Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
DS Agile v5.1
WIDE-AREA AUTOMATION
STANDARDISATION
CUSTOMER BENEFITS
Scalable solution
High level of standardisation
IEC 61850 inter-operability
NERC-CIP compliant
cyber-security
Reliable redundant
architectures
Wide-area automation
Global teams for project
delivery and support
COMPLETE RELIABILITY
The DS Agile digital control system
provides the ultimate reliability via fully
redundant architectures, like Alstom's
Self-Healing Ring and Dual-Homing
Star, or the recently developed
interoperable Parallel Redundancy
Protocol (PRP "RedBox'). Thanks to
the wide range of Alstom switches, the
possibility of an outage is practically
eliminated.
Grid-SAS-L3-DS_Agile_v5.1-2879-2014_09-EN. Information contained in this document is indicative only. No representation or warranty is given or should
be relied on that it is complete or correct or will apply to any particular project. This will depend on the technical and commercial circumstances. It is provided
without liability and is subject to change without notice. Reproduction, use or disclosure to third parties, without express written authority, is strictly prohibited.
Alstom contributes to the protection of the environment. This leaflet is printed on environmentally friendly paper.
CONTROL
One of the main functions of the DS Agile is to concentrate and process data:
the information can come from a variety of sources, both analog and digital. For
example, when re-using legacy equipment, analog data can be acquired directly from
current and voltage transformers and digital data can be acquired over serial
communica-tions links or via hardwired links.
DS Agile manages many types of data from the substation's primary and secondary
equipment such as: tapchanger and switchgear positions, control signals,
measurement values, disturbance records, settings, etc. Each item of qualified data is
uniquely referenced in the system configuration tool in order to ensure full consistency
of the information, as well as allowing it to be re-used in other parts of the system.
AUTOMATION
An operator can configure specific
control sequences or automation
schemes, across one or more sites (e.g.
automatic reclosing, System Integrity
Protection Schemes (SIPS), load
shedding). Such applications can be
based on local or remote data. Similarly,
the outputs can perform local or remote
actions. Programmable logic can be
implemented using either
Programmable-Scheme Logic (PSL) or
Programmable-Logic Controller (PLC)
methods. PSL is used for fast
automation applications and it is
available within the C264 bay controller.
Since PSL is event-driven, there is no
cycle time. The optional PLC tool is fully
compliant with IEC 61131-3 and it can
be used for complex or sequential
automation applications, not only at bay
level (in the C264) but also at intersubstation (or inter-system) level
through the programmable Wide-Area
Control Units (WACU A400 series).
DS Agile v5.1 provides additional in-built
libraries of automation functions,
including functions for feeder protection,
automatic reclosing and voltage
regulation of parallel transformers.
RELIABLE
System availability is a function of the reliability of each individual component and the
architecture in which they are combined. DS Agile v5.1 accommodates a variety of
redundancy solutions, ranging from the switch redundant power supply to the
complete redundancy of each component, including configuration database
redundancy.
EXTENDABLE
A DS Agile solution can be contained
within a single standard panel or be
geographically distributed, depending on
the application. The DS Agile system
architecture is structured in a series of
hierarchical levels. Each level maintains
a given performance in terms of
transmission time, dependability and
automation independently of the other
levels. It therefore ensures that the
system can be extended consistently and
securely.
STANDARDISED
The combination of modern, multifunctional and highly programmable
IEDs together with fast communications
greatly improves the capabilities for
producing a standard bay. A standard
bay is a product made of standard
hardware, software and engineering
libraries (automation, graphical
representations, wiring interface and IED
composition). It can then be customised
to the exact requirements of the project
through changes to the database.
A DS Agile solution can be engineered from a few integrated components or have its
functions split into several components, thus offering a balance between functional
availability, cost and compactness.
In addition to the self-checks carried out by each component, DS Agile v5.1 offers a
variety of system test modes such as 'device maintenance management' and 'data
forcing' to further increase the overall availability.
COMMUNICATIONS PROTOCOLS
Physical communications between components are based on both ethernet and serial
RS links in order to cope with different applications such as the reuse of existing
devices and the integration of third-party equipment. DS Agile v5.1 supports the most
extended serial protocols (T103, DNP3, and MODBUS) in order to interface with
existing devices and it can be fully integrated within a remote control scheme. When
using MiCOM Alstom devices, the same link can be used to retrieve settings or
disturbance records. Communications with remote control centres is possible through
IEC 60870-5-101, IEC 60870-5-104 and DNP3, or other older protocols on demand.
State-of-the-art communication technologies based on client-server and peer-to-peer
links such as IEC 61850 is standard across the whole architecture of the DS Agile
system. It relies on fast ethernet networks and offers new perspectives in terms of
distributed functions, performance and flexibility. DS Agile enables innovative
automation schemes and the flexible addition of new application clients.
SIMPLE ARCHITECTURE
Printer
Maintenance
and configuration
COMPLETE ARCHITECTURES
DS Agile C264
BCU
H35x
switch
DS Agile
A30x
Gateway
+ H15x switch
T1000
switch
T1000
switch
H38x/H36x
switch
DS Agile
C264 BCU
MiCOM P40
Protection relays
DS Agile OI
+ H18x/H16x
switch
DS Agile A30x
Gateway
+ H18x/H16x switch
H-SERIES SWITCHES
Alstoms H-series ethernet switches use a combination of advanced redundancy
protocols and fibre-optic connections to ensure the reliability, availability and
dependability of substation communications networks - All this while maintaining the
flexibility of being able to connect to standard ethernet networks and thus ideal for
substation refurbishment or upgrades.
They are available as standalone,
embedded and PCI card (for integration
into a PC) versions.
New additions to Alstom Grid's
H-series range for DS Agile v5.1
include GOOSE switches and Parallel
Redundancy Protocol (PRP) switches,
also called "RedBox".
DS AGILE GATEWAY
DS AGILE HARDENING
Hardening aims at reducing the number of possibilities a threat
has to disrupt or take control of the DS Agile software.
OS Upgrade
The Windows PC in DS Agile are updated to the latest security
patch set provided by OS vendors before the DCS final testing.
System Hardening
Operator Interface (OI) and SCADA Gateways
The OI and Gateway are installed on Windows 7 PCs.
Unused USB ports are disabled in the BIOS or Windows.
Unnecessary user accounts and daemons / services are
disabled.
Many registry keys are setup to increase security and the
audit and password policies are set.
C264
All unused protocols are disabled; the C264 controller has
no USB port.
There are no backdoors or hardcoded user accounts that
give write access to the device.
A user session is automatically ended after a settable time
out.
Secure Protocols for SCADA link
The SCADA link is secured via the VPN feature of the router /
firewall. The VPN can transport IEC-60870-5-104 as well as
serial protocol IEC-60870-5-101.
Secure Maintenance Protocols
In addition to the standard maintenance protocols (such as
http, ftp and telnet), secure protocols are implemented to
increase confidentially and integrity (Ftps or sftp, rdp over
https).
Software Integrity
All Alstom software is free of malware and digitally signed to
guarantee authenticity and integrity at installation time.
Authentication, Authorisation, Accounting (AAA)
Authentication
All users are required to authenticate for interacting with any IED.
Users have individual accounts and passwords (no shared accounts).
Password complexity is reinforced and its storage strictly managed.
Auditability
Router / Firewall securing communication with remote centres
and bringing a single mandatory path to the DCS LAN
MALWARE PREVENTION
Anti-virus
Alstom Grid can also provide you with:
An antivirus can be installed at the customer request on each Windows PC.
However, antiviruses have some drawbacks, like the need for regularly updating the
malware signature database or the consumption of CPU and memory resources of
the PC, thus this solution is less recommended for PCs running "real-time"
applications such a Gateway or HMI.
When it comes to protecting and controlling your critical assets, good products are not enough.
On top of our excellence in state-of-the-art products, Alstom Grid can also provide you with:
Strong systems design and manufacturing
Highly experienced project execution teams located worldwide
Support and advice to make existing installations evolve
Long-term maintenance, refurbishment and asset life-extension
Technical training programs
After-sales services with worldwide regional coverage
Grid-SAS-L3-DS_Agile_v5.1-2879-2014_09-EN. Information contained in this document is indicative only. No representation or warranty is given or should
be relied on that it is complete or correct or will apply to any particular project. This will depend on the technical and commercial circumstances. It is provided
without liability and is subject to change without notice. Reproduction, use or disclosure to third parties, without express written authority, is strictly prohibited.
Alstom contributes to the protection of the environment. This leaflet is printed on environmentally friendly paper.