This document discusses digital buildings and the concept of a "4th utility" network. It begins with an overview of business drivers for digital buildings such as cost savings, sustainability goals, tenant experience, and security. It then defines what a digital building is and discusses network convergence and the role of a common IP network, or "4th utility", in connecting building systems. The document outlines digital building network architectures including topologies and considerations for critical infrastructure. It also covers cybersecurity challenges and how network segmentation can help isolate systems while still allowing connectivity. Finally, it discusses models for converging building and IT systems networks.
TechWiseTV Workshop: Cisco DNA Center AssuranceRobb Boyd
Watch the replay: http://cs.co/9007Dbh39
In this deep dive you’ll learn how this comprehensive solution provides actionable intelligence to help you get to the right IT decision faster. And speed you on your way to an intent-based network. Learn how to gain end-to-end network visibility in one easy-to-use dashboard, make more sense out of data by eliminating noise and false positives, reduce downtime and troubleshooting time with rapid root-cause analysis and actionable insights and move beyond reactive monitoring with proactive and predictive analytics.
Resources:
Watch the related TechWiseTV episode: http://cs.co/9008DXCQi
TechWiseTV: http://cs.co/9009DzrjN
TechWiseTV Workshop: Cisco DNA Center AssuranceRobb Boyd
Watch the replay: http://cs.co/9007Dbh39
In this deep dive you’ll learn how this comprehensive solution provides actionable intelligence to help you get to the right IT decision faster. And speed you on your way to an intent-based network. Learn how to gain end-to-end network visibility in one easy-to-use dashboard, make more sense out of data by eliminating noise and false positives, reduce downtime and troubleshooting time with rapid root-cause analysis and actionable insights and move beyond reactive monitoring with proactive and predictive analytics.
Resources:
Watch the related TechWiseTV episode: http://cs.co/9008DXCQi
TechWiseTV: http://cs.co/9009DzrjN
The fourth-generation Cisco ASR 9000 Aggregation Services Routers series is our best yet. Not only does it sport high-density, 100-GE-port line cards; it also offers a flexible, pay-as-you-grow consumption model. Service providers can now use only the bandwidth they need and increase it at any time to meet traffic demands.
Learn the business and technical considerations of our latest ASR 9000, including:
• The pay-as-you-grow consumption model commercial terms
• Software license portability and permitting capacity
• Real-life customer case studies
Resources:
Watch the related TechWiseTV episode: http://cs.co/9008Dfyik
TechWiseTV: http://cs.co/9009DzrjN
TechWiseTV's Cisco Container Platform live workshop took place on July 17th. Explore new features of the Cisco Container Platform that make deploying and managing clusters more secure, versatile, and intuitive than ever before. This way, you can focus on running applications, not the underlying infrastructure.
Register now.
TechWiseTV Workshop: Digital Building SwitchesRobb Boyd
Replay the live event: http://cs.co/90078whdP
Review the Q&A from this event: http://cs.co/90078jrSS
Cisco Catalyst Digital Building Series Switches are new low-voltage Universal PoE switches, designed to converge LED lighting with HVAC, security, and other siloed systems used in commercial building applications. These switches are simple to install, safe from security threats typically associated with IoT endpoints, and, best of all, cost effective.
Our TechWiseTV webinar explores innovative solutions designed in collaboration with our partner community and how our enterprise customers are using these smart switches.
TechWiseTV Workshop: Cisco Digital CeilingRobb Boyd
Would you believe the latest technology transformation is happening right now, right above your head? OK, maybe not yet, but as you’ll hear in our latest TechWiseTV Workshop, the digital ceiling is coming, and the potential benefits for your organization are huge.
Attend the workshop (or replay): http://cs.co/9003B9lkR
Don't miss the video:
Watch the TechWiseTV Episode: http://bit.ly/DigCeiling
The 'Semiconductor Blues: http://bit.ly/semiblues
The fourth-generation Cisco ASR 9000 Aggregation Services Routers series is our best yet. Not only does it sport high-density, 100-GE-port line cards; it also offers a flexible, pay-as-you-grow consumption model. Service providers can now use only the bandwidth they need and increase it at any time to meet traffic demands.
Learn the business and technical considerations of our latest ASR 9000, including:
• The pay-as-you-grow consumption model commercial terms
• Software license portability and permitting capacity
• Real-life customer case studies
Resources:
Watch the related TechWiseTV episode: http://cs.co/9008Dfyik
TechWiseTV: http://cs.co/9009DzrjN
TechWiseTV's Cisco Container Platform live workshop took place on July 17th. Explore new features of the Cisco Container Platform that make deploying and managing clusters more secure, versatile, and intuitive than ever before. This way, you can focus on running applications, not the underlying infrastructure.
Register now.
TechWiseTV Workshop: Digital Building SwitchesRobb Boyd
Replay the live event: http://cs.co/90078whdP
Review the Q&A from this event: http://cs.co/90078jrSS
Cisco Catalyst Digital Building Series Switches are new low-voltage Universal PoE switches, designed to converge LED lighting with HVAC, security, and other siloed systems used in commercial building applications. These switches are simple to install, safe from security threats typically associated with IoT endpoints, and, best of all, cost effective.
Our TechWiseTV webinar explores innovative solutions designed in collaboration with our partner community and how our enterprise customers are using these smart switches.
TechWiseTV Workshop: Cisco Digital CeilingRobb Boyd
Would you believe the latest technology transformation is happening right now, right above your head? OK, maybe not yet, but as you’ll hear in our latest TechWiseTV Workshop, the digital ceiling is coming, and the potential benefits for your organization are huge.
Attend the workshop (or replay): http://cs.co/9003B9lkR
Don't miss the video:
Watch the TechWiseTV Episode: http://bit.ly/DigCeiling
The 'Semiconductor Blues: http://bit.ly/semiblues
DEVNET-1185 Business Transformation with Enterprise IOTCisco DevNet
Digital convergence is changing the face of the enterprise. Smart building innitiatives are driving yet (un)connected devices like lights and sensors to converge onto the IP network. This session will highlight this imminent disruption. We will discuss the technical and business drivers and also touch upon the challenges including connectivity, on-boarding, security and management that enterprises face and how enterprise networks will evolve to accommodate this growth. The session will also introduce the Enterprise IOT development kit which provides a simple way to onboard sensors onto the network.
Internet of Things - structured approach to the physical plant network - Rock...Carotek
The convergence of new technologies that securely connect plant information with enterprise systems can bring greater productivity, better utilization of assets, and improved decision-making to industrial companies. By bridging the gap between factory-level systems and enterprise systems, Rockwell Automation and Cisco can show how the connected enterprise offers ease of use, lower total cost of ownership, and improved operations.
http://www.controlscon.com Controls-Con is a bi-annual Smart Building and Building Controls Conference that takes place in Detroit, Michigan with a focus on building controls, building automation, and the IoT.
This fast-paced, education-packed event attracts more than 600 systems integrators, service technicians, building managers, contractors, engineers, end users, and more from throughout the United States and Canada. Controls-Con gives them the chance to explore the latest technologies and possibilities of Building Controls and Automation and includes a Building Automation Trade Show featuring the industry's top manufacturers, networking opportunities, educational sessions, and more.
Here you will find the PowerPoint presentation shown during the Business Track that took place on Day Two of Controls-Con.
Learn more about this smart building conference by visiting http://www.controlscon.com.
Subscribe to upcoming event news, industry updates, and more by visiting http://www.cochranesupply.com.
IoT Solutions for Smart Energy Smart Grid and Smart Utility ApplicationsEurotech
Smart Energy Smart Grid and Smart Infrastructure - Many Applications and Devices
An introduction to Eurotech' s IoT Field-to-Application Building Blocks for the Energy and Utility Industry
Carrying your Organisation and Technology into the Next DecadeEES Africa (Pty) Ltd
What does your organisation need to consider to ensure your company's technology enables efficiency and success to 2020 and beyond including the following:
Technology Trends
The 4th Utility
Network Infrastructure Required for the Technology of your Building
Data Usage and Connectivity
Increasing the Resilience of your IT System
Practical IEC 61850 for Substation Automation for Engineers and TechniciansLiving Online
COPY THIS LINK INTO YOUR BROWSER TO FIND OUT MORE: bit.ly/11AM1oL
Older (‘legacy’) substation automation protocols and hardware/software architectures provided basic functionality for power system automation, and were designed to accommodate the technical limitations of the technologies available at the time. However, in recent years there have been vast improvements in technology, especially on the networking side. This has opened the door for dramatic improvements in the approach to power system automation in substations.
The latest developments in networking such as high-speed, deterministic, redundant Ethernet, as well as other technologies including TCP/IP, high-speed Wide Area Networks and high-performance embedded processors, are providing capabilities that could hardly be imagined when most legacy substation automation protocols were designed.
IEC61850 is a part of the International Electro-technical Commission (IEC) Technical Committee 57 (TC57) architecture for electric power systems. It is an important new international standard for substation automation, and it will have a significant impact on how electric power systems are designed and built in future. The model-driven approach of IEC61850 is an innovative approach and requires a new way of thinking about substation automation. This will result in significant improvements in the costs and performance of electric power systems.
This workshop provides comprehensive coverage of IEC 61850 and will provide you with the tools and knowledge to tackle your next substation automation project with confidence.
WHO SHOULD ATTEND?
This workshop is designed for personnel with a need to understand the techniques required to use and apply IEC 61850 to substation automation, hydro power plants, wind turbines and distributed energy resources as productively and economically as possible. This includes engineers and technicians involved with:
Consulting
Control and instrumentation
Control systems
Design
Maintenance supervisors
Electrical installations
Process control
Process development
Project management
SCADA and telemetry systems
COPY THIS LINK INTO YOUR BROWSER TO FIND OUT MORE: bit.ly/11AM1oL
Dentro do webinar discutimos um pouco sobre como o IoT esta permitindo diversas mudanças e impactos relevantes dentro do setor energético e como as empresas tem que se mover para conseguirem atender aos novos requisitos visando um gerenciamento remoto, controle de ativos e manutenção preditiva!
Walking through the fog (computing) - Keynote talk at Italian Networking Work...FBK CREATE-NET
"Walking through the fog (computing): trends, use-cases and open issues"
Despite its huge success in many IT-enabled application scenarios, cloud computing has demonstrated some intrinsic limitations that may severely limit its adoption in several contexts where constraints like e.g. preserving data locally, ensuring real-time reactivity or guaranteeing operation continuity despite lack of Internet connectivity (or a combination of them) are mandatory. These distinguishing requirements fostered an increased interest toward computing approaches that inherit the flexibility and adaptability of the cloud paradigm, while acting in proximity of a specific scenario. As a consequence, the emergence of this “proximity computing” approach has exploded into a plethora of architectural solutions (and novel terms) like fog computing, edge computing, dew computing, mist computing but also cloudlets, mobile cloud computing, mobile edge computing (and probably few others I may not be aware of…). The talk will initially make an attempt to introduce some clarity among these “foggy” definitions by proposing a taxonomy whose aim is to help identifying their peculiarities as well as their overlaps. Afterwards, the most important components of a generalized proximity computing architecture will be explained, followed by the description of few research works and use cases investigated within our Center and based on this emerging paradigm. An overview of open issues and interesting research directions will conclude the talk.
http://www.controlscon.com Controls-Con is a bi-annual Smart Building and Building Controls Conference that takes place in Detroit, Michigan with a focus on building controls, building automation, and the IoT.
This fast-paced, education-packed event attracts more than 600 systems integrators, service technicians, building managers, contractors, engineers, end users, and more from throughout the United States and Canada. Controls-Con gives them the chance to explore the latest technologies and possibilities of Building Controls and Automation and includes a Building Automation Trade Show featuring the industry's top manufacturers, networking opportunities, educational sessions, and more.
Here you will find the PowerPoint presentation shown during the spotlighted Keynote and General Session that took place on Day One of Controls-Con.
Learn more about this smart building conference by visiting http://www.controlscon.com.
Subscribe to upcoming event news, industry updates, and more by visiting http://www.cochranesupply.com.
What is Your Edge From the Cloud to the Edge, Extending Your ReachSUSE
As companies continue to take advantage of the benefits of cloud – increased flexibility, speed of innovation and quickly responding to business demands, it is no wonder that they want to extend these benefits to the edge. But there are still a lot of questions.
The value proposition of enabling IP data networks with intelligent unified solutions. ICC Networking as the best software-driven solution to drive down the cost of connectivity while increasing network elasticity and performance.
The Internet-of-Things (IoT) is a upcoming field which aims to provided any time, any place, anywhere connectivity by seamlessly integrating devices with solutions. In this presentation we have shared some of the real time product design challenges with IoT. The presentation was done in the Electronics Rocks conference held at NIMHANS convention center, Bengaluru, India
Similar to Cisco Connect Ottawa 2018 Cisco digital buildings and the 4th utility w compucom case study (20)
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
How world-class product teams are winning in the AI era by CEO and Founder, P...
Cisco Connect Ottawa 2018 Cisco digital buildings and the 4th utility w compucom case study
1. Digital Buildings
& The 4th Utility
There has never been a better time to
make buildings smarter
Eric Thibault, CD, B.Eng., M.Sc.
Regional Director, Systems Engineering2 Oct 2018
2. Agenda
• Digital Building
• Business Drivers
• What It Is
• The 4th Utility
• Network Convergence, Network
Design & Cyber Security
• Success Story: CompuCom
• Business Objectives, Results & The
Journey
• Closing Thoughts
5. Real Estate Costs
• 2nd Largest Corporate Expense
after Salaries
• 40% Of Building Operational
Expense is “Keeping the Lights
On”
• Typical workstations are
unoccupied 60% of the time
• LED Lighting results in 50-90% less energy
consumption / Cost
• Occupancy-based Analytics increases space
utilization
• 10% average CapEx savings from converging
multiple Systems on a Single network
• Electrician wage rates
• Bending conduit
• Electrical code
• Structured cabling (UTP)
• Pull bundles
• Low-voltage DC PoE
How can Digital Buildings Help?
6. Sustainability
• 23% of all global Electricity usage
is from Commercial Bldgs
(~60% HVAC, 15% lighting)
• Vancouver Declaration on Climate
Change & Federal Sustainability
Development Strategy – Set
Important Goals to reduce GHG
• Fed Govt set 40% GHG reduction
objective for Govt Operations by
2030.
• PSPC/RPB made ‘’Greening of
Govt Operations’’ its #1 Priority
(BP)
• 5% Energy savings from Occupancy-based
HVAC operation
• LED Lighting results in 50-90% less energy
consumption
• Daylight harvesting
• Using Data Analytics on BMS, PSPC/ESAP
saved 24.5 GWh ($2.9M) across 40 Buildings
since 2015 with plans to expand to 57 later this
GFY.
How can Digital Buildings Help?
7. Tenant Experience
• Preference for open workspaces
that foster collaboration
• Demand for improved
experiences that also have an
impact on talent retention
Smart & Connected Workspaces are Flexible,
Interactive & Personalized and conducive to:
Collaboration, Productivity, Creativity
& Innovation
Health & Comfort
(e.g. HVAC Optimization)
How can Digital Buildings Help?
8. Physical & Cyber Security
• $420M Paid by a large retailer in
HVAC breach
• 15+ M exposed cyber assets in the
10 largest US cities
• OT devices have limited security &
crypto capabilities, prone to hacks
• ‘’It’s not a matter of IF, but a
matter of WHEN’’
Systems Convergence provides an opportunity
to improve BOTH physical & Cyber Security:
How can Digital Buildings Help?
Tenants Safety
(e.g. Emergency pathway lighting
for first responders)
Visibility into Bldg Systems traffic and attacks
Attack surface through Virtual Segmentation
Leverage IT’s 20+ years of Expertise to design &
implement Enterprise-grade Cyber Security
9. 9
Utilities
$3 (/ sft / yr)
Rent
$30 (/ sft / yr)
Payroll
$300 (/ sft / yr)
Area(s) of Impact:
• Energy
• Water,
• Waste
• Use of Resources
Area(s) of Impact:
• Space Use
• Asset Utilization
Area(s) of Impact:
• Employee
Wellness
• Productivity
• Innovation
Business Impact of Building Digitization
JLL’s 3-30-300 Rule
The 3-30-300 rule illustrates the average order of magnitude between a company’s costs for utilities, rent and payroll.
12. Building Systems Currently Siloed, Complex & Insecure
VAV
FCU
Heat
Pump
Chilled
Beam
Boilers
Chillers
BMS
AHU
Building Mgmt
IT Network Management
Facility Management
Maintenance Management
IP Telephony
Wireless
Lighting
Control
General
Lighting
Channel
Controllers
DSI/DALI
Interface
Occupancy
Detectors
Access
Control
Access
Control
IP Camera
CCTV
DVR
12
13. Simply put, its about:
1. Connecting The Unconnected in your
Buildings…
What does it mean to be a Digital Building?
2. Generating New Business Value
e.g. Cost, Comfort, Productivity, safety, etc.
Connectivity => Visibility => Data => Insight =>Automation & Optimization
15. • Just like Gas, Water & Electricity… The ability for data to ‘Flow’
between Building & IT Systems throughout the building over a secure
common IP network is critical to achieve the business outcomes
expected from Digital Buildings
• The 4th Utility is that Common Secure IP Network.
Why Do We Need a 4th Utility?
16. Building Applications & Analytics
(Light & temperature control, Energy Mgt, video
surveillance)
Building Endpoints
(Sensors, IoT Devices, Luminaires,
VAV, Badging, HVAC, Cameras, etc,)
Cisco Digital Building Architecture - A Converged Ecosystem
Secure IP Network Convergence for Full Network Innovation in Digital Buildings
Digital Network Architecture
(The 4th Utility)
(Switching, Routing, Mobility)
Security Automation Insights Analytics
Automation
Security
Policy based Configuration, onboarding
& management with APIC-EM
Device Profiling, authentication and
segmentation of IoT devices with
NaaS
A platform for Real-Time Analytics
across enterprise and IoT networks
‘’A Network that is Constantly Learning,
Adapting & Protecting’’
18. IP Convergence for Digital Building Technologies
Phone – TDM to IP
2005 Late 2000s 2010 20151995
Data
Network
IP Telephony Building Mgmt. Systems
using low-voltage PoE
IP Cameras IP Building Systems
on low-voltage PoE
OpEx
Physical Security to IP
BACnet to IP
Building Systems - Lighting
Experiences
Cloud
Management
and Analytics
Building Systems - Ventilation
Building Sensors
30W
30W
Cat5e
60W total
IEEE 802.3af: 15.4W -> 802.3at: 30W -> UPOE: 60W -> … 802.3bt: 90-100W of power
19. Opening a world of Building PoE Endpoints
IP Call Tower
IP Call Stations
Status Signs
Meeting Room
Nameplate
Temp Sensor
Ceiling Fans
Surveillance
cameras
HVAC VAV’s
Touchscreen PC’s
Curtain Motors
Blind Motors
Horns and SirensFacial
Recognition
Systems
Entry Barriers
And Turnstiles
Environmental
Sensor Hubs
Biometric
Door Locks
POE Displays
Badge readers
Power Meter
Access Points Light Fixtures
Base building
services
Workspace
Transformation
Tenant Access &
Security
Smoke alarm
21. The Catalyst Digital Building Series Switch (CDB)
Optimized and purpose-built for Low Voltage Building Deployments
Fanless,
Compact,
Rugged Design
Cisco UPOE
and PoE+ options
Low Voltage &
Plenum Space
Compliance
Power Efficient
(Idle & ~4W
standby)
Ceiling and
Rack Mountable
High Temperature
Rating (50 deg C)
10 Year
System Life
Optimized for lighting
§ Power efficient (low standby)
§ Plenum ”UL” Rated
Sturdy reliable design:
“built to last”
§ Passive cooling
§ Long MTBF
Simplified and Secure ceiling and
rack mounting
Innovative Design
Cisco UPOE and PoE+
innovation
§ Perpetual PoE
§ Fast PoE
Optimized for IOT
connectivity
§ CoAP protocol support
§ Energy monitoring
Cisco IOS Security
Enhanced for IoT
Day 0 out of band
management
§ USB and Bluetooth
connectivity
§ Configure and diagnostics
Available on iOS and Android
Web Management
§ Image upgrades
§ Diagnostics and alerts
Simplified OT
23. PoE Innovation for the Digital Building Switches
Full UPOE
§ Increased PoE
Budget: 480W of
UPOE (8 x 60W)
§ Fanless, silent
reliable operation with
increased MTBF and
system life (10 yrs)
Perpetual UPOE
§ Provides non-stop
UPOE power
§ Switch can continue to
provide power during
configuration and reboot
Fast UPOE
§ Restores power to
powered device within
5 secs of
power resumption
…
Wall Switch
IP Video
Surveillance
Camera
Dense Sensor
Network
(Light, Motion,
CO2/CO, etc.)
Commercial
LED PoE
Fixtures
Building Mgmt
(Connected
HVAC)
Digital Building Applications
2-Event Classification
§ Simplified power
negotiation without LLDP
§ Physical layer negotiation
< 1s based on class/type
30W
30W 60W total
Cat5e
PoE Delivers DC Power and data over a Standard Copper Ethernet Cable(RJ45), supporting an
Expanding Ecosystem of PoE devices
25. 25
Converged Digital Building Architecture
Firewall
(Active)
Firewall
(Standby)
Building
Security Center
External
Connectivity
Core and
Distribution
Building Firewalls
• Inter-zone traffic segmentation
• ACLs, IPS and IDS
• VPN Services
• Portal and Remote Desktop Services proxy
Internet
Data Center
Primary WLC
Secondary WLC
Wireless LAN
Controller (WLC)
Link
for Failover
Detection
ISE Policy Service Node
Layer 2
Access
CENTRALIZED
Operations Center
Access
SAN
Servers Servers
Storage
DISTRIBUTED: STAR DISTRIBUTED: DAISY CHAIN DISTRIBUTED: RING
26. Area 1 Area 2
Centralized Deployment: Fixtures connecting directly to C9300
Aggregation/Access
(L2/L3)
Core
(L3)
SW-1 SW-2
9500 9500
40G/10G
9300 Stack
Floor Ceiling
§ LED lightings fixtures connect directly
to UPOE Cisco Catalyst 9300’s in Wiring
Closet
§ High Resiliency due to high-availability
features with the C9300 Stack ex. Cisco
StackPower
§ Long Cable Runs per Light (fixture to
switch stack in IDF)
§ Centralized Heat Dissipation (in the IDF)
as AC-DC conversion happens at the
switches
26
27. Access (L2)
Aggregation
(L2/L3)
Core
(L3)
SW-1 SW-2
9500 9500
40G/10G
9300 Stack
CDB-8U CDB-8U CDB-8U CDB-8U
Area 1 Area 2 Area 3 Area 4
Distributed Deployment: CDBs in Star Topology
Plenum Space
• LED lightings fixtures connecting to
CDB’s Deployed in the Plenum Space
• Shorter Cable Runs per Light
• CDB switches connect to Cisco Catalyst
9300 Stack in the Aggregation
• Recommendation: Divide lights across
adjacent CDB switches to avoid complete
blackout on CDB failure
• Less Resiliency: If power to CDB fails,
lights connected to it will turn off
• Distributed Heat Dissipation
27
28. Access (L2)
Aggregation
(L2/L3)
Core
(L3)
SW-1 SW-2
9500 9500
40G/10G
9300 Stack
CDB-8U CDB-8U CDB-8U CDB-8U
Area 1 Area 2 Area 3 Area 4
Plenum Space
Distributed Deployment: CDBs in Daisy Chain Topology
• Even Shorter Cable Runs compared with
Star Topology
• Recommendation: Max 5 Switches
recommended in Daisy Chain, considering
overall 1G pipe
• Possible Impact to Lighting Control
Traffic in case one of the switches in daisy
chain goes down
• Power Redundancy same as in Star
Topology
28
29. Access (L2)
Aggregation
(L2/L3)
Core
(L3)
SW-1 SW-2
9500 9500
40G/10G
9300 Stack
CDB-8U CDB-8U CDB-8U CDB-8U
Area 1 Area 2 Area 3 Area 4
Plenum Space
Distributed Deployment: CDBs in Ring Topology
• Even Shorter Cable Runs compared with
Star Topology
• More Data Redundancy (due to alternate
path) compared with Daisy Chain Topology
• Works with STP
• Max 5 Switches recommended in a Ring
• Power Redundancy same as in Star
Topology
29
32. Securing these Devices is Hard
The Network Needs to Offer an Extended Trust Domain, with Scalable Device Classification and Policy
Sensors
Badging
System
HVAC
Lighting
Security
Cameras
Fire Alarm
System
Unsophisticated Devices
§ Limited security & crypto capabilities,
prone to hacks
Endpoint Identity
§ No support for standard authentication
mechanisms
Policy Ownership (IT/OT/Mfg)
§ Who defines policy? Who holds
liability?
Bonjour
Audio
Video
Health-
care
Printers
Laptop
s/Pcs
Mobile
ITUsers
Non-IT
IoT Devices on the Corporate Network Introduce Additional
Security Challenges
32
34. The Dilemma…
Building Systems & IT Systems need to be Inter-Connected to get
the Digital Building Benefits…
… And they also need to be Isolated from each other to minimize
cyber security risk
35. See everything
• ISE
• Stealthwatch
• Encrypted Traffic
Analysis (ETA)
Visibility
Stop the breach
• NGFW/NGIPS
• AMP and Threat Grid
• Umbrella
• ISE
Threat Protection
Reduce the attack surface
• DNA and SDA
• ISE
• NGFW
Segmentation
Integrated
The Answer is …
36. 36
Network Segmentation
A Single Physical Network that can Automatically Identify, Classify & Segment
ALL IT & Building Systems connected to the 4th Utility
37. 37
DNAC Virtual Networks – Macro Segmentation
Isolate the “Things” using an
independent “Virtual Networks”
39. 39
Segmentation is a Powerful Security Tool
“Network segmentation… is one of the most effective
controls an agency can implement to mitigate the second
stage of a network intrusion, propagation or lateral
movement”
“Good network and role segmentation will do wonders for
containing an incident.”
“Effective network segmentation… reduces the extent to
which an adversary can move across the network”
“Segregate networks, limit allowed protocols usage and limit
users’ excessive privileges.”
2014 DATA BREACH
INVESTIVATIONS REPORT
The Untold Story of the Target Attack
Step by Step
Aortato Labs, August 2014
41. Building Systems Convergence Models
No Convergence (No Benefits)
Building
Systems
IT Systems
IT-Only
Converged
Network
Weather,
Cloud Svc,
Systems
Mgt, etc.
Single Highly
Secure, Resilient
internet access
control point
Internet
? ? ? ? ? ?
42. Building Systems Convergence Models
Full Convergence (Maximum Benefits)
Weather,
Cloud Svc,
Systems
Mgt, etc.
Internet
Building
Systems
IT Systems
The 4th Utility
Single Highly
Secure, Resilient
internet access
control point
Ideal for Tenant-Owned (or single Tenant Leased) Buildings
43. Building Systems Convergence Models - Alternatives
Dual Islands (Partial Benefits)
Weather,
Cloud Svc,
Systems
Mgt, etc.
Building
Systems
IT Systems
The 4th Utility
Two Highly
Secure, Resilient
internet access
control pointConverged
IT Network
Internet
Compromise for Leased Buildings
44. Building Systems Convergence Models - Alternatives
Bridged Dual Islands (Maximum Benefits)
Weather,
Cloud Svc,
Systems
Mgt, etc.
Building
Systems
IT Systems
The 4th Utility
Two Highly
Secure, Resilient
internet access
control pointConverged
IT Network
Internet
Ideal for Multi-Tenants Leased Buildings
MOU
45. Matt Good, CCIE# 7860 Emeritus
Director, Digital Buildings & Workplaces
Success Story:
CompuCom’s
Digital Building
61. VALUE
25% 75%
Lifecycle
cost
Building and Workplace
Design Current Entry
IT Network Design
Current Entry
Too Late!
Digital Building,
Workplace & IT = 4th
Utility
OperationConstructionDesignStrategy
Timing is Everything
62. Closing Thoughts…
1. It’s not Sci-Fi!
2. Work Together (IT, Real
Estate, Industry)… Early!
3. Future proof your buildings
with a 4th Utility