Industry 4.0 with Apache
Since the introduction of programmable logic controllers in the production industry in the early 80s, they have been the core of almost every piece of production machinery.
While first PLCs were usually stand-alone controllers. These were soon extended by the ability to talk to other controllers of the same type via proprietary protocols. After that came first computer based control systems, which were able to monitor and parametrize these controllers. Usually however in order to do this, a company needed to use the control system that was provided by the PLC vendor. This has tied companies to stick to the company they decided to use the PLCs of. Making it almost impossible to switch to another vendor.
In the last 20 years in the IT industry, the concept of Open-Source has come up and has more and more proven to be the engine of great innovation. Most of the biggest changes in how we create modern IT systems is a result of this.
Unfortunately the production industry has been missing a lot of this innovation. Only a small number of companies today use Open-Source software in their production systems.
Benefits of using Open-Source
The benefit of using Open-Source could be huge:
If a company had decided to use PLCs and control systems of a certain vendor, it is almost impossible to change this decision. This reduces the options available when adding new machinery or replacing existing ones.
Technologically speaking, also the company can only use the options and solution it’s vendor is able to provide.
Current control systems are usually based on the concept of "backup systems". If the main control system fails, all activity is switched to the standby system.
When using modern public- or private cloud systems, there is no need for a backup system, because the cluster is designed in a way that it can live with the failure of most of its hosts before loosing the ability to function.
From the perspective of designing and scaling the IT infrastructure: If a control system was designed to handle the current size of plant, for cost reasons the IT infrastructure isn’t designed to handle much more than that. Now if the plant should be extended in the future, extending it’s control-systems IT infrastructure would probably result in replacing this with a bigger system.
By utilizing modern virtualization frameworks, extending the existing cloud solution, would only require adding more compute resources, by adding more systems to the cluster and it should be possible to extend the existing system without problems. If the company decided to utilize a public cloud provider, it makes things even simpler, as it would only require booking more resources.
This is probably one of the most concerning aspects of modern production control systems. Right now, in order to run these systems, a lot of the most popular solutions require companies to run not up-to-date systems. If applying all updates, the company is risking either loss of commercial support or even loss of functionality. Therefore an attacker can probably be certain to be able to exploit certain vulnerabilities just by knowing the type and version of the used control-system.
Well the probably biggest and most obvious cost-reduction factor is definitely, that if the software you are using is fee, you will not have to pay for it.
Additionally, the ability to get the computing power of one insanely expensive system by using a cluster of cheap commodity systems, helps saving a lot of money.
Being freed of the requirement to stick to the products of one vendor alonw anf to be able to choose the technology and the vendor of used systems freely will definitely also reduce costs.
Options to communicating with PLCs
In general there are two options for communicating with industrial PLCs:
Using a protocol converter
Hardware protocol converter
Software protocol converter
Using a driver for direct communication
Well protocol converters are all software in the end, but while a "hardware converter" is usually a closed hardware box that runs some sort of software, a "software converter" is usually an installable service or program that runs on a host system.
In both cases the configuration of the protocol converter tells the system which information to get and how to make that available in another protocol. It usually doesn’t allow full access to all information available in a PLC, but only the ones the adapter is configured to make available. Here, there is a big trade-off. If a system should be used in the most versatile way, also the most information has to be made available. Even if most of this information is never needed. Limiting the system only to the needed information, greatly reduces the systems versatility.
Another disadvantage is a slightly increased latency when making information available. This is due to the fact that the protocol converter has to send a request to the PLC to get information and as soon as this information is returned to the converter this new information can only be passed on in the other protocol in the next request.
The usage of a protocol converter is probably the ideal solution, if all a company wants to do, is integrate PLCs communicating in one protocol into an existing system using a different protocol. In case of integrating open-source software, this usually is a protocol converter that converts into one of the well established open source protocols. The most widely used protocol here currently will probably be
The option that provides the most possibilities is directly communicating with the PLCs. Here the system can always directly access only the exact information required and can do this without any detours that would add latency.
There is a wide variety of drivers available, that generally would allow writing software that directly accesses PLCs. Unfortunately most of these are commercial drivers.
While there is a number of open-source drivers, most of these have licenses that render them useless for commercial applications. Either they are licensed with restrictive licenses such as GPL or they are dual licensed with a restriction to non-commercial usage for the open-source version and the requirement to purchase a commercial license for commercial use-cases.
The APIs of all drivers usually differs quite greatly from each one another. This makes it extremely difficult to create solutions that work with a variety of PLCs and protocols.
This is where
Apache PLC4X (incubating) comes in. It is the goal of
PLC4X to provide a suite of drivers for communicating with industrial PLCs using a variety of protocols, but with a shared API and a license model, that is suitable for creating commercial applications.
PLC4X forms the missing link between the automation and the open-source world. Making it possible to use the entire stack of open-source technologies to create a new generation of open industrial control systems.