Practical Guide to OPC UA - opchub.com
53
Practical Guide to OPC UA All about Data Connectivity Solutions 황철상 (주)브릿지웨어 대표 March 2021
Transcript of Practical Guide to OPC UA - opchub.com
Practical Guide to OPC UA
All about Data Connectivity Solutions
황 철 상 (주)브릿지웨어 대표
March 2021
www.opchub.com
ISA 95 Model by International Society for Automation
Level 0
Sensors and Actuators
Level 1
Controllers (PLCs and Devices)
Level 2
SCADA and HMI
Level 3
Manufacturing Execution Systems
Level 4
Enterprise Resource Planning
Slide 2O
P C
U
A
www.opchub.com
Sensors & Actuators
- Signal Outputs: 4-20mA, 1-5V, 0-24V
PLC (Programmable Logic Controller)
– Siemens, ABB, Schneider Electric
– Rockwell Automation, GE
– Mitsubishi, Omron
– LS산전
DCS (Distributed Control System)
– Honeywell, Emerson, Yokogawa
– GE, Siemens
IED (Intelligent Electronic Device)
PAC (Programmable Automation Controller)
DDC (Direct Digital Control)
Real-time Manufacturing Data – Producers (L0 & L1: Sensors, PLCs & I/O Devices)
Slide 3
www.opchub.com
Real-time Manufacturing Data – Consumers (L2, L3 & L4)
HMI/SCADA (Human Machine Interface / Supervisory Control And Data Acquisition)– Aveva (Wondoerware) InTouch
– WinCC (Siemens)
– FactoryTalk View (Rockwell Automation)
– iFIX (GE)
– Cimon
Historians– OSI PI System, dataPARC
– Honeywell PHD, Aspen InfoPlus.21
– Aveva Historian, GE Historian
– Kepware Historian, ibaPDA
Databases– MS SQL Server, MS Access, PostgreSQL
– Oracle, MySQL, Tibero
MES (Manufacturing Execution System)IoT & Big Data Platforms (ThingWorx, MS Azure, SAP, Splunk, GE Predix, Siemens MindSphere, etc.)
Slide 4
www.opchub.com
OPC Server is the Middle-man
Slide 5
Data Producing Devices
OPC Server:
Software application for Interoperability & Data Exchange.(“the Middle-man”)
Data Consuming Applications
www.opchub.com
OPC Basics & Trends
Slide 6
www.opchub.com
OPC Server
OPC Server – a simple diagram
Slide 7
OPC InterfaceClassic (DA, HDA, A&E)
UA (DA, HA, AC)
Communication Drivers forDevices
www.opchub.com
OPC and Automation Protocols
Slide 8
Standards Purpose
OPC Classic DA Application-to-Application Comm.
OPC UA Application-to-Application Comm.Device-to-Application Comm.
UA over TSN (Time Sensitive Network)
Device-to-Device CommunicationDevice-to-Application Comm.
Fieldbus (Profibus, DeviceNet, CCLink, HART,Ethernet/IP, etc.)
Device-to-Device Communication
www.opchub.com
Data Flow: Sensor to OPC Server
Temperature Sensor
AnalogInput 4-20mA
Register 43250
72.5
Read Request in “Protocol X” for Register 43250
Register 43250 Value: 72.5
CPU Memory
Slide 9
www.opchub.com
Data Flow: OPC to Applications
���� ������� �������
� � �
����� ���
�����������������
Slide 10
OPC Server
www.opchub.com
OPC Specifications
OPC Classic–Data Access (DA)
–Alarms & Events (A&E)
–Historical Data Access (HDA)
OPC Unified Architecture (UA)–OS Independent
–Firewall Friendly
–Combine the “classic” specifications into a single interface.
Slide 11
www.opchub.com
OPC UA (Unified Architecture)
OPC Unified Architecture (IEC 62541)– Functional equivalence: all COM OPC Classic specifications are mapped to UA
– Platform independence: from an embedded micro-controller to cloud-based infrastructure
– Secure: encryption (RSA standards), authentication (x.509 standards), and auditing
– Extensible: ability to add new features without affecting existing applications
– Comprehensive information modeling: for defining complex information
OPC UA Base Services
Vendor Information Model
DA AC HA Prog
Industry Standards Information Models
Slide 12
www.opchub.com
OPC UA Target Applications
Slide 13
www.opchub.com
OPC UA Connectivity
OPC UA
Endpoint communication
Data encryption to RSA standards and authentication based on the x.509 Certificate standard.
This is the same encryption e-commerce uses.
opc.tcp://10.10.110.10:49320
Slide 14
www.opchub.com
UA Security
One of the most important considerations in choosing a technology is security. OPC UA is firewall-friendly while addressing security concerns by providing a suite of controls:
Transport: numerous protocols are defined providing options such as the ultra-fast OPC-binary transport or the more universally compatible JSON over Websockets, for example
Session Encryption: messages are transmitted securely at various encryption levels
Message Signing: with message signing the recipient can verify the origin and integrity of received messages
Sequenced Packets: exposure to message replay attacks is eliminated with sequencing
Authentication: each UA client and server is identified through X509 certificates providing control over which applications and systems are permitted to connect with each other
User Control: applications can require users to authenticate (login credentials, certificate, web token etc.) and can further restrict and enhance their capabilities with access rights and address-space “views”
Auditing: activities by user and/or system are logged providing an access audit trail
Slide 15
Source:OPC Foundation
www.opchub.com
UA Discovery with(out) LDS
Slide 16
Server’s Public Key
Client’s Public Key / Sign & Encryption
Sign & Encryption
www.opchub.com
UA Security - Server Endpoint & Certificate
Slide 17
www.opchub.com
UA Security - Data Encryption
RSA 표준 (Sha256) 에 따라 데이터 암호화
“None” with(out) Password – 권장하지 않으나 현장에서 많이 채택
Slide 18
www.opchub.com
OPC DA Connectivity
www.opchub.com
DCOM Tunnelling
Slide 20
• No DCOM Configuration• Firewall friendly• NAT (Network Address Translation) 환경지원• One-way or Bi-directional (incoming port closed or open)
www.opchub.com
Unidirectional OPC Monitoring
Slide 21
Source: WA technology home page
www.opchub.com
Software based Uni(bi-)directional OPC Comm.
DataHub Transfer Protocol (DHTP) protocol to make - outbound-only connections from plant or process.- with all inbound firewall ports closed.- supports DMZs and forward proxies, and requires no VPNs - to provide secure OT to IT data flow.
Slide 22
www.opchub.com
OPC UA Publish/Subscribe
Slide 23
www.opchub.com
The evolution of OPC into the OSI Reference Model
Slide 24
www.opchub.com
Embedded UA Servers
B&R Automation showcasesOPC UA over TSN Beckhoff TwinCAT PLC
Slide 25
www.opchub.com
UA Support from major Vendors
Slide 26
Emerson Machinery HealthProtection System (CSI 6500 ATG)With native UA Support
• Siemens S7-1500 PLC• Siemens S7-400 controller with OPCUA Server (CP 443-1 OPC UA )• Sinumerik CNC systems
SINUMERIK 828DSINUMERIK 840D sl
• Simatic Net OPC Server• Simatic WinCC Open Architecture• Simatic HMI Comfort Panels• SIOCODE pro Motor Management System• Simatic RF600 RFID Reader
Rockwell CompactLogix 5480
www.opchub.com
UA Support from major Vendors
Slide 27
Item Name RD81OPC96Supported Model iQ-R Series
RCPU, LCPU, QCPU (Q mode)
Connectable Ethernet port
CH1
# Tags 10,000
www.opchub.com
OPC UA, IoT &Big Data Systems
Slide 28
www.opchub.com Slide 29
Edge or Cloud
www.opchub.com Slide 30
OPC UA & Cloud
• IoT Cloud Platforms
– ThingWorx Industrial IoT Platform
– Microsoft Azure
– AWS IoT Core
– SAP
– GE Predix
– Siemens MindSphere & more
• KepserverEX IoT Gateway
– MQTT, REST, Thingworx
www.opchub.com
PTC ThingWorx Industrial IoT Platform
Slide 31
011010
Kepware Integration into ThingWorx
- ThingWorx Kepware Server
- ThingWorx Kepware Edge
- Auto-registration of thingsbased on imported models
www.opchub.com
Microsoft Azure UA Connectivity
Slide 32
www.opchub.com
AWS UA Connectivity
Slide 33
www.opchub.com
OPC UAOPC Classic
SAPConnector MQTT ODBC,
OLEDB…
SAPPlant Connectivity (Pco)
SAP HANA Cloud, DB
RFCBAPIIDOCHANA
SAP ERP Connectivity
OPC UAOPC Classic
www.opchub.com Slide 35
GE Predix Edge Connectivity
OPC UAModbus
www.opchub.com Slide 36
Siemens MindSphere
www.opchub.com
KepServerEXThe Ultimate Industrial Connectivity Platform
Slide 37
www.opchub.com
KepServerEX Industrial Connectivity Platform
Slide 38
• Drivers – Communication Drivers
– 140 more
• Plug-Ins– Historian
– Data Logger
– IoT GatewayAdvanced Tags & more
• Factory License– 1 license for single factory (L,M,S)
– 5~40 times Activation
– All driver & plug-Ins included
– Subscription only
3939
DEVICE CONNECTIVITY• ABB Totalflow Serial• Advanced Simulator• Allen-Bradley 1609 UPS• Allen-Bradley Bulletin 900• Allen-Bradley ControlLogix
Ethernet • Allen-Bradley ControlLogix
Unsolicited• Allen-Bradley Data Highway Plus • Allen-Bradley DF1• Allen-Bradley Ethernet• Allen-Bradley Micro800 Ethernet• Allen-Bradley Micro800 Serial• Allen-Bradley Unsolicited Ethernet• Alstom Redundant Ethernet• Analog Devices• Aromat Ethernet• Aromat Serial• AutomationDirect DirectNET• AutomationDirect EBC• AutomationDirect ECOM• AutomationDirect K Sequence• AutomationDirect Productivity
Series Ethernet• BACnet/IP• Beckhoff TwinCAT I/O• Bristol/IP• BUSWARE Ethernet• CODESYS Ethernet• Contrex M-Series• Contrex Serial• Custom Interface Driver• Cutler-Hammer D50/D300• Cutler-Hammer ELC Ethernet• Cutler-Hammer ELC Serial• Dataforth isoLynx• DDE Client Driver
• DNP3 Master Ethernet• DNP3 Master Serial• Enron Modbus• EUROMAP 63• Fanuc Focas Ethernet • Fanuc Focas HSSB• Fisher ROC Ethernet• Fisher ROC Plus Ethernet• Fisher ROC Plus Serial• Fisher ROC Serial• Fuji Flex• GE CCM• GE EGD• GE Ethernet• GE SNP• GE SNPX• Hilscher Universal• Honeywell HC900 Ethernet• Honeywell UDC Ethernet• Honeywell UDC Serial• IDEC Serial• IEC 60870-5-101 Master• IEC 60870-5-104 Master• IEC 61850• Intelligent Actuator (IA) Super SEL• InTouch Client Driver• IoT Gateway• IOtech PointScan 100• Keyence KV Ethernet• Krauss Maffei MC4 Ethernet• Lufkin Modbus Serial• Memory Based• Mettler Toledo• Micro-DCI• Mitsubishi CNC Ethernet• Mitsubishi Ethernet• Mitsubishi FX
• Mitsubishi FX Net• Mitsubishi Serial• Modbus ASCII• Modbus Ethernet• Modbus Plus• Modbus Serial• Modbus Unsolicited Serial • MQTT Client • MTConnect• ODBC Client• OMNI Flow Computer• Omron FINS Ethernet• Omron FINS Serial• Omron Host Link• Omron NJ Ethernet• Omron Process Suite• Omron Toolbus• OPC DA Client• OPC UA Client• OPC XML-DA Client• Optimation OptiLogic• Opto 22 Ethernet• Partlow ASCII• Philips P8/PC20• Ping• SattBus Ethernet• SattBus Serial• Scanivalve Ethernet• Siemens S5• Siemens S5 3964R• Siemens S7 MPI• Siemens S7-200• Siemens TCP/IP Ethernet• Siemens TCP/IP Unsolicited
Ethernet• Simatic/TI 505 Ethernet• Simatic/TI 505 Serial
• SIXNET EtherTRAK• SIXNET UDR• SNMP• SquareD• System Monitor• Telemecanique Uni-Telway• Thermo Westronics Ethernet• Thermo Westronics Serial• Tiway Host Adapter• Torque Tool Driver• Toshiba Ethernet• Toshiba Serial• Toyopuc PC3/PC2 Ethernet• Toyopuc Serial• Triconex Ethernet• User Configurable (U-CON)• WAGO Ethernet• Weatherford 8500• WITS Level 0 Active• WITS Level 0 Passive• Yaskawa Memobus Plus• Yaskawa MP Series Ethernet• Yaskawa MP Series Serial• Yokogawa Controller • Yokogawa CX• Yokogawa Darwin Ethernet• Yokogawa Darwin Serial• Yokogawa DX Ethernet• Yokogawa DX Serial• Yokogawa DXP• Yokogawa HR• Yokogawa MW• Yokogawa MX• Yokogawa YS100• …and more each year
www.opchub.com
Major PLCs
Allen-Bradley
- ControlLogix, CompactLogix, MicroLogix, PLC5, SLC500, Data Highway(Plus)
Mitsubishi
- iQ-R Series, Q Series, A-Q Series, A Series
Omron
- NX, NJ, CJ, CS, CP, CV Series
Siemens
- S7-200, 300, 400, 1200, 1500, 828D, 840D
LS Electric
- Embedded UA Server for XGT
- BridgeWare OPC for XGT Series, XGB, Glofa GM Series, Master K Series
- Ethernet & Serial
- UA Wrapper 포함
Slide 40
www.opchub.com
CNC & Robot Controllers
Fanuc CNC
- 0i, 15i ~ 32i, Open Addressing
- Kepware Focas Suite
- Reads Parameters
- with Focas Library (Fanuc part number A02B-0207-K737)
FANUC Robot Controller
- R-30iB Plus / R-30iB Mate Plus
- Kepware GE Ethernet Driver > GE OPEN model
- with HMI Device (SNPX) (part number RTL-R553-HT)
Heidenhain CNC
- inray OPC Router Haidenhain plug-in
- with Kepware Simulation Suite
Siemens CNC
- OPC UA Server 2.1 is included in SINUMERIK software V 4.8 SP3 or higher
www.opchub.com
Legacy System 통합 (1)
Slide 42
PLC(Master-K)
HMI
RS 232C
PLC(Master-K)
Nport
Network Switch
RS 232C
HMIUA Serverwith Master-K Serial driver
RS 232C over LANVirtual Com port Virtual Com port
port1 ~ port 128
www.opchub.com
Legacy System 통합 (2)
Slide 43
PLCSiemens S5/S7
HMI
MPI 통신
PLCSiemens S5/S7
IBH/NETLink
Network Switch
HMI
UA Serverwith Siemens
Ethernet driver
MPI 통신
www.opchub.com
Unique Values of KepServerEX
Slide 44
www.opchub.com
OPC Aggregator & Organizer
OPC Classic 서버통합
- 현장의 90% 이상은 여전히 Classic DA Server 사용 중
Migration to UA
- Classic DA 통합
- 기존 HMI, DCS 통합
- Non-OPC 시스템 통합
- Cloud connectivity 확보
UA Aggregator의 조건
- Windows Platform 지원의 중요성 (여전히 90% 이상의 data는 Windows 상에 존재)
- 계층적 연결 (Site > Plant > Line > OPC Instance > Tag Group > Tag)의 중요성
- Customized Tag Naming의 중요성 Data 량 감소 비용 감소
- Wrapper의 한계에 갇히지 말고, New UA Server Instance 로 동작해야
www.opchub.com Slide 46
OPC Gateway
Slide 46
Classic DA Server
DA Client Driver
UA Server Interface
UA Clients
DA-to-UA Converter
OPC UA Server
UA Client Driver
DA Server Interface
DA Clients
UA-to-DA Converter
www.opchub.com
Tunnelling – Conventional approach
Slide 47
www.opchub.com
Tunnelling – UA Tunnelling by KepServerEX
Slide 48
www.opchub.com
OPC DA Client
HMI 1
(HVAC)
HMI 2
(VMS)
Alarm 1, OffAlarm 2, OffAlarm 3, Off
Alarm 1, OnAlarm 2, OffAlarm 3, Off
ModbusSlave
Vessel MonitoringSerial Modbus/RTU
Advanced Tags: Derived Tag: First,
create a Facility Level Alarm. If Alarm 1, 2 or 3 is active, then
Facility Level Alarm is active.
Link Tag: Second, create Modbus/RTU slave tag items and link to the derived
tags.
Facility 1
Facility 2
Facility 1Alarm Inactive
Facility 2Alarm Active
ModbusKEPServerEX
Protocol Converter
3 Components required:a Protocol Mastera Protocol Slave& a Converter
RS-422
Slide 49
www.opchub.com
DataLogger: OPC-to-Database
OPC Data to RDBs:SQL Server, AccessOracle, MySQLPostgreSQL, TiberoAny ODBC Databases
Drag & Drop ConfigurationAutomatic table creation
Narrow & Wide formatsTrigger Conditions:
Data ChangeTimeUser Expression
www.opchub.com
Local Historian – on the Edge
Local Data Store–Store up to 10K+ tags
–10ms resolution of data
–Archive and transport
–Deadband to compress stored
Collect at source to reduce data lossEasily configure both static and dynamic tagsViewer for raw tag dataAccess historical data using OPC HDA enabled clients
–Trending, analysis and reporting solutions
Scalable tags: 500, 10000, Unlimited
Easy, Flexible, High Speed, Cost Effective
Slide 51
www.opchub.com
IoT Gateway: OPC-to-Cloud
Protocols Supported
RESTful Client
RESTful Server
MQTT Client
ThingWorx
Seamlessly streams
real-time control data
into IT or IoT applications
Modeling
MQTTClient
RESTServer
RESTClient
ThingWorx
Analytics
Scheduling
IoT API
APIs(Microsoft)
Big Data
Connectivity
Slide 52
www.opchub.com Slide 53
www.bridgeware.krwww.opchub.com
Contact Us
THANK YOU !
