The need for more bandwidth, lower latency, greater security, and scalability are driving distinct changes to the networking equipment and tools used by operations and IT.
The digitization of industry means several things—from less downtime and better machine/device/system analytics to greater remote access for diagnostics, troubleshooting, and repair. And while numerous technologies underlie the move toward industrial digitization, perhaps the most important component are the industrial networks that enable the connectivity and transmission of data needed for industry’s digital transformation.
Amid all the changes taking place in the drive toward greater digitization, three key trends stand out, according to Paul Didier, IoT (Internet of Things) solution architect at Cisco: the shift from proprietary to standard networks (i.e., Ethernet), the use of zero-trust security models, and software-defined networks (SDN).
During his presentation of Rockwell Automation Fair 2021, Didier said industry is “in the process of moving from siloed networks and connectivity-driven, end-to-end manually operated networks to controller-based policy automation and service-driven networks designed to align with business objectives.” With the goal being to achieve “intent-based networks that continuously align to dynamic business needs across all domains of a business.”
To reach these goals, Didier said digitization demands a new class of networking. These demands include:
Learn how Single Pair Ethernet and Ethernet-APL are changing the game for industrial Ethernet.
“All of these [network] demands drive the need for IT/OT collaboration,” Didier said.
In response, Cisco and Rockwell Automation have been working together on the Stratix line of managed switches, particularly the new 5800 series. Part of this collaborative work involves the expansion of Cisco’s IOS (Internetwork Operating System) to IOS-XE. According to Cisco, IOS-XE is designed as single OS (operating system) for enterprise wired and wireless access and WAN to reduce network complexity.
This represents “a fundamental shift of our OS to a software-defined model,” said Didier. “It (IOS-XE) has numerous cybersecurity capabilities built in to provide a playbook for IoT success today and moving forward with 5800 series.”
Features of the Stratix 5800 series switch include:
Didier explained that Cisco’s Cyber Vision sensor agent collects data from all ports and analyzes the network traffic to determine what kinds of devices it originates from, who and what devices it’s communicating with, and the type of protocol being used. “It’s a tool that tells you what’s on the network and who is talking to whom,” he said. “It can passively or actively probe a device and helps lock down what’s going on in the network to achieve a zero-trust model and provide information for SIEM (security information and event management).”
Zero trust basically means that devices, users, and applications on the network should be validated and only talk to other systems on the network that they’re supposed to. “It secures all users and application connections and limits the impact from any device that may be affected by malware,” said Didier. Cisco Secure Zero Trust provides visibility as to who and what’s on the network and enables segmentation to shrink zones of trust and grant access based on least privilege and containment.
While an important component of digital transformation, SDN is not as prevalent yet as the use of Ethernet of zero-trust security. Didier said SDN was originally designed to make things easier for IT in terms of automating the process of adding and configuring new devices for the network.
“We have a handful of customers working with this now, but there are still concerns that these tools will operate as expected and not interfere with production operations,” he said.
One reason for this caution around SDN is that operations personnel often don’t have access to IT tools for network management, said Didier. “They typically have poor visibility into the health of the network, which leads to uncertainty about a network outage being caused by network or control system issues.”