2 Dimetra Small Systems Infrastructure Portfolio Overview-Claudio Storaci
TETRA - SCADA and Telemetry...
Transcript of TETRA - SCADA and Telemetry...
TETRA - the best choice for
narrow band wireless
SCADA and IP-communication
June 2016 CCW / TWC
Funk-Electronic Piciorgros GmbH
Michael D. Piciorgros (CEO)
Why should someone chose TETRA
for SCADA and IP Applications?
Feature Rich Technology
Stringent IOP Procedure
Scaleable - From Single Site to Country Wide
TETRA Performance and Data Speed
The Technology is (the) Save(est) against IP Risks
Feature Rich Technology
Piciorgros GmbH * Germany
Funk-Electronic Piciorgros GmbH
(TMC-200 / TETRA Modem Core)
350, 380, 410, 450, 800 MHz
Status, SDS, Packet Data, MSPD
Voice, Individual / Group Communication,
Authentication, Encryption, E2EE,
TEA1, 2, 3, +++
Piciorgros GmbH * Germany
TETRA Modem
Two serial Ports, one Ethernet Port
and an optional Audio Port
Piciorgros GmbH * Germany
TETRA RTU
as before with additional
embedded I/O optional Audio Port
IOP Procedure
Piciorgros GmbH * Germany
Funk-Electronic Piciorgros GmbH
(IOP Certificates)
Rohill
SELEX
EADS / Airbus
3T-Frequentis (Sepura)
Damm, Motorola
Teltronics
Hytera, ETELM
Piciorgros GmbH * Germany
Piciorgros GmbH * Germany
Approvals
Piciorgros GmbH * Germany
Funk-Electronic Piciorgros GmbH
(National Approvals)
EU (BABT Certificate)
Hong Kong, Thailand, Russia
FCC (USA), IC (Canada), Algeria,
Philippines, Australia, Malaysia, Russia, +++
Piciorgros GmbH * Germany
TETRA Performance and Data Speed
Piciorgros GmbH * Germany
Analog and
Digital I/O
TETRA SCADA Application using an SDS Gateway
PLC / RTU
Command and
Control Line
Device
TMO-100
TMO-100
TMO-100
SDS (PD)
SDS (PD)
SDS (PD)
I/O
… or Serial
Interface
Serial
Interface
TETRA
Switch
TGW-100
SDS
Gateway IP
Commu-
nication
PLC /
PRTU PLC /
PRTU
PLC /
PRTU
PLC /
PRTU
SCADA Control
Room
Piciorgros GmbH * Germany
Performance Test with SDS-Gateway on FOUR SCCH/MCCH:
Infrastructure: TETRA with one carrier
TETRA Data Link: MCCH plus three SCCH
Data Compression: OFF
Data nodes: One or more polling nodes, polling 10 TMO-100 each
Protocol: Modbus RTU
Polling Target: Polling different numbers of bytes from inside the TMO-100
One Node (on each TS)
Two Nodes (on each TS)
Three Nodes (on each TS)
Four Nodes (on each TS)
16 Nodes (on each TS)
SDS: 20 Bytes 210 400 600 760 980
Table showing total polls (on all time slots) per minute (values rounded)
Piciorgros GmbH * Germany
TETRA SCADA Applications
(using the TMO-100 TETRA Modem and RTU)
Piciorgros GmbH * Germany
Country: Thailand
City: Bangkok
User: Power Company
Network Manufacturer: Cassidian / Airbus
Data Communication: Packet Data
Gateway: No
Application: Control of Pole
Mounted Switches
Piciorgros GmbH * Germany
Country: Hong Kong
City: Hong Kong
User: Power Company
Network Manufacturer: Hytera
Data Communication: SDS
Gateway: Multiple
Application: Different user
depending
Applications
Piciorgros GmbH * Germany
Country: Luxembourg
City: Luxembourg
User: Power Company
Network Manufacturer: 3T / Sepura
Data Communication: Packet Data
+ SDS
Gateway: Yes + Pure IP Link
Application: Monitoring and
Control of med.
Power Transformer
Stations
Piciorgros GmbH * Germany
Country: Panama
City: Panama City
User: Panama Canel
Network Manufacturer: Motorola Dimetra
Data Communication: SDS
Gateway: Not yet
Application: Canel Telemetry
Piciorgros GmbH * Germany
Country: Kazachstan
City: Astana
User: Railways
Network Manufacturer: Motorola Dimetra
Data Communication: Packet Data
Gateway: No
Application: Train Monitoring
and Data
Communication
Piciorgros GmbH * Germany
Country: Algeria
City: Hassi Messaoud
User: Gas and Oil
Network Manufacturer: Etelm
Data Communication: SDS
Gateway: No
Application: Oil Well Monitoring
Piciorgros GmbH * Germany
Country: Spain
City: Barcelona
User: Public Safety
Network Manufacturer: Cassidian
Data Communication: SDS
Gateway: No
Application: Control and
Command
Piciorgros GmbH * Germany
Country: Romania
City: Bucharest
User: Otopeni Airport
Network Manufacturer: Motorola
Data Communication: SDS
Gateway: No
Application: Water Tank
Monitoring
Piciorgros GmbH * Germany
Country: South Africa
City: JoBurg
User: Power Company
Network Manufacturer: Rohill
Data Communication: Packet Data
+ SDS
Gateway: No
Application: Street Lights
Med. Pwr Transf.
Piciorgros GmbH * Germany
Country: USA
State: Georgia
User: Water Company
Network Manufacturer: Power Trunk
Data Communication: Packet Data
Gateway: Pure IP Link
Application: Monitoring of
Pumping Stations
Piciorgros GmbH * Germany
TETRA Data Applications
IP Risks and IP Security
Piciorgros GmbH * Germany
The search term “Cyber Attack Industry”
Gives more than 2.400.000 Results
Piciorgros GmbH * Germany
Piciorgros GmbH * Germany
Piciorgros GmbH * Germany
Potential IP Risks (Back Doors)
Control Room
Air Interface
Remote Modem
Piciorgros GmbH * Germany
Risks using IP Communication via wireless
Infrastructures to Remote Outstations
Tetra Switch
AMR, PLC or
RTU
Command and
Control Line
Device
TMO-100
TMO-100
TMO-100
IP
IP
PD
PD
PD
I/O
SCADA Control
Room
Router / Gateway
Control Room
Remote Modem
Air Interface
Piciorgros GmbH * Germany
Potential IP Risks (Hacks)
Access from the SwMi side to the remote modems (RTU’s)
Hacker send Control and Command data to the remote RTU’s
Access from the remote devices to the SCADA Server (Intranet)
Hacker try to access and stress the Intranet, SCADA Server or any other Intranet Server
Access via the Air Interface (using a spare TMO-100)
Hacker try to access the Intranet or try to send commands to the Outstation RTU’s
IP Data flooding via a remote device
Hacker try to flood and stress the TETRA Infrastructure with data packets
Using IP Services to access the Intranet via a Remote Modem
Hacker try to use services (ports) like Telnet, FTP or others to access and stress the Intranet
Piciorgros GmbH * Germany
TMO-100 Protection and Firewall(s)
Access from the SwMi side to the remote modems (RTU’s)
The IP Server Source Address received by the TMO-100 can be restricted to a specific IP Address or a specific IP Address range
Access from the remote devices to the SCADA Server (Intranet)
The RTU Source Address received by the TMO-100 can be restricted to a specific IP Address or a specific IP Address range
Access via the Air Interface (using a spare TMO-100)
Enable AIE to avoid unwanted Access via the Air Interface
IP Data flooding via a remote device
A configurable IP Flooding Filter stops the data flow for a specific time (5 minutes), after the TMO-100 has received a specific number of IP Packets (5 packets) in a specific time frame (10 seconds)
Using IP Services to access the Intranet via a Remote Modem
Optional all IP ports can be disabled while up to 5 can be enabled individually
Piciorgros GmbH * Germany
Conlusion:
The TETRA Performance is sufficient for the most SCADA Applications
TETRA can do Serial and IP Communication
With TETRA as a PMR Network, the user has full control of his Infrastructure (Power Supply, Antennas, Back Bone, …)
TETRA is the savest (ref.: Public Safety) existing wireless network
Existing Technologies to protect against Cyber Criminals
TETRA will be available at least for the next 10-15 Years
Piciorgros GmbH * Germany
Funk - Electronic Piciorgros GmbH
Claudiastr. 5
51145 Köln-Porz
Germany
www.piciorgros.com
www.TetraModem.com
Thank you very much for your interest in our Products