Archives

High performance HMI

The user interface must be intuitive and allow

operators to manage views dynamically and effi

ciently. A high-performance interface supports

situation awareness with how the information is

displayed. It supports abnormal situation han

dling through efficient navigation and the appli

cation of best practices in alarm management.

Attention to human factors

Just as manufacturing processes are designed

to be carefully controlled and manipulated to

achieve desired outcomes, high-performance

control rooms and operator stations must be

designed with operator performance in mind.

Operator competence and confidence

Operator training simulators ensure process

operator competence and confidence when deal

ing with normal production as well as unplanned

events. In today‘s business climate simulators

make even more sense due to the lack of experi

enced resources to instruct new, inexperienced

operators.

S+ Operations puts ABB’s four pillar approach

into action to improve the operator’s visibility

to plant performance while filtering out the

“noise” to lead operators to greater awareness,

faster response and better decisions.

The four pillars of operator effectiveness

ABB is at the forefront of operator effectiveness. To help customers reach the

optimal goal we have brought together the necessary technology and business

practices as four essential pillars:

Integrated operations and embedded functionality

Raw data and other input must be transformed

into actionable information in context with plant

equipment to promote better decision making.

The challenge is to provide seamless access

to multiple sources of information while being

careful not to overload the operator with irrele vant data.

High performance HMI

The user interface must be intuitive and allow

operators to manage views dynamically and effi

ciently. A high-performance interface supports

situation awareness with how the information is

displayed. It supports abnormal situation han

dling through efficient navigation and the appli

cation of best practices in alarm management.

Keeping the operator in focus

Improving operator effectiveness is fundamental to a plant’s performance.

However, with fewer plant operators, a generational shift in the operator

workforce, and increasing complexity and scope of plant operations, it is

becoming ever more challenging. ABB Ability™ Symphony® Plus, with its

intuitive, easy-to-use human machine interface (HMI), leads operators

to greater awareness, faster response and better decisions.

Process operators live under constant challenge.

The operator’s actions have a direct impact on

uptime, production output, quality, and safety.

However, operators are often hindered by a lack

of attention to human factors like; operator inter

face design, information flow and preparation

on how to handle abnormal situations.

S+ Operations HMI is designed to improve opera

tor effectiveness in every aspect involved: high

performance design, integrated operations,

embedded functionality, information manage

ment, alarm management, security, and sup

ported with a flexible, scalable fault-tolerant

design. Further, an extended operator workplace

console keeps the ‘operator in focus’ by providing

unparalleled operator ergonomics, control room

consolidation and a pre-integrated large screen

operator view display for clear and concise

plant-wide visualization.

Strengthen your resilience with a complete portfolio of cyber security services

ABB provides a range of cyber security services to support you on your cyber security journey.

Uniquely developed for industrial systems like yours, ABB Cyber Security Services mitigate cyber

risks by identifying potential threats, automating compliance efforts and defending against

cyberattacks.

ABB’s cyber security portfolio includes services and solutions to match your requirements.

These include:

Assess: A strong cyber security posture is important to defend against cyberattacks. ABB

Cyber Security Assessment services help you understand the strengths, weaknesses, gaps and

risks in your cyber security posture so that you can determine the right strategy for your

business.

Plan: Whether you need help implementing a cyber security control, making changes to your ar

chitecture, or writing a security policy, leverage ABB’s experience with industrial cyber security

and process to design your cyber security plan.The ABB ICS Cyber Security Reference

Architecture is a proven and consistent approach to planning, implementing, and deploying indus

trial control system networks using industry best practices and IEC standards. The Reference

Architecture establishes a “zone and conduit” approach which helps isolate potential cyber events

and mitigate impacts while enabling IoT and connections to cloud services.

Implement: In addition to basic controls, such as system hardening, applying security updates,

updating antivirus software and ensuring backup,a comprehensive asset inventory is critical to

manage your cyber security controls. ABB’s Asset Inventory helps you detect unauthorized changes

to your cyber security policy and computer settings so that you can take action to strengthen

your systems.

Do something rather than nothing.

Investing in cyber security is necessary to protectyour company’s future.  Companies that fail to ad

dress known risks are viewed poorly when cyber attacks expose lack of proper management.

Cyber security is not a onetime event, but an on going process.  To guide you on this journey, we of

fer a stepwise and practical service approach that lowers cyber risk by taking the necessary steps to

identify what must addressed, actively protect automation assets, detect security breaches, re

spond to cyberattacks and establish backup and recovery plans.

Detect and respond: Once you’ve implemented your cyber security foundation, depending on risk

factors and regulations, you may need to strengthen your cyber defenses with ABB ad

vanced cyber security services such as network and event monitoring.

ABB can help monitor your defenses on a 24×7 model to quickly alert you of any threat to your

production. When an abnormal event or malicious behavior is detected and alerted, ABB experts an

alyze the event and respond as needed.

In the event of a cyber security breach, ABBs experts spring into action and restore your produc

tion as quickly as possible. Afterwards, ABB provides an afteraction report and consults with

strategy to prevent future incidents.

An overview of the security features provided

with Symphony Plus:

• Detailed system monitoring and diagnostics

• Network protection with IPSec

• Host firewalls for servers and workstations

• Network loop protection in servers andworkstations

• Robustness tested products

• Network protection filters and storm protection for controllers and communication modules

• Detailed rolebased access control

• Fast operator log over

• HWbased access control for safety systems

• Digital signature to ensure data is kept unchanged after approval

• Advanced access control for secure interaction and inactivity logout

• Audit trail for logging of all userinitiated actions in a system

Overview of optional security features through our partners:

• Malware protection: Antivirus accomplished with McAfee End point Security on all Symphony

Plus servers and workplaces

• Malware protection: Allowlisting accomplished with McAfee Application Control.

• Backup and restore for disaster recovery

Symphony Plus gives you peace of mind

Peace of mind tends to come when you have less to worry about. And that is a fact when you oper

ate Symphony Plus. It is reassuring to know you have done all you can to protect your company’s

knowhow, ideas and operations.

ABB is engaged with the wider ICSCybersecurity community which includes security researchers

and analysts. There is an open channel of communication with the community and customer base

regarding cyber security issues. This may entail working with third parties specialized in security

assessment and penetration testing of ICS technologies. When a potential vulnerability is identi

fied or reported, ABB immediately initiates our vulnerability handling process. The goal is to pro

vide customers with advise for workarounds or mitigation strategies that minimize the potential

risk of a vulnerability as much as possible. These findings are then addressed by product develop

ment and made available to improve overall prod uct cyber security.

Occasionally these activities result in the need to publish an external Cybersecurity Advisory which

demonstrates part of ABB’s commitment to the user community in support of this critical topic.

Responsible disclosure is an important element in the chain of trust we work to maintain with our

many customers. The release of an Advisory provides timely information which is essential to help

ensure our customers are fully informed. Cybersecurity Advisories which are released can be

found on our public facing website here.

Secure by Default

The goal in this phase is to create default product installations and configurations that are more

resistant to attack, by reducing the attack surface (the number of points a hacker can attempt to

exploit). To accomplish this goal, software must be installed in its most secure configuration and

must stay that way until the customer takes informed steps to loosen it.

Symphony Plus is installed in a predefined way, which makes the process easy and reliable,

ensuring that settings are done in a consistent and repeatable way. Functions and features that

are not needed are disabled or not installed, and Windows Firewall is configured to only enable

necessary communication ports. Symphony Plus gives control engineers a unique opportunity to

manage access for each user. Access can be granted based on parameters such as who and

where the user is, what the user wants to do, and on which aspect object.

Secure by Deployment

The goal here is to ensure that the products can be installed, configured, operated and maintained

in a secure way. User documentation describes how to install and operate Symphony Plus

at the highest level of security. Documentation includes recommendations on how to build secure system

architecture using security zones and defense in depth. Security compliance project checklists

make sure that all important steps are taken during project execution to ensure a secure

deployment. Systems in operation are kept secure with monthly security patch updates and daily

anti virus updates.

Secure by Design

The goal here is to make sure that security bugs or vulnerabilities are not present in new software.

To accomplish this, cyber security must be a factor from the very start of product design. And through

all phases, from creating the specification, through writing the code, and testing the product.

A securebydesign philosophy manifests itself as security training, code reviews and walkthroughs,

threat analysis, and robustness testing of products.Security is integrated in ABB’s quality management

system. Formal threat analysis and threat modelling provide the basis for security

requirements and design principles for the system.

Security checkpoints at project gates ensure that security objectives are met.

One key element of this process is our independent robustness test lab, the ABB Device

Security Assurance Center, where our products are tested. This laboratory is run by dedicated

personnel who are not part of any product development team. They use several specialized

security testing tools, for example Achilles Test Platform and Nessus scanners.

In addition to our adoption of SD3+C Security Framework and extensive internal testing

performed by ABB’s Device Security Assurance Center (DSAC), ABB has embraced third party

security certification to IEC62443 standard by ISA Secure Certification Institute (ISCI),

Symphony Plus security features are designed to meet regulatory requirements and includes

features to help enable compliance such as user account management, rolebased access control,

user authentication, audit trail, etc.

Cyber security is embedded

in Symphony Plus

Cyber security is embedded in all phases of ABB’s system life cycle. Security for Symphony Plus

adheres to the SD3+C Security Framework (created by Microsoft) to en sure and improve security in

system components. This means that cyber security is addressed at each stage of our system

life cycle, from design and development to maintenance.

Secure by Deployment

The goal here is to ensure that the products can be installed, configured, operated and maintained

in a secure way. User documentation describes how to install and operate Symphony Plus

at the highest level of security. Documentation includes recommendations on how to build secure system

architecture using security zones and defense in depth. Security compliance project checklists

make sure that all important steps are taken during project execution to ensure a secure

deployment. Systems in operation are kept secure with monthly security patch updates and daily

anti virus updates.