Abstract image of a woman sitting on books and studying on a laptop

You name it, we analyze it

Download as PPTX, PDF
Jim Gilsinn, profile picture
Jim Gilsinn

The document discusses the analysis of industrial network types and their performance metrics, specifically focusing on publish/subscribe and command/response communication methods. It highlights the importance of metrics such as cyclic frequency variability, latency, and network roundtrip delay in performance testing. Additionally, it proposes steps for enhancing traffic stream processing and developing better coding practices while inviting contact for further inquiries.

Technology
1 of 12
Downloaded 10 times
1
2
3
4
5
6
7
8
9
10
11
12
You Name It, We Analyze It! Jim Gilsinn Kenexis Consulting Corporation You Name It, We Analyze It! 1
Industrial Network Types & Metrics: Publish/Subscribe • Publish/subscribe or peer-to-peer communications • Main performance metric: Cyclic frequency variability/jitter • Real-time EtherNet/IP™ uses publish/subscribe • Requested/Accepted Packet Interval (RPI/API) • Measured Packet Interval (MPI) You Name It, We Analyze It! 2
Industrial Network Types & Metrics: Publish/Subscribe Subscriber TSub_Com_Init Publisher TPub_Com_Init TPub_1 TPub_2 TSub_M . . . • Difference between TPub_Com_Init & TSub_Com_Init is network roundtrip delay • TPub_Com_Init, TSub_Com_Init not important • Variability in TPub much more important • Theoretically, TPub doesn’t need to match Tsub TPub_N-1 TPub_N You Name It, We Analyze It! • In production systems, they are the same 3
Performance Testing Methodology: Performance Metrics • Command/response or master/slave communications • Main performance metric: Latency • Large numbers of protocols use this • Most (All?) PC-based server/client protocols – HTTP(S), (S)FTP, etc. • Most industrial protocols – Modbus/TCP, Profinet, Ethercat, etc. You Name It, We Analyze It! 4
Industrial Network Types & Metrics: Command/Response Commander TCom_Delay_1 Responder TRes_1 • Difference between TCom_Delay & TRes is network roundtrip delay • Latency in TCom & TRes important TCom_1 TCom_Delay_2 TRes_2 TCom_2 You Name It, We Analyze It! 5
Isolating Traffic Streams • Isolating traffic streams can be tricky • 10’s – 100’s of traffic streams in production environment • Your Wireshark Fu must be strong! • Usually requires additional post-processing • Multiple streams can exist between same devices You Name It, We Analyze It! 6
Isolating Traffic Streams • Traffic pairs • • • • Source IP/MAC address Destination IP/MAC address Source TCP/UDP port Destination TCP/UDP port • Publish/Subscribe • Communication stream ID • Sequence number (optional) • Command/Response • Command message/field • Response message/field • Message ID (optional) You Name It, We Analyze It! 7
Test Time vs. Packet Interval Measured Packet Interval (ms) ~62 sec test Mean MPI = 2ms Min ~ 1.2 Max ~ 2.9 Test Time (s) You Name It, We Analyze It! 8
Time Plot for Command/Response Regular Pattern to Delayed Packets Regular Pattern of Minimal Delayed Packets You Name It, We Analyze It! 9
Command/Response Timing Plots • Quick succession of command/response packets • Minimal delay in command/response sequence • Apparently large delay in a single packet • Example: Rockwell tag reads Delay Until Next Time Sequence Quick Succession Read Commands You Name It, We Analyze It! 10
Next Steps • Streamline traffic stream processing • Develop better command/response code • Build more mathematical statistical models • Add graphical modeling of time & frequency domain • Add more industrial protocols and obtain example files • • • • • Modbus Profinet DNP3 61850 And others… You Name It, We Analyze It! 11
Questions • Contact Me • • • • • • Jim Gilsinn 301-706-9985 or 614-323-2254 jim.gilsinn@kenexis.com Twitter – @JimGilsinn LinkedIn – http://www.linkedin.com/in/jimgilsinn/ SlideShare – http://www.slideshare.net/gilsinnj You Name It, We Analyze It! 12

More Related Content

PPTX
ICS Performance Lab
Jim Gilsinn
 
PPTX
Network Security: Protecting SOHO Networks
Jim Gilsinn
 
PPTX
Spirent: The Internet of Things: The Expanded Security Perimeter
Sailaja Tennati
 
PDF
Spirent Accelerating SDN and NFV Deployments
Sailaja Tennati
 
PPT
Chapter12
Muhammad Ahad
 
PDF
Stinson post si and verification
Obsidian Software
 
PDF
Production Ready Microservices at Scale
Rajeev Bharshetty
 
PPT
Time Critical Networks
Lars Bröhne
 
ICS Performance Lab
Jim Gilsinn
 
Network Security: Protecting SOHO Networks
Jim Gilsinn
 
Spirent: The Internet of Things: The Expanded Security Perimeter
Sailaja Tennati
 
Spirent Accelerating SDN and NFV Deployments
Sailaja Tennati
 
Chapter12
Muhammad Ahad
 
Stinson post si and verification
Obsidian Software
 
Production Ready Microservices at Scale
Rajeev Bharshetty
 
Time Critical Networks
Lars Bröhne
 

What's hot (20)

PPTX
Protecting Your IP with Perforce Helix and Interset
Perforce
 
PPTX
Free training on NCM - Discovery & Disaster recovery
ManageEngine, Zoho Corporation
 
PPT
Validating Next Generation CPUs
DVClub
 
PDF
Understanding Hacker Tools and Techniques: A live Demonstration
EnergySec
 
PPT
Chapter08
Muhammad Ahad
 
PDF
Daniel Cross, Electronics Engineer
Daniel Cross
 
PDF
HIS 2015: Prof. Mark Little - Open Source Challenges in the Enterprise
AdaCore
 
PPTX
Network and server performance monitoring training
ManageEngine, Zoho Corporation
 
PDF
Securing your telco cloud
OPNFV
 
PDF
Embedded Webinar #17 "Low-level Network Testing in Embedded Devices Development"
GlobalLogic Ukraine
 
PDF
IEEE Buenaventura cs Chapter March 9 2016 v4
Sailaja Tennati
 
DOC
sree profile
srihari p
 
PDF
Come See What’s Cooking in My Lab
EnergySec
 
PDF
The Cortex-A15 Verification Story
DVClub
 
PPT
Vp ns
Ayano Midakso
 
PDF
Securing NFV and SDN Integrated OpenStack Cloud: Challenges and Solutions
Trinath Somanchi
 
PDF
Enterprise Network Monitoring Software by ServicePilot
ServicePilot
 
PPT
Virtual Private Network
Greater Noida Institute Of Technology
 
PPT
DHS ICS Security Presentation
guest85a34f
 
PPTX
Software Defined Network - SDN
Venkata Naga Ravi
 
Protecting Your IP with Perforce Helix and Interset
Perforce
 
Free training on NCM - Discovery & Disaster recovery
ManageEngine, Zoho Corporation
 
Validating Next Generation CPUs
DVClub
 
Understanding Hacker Tools and Techniques: A live Demonstration
EnergySec
 
Chapter08
Muhammad Ahad
 
Daniel Cross, Electronics Engineer
Daniel Cross
 
HIS 2015: Prof. Mark Little - Open Source Challenges in the Enterprise
AdaCore
 
Network and server performance monitoring training
ManageEngine, Zoho Corporation
 
Securing your telco cloud
OPNFV
 
Embedded Webinar #17 "Low-level Network Testing in Embedded Devices Development"
GlobalLogic Ukraine
 
IEEE Buenaventura cs Chapter March 9 2016 v4
Sailaja Tennati
 
sree profile
srihari p
 
Come See What’s Cooking in My Lab
EnergySec
 
The Cortex-A15 Verification Story
DVClub
 
Vp ns
Ayano Midakso
 
Securing NFV and SDN Integrated OpenStack Cloud: Challenges and Solutions
Trinath Somanchi
 
Enterprise Network Monitoring Software by ServicePilot
ServicePilot
 
Virtual Private Network
Greater Noida Institute Of Technology
 
DHS ICS Security Presentation
guest85a34f
 
Software Defined Network - SDN
Venkata Naga Ravi
 
Ad

Viewers also liked (15)

PPTX
A Child Like Approach to Grid Cybersecurity
Robert M. Lee
 
PPTX
Wireshark Network Protocol Analyzer
Jim Gilsinn
 
PDF
The 4horsemen of ics secapocalypse
Christiaan Beek
 
PPTX
SANS ICS Security Survey Report 2016
Derek Harp
 
PPTX
Using Cyber-Vulnerability Assessment (CVA) to Optimize Control System Upgrade...
Jim Gilsinn
 
PPTX
Practical Approaches to Securely Integrating Business and Production
Jim Gilsinn
 
PPTX
Low-Cost ICS Network Performance Testing
Jim Gilsinn
 
PPTX
Integrating the Alphabet Soup of Standards
Jim Gilsinn
 
PPTX
Network Reliability Monitoring for ICS: Going Beyond NSM and SIEM
Jim Gilsinn
 
PPTX
Cook Like a Hacker!
Jim Gilsinn
 
PPTX
Dubai Cyber Security 01 Ics Scada Cyber Security Solutions and Challenges...
Ahmed Al Enizi
 
PPTX
Evaluating System-Level Cyber Security vs. ANSI/ISA-62443-3-3
Jim Gilsinn
 
PPTX
Cyber & Process Attack Scenarios for ICS
Jim Gilsinn
 
PPTX
Test Tool for Industrial Ethernet Network Performance (June 2009)
Jim Gilsinn
 
PPTX
Network Packet Analysis with Wireshark
Jim Gilsinn
 
A Child Like Approach to Grid Cybersecurity
Robert M. Lee
 
Wireshark Network Protocol Analyzer
Jim Gilsinn
 
The 4horsemen of ics secapocalypse
Christiaan Beek
 
SANS ICS Security Survey Report 2016
Derek Harp
 
Using Cyber-Vulnerability Assessment (CVA) to Optimize Control System Upgrade...
Jim Gilsinn
 
Practical Approaches to Securely Integrating Business and Production
Jim Gilsinn
 
Low-Cost ICS Network Performance Testing
Jim Gilsinn
 
Integrating the Alphabet Soup of Standards
Jim Gilsinn
 
Network Reliability Monitoring for ICS: Going Beyond NSM and SIEM
Jim Gilsinn
 
Cook Like a Hacker!
Jim Gilsinn
 
Dubai Cyber Security 01 Ics Scada Cyber Security Solutions and Challenges...
Ahmed Al Enizi
 
Evaluating System-Level Cyber Security vs. ANSI/ISA-62443-3-3
Jim Gilsinn
 
Cyber & Process Attack Scenarios for ICS
Jim Gilsinn
 
Test Tool for Industrial Ethernet Network Performance (June 2009)
Jim Gilsinn
 
Network Packet Analysis with Wireshark
Jim Gilsinn
 
Ad

Similar to You name it, we analyze it (20)

PDF
S4x14 Session: You Name It; We Analyze It
Digital Bond
 
PPT
2015 02 24 lmtv baselining
Tony Fortunato
 
PDF
Network performance overview
My cp
 
PPT
Presentations on basic understanding of networm management
RasithaAbayakoon2
 
PPT
Network protocol
Online
 
PDF
Where can buy Special Edition Using TCP IP Niit (Usa) Inc. ebook with cheap p...
attietorreda
 
PPTX
TCP/IP
Rehan ali
 
PDF
Complete Download Special Edition Using TCP IP Niit (Usa) Inc. PDF All Chapters
osietzon
 
PDF
Iic tsn testbed_char_mapping_of_converged_traffic_types_whitepaper_20180328
Jörgen Gade
 
PPTX
MVA slides lesson 2
Fabio Almeida- Oficina Eletrônica
 
PPTX
Chapter04
Muhammad Ahad
 
PDF
Module 1 slides
AnaniaKapala
 
DOCX
Proposal for System Analysis and Desing
Md Khaza Main Uddin
 
DOCX
Networking Fundamentals
Vikas Gupta
 
PPTX
Packet Analysis - Course Technology Computing Conference
Cengage Learning
 
PPTX
Advanced Network Chapter I: Which is very best lecture note
abdisani3
 
PPT
Learn TransportLayer of the OSI model to day with me.
SilasHAKUZWIMANA
 
PDF
Design, implementation and evaluation of icmp based available network bandwid...
IJCNCJournal
 
PDF
CISSP Week 5
jemtallon
 
PPTX
network monitoring system ppt
ashutosh rai
 
S4x14 Session: You Name It; We Analyze It
Digital Bond
 
2015 02 24 lmtv baselining
Tony Fortunato
 
Network performance overview
My cp
 
Presentations on basic understanding of networm management
RasithaAbayakoon2
 
Network protocol
Online
 
Where can buy Special Edition Using TCP IP Niit (Usa) Inc. ebook with cheap p...
attietorreda
 
TCP/IP
Rehan ali
 
Complete Download Special Edition Using TCP IP Niit (Usa) Inc. PDF All Chapters
osietzon
 
Iic tsn testbed_char_mapping_of_converged_traffic_types_whitepaper_20180328
Jörgen Gade
 
MVA slides lesson 2
Fabio Almeida- Oficina Eletrônica
 
Chapter04
Muhammad Ahad
 
Module 1 slides
AnaniaKapala
 
Proposal for System Analysis and Desing
Md Khaza Main Uddin
 
Networking Fundamentals
Vikas Gupta
 
Packet Analysis - Course Technology Computing Conference
Cengage Learning
 
Advanced Network Chapter I: Which is very best lecture note
abdisani3
 
Learn TransportLayer of the OSI model to day with me.
SilasHAKUZWIMANA
 
Design, implementation and evaluation of icmp based available network bandwid...
IJCNCJournal
 
CISSP Week 5
jemtallon
 
network monitoring system ppt
ashutosh rai
 

Recently uploaded (20)

PPT
Module 1.ppt Iot fundamentals and Architecture
nanditha7766
 
PDF
Produktkatalog für HOBO Datenlogger, Wetterstationen, Sensoren, Software und ...
Metrics GmbH
 
PDF
A contest of sentiment analysis: k-nearest neighbor versus neural network
IAESIJAI
 
PPTX
Configure Apache Mutual Authentication
Antonino Piraino
 
PDF
OpenACC and Open Hackathons Monthly Highlights July 2025
OpenACC
 
PPTX
GROUP4NURSINGINFORMATICSREPORT-2 PRESENTATION
ClarisejaneSartillo1
 
PDF
Hybrid horned lizard optimization algorithm-aquila optimizer for DC motor
IAESIJAI
 
PDF
How ambidextrous entrepreneurial leaders react to the artificial intelligence...
IAESIJAI
 
PDF
A review of recent deep learning applications in wood surface defect identifi...
IAESIJAI
 
PPTX
Training Program for knowledge in solar cell and solar industry
RabindranathKaibarty
 
PPTX
AI IN MARKETING- PRESENTED BY ANWAR KABIR 1st June 2025.pptx
HiraJay1
 
PDF
Credit Without Borders: AI and Financial Inclusion in Bangladesh
Ehsan Tanim
 
PDF
STKI Israel Market Study 2025 version august
Dr. Jimmy Schwarzkopf
 
PPTX
Microsoft Excel 365/2024 Beginner's training
frank yeboah
 
PDF
sbt 2.0: go big (Scala Days 2025 edition)
Eugene Yokota
 
PDF
Developing a website for English-speaking practice to English as a foreign la...
IAESIJAI
 
PDF
sustainability-14-14877-v2.pddhzftheheeeee
VenkateshGovindaraja9
 
PDF
Enhancing plagiarism detection using data pre-processing and machine learning...
IAESIJAI
 
PDF
“A New Era of 3D Sensing: Transforming Industries and Creating Opportunities,...
Edge AI and Vision Alliance
 
PPTX
TEXTILE technology diploma scope and career opportunities
kriti38
 
Module 1.ppt Iot fundamentals and Architecture
nanditha7766
 
Produktkatalog für HOBO Datenlogger, Wetterstationen, Sensoren, Software und ...
Metrics GmbH
 
A contest of sentiment analysis: k-nearest neighbor versus neural network
IAESIJAI
 
Configure Apache Mutual Authentication
Antonino Piraino
 
OpenACC and Open Hackathons Monthly Highlights July 2025
OpenACC
 
GROUP4NURSINGINFORMATICSREPORT-2 PRESENTATION
ClarisejaneSartillo1
 
Hybrid horned lizard optimization algorithm-aquila optimizer for DC motor
IAESIJAI
 
How ambidextrous entrepreneurial leaders react to the artificial intelligence...
IAESIJAI
 
A review of recent deep learning applications in wood surface defect identifi...
IAESIJAI
 
Training Program for knowledge in solar cell and solar industry
RabindranathKaibarty
 
AI IN MARKETING- PRESENTED BY ANWAR KABIR 1st June 2025.pptx
HiraJay1
 
Credit Without Borders: AI and Financial Inclusion in Bangladesh
Ehsan Tanim
 
STKI Israel Market Study 2025 version august
Dr. Jimmy Schwarzkopf
 
Microsoft Excel 365/2024 Beginner's training
frank yeboah
 
sbt 2.0: go big (Scala Days 2025 edition)
Eugene Yokota
 
Developing a website for English-speaking practice to English as a foreign la...
IAESIJAI
 
sustainability-14-14877-v2.pddhzftheheeeee
VenkateshGovindaraja9
 
Enhancing plagiarism detection using data pre-processing and machine learning...
IAESIJAI
 
“A New Era of 3D Sensing: Transforming Industries and Creating Opportunities,...
Edge AI and Vision Alliance
 
TEXTILE technology diploma scope and career opportunities
kriti38
 

You name it, we analyze it

  • 1. You Name It, We Analyze It! Jim Gilsinn Kenexis Consulting Corporation You Name It, We Analyze It! 1
  • 2. Industrial Network Types & Metrics: Publish/Subscribe • Publish/subscribe or peer-to-peer communications • Main performance metric: Cyclic frequency variability/jitter • Real-time EtherNet/IP™ uses publish/subscribe • Requested/Accepted Packet Interval (RPI/API) • Measured Packet Interval (MPI) You Name It, We Analyze It! 2
  • 3. Industrial Network Types & Metrics: Publish/Subscribe Subscriber TSub_Com_Init Publisher TPub_Com_Init TPub_1 TPub_2 TSub_M . . . • Difference between TPub_Com_Init & TSub_Com_Init is network roundtrip delay • TPub_Com_Init, TSub_Com_Init not important • Variability in TPub much more important • Theoretically, TPub doesn’t need to match Tsub TPub_N-1 TPub_N You Name It, We Analyze It! • In production systems, they are the same 3
  • 4. Performance Testing Methodology: Performance Metrics • Command/response or master/slave communications • Main performance metric: Latency • Large numbers of protocols use this • Most (All?) PC-based server/client protocols – HTTP(S), (S)FTP, etc. • Most industrial protocols – Modbus/TCP, Profinet, Ethercat, etc. You Name It, We Analyze It! 4
  • 5. Industrial Network Types & Metrics: Command/Response Commander TCom_Delay_1 Responder TRes_1 • Difference between TCom_Delay & TRes is network roundtrip delay • Latency in TCom & TRes important TCom_1 TCom_Delay_2 TRes_2 TCom_2 You Name It, We Analyze It! 5
  • 6. Isolating Traffic Streams • Isolating traffic streams can be tricky • 10’s – 100’s of traffic streams in production environment • Your Wireshark Fu must be strong! • Usually requires additional post-processing • Multiple streams can exist between same devices You Name It, We Analyze It! 6
  • 7. Isolating Traffic Streams • Traffic pairs • • • • Source IP/MAC address Destination IP/MAC address Source TCP/UDP port Destination TCP/UDP port • Publish/Subscribe • Communication stream ID • Sequence number (optional) • Command/Response • Command message/field • Response message/field • Message ID (optional) You Name It, We Analyze It! 7
  • 8. Test Time vs. Packet Interval Measured Packet Interval (ms) ~62 sec test Mean MPI = 2ms Min ~ 1.2 Max ~ 2.9 Test Time (s) You Name It, We Analyze It! 8
  • 9. Time Plot for Command/Response Regular Pattern to Delayed Packets Regular Pattern of Minimal Delayed Packets You Name It, We Analyze It! 9
  • 10. Command/Response Timing Plots • Quick succession of command/response packets • Minimal delay in command/response sequence • Apparently large delay in a single packet • Example: Rockwell tag reads Delay Until Next Time Sequence Quick Succession Read Commands You Name It, We Analyze It! 10
  • 11. Next Steps • Streamline traffic stream processing • Develop better command/response code • Build more mathematical statistical models • Add graphical modeling of time & frequency domain • Add more industrial protocols and obtain example files • • • • • Modbus Profinet DNP3 61850 And others… You Name It, We Analyze It! 11
  • 12. Questions • Contact Me • • • • • • Jim Gilsinn 301-706-9985 or 614-323-2254 [email protected] Twitter – @JimGilsinn LinkedIn – http://www.linkedin.com/in/jimgilsinn/ SlideShare – http://www.slideshare.net/gilsinnj You Name It, We Analyze It! 12