed earlier this year ensures that driverless cars can be tested on the roads that future consumers in our state will use them on and are tested responsibly.” Audi of America is the first automaker to get approved for the new program, with other manufactures expected to jump on board in the coming months.
IIoT Top News — Security Remains Top of Mind
Cybersecurity has been top of mind for industry experts and consumers alike. The WannaCry ransomware is putting a legitimate scare into affected companies, although many are apparently preparing to call the hackers’ bluff. Yesterday, another cyberattack was announced as well, and it has the potential to be far more lucrative for the developers. The common denominator between the two? A leaked exploit developed by the NSA that leverages a Windows file-sharing protocol. These attacks are indicative of the long-term game of cat and mouse that the government and private enterprise faces for the foreseeable future of security and counterintelligence. Moving forward, the growing network of connected devices for the Industrial Internet of Things (IIoT) faces similar security threats. This week, we found several stories demonstrating some of the solutions surrounding those potential security issues. The 9 Best Practices for IIoT from a Dell Security Expert At a recent presentation for 2017 Dell EMC World Conference, Rohan Kotian, Dell EMC’s senior product manager for IoT security, spoke about his nine best practices for improved IIoT security. His number one strategy? Simply understanding the concerns. Many IoT devices come out of the box with few security controls in place, and understanding the risk is the most important step in addressing them. In this article from Tech Republic, you can read Mr. Kotian’s other nine best practices, including studying the attack trends, classifying risk, and leveraging fog computing. IIoT Market Expected to Approach One Trillion Dollars by 2025 Grand View Research writes that the industrial Internet of Things will experience explosive growth over the next decade, going from a $109 billion industry in 2016 to an expected $933.62 billion by 2025. The massive market increase will be driven by a number of factors, one of which continued investment by government agencies and corporate leaders. As the report states, “The role of the Internet of Things (IoT) is increasingly becoming more prominent in enabling easy access to devices and machines. Government-sponsored initiatives and innovative efforts made by key companies, such as Huawei, GE, and Cisco, are anticipated to enhance the adoption of IIoT worldwide over the forecast period.” IIoT Presents Unique Security Challenges Security is always a top priority in the Internet of Things, but IIoT applications present unique challenges. In this article from CSO Online, Phil Neray, CyberX’s vice president of industrial cybersecurity, writes that despite the growth of IoT applications in oil, gas, electric, and pharmaceuticals, “The fact is that all of these devices were designed a long time ago.” That means IIoT innovators have the challenge of integrating the newest technology into systems that may be decades old. This sort of retrofitting can make security a real challenge and there are few experts available who have both the knowledge of legacy systems and the latest IIoT solutions. Sprint to Deploy LTW Cat 1 by End Of July The Internet of Things relies heavily on low-power communication protocols to perform, so a recent announcement on FierceWireless.com that Sprint will be releasing LTE Cat 1 by the end of July is music to IoT developer’s ears. LTE Cat 1 is designed to support low-power applications on the Sprint network such as vehicle telematics and industrial IoT applications. “As one of the leading enablers and solution providers of the internet of things, Ericsson believes in its power to transform industries and capture new growth,” said Glenn Laxdal, head of Network Products for Ericsson North America. “Ericsson looks forward to partnering with Sprint to deploy Cat M1 next year and bring the transformative power of IoT to the Sprint Nationwide network.” The announcement also noted that Cat M would be following in mid-2018. TE Cat M1 and LTE Cat NB1 will support other applications requiring ultralow-throughput and power consumption.
IT/OT Convergence – The Impact from the Industrial Internet of Things
Without question, the number of connected sensors and devices on your IIoT network are going to increase, and also without question, the volume of data created by these devices on your IIoT network are going to increase as well. Both increases are intended to improve operational efficiency and streamline business processes. As a result, your Information Technology (IT) and Operational Technology (OT) departments will likely need to adopt new strategies. An increasingly popular strategy is IT/OT convergence. The Bandwidth Burden For many industries, SCADA and M2M networks have historically used serial communications for operational networks. This has changed and is changing for many. As networks transition from serial to Ethernet communications, data is now freed for routing to any business system. There is a new twist for SCADA, M2M and now IIoT networks that have limited bandwidth capabilities. With more business systems needing critical data to improve business process, utilization of bandwidth on networks with already-limited bandwidth is also increasing based on the traditional Poll/Response or Request/Response model. To reduce the bandwidth burden, systems are now transitioning from Poll/Response operation to a Publish/Subscribe model. There are several benefits to the Publish/Subscribe model. Sensors or devices in bandwidth limited networks can publish data when events change or select criteria are met. This reduces the demand for network bandwidth in two ways; 1) there is no prerequisite Poll message, and 2) devices publish when needed. Publish data is routed to a Broker or Publish/Subscribe server that operates on networks where network bandwidth is not a limitation so any number of subscribers can subscribe needed data without burdening the IIoT network. While the Publish/Subscribe model is a significant improvement to IIoT network efficiency, it is not a panacea for all operational information. Network monitoring systems, e.g. SNMP based systems, will still need to poll devices to gather operational, performance and prescriptive data; essential for proactively maintaining an efficient and operational IIoT network. Secure Devices to Support Convergence Newer sensors and devices are also being designed with security in mind because no legitimate manufacturer wants their IIoT device to be part of a DDoS attack, as we saw in 2016 with the Mirai DDoS attack. While IIoT device security services and features are rapidly improving, it is still incumbent on OT and IT organizations to: Train personnel on network security because the human element can still be the weakest part of any network, e.g. phishing emails, Deploy networks with Defense in Depth so there are numerous barriers to obstruct and deter entry with timely audit trails to identify entry, and Perform periodic Risk Assessments and implement action plans. SCADA, M2M and IIoT networks are operating more as IT networks thanks to the close work between OT and IT groups and their convergence. Want to learn more on this topic? Join my presentation at the ENTELEC conference on Thursday, April, 27, 2017 at 2 p.m.
2017 IIoT Prediction Series, Part 5: Major Public Utility Company Closes Doors
As 2017 kicks into full gear and a particularly interesting 2016 fades into the rearview mirror, we took a look around the IIoT landscape to see what this year might potentially have in store. Today, we wrap up the 2017 series – let us know what you think! On Tuesday, we started our predictions by looking at the potential development of Fog Computing at the Edge and its impact on cybersecurity. Wednesday, we predicted that the rise of IIoT applications will outpace consumer IoT apps. Thursday, we wrote about the challenge facing IIoT businesses as the workforce ages and new skills are needed for the ongoing IT/OT Convergence factor. On Friday, we predicted that the growth of smart cities infrastructure would force a connectivity standard for the IIoT industry. A Public Utility Closure in 2017 The maturation of interoperability standards and evolution of remote data collection technologies are forcing critical infrastructure and utility organizations to adapt at a new pace, in light of aging infrastructure and high percentages of the workforce that are nearing retirement. Existing management continues to struggle to match the IT and operations resources needed to build a comprehensive, integrated portfolio of applications that must work together to support the organization’s goals. The prediction A public utility company will close its doors in 2017 due to challenges surrounding the adoption and implementation of modern IoT technologies. There are numerous forces that support the prediction. Here’s our take on the big ones: Are you Taking Advantage of Fog Computing at the Edge? According to analysts, utility organizations are becoming more comfortable hosting critical infrastructure data and applications in the Cloud. But, in an effort to further optimize processes and shorten response times, utilities need to explore ways to host applications at the device/sensor level (i.e., the Edge otherwise known as Fog Computing). A decentralized network architecture that brings computing power closer to where data is generated and acted upon enables utilities to analyze, control and automate closer to the “Things” in the Industrial Internet of Things. In electric power, for example, where even milliseconds are vital, certain processes can move away from the Cloud and closer to the Edge. In an industry where cloud computing presents its own sets of challenges, can utilities go one step farther to look at new ways to optimize the “things” at the edge? IT-OT Convergence Presents Plenty of Challenges With identifiable business benefits and rapidly developing technologies that are closing the IT/OT divide, there are functional and operational differences between IT and OT groups that exist and complicate integration or convergence. IT and OT groups typically have fundamentally different charters, focus and personnel within their respective organizations. The challenges to IT/OT convergence are not the sensors, hardware, software or technology, but how each group perceives each project or opportunity and in turn, the solutions, which are skewed by their respective domains. In order for IT/OT convergence to be successful, communication is essential and in turn, there needs to be a clear understanding of each group’s roles – something we see utility organizations struggle with mightily, especially as an aging workforce butts heads with the next generation of digital-centric employees. However, the careful selection of technology for IIoT or industrial applications can help drive the convergence of IT/OT systems. For example, in electric utilities, the rollout of Advanced Metering Infrastructure (AMI) and Distribution Automation (DA) networks is truly an OT application. The source of the data will fuel IT/OT convergence because it is the data analytics applications such as outage detection, fault management, prepay and others that bring value to the Smart Grid. If utilities can proactively take a systems level view of its infrastructure and integrate legacy systems with modern IT systems, the convergence of IT/OT groups may prove less strenuous. Cyber-threats to the Utility Utilities are at the forefront of the Industrial IoT with complex and comprehensive networks for advanced metering infrastructure, energy management, distribution management and substation automation. The estimated growth in IIoT applications for utilities and energy industries will increase to more than 1.5 billion devices by 2020. This explosive growth in networks, smart sensors and devices, and automated systems requires utilities to address, implement and monitor the security of their data networks because these are the networks providing command and control of critical infrastructure that is the Smart Gird. As technology has evolved, so has the intelligence and sophistication of cyber terrorists and their tactics. If utilities do not build a comprehensive security layer, especially across its internet-connected systems, there is little faith they’d be able to combat against such tactics as Denial of Service and Intrusion – the two top threats according to the Federal Communications Commission (FCC). If utilities don’t invest in hardened/proven networking and communications equipment, network access control programs, data encryption strategies, advanced monitoring technology and explore various other tactics for limiting exposure to harmful cybersecurity threats, they may be forced out of business anyways. Today, it is not a matter of “if” a cyber-attack is going to take place, but when. We hope you are ready. All in All We hope this prediction is one that doesn’t come to light in 2017, especially with all the direct investments being made in our critical infrastructure projects across the nation. However, a competitive organization is both agile and proactive in meeting market demands – something utilities need to learn from as business continues. That does it for our list of 2017 IIoT predictions – hope you enjoyed and please be sure to send your questions and comments below!
2017 IIoT Prediction Series, Part 3: IT/OT Convergence & the Next-Gen Workforce
As 2017 kicks into full gear and a particularly interesting 2016 fades into the rearview mirror, we took a look around the IIoT landscape to see what this year might potentially have in store. We will be unveiling five IIoT-related predictions throughout this week and into next, so stay tuned and let us know what you think! On Tuesday, we started our predictions by looking at the potential development of Fog Computing at the Edge and its impact on cybersecurity. Yesterday, we predicted that the rise of IIoT applications will outpace consumer IoT apps. FreeWave Predictions 2017 As our prediction series continues, we’d like to examine the industrial IoT (IIoT) workforce. Most of the industries that leverage IIoT face an uncertain future as they navigate their own digital transformation, coupled with the pressures of an aging workforce. The biggest challenge affecting IoT talent recruitment is the skills gap – there are not enough qualified applicants to take on new digital-centric, IT roles. From a business perspective, IT/OT convergence further complicates the issue. Enterprises are transforming the way they operate and it impacts everyone – especially the folks on the operations side dealing with legacy systems. Each of these factors has created a talent gap for many organizations. Our IoT Recruitment Prediction Recruitment of IoT talent will continue to be a challenge, incentivizing private enterprises to directly fund secondary education programs to nurture the next generation of a digital-centric workforce. The Business Problem As organizations and enterprises reorganize under the IT umbrella to address new technology opportunities, cybersecurity threats and work towards creating a connected enterprise – there is an underlying business problem. IT teams need better visibility and control of assets in the field while learning how to integrate these people and systems into modern IT practices. Meanwhile, on the OT side, there is an entire workforce that excels at managing and troubleshooting existing legacy systems, but lacks the potential skillsets to help with new technology demands and data analysis. IT/OT convergence is challenging for many businesses and it affects all aspects of the organization. Recruitment and Solution Recruitment challenges are impacting many industries. The Wall Street Journal reported the highest number of open positions in 15 years for the manufacturing industry because the talent pool lacks the skills for the job. As IoT connects and automates more processes, this gap will only continue to grow if nothing is done proactively to change it. There also is the question of whether organizations should bring in new talent or nurture existing talent. In an effort to overcome some of these challenges, we will see enterprises (not IoT vendors) to privately fund secondary education programs to help identify and create a more skilled workforce. In addition to standard HR recruitment and training practices, we expect to see more tactics such as IoT hackathons for the industrial sector, software development and digital/IoT centric accreditations, private contests, internal skill development workshops and IIoT user conferences. This wider investment in education will benefit both the existing, aging workforce and the incoming, next-generation of workers. Stay tuned for our next prediction as we explore the future of Smart Cities across the globe.