《5G-ACIA：2023工業5G設備白皮書-架構和功能（英文版）（53頁）.pdf》由會員分享，可在線閱讀，更多相關《5G-ACIA：2023工業5G設備白皮書-架構和功能（英文版）（53頁）.pdf（53頁珍藏版）》請在三個皮匠報告上搜索。

1、Industrial 5G Devices Architecture and Capabilities5G Alliance for Connected Industries and Automation5G-ACIA White Paper White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities2 White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities 3 Table of Contents

2、1.Executive Summary 52.Introduction 63.Industrial 5G Devices 73.1 Types of Industrial 5G Devices 7 3.1.1 Low-Latency Sensors/Actuators 8 3.1.2 Low-Power Sensors/Actuators 8 3.1.3 2D/3D Sensors 8 3.1.4 HMI and xR 8 3.1.5 PLCs and Controllers 9 3.1.6 Gateways 9 3.1.7 TSN Ports 103.2 Characteristics of

3、 Industrial 5G Devices 11 3.2.1 Time Characteristics 11 3.2.2 Data Characteristics 12 3.2.3 Power Characteristics 13 3.2.4 Time Synchronization 13 3.2.5 Positioning 13 3.2.6 Communication Themes 143.3 Examples of Industrial 5G Devices 14 3.3.1 5G IP67 Sensor 16 3.3.2 5G Smart Sensor 16 3.3.3 5G IIoT

4、 Level Sensor 18 3.3.4 5G Dual-Channel Adapter 18 3.3.5 5G Remote I/O for Process Control 19 3.3.6 5G Process Control via Mobile Panel 19 3.3.7 Mobile App for 5G Industrial Devices for Augmented Field Applications 20 3.3.8 5G Drone Operation 20 3.3.9 5G Ethernet Bridge 21 3.3.10 5G Wireless Router 2

5、1 3.3.11 5G Industrial Gateway 22 3.3.12 5G Mobile Tracker 22 3.3.13 5G Valve Terminal 23 3.3.14 5G Controller(Remote I/O)244.Logical Reference Architecture for Industrial 5G Devices 254.1 Top-Level Logical Architecture 254.2 Practical Logical Architecture 26 4.2.1 Logical Architecture for Supportin

6、g Applications Inside a 5G Industrial Device 27 4.2.2 Logical Architecture for Supporting Applications or Networking Using IP or Ethernet with Traditional Non-Time-Aware QoS 28 4.2.3 Logical Architecture for Supporting Applications Using IP and Ethernet with QoS and Precision Time Protocol over a 5G

7、 Radio Link 29 4.2.4 Logical Architecture for Supporting Applications Using Ethernet with IEEE TSN 31 White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities4 4.3 Device Authentication 32 4.3.1 Introduction 32 4.3.2 Primary Authentication for PNI-NPNs 32 4.3.3 Primary Authenti

8、cation of SNPNs 32 4.3.4 NSSAA and Secondary Authentication 34 4.3.5 Summary 345.Industrial 5G Device Physical Reference Architecture 355.1 Explosion Protection for Devices in Hazardous Areas 355.1.1 Introduction 355.1.2 Classification of Zones 355.1.3 Types of Explosion Protection for Industrial De

9、vices 355.2 Physical Implementation for Storing Credentials 375.2.1 Removable Secure Element 385.2.2 Embedded Secure Element Without Key Management Interface 385.2.3 Embedded Secure Element with Key Management Interface 385.2.4 Provisioning of Cellular Credentials 385.3 Chipset Versus Module 395.4 R

10、adio Module Form Factor Standards 395.5 Standalone Versus Integrated Application Processor 395.6 Interface Between Application Processor and Radio Module 40 5.6.1 Data Interface 405.6.2 Time Synchronization Interface 405.7 Generic Block Diagrams for Industrial 5G Devices and Interface Options 405.7.

11、1 Low-Power and Low-Latency Sensors/Actuators,2D-and 3D-Sensor Industrial 5G Devices 415.7.2 HMI and xR Devices 415.7.3 Gateways and PLCs/Controllers 425.7.4 TSN Port Industrial 5G Devices 436.Conclusions 457.Definitions of Acronyms and Key Terms 468.References 49 White Paper 5G-ACIA Report Industri

12、al 5G Devices Architecture and Capabilities 5 1.Executive SummaryThis white paper provides an overview of the kinds of devices that can be needed in order for 5G to benefit the manufacturing industry and related sectors.As 5G systems are implemented in factories and other settings,attention is incre

13、asingly shifting to designing devices that will let them work on the shop floor.A whole new generation of 5G-compatible devices is now being developed.This paper provides an introduction and practical guide to this field for everyone who is directly or indirectly involved in it,whether they are acad

14、emics,manufacturers,factory owners or operators,designers,or engineers.Its main purpose is to provide an easy-to-read overview of the various categories of devices and solutions that are now appearing,while going into greater technical detail on key technical topics and design issues.The main types

15、of 5G devices are presented and described and a number of real-world examples discussed while describing the most important technical issues,challenges,and solutions involved in each case.On a more theoretical level,reference architectures are then presented for the most common types of industrial 5

16、G devices,including generic block diagrams.Finally,various aspects of the physical architecture of such devices are discussed,covering challenges such as explosion protection,storage of credentials,the pros and cons of chipset versus module solutions,radio module form factor standards,a comparison o

17、f standalone and integrated application processors,and implementation of interfaces.About 5G-ACIAThe 5G Alliance for Connected Industries and Automation(5G-ACIA)was established to serve as the main global forum for addressing,discussing,and evaluating relevant technical,regulatory,and business aspec

18、ts of 5G for the industrial domain.It embraces the entire ecosystem and all relevant stakeholders,which include but arent limited to the operational technology industry(industrial automation companies,engineering companies,production system manufacturers,end users,etc.),the information and communica

19、tion technology industry(chip manufacturers,network infrastructure vendors,mobile network operators,etc.),universities,government agencies,research facilities,and industry associations.5G-ACIAs overarching goal is to promote the best possible use of industrial 5G while maximizing the usefulness of 5

20、G technology and 5G networks in the industrial domain.This includes ensuring that ongoing 5G standardization and regulatory activities adequately consider relevant interests and requirements and that new developments in 5G are effectively communicated to and understood by manufacturers.White Paper 5

21、G-ACIA Report Industrial 5G Devices Architecture and Capabilities6 2.IntroductionThe fifth-generation standard for broadband cellular networks(5G)enables reliable,low-latency,high-bandwidth data transmission,making it a key technology for the future of industrial communications.The introduction of 5

22、G to factories and a wide range of other industrial facilities is also creating a need for industrial devices that support the 5G standard.How should an industrial 5G device be designed?This white paper provides chip manufacturers,module vendors,and device manufacturers with guidance on the availabl

23、e choices.Chapter 3 describes various kinds of industrial 5G devices,mainly from an operational technology(OT)perspective.It also contains a large collection of example industrial 5G devices gathered from 5G-ACIA members.Chapters 4 and 5 describe the logical and physical architecture of industrial 5

24、G devices.This white paper makes it clear that the field of industrial 5G devices draws on a wide range of engineering disciplines including operational technology(OT)and information and communication technology(ICT).It also integrates aspects of mechanical design,product safety,and cybersecurity.Wh

25、ite Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities 7 3.Industrial 5G DevicesIndustrial 5G devices come in a wide variety of types and shapes and can be deployed for diverse use cases as described in 4 and 8.Section 3.1 provides an overview of different industrial 5G device

26、types,section 3.2 describes some of their characteristics,and section 3.3 presents various example applications.The following discussion includes references and links to example use cases and related requirements.For the sake of conciseness,it only goes into detail on a relatively small number of us

27、e cases for applications that include motion control,portable tools in assembly areas,remote augmented reality,and process automation.The numerical values and ranges given in section 3.2 for industrial devices in certain use cases are only examples.Industrial 5G devices can be either standalone or i

28、ntegrated into something else.Figure 1 shows an industrial 5G device integrated in a machine.This approach makes it possible to depict an industrial 5G device while showing only the functions that are most relevant from a communication perspective.3.1 Types of Industrial 5G DevicesThis section prese

29、nts seven different types of industrial 5G devices:Low-latency sensors/actuators Low-power sensors/actuators 2D/3D sensors HMI and xR PLCs and controllers Gateways TSN ports These industrial 5G devices are described from an operational technology perspective.Their types are indicated when discussing

30、 their logical and physical architectures.The gateway industrial 5G device discussed in 3.1.6 involves transparent information transfer between different communication technologies on various protocol levels.It integrates industrial protocol gateway,IP routing,and Ethernet bridging functionality.The

31、 TSN port industrial 5G device(forming part of a distributed TSN bridge within the 5G system)is separately described in 3.1.7 since it has a different architecture.The industrial 5G device types discussed here are illustrated by a large collection of examples in section 3.3.Figure 1:An industrial 5G

32、 device as part of a machine White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities8 3.1.1 Low-Latency Sensors/ActuatorsLow-latency sensors and actuators are normally wired,but in 5G they can also be connected via a radio interface to a PLC and/or controller in the cellular n

33、etwork.In this case,real-time communication and high reliability are essential.These devices are commonly deployed in mobile robot use cases,many of which involve low-latency communication.This statement also applies to interactions with stationary peripherals and cooperation with other robots.3.1.2

34、 Low-Power Sensors/ActuatorsA low-power sensor or actuator has a radio interface to the cellular network.These devices are typically used for monitoring condition,productivity,or production quality.They can be battery-powered and may spend much of the time in sleep mode.Since they are typically expe

35、cted to operate for several years without recharging,its essential for them to be energy-efficient.3.1.3 2D/3D Sensors2D/3D sensors capture two-and/or three-dimensional data from an industrial manufacturing facility or process.They have a radio interface to the cellular network and can include camer

36、as and LIDARS,for example,and deliver 2D and/or 3D images at defined frame rates.2D/3D sensors are typically used to collect production data that are then analyzed by an AI-based system.One applica-tion is data collection for quality assurance and another is fine-grained positioning.3.1.4 HMI and xR

37、 In the context of industrial 5G,HMI or extended reality(xR)can be used to provide a user interface to a manufacturing facility or process.This involves a radio interface to the cellu-lar network as well as communication media that can include video screens,loudspeakers,cameras,and/or microphones.Th

38、eir purpose is typically to provide visual information to an operator for interacting with an industrial facility or process.Figure 2:Low-latency sensor and actuatorFigure 4:2D/3D sensorFigure 3:Low-power sensor and actuatorFigure 5:HMI and xR White Paper 5G-ACIA Report Industrial 5G Devices Archite

39、cture and Capabilities 9 3.1.5 PLCs and ControllersA PLC/controller(PLC stands for“programmable logic controller”)has a radio interface to the cellular network,another interface to one or more local industrial networks,and/or various I/O interfaces.It is basically an industrial computer that is used

40、 to control one or more processes.A 5G radio interface is typically connected to one or more of the following:A supervisory system Another PLC or other controller Devices in the control loop When a 5G radio interface is used to communicate with de-vices in the control loop,another PLC,or some other

41、type of controller,communication is time-critical.Outside of control loops,the timing requirements are less strict.3.1.6 GatewaysA gateway has a radio interface to a cellular network and a standardized wired(or wireless)interface to an industrial network.Its purpose is to relay information between t

42、he two.Common industrial network interfaces include industrial Eth-ernet and fieldbus interfaces.A gateway can operate in different protocol layers;figure 8 shows some examples.In the context of industrial 5G,HMI or extended reality(xR)can be used to provide a user interface to a manufacturing fa-ci

43、lity or process.This involves a radio interface to the cellular network as well as communication media,which can include video screens,loudspeakers,cameras,and/or microphones.Their purpose is typically to provide visual information to an operator for interacting with an industrial facility or proces

44、s.Figure 6:PLCFigure 7:Gateway White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities10 A 5G gateway can be preferrable to sensors and actuators with integrated 5G when retrofitting,in certain kinds of installations such as production/process modules,and in chal-lenging envir

45、onmental conditions such as hazardous areas.An industrial 5G device can serve as a port in a distributed 5GS Ethernet bridge anchored to a 5G user plane function(UPF).A 5GS Ethernet bridge can be configured to support features and management interfaces that comply with the IEEE time-sensitive networ

46、king(TSN)standards and the generalized precision time protocol(gPTP,IEEE 802.1AS)for integration in TSN-and gPTP-capable Ethernet networks.This is explained in greater detail in chapter 4.These devices can be employed,for instance,in mobile robots that need to interact with one another,collaborative

47、 robots(cobots)that grasp and hand over parts,and cooperative driving scenarios.In all of these cases,its essential to synchronize the actions of multiple actors.Figure 8:Examples of gateway functionality in different protocol layersFigure 9:A TSN port as part of a logical TSN bridge3.1.7 TSN Ports

48、White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities 11 3.2 Characteristics of Industrial 5G Devices3.2.1 Time CharacteristicsThe factory automation protocols used for communication be-tween a PLC and multiple devices follow a deterministic cyclic(or periodic)transmission p

49、attern in which all of the sensors are read and all of the actuators are set during each cycle.3GPP 5G uses the terms“transfer interval”and“periodic deterministic communication”to describe these patterns.The transfer interval is the time difference between two consecu-tive transfers of application d

50、ata from an application to a 3GPP system via a service interface 8.Figure 10 illustrates typical transfer intervals.Periodic deter-ministic communication(cyclical traffic)predominates in PLC/controller,low-latency sensor/actuator,and TSN port industrial 5G devices.There can also be aperiodic traffic

51、 such as alarms and firmware upgrades,which arent included in the figure.In addition to conventional devices deployed for factory automation,other devices are used to support Industrial IoT and Industry 4.0 in industrial installations.They include low-power sensors and actuators,2D and 3D sensors,an

52、d HMI and xR devices.These devices typically exchange information at regular time intervals much longer than those for factory automation devices.Gateways can be used with both conventional factory automation devices and the devices mentioned in the previous paragraph.The latency requirements are la

53、rgely determined by the cycle times and transfer intervals of the relevant factory automation protocols and use cases.The maximum permissible latency must be shorter than the transfer interval 8.In isochronous use cases,the network latency may not exceed 20%to 50%of the cycle time or transfer interv

54、al 2.The transfer time interval depends on the use case.To illustrate this,the interval for a mobile robot moving between two points depends on its navigation mode 7:For infrastructure,track-guided navigation involves a transfer time of around 500 ms.Sensor/camera-based navigation involves a transfe

55、r time in the range of 10 to 100 ms.Cooperative driving requires a very short transfer time of around 5 ms.The relationship between the transfer time interval and the required maximum network latency is different for low-power sensors and actuators,2D and 3D sensors,and HMI and xR devices.For exampl

56、e,a 4k camera with a frame rate of 60 frames per second delivers data every 17 ms,but it is often acceptable for the network to have a greater latency than this.Figure 10:Examples of gateway functionality in different protocol layers White Paper 5G-ACIA Report Industrial 5G Devices Architecture and

57、Capabilities12 3.2.2 Data CharacteristicsTable 1 shows typical message sizes for various industrial 5G devices.The smallest sensor or actuator data unit is a single bit,the value of which can indicate an input or an output.Analog values are commonly expressed as 16-or 32-bit values.Many sensors and

58、actuators output multiple values,however,and protocol data are also communicated.The minimum frame size in Ethernet is 64 bytes,which is also the minimum message size as shown in table 1.The maximum message size is assumed to be 1522 bytes,corresponding to the largest Ethernet frame size with VLAN t

59、agging.The required data rates can be calculated from the transfer intervals given in section 3.2.1.The bitrates given in table 1 correspond to the transmission speeds of active industrial 5G devices.The data characteristics for PLCs and other controllers,TSN ports,and gateway industrial devices dep

60、end on the under-lying use cases.With mobile robots,for example,different aspects can play a role depending on the functionality involved 7.When the robots are moving between two points,the traffic models differ depending on the type of navigation used:Infrastructure-or track-guided navigation:a pac

61、ket size of around 250 bytes and a data rate of 50 to 250 kbit/s Sensor-or camera-based navigation:a packet size of around 1500 byte and a data rate of 60 Mbit/s Cooperative driving:a packet size of around 250 bytes and a data rate of 125 kbit/s Interactions with stationary peripherals(grasping of u

62、nsorted piles)and a burst of 50 messages:a packet size of 1500 bytes and a data rate of around 400 Mbit/s The data volumes generated by a 2D sensor depend on its resolution,the frame rate,the color depth,and any applied compression.For example,a 4k video with 60 frames per second and 24 bits per pix

63、el has an uncompressed bitrate of 11.9 Gbps.A video stream can be compressed using a generic or application-specific algorithm.Say that a 4k video camera is used to monitor product quality in a production process.Instead of sending all of the video frames to a central server,an application-specific

64、algorithm can be used to select only those frames that actually show each new product captured.This can dramatically reduce the data stream.Message sizeStreamsBitrateLow-latency sensors/actuators64 to 1522 bytes1 200 kbit/s to 2 Mbit/sLow-power sensors/actuators 64 bytes or more1A few kbit/s to 2 Mb

65、it/sPLCs and controllers64 to 1522 bytes 1Up to line speed(100 Mbit/s,1 Gbit/s)Gateways64 to 1522 bytes 1Up to line speed(100 Mbit/s,1 Gbit/s)TSN ports64 to 1522 bytes 1Up to line speed(100 Mbit/s,1 Gbit/s)Table 1:Typical data parameters of industrial 5G devices White Paper 5G-ACIA Report Industrial

66、 5G Devices Architecture and Capabilities 13 3D sensors generate even more data than 2D sensors.Both 2D and 3D sensor data can be compressed using either generic or application-specific algorithms.Both types are generally also transmitted in the uplink direction.The traffic characteristics of HMI an

67、d xR devices vary greatly depending on the use case.At the high end,video is streamed to a device at a bitrate that is generally between one and 25 Mbit/s.HMI and xR devices mainly transmit data in the downlink direction.In automated processing plants,traffic is deterministic and periodic.Section 3.

68、3.5 presents an example of remote I/O for process control.3.2.3 Power CharacteristicsOne of the main reasons to deploy private industrial 5G networks is to make factories more flexible.More of the machines and devices used become wireless and battery-operated as a result.HMI and xR devices are norma

69、lly battery-operated.A typical use case is when a worker uses one or more devices throughout a shift.At the end of the shift,they are placed in chargers.This presupposes that the battery of each HMI or xR device has sufficient capacity to operate during an entire shift,which typically lasts about 10

70、 hours including breaks.The same considerations apply to portable tools.Low-power sensors and actuators are also usually battery-operated.The main reason for taking this approach is to reduce the cost of wiring.Batteries can be either rechargeable or disposable.In some cases,an entire device is disc

71、arded along with its battery.Most other industrial 5G devices are typically powered by the machine they are installed on.For example,a gateway could be mounted on an AGV.In this case,the gateway is powered by the AGVs battery.The same considerations apply to mobile robots.3.2.4 Time SynchronizationA

72、ll industrial 5G devices need to be synchronized with different time domains.These include working clock domains and global clock domains.There is also a 5G clock domain,which is needed for 5G radio communication.A working clock domain is needed for synchronizing sensors and actuators that are part

73、of a control loop.Examples are robot collaboration and cooperative driving,in which time synchronization is paramount.Time synchronization can be explicit using protocols such as PTP(IEEE 1588)or gPTP(IEEE 802.1AS),or else implicit with read and write commands received from the PLC.A global time dom

74、ain is needed for sequences of events,time stamping of data,and time stamping of diagnostic events.It is usually shared across an industrial facility and aligned with UTC.When industrial 5G devices arent actively communicating with the infrastructure,the clock domains are maintained by local clocks.

75、These clocks gradually lose accuracy and need to be resynchronized,however.Its also possible to imagine industrial 5G devices that arent synchronized with either a working clock or a global clock.An example is a tank sensor that sets off an alarm when the level in the tank drops too far.In order for

76、 PTP or gPTP over 5G radio to work,3GPP-defined device-side time-sensitive translator(DS-TT)functionality must be implemented in the industrial 5G devices.See chapter 4 for a more detailed discussion.3.2.5 PositioningOne of the main uses of industrial 5G is for enabling the mobility of machines,mate

77、rials,and people,among other things,in production and processing facilities.Mobility introduces a need for positioning.Some HMI and xR devices involve position-dependent application behaviors.Other industrial 5G devices may also White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capab

78、ilities14 require positioning;a gateway on an AGV,for example,can provide positioning information to help it navigate.Another example is low-power sensors and actuators used to track materials in a factory.The devices position is reported every time it changes.Here are some examples of positioning r

79、equirements for the analyzed use cases 6,7:When a robot is moving between two points,an accuracy of 0.3 m or better with 99.99%availability is adequate.However,it needs to reach its destination with an accuracy of 5 cm(this is supported by a centering station).When a robot is interacting with other

80、peripherals,it may need to achieve single-millimeter precision.In the case of mobile tools,which have to be individually configured depending on their positions in the production line,a vertical and horizontal accuracy of better than 20 cm is required.3.2.6 Communication ThemesThe 5G industrial devi

81、ces presented and described in the preceding sections require very diverse communication capabilities.Communication modules(see figure 38)and technologies linking different parts of the same device must also meet the needs of the application using it.Its therefore safe to assume that no single imple

82、mentation can provide the entire range of communication parameters for all applications;aspects such as power consumption,size,and complexity can vary.On the other hand,implementing specialized modules for each profile would result in market fragmentation and make it impossible to benefit from econo

83、mies of scale.Analyzing the communication requirements of various use cases and the corresponding devices,three major themes emerge.The first is characterized by energy-efficient(battery-driven)communication and low throughput(up to a few Mbit/s;this is specified for industrial wireless sensors by 3

84、GPP 22.104 8),low overall active duty with extended periods of inactivity,no essential time-sensitive data deliveries,and tolerance for temporary data loss.Devices designed for this type of situation are generally optimized for low power consumption,a small form factor,and potentially low costs.The

85、second situation involves very high throughput(high bandwidth),low latency,and high reliability.And the third raises the bar even further with traffic-related properties that include ultra-low latency and ultra-high reliability to satisfy even the most stringent requirements of time-sensitive applic

86、ations.Communication modules and intra-device communication technologies are designed and tailored to deliver the properties that are typically associated with one of these themes.This is necessary,since the scenarios are characterized by mutually exclusive characteristics that cant all be provided

87、by a single module.Ultimately,however,it is a product-specific decision whether or not a communication module and the corresponding building blocks for devices should be optimized to meet the needs of a particular scenario or designed to cover some of the requirements of multiple scenarios.3.3 Examp

88、les of Industrial 5G DevicesHere we present a selection of hypothetical industrial 5G devices.They have been submitted by 5G-ACIA member companies to illustrate the possibilities going forward.None of them is available in the market at this time,and there is no guarantee that they will ever actually

89、 be developed and built.A number of other use cases are presented in the 5G-ACIA white paper“5G for Automation in Industry”4.Table 2 below maps use cases and example industrial devices.It includes the use case of“portable tools”,which are used throughout an assembly area to assist workers in perform

90、ing specific tasks.Examples include power screwdrivers,riveting tools,and staple guns.Depending on the activity performed,they need to be configured,identified,localized,and monitored.White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities 15 Motion controlControl-to-controlMo

91、bile control panelsMobile robotsMassive wireless sensor networksRemote access and maintenanceAugmented realityClosed-loop process controlProcess monitoringPlant asset managementPortable toolsPortable toolsIP67 sensorXX5G smart sensorXXX5G IIoT level sensorX5G second channel adapterXX5G remote I/O fo

92、r process controlXXXProcess control via mobile panelXXMobile app for 5G industrial devices for augmented field applicationsX5G drone operationX5G Ethernet bridge XXXXXXX5G wireless router XXXX5G industrial gatewayX5G mobile trackerXXX5G valve terminalXXXX5G controller(remote I/O)XXXXTable 2:Example

93、industrial 5G devices and their potential use cases White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities16 3.3.1 5G IP67 Sensor IP67 sensors are single-purpose devices surrounded by a robust enclosure for use in harsh industrial environments with varying humidity,temperatur

94、e,vibrations,and other conditions.Some are also filled with epoxy resin or another insulating liquid compound to protect their internal electronics,and they have minimal external interfaces or even entirely lack them.Their power supply is often physically connected.Their main task is to reliably sen

95、se and communicate a technical process in real time,either periodically or in response to defined events.They must therefore meet exacting QoS requirements.They are purpose-optimized,cost-sensitive solutions that contain only a small number of PCB components and low-level interfaces such as SPI and

96、UART.3.3.2 5G Smart SensorIn many production applications,5G communication lets smart sensors operate wirelessly without sacrificing reliability,availability,or low latency for short response times.Smart sensors typically have an embedded microcontroller or FPGA-based computing system for signal pro

97、cessing etc.While running on battery power,smart sensors can be used for machine-integrated monitoring of dynamic machining processes such as five-axis milling(see figure 12).Figure 11:Example 5G sensor with integrated antennas(source:Weidmueller).Figure 12:Use of a 5G smart sensor to measure accele

98、ration in 5-axis milling(source:Fraunhofer IPT)Piezo accelerometerPrototype sensorelectronicswith 5G UE5-axismilling machineBLiSK White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities 17 A smart sensor consists of a sensing probe that converts a physical quantity into an ele

99、ctrical signal,an A/D converter that samples the electrical signal to obtain quantified values,and a processing unit such as a microcontroller unit(MCU)or FPGA for signal processing and generation of data packets.Figure 13 shows a prototype 5G smart sensor for acceleration measurements.For 5G commun

100、ication,the smart sensor can be equipped with an interface such as USB or Ethernet,linked to a 5G cellular bridge,or provided with an appropriate compact 5G communication module that is directly integrated in its PCB(once these become available).This smart sensor runs on battery power and can be int

101、egrated in a robust IP-grade housing(as shown in Figure 13)to allow safe operation in environments with coolants.The embedded system can be optionally used to handle different protocols such as UDP,MQTT,OPC/UA,etc.depending on the overall sensor integration concept.The sensor data can be used to tri

102、gger adjustments to the machining parameters in case any process anomalies are detected.Figure 13:Smart sensor with an accelerometer,a PCB with a sensor driver and processing unit,and an Ethernet interface(source:Fraunhofer IPT)Smart SensorMMF KS95B10AnalogEthernet5GtransceiverSensor boardSensor dri

103、ver,sampling,data preprocessing White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities18 3.3.3 5G IIoT Level SensorA 5G level sensor is an example of a compact,fully integrated device for use in process industries and factories with both nonpublic standalone and public networ

104、ks.Its principal task is measuring the levels of liquids or solids in mobile or fixed containers.Additional parameters,such as ambient temperature and locations,can also be detected and communicated.The device and its antenna are inside a tightly fitting enclosure(IP66/68),which restricts the possib

105、ilities for on-site commissioning and configuration.Its size is on the order of 10 x10 x5 cm.The device is battery-powered.The data rate is normally low(ranging from one transfer per minute down to a few per day)but may be higher(one transfer per second)when filling or emptying the container.Wireles

106、s updating of the software is also possible.3.3.4 5G Dual-Channel AdapterThis adapter connects field devices with a legacy communication protocol to a wireless 5G network.It will primarily be used for brownfield installations in the process industry to enable access to additional data for diagnosing

107、 the health of smart sensors or actuators.The adapter supports dual-channel communication(also called second communication channel in the process industry),which enables IT/OT communications independently of(wired)communication for control purposes.The device is powered by a battery or field device

108、and regularly transmits data at a low or moderate rate.In case there is an alarm,low-latency transmission is required.It is designed for use in harsh environments(IP66/68)including explosive atmospheres.Due to its small size of only a few centimeters across and its tight enclosure,the device doesnt

109、include any control elements.Its antenna will preferably also be internal.It will be able to connect to both nonpublic standalone networks and public networks.Figure 14:Mobile IIoT level sensor(source:Endress+Hauser)Figure 15:Field device adapter for dual-channel communi-cation(source:Endress+Hauser

110、)White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities 19 3.3.5 5G Remote I/O for Process ControlThis is a modular system for linking field devices(sensors and actuators)to a plant.The devices transfer data via the I/O to and/or from upper-layer entities such as controllers,

111、HMIs,asset management servers,etc.Reliable wireless connec-tions may later replace the cables currently used to connect an I/O and upper-layer entities.A 5G remote I/O is required for periodic bidirectional deterministic communication with a controller for closed-loop control,with a cycle time that

112、is typically longer than 100 ms.The size of the messages depends on the number of devices connected to the I/O but can amount to several bytes per device.Reliable communication is critical for this use case;if it is lost,the entire plant can stop functioning.The requirements in terms of the spacing

113、and reliability of messaging can be relaxed for process monitoring purposes.The 5G remote I/O can also carry noncritical data for device management operations such as diagnostics and software updates as required by the operator.A 5G remote I/O is required for operating reliably and safely in harsh e

114、nvironments(e.g.across a temperature range from-40 to 70C and relative humidity between 5%and 95%),including zone 2 hazardous areas.It is stationary and receives its power supply from an external source via a cable.3.3.6 5G Process Control via Mobile PanelA battery-operated mobile panel gives a plan

115、ts operators and workers instant access to the production environment,letting them monitor and control the status and setpoints of processes from any location within the plant.Operator mobil-ity within a facility can be provided by using 5G for connectiv-ity between the mobile panel device and distr

116、ibuted control system.The device displays information from the distributed control system and lets users take action while on the shop floor to concurrently supervise multiple automated processes.It al-lows them to“see what it sees”,thus reducing the time need-ed to optimize a process or correct a p

117、roblem.Figure 16:5G remote I/O installed in plant field(source:Yokogawa)Figure 17:Process view using a mobile panel(source:ABB)White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities20 3.3.7 Mobile App for 5G Industrial Devices for Augmented Field Applications This mobile 5G d

118、evice with an app supports augmented field applications to improve how work is done to a greater extent than what is possible with conventional paper-based approaches.The operator gets an up-to-date view of scheduled tasks and step-by-step support for executing procedures.The solution eliminates con

119、fusion about which is the latest version and facilitates updating,copying,and distribution of it to relevant personnel.It also provides the operator with knowledge management tools,including easy access to additional information(pictures and manuals).Operators can use a built-in camera to take pictu

120、res of the steps involved in procedures or read QR codes to ensure that work is executed using the correct equipment.This enables operators to acquire greater competency while performing tasks.Industrial 5G devices such as tablets,mobile phones,edge gateways,and smart glasses can significantly impro

121、ve the end user experience with augmented reality(AR)features.5G-enabled mobile field workers using an augmented field procedure need the mobile app to integrate control system data and context-and situation-awareness functions.This way they can receive field information in real time,automatically c

122、apture values,and directly interact with any control system to execute procedures in a synchronized manner.This improves the efficiency of work and reduces the need for control room and field operators to constantly communicate with one another by radio.The solution provides relevant instructions wh

123、ile helping to ensure that work is done correctly.It also includes other features to support field workers,such as voice synthesis,remote assistance,and an industrial chatbot.This opens up the possibility of remotely executing process control actions over the 5G network(for example,opening or closin

124、g valves).It therefore requires a time-synchronized network in which packets are received on time and in the right sequence.Data transmitted over the 5G network will need to be timestamped on the device and network levels.3.3.8 5G Drone OperationMany of the unmanned aerial vehicles(commonly known as

125、 drones)in use today are controlled by a human operator via a point-to-point link over a private wireless network or ISM band.5G-enabled drones can significantly improve the user experience by using a public or private(nonpublic)5G network for monitoring large and distant areas with high-performance

126、 communication.Such a drone is equipped with sensors(e.g.an IR sensor)for fast,efficient monitoring,surveillance,and inspection of areas such as industrial sites.The captured sensor data is continuously relayed to the user for further analysis.For such a 5G-enabled drone to operate reliably,the foll

127、owing would be required:A control system characterized by high availability and security and low latency.Real-time positioning and time synchronization capabilities are also a must.The data captured by sensors installed on the drone has to be sent to the user over the network,which requires a high u

128、plink throughput.5G-enabled drones will be battery-powered and have an appropriate IP rating for outdoor operation.Figure 19 shows an example.Figure 18:Smart glasses for process monitoring(source:Endress+Hauser)White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities 21 3.3.9 5

129、G Ethernet BridgeA 5G Ethernet bridge can be used to link Ethernet devices to a 5G network.This is typically done to replace cables with a wireless solution as illustrated in figure 20.In this use case,an industrial Ethernet protocol is bridged via the 5G network.It is also possible to use this kind

130、 of device for normal IP traf-fic.The prerequisites for this to work are high reliability,low la-tency,and accurate time synchronization.The device has IP65 ingress protection and internal antennas.The required data throughput is typically less than one Mbit/s.One exception is when the device is use

131、d for 2D or 3D sensors;in this case,an uplink speed of several hundred Mbit/s is required.The device is often powered by a battery in a mobile machine,in which case its mobility is limited to that of the machine.3.3.10 5G Wireless RouterHere a 5G wireless router doubles as a LAN switch for con-necte

132、d devices.A typical use case is mobile machine connec-tivity as illustrated in figure 21.The mobile machine is used in conjunction with a traffic management system and other IT functions.The mobile machine can optionally also use a safety protocol.This requirements for the device to communicate with

133、 the router are high reliability,low latency,and accurate time synchronization.It is IP30-rated and equipped with exter-nal antennas.The required throughput is typically less than one Mbit/s except when used for 2D or 3D sensors,in which case an uplink speed of several hundred Mbit/s is needed.The d

134、evice is often powered by a battery on the mobile ma-chine and the mobility of the device will be determined by the mobility of the mobile machine.Figure 20:5G Ethernet bridge in a typical cable replacement use case(source:HMS Networks)Figure 19:Drone operations via 5G(source:ABB)Figure 21:A mobile

135、machine and a 5G wireless router(source:HMS Networks)White Paper 5G-ACIA Report NAME 22 3.3.11 5G Industrial GatewayA modular 5G industrial gateway can be used for indoor industrial vehicles and mobile outdoor automation for machine to machine,machine to infrastructure,and machine to fleet manager c

136、ommunication.Currently,tasks such as localization,personal safety,collision protection,and load handling are mainly solved locally on each vehicle with only minimal communication with its environment.This limits the efficiency of indoor industrial vehicles and rules out the possibility of automating

137、 machines that are used outdoors.However,a new solution integrates detection and identification systems in the active vehicle,reliable wireless communication with other machines,infrastructure-based environmental monitoring with various sensor technologies,and continuous reporting of environmental d

138、ata that can also be used to update maps and optimize routes.A 5G industrial gateway can carry both cyclical data(for safety-related applications,at approx.100 kbit/s with a cycle time of less than 100 ms)and noncyclical data(for example,transferring data for map updates in bursts at a speed greater

139、 than five Mbit/s).In special cases,sensors or cameras may send raw data from machine to machine or to an edge computer.Time synchronization is needed for these scenarios.Especially outdoors,sidelink communication between devices can be crucial for compensating for coverage gaps in 5G system antenna

140、s.Ubiquitous positioning with roughly 0.5-meter accuracy(using GNSS or 5GS)that could be refined further using other positioning techniques at loading/unloading.Powered by the vehicle(if its engine is running and/or it has a large battery),so energy consumption isnt a critical factor.When the machin

141、e isnt operating,it can go into a low-power mode for tracking purposes.3.3.12 5G Mobile TrackerFigure 22:Indoor industrial vehicles and outdoor automa-tion(source:SICK AG)Figure 23:Uses for mobile indoor and outdoor trackers(source:SICK AG)White Paper 5G-ACIA Report NAME 23 This application involves

142、 a battery-powered tracker containing a 5G communication module,along with integrated sensors for condition monitoring and tracking the locations of transported goods,objects in ports or airports,non-power tools,and waste/fill level management.The use case scenarios for devices of this kind pose dif

143、ferent requirements with regard to the form factor and IP class.The security and authentication methods used should be suitable for low-complexity IoT devices.The device will typically send data to an(edge)cloud.Use cases involving location and mobile tracking must consider variables such as interna

144、tional reach,regulations,density requirements,and consistency across indoor and outdoor environments.The device sends a small volume of data(at a rate of around 100 kbit/s)in a burst lasting several seconds.This can be triggered by an event or the elapse of a defined time interval.It is not intended

145、 for continuous monitoring,for instance of an engines vibrations.A deep sleep mode can be used to save energy,but its range of possible uses is limited by the lack of a way to wake it up again remotely.There is a need for an indoor and outdoor(low-energy)positioning capability with an accuracy of be

146、tween five and 100 meters using 5GS,GNSS,or another wireless technology such as Wi-Fi or BLE.The actually required accuracy will depend on the use case and situation.Low power is critical for enabling long recharging and/or battery replacement cycles,for example 13 months apart with batteries being

147、replaced within the scope of yearly maintenance.3.3.13 5G Valve TerminalA valve terminal is mainly used to operate multiple channels in pneumatically controlled systems without the need for a switch cabinet.Its modular mechanical design integrates multiple pneumatic valves and a controller for decen

148、tralized control tasks.An integrated microcontroller provides processing capabilities as part of the integrated control unit.Interfaces for sensors and diagnostic data enhance the terminals functionality.Legacy fieldbuses and industrial Ethernet are established technologies for communicating with hi

149、gher-order PLCs.5G URLLC will replace these wired connections and deliver additional benefits for flexible production plants.Typical use cases with challenging timing requirements include robotic front ends,potentially also in moving applications.Figure 24:5G valve terminal(source:Festo SE&Co KG)Whi

150、te Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities24 3.3.14 5G Controller(Remote I/O)A 5G controller resembling this one could be used to pre-process data from sensor and actuators or provide access to these peripherals as a remote I/O in a wireless network.Com-mon digital o

151、r analog sensor and actuators,which dont need to have IP-based communication,could be directly wired to I/O modules for flexible connection to the controller.The typical use cases include controlling flexible machine parts in a control-to-control loop,collecting data for energy data management at la

152、rge production sites,and controlling appli-cations installed on an AGV.Depending on the use case,this device requires low laten-cy and high reliability.High data rates arent necessary;one Mbit/s is normally sufficient.Faster data rates are useful for software updates but dont need to exceed 10 Mbit/

153、s.This device is intended for installation and use inside a box and therefore doesnt need to be designed to withstand harsh environments on its own.It doesnt include a battery but can be used on a mobile machine because of its low power con-sumption.The 5G controller has no internal antennas and can

154、 be used with both public and nonpublic standalone networks.Figure 25:Shown here is the WAGO PFC200 4G controller;a 5G device could be similar to it(source:WAGO GmbH&Co.KG)White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities 25 4.Logical Reference Architecture for Industria

155、l 5G DevicesTo shed light on how the various components of a device implementation interface with one another,this chapter presents reference architectures in the form of generic block diagrams for the most common types of industrial 5G devices.There are many ways to do this,depending on which of a

156、devices physical resources meet the requirements of which logical functions.We start with a generalized,undifferentiated logical architecture.An industrial 5G devices logical architecture depicts what it does without considering the actual hardware components used to implement it.It shows the device

157、s main functions from both the ICT and the OT perspectives and how they are supposed to interact with one another.Once this has been done,it is easier to progress to a block diagram for implementing the detailed architecture.The architecture integrates functions that arent always present in mainstre

158、am 5G devices but are important for industrial devices.They include Ethernet bridging,IEEE Time Sensitive Networking(TSN),and capabilities related to Precision Time Protocol(PTP),all of which are important for devices operating in industrial Ethernet-or IP-based networks.They also include EAP-based

159、authentication,which is relevant for devices operating in nonpublic 5G networks.This section starts by looking at the top-level functional architecture and then goes on to describe each top-level function in enough detail to ascertain the interfacing requirements for the implementation-level block d

160、iagram architecture.4.1 Top-Level Logical ArchitectureAn industrial 5G device is a managed connectivity device whose main purpose is to provide 5G connectivity for one or more applications or other devices serving an OT operation.The applications can be integrated in the device itself or connected t

161、o it via a local network.Figure 26 shows a top-level logical architecture derived from this functional basis.This architecture includes all top-level functions that would be needed in at least one type of industrial 5G device(not all of them would be needed in every type).Figure 26:Top-level logical

162、 architecture White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities26 The top-level architecture focuses on communication capabilities and contains the following elements:5G network terminationThis comprises all 3GPP-defined device-side functions for connecting to a 5G netwo

163、rk and operating as part of it.This function makes an industrial device 5G-enabled and is a requirement for all types of devices.Local network terminationThis is required in order for an industrial 5G device to connect to a local network(provided that it also has a local network interface).Device ma

164、nagementThis function is included in the top-level functional architecture,based on the assumption that there will be a need to manage the industrial 5G devices 5G-and OT-related functions.For the sake of simplicity,a set of management functions is depicted in the top-level architecture as a single

165、generalized function.ApplicationsThese comprise all higher-layer functions residing inside the industrial 5G device that arent covered by any of the other top-level functions.Besides measurement and automation functions,these applications also include functions for the sensors and actuators that are

166、 integrated in the device and/or interface functions for peripheral sensors and actuators.HMI with xR devices may also include communication media for interacting with humans(such as video screens,cameras,loudspeakers,and microphones).The blue lines in the middle of the diagram connect the 5G termin

167、ation with either or both of the OT functions supporting the application within the device or local network termination,and convey both payload data and associated control signals.The dashed red arrows leading from the common and shared functions to all other functions represent control signaling pa

168、ths.While defining the devices logical architecture,the main focus is on understanding its internal composition and interconnections.However,external interfaces can also be important for an industrial 5G devices overall functionality.As a minimum,every type of industrial 5G device must have a 5G rad

169、io interface,and may also optionally have a local configuration interface as shown at the top of the figure.If an OT application residing inside the device relies on external peripherals such as sensors and actuators,one or more external point-to-point interfaces are needed to support this,as shown

170、at the top left.If some of the applications need to be reached via a local OT network,a networking interface(shown on the bottom left)is also required.4.2 Practical Logical ArchitectureIts important to present the architectural details down to the level at which the blocks and interfaces of the impl

171、ementation architecture come into view.It makes little sense to break them down any further than this,since they are either likely to be implemented inside a single component or it is clear that the functions concerned will only be implemented on the devices OT or 5G side without any other interface

172、s.There are many types of OT functions and applications,for example,but it would exceed the scope of this white paper to cover all of them.Here its enough to highlight the different kinds of communication requirements that can apply in a 5G context and provide a few examples of different types of in

173、dustrial 5G devices.As already discussed,one important architectural aspect is whether a device integrates the application that serves its OT functions and whether or not it is able to connect to a local network.Also important is the extent to which applications require support for QoS and time sync

174、hronization.Considering these aspects and the industrial devices introduced in chapter 3,four different logical architectures enter into consideration.These are introduced here and described in greater detail in the following sections:The first kind of logical architecture(section 4.2.1)involves a t

175、ype of device that directly hosts all required OT applications.It isnt connected to any local networks on the device side and therefore doesnt need to include a local network termination function.The second kind(section 4.2.2)is enhanced by local network termination capabilities.It involves devices

176、that can serve as either an IP host or router or an Ethernet end station,bridge,or application-layer gateway.They are appropriate for applications or networking scenarios that only require conventional IP and Ethernet quality of service(DiffServ,Ethernet White Paper 5G-ACIA Report Industrial 5G Devi

177、ces Architecture and Capabilities 27 traffic classes)and dont rely on support from either IEEE TSN traffic scheduling or shaping functions or accurate PTP time synchronization over a 5G radio link.In practice,this means that the device doesnt need to include any device-side time-sensitive networking

178、 translator(DS-TT)functionality as defined in 3GPP releases 16 and 17.The third kind(section 4.2.3)refers to a device that additionally supports accurate(g)PTP-based time synchronization(according to IEEE 1588 and/or IEEE 802.1AS)over 5G radio.For this purpose,the device needs to implement a subset

179、of DS-TT functionality that is relevant to(g)PTP as defined in 3GPP release 17.It doesnt necessarily need to include full IEEE TSN-capable DS-TT as defined in 3GPP release 16.If the device has(g)PTP specific DS-TT capabilities,it may operate either as part of the 5GS bridge or as a standalone Ethern

180、et bridge or IP router,depending on the 5G network capabilities and overall network setup.This device architecture and these capabilities are suitable for deployment scenarios in which conventional IP or Ethernet QoS with accurate PTP time synchronization is adequate and neither IEEE TSN traffic sha

181、ping nor scheduling is used.The fourth(section 4.2.4)occurs in devices that also need to be able to operate as part of a 5GS bridge that supports the IEEE TSN-compliant centralized configuration model with IEEE TSN functionality that was introduced in 3GPP Release 16 and augmented in Release 17.This

182、 requires the device to include DS-TT that specifically supports the IEEE 802.1AS PTP profile used in IEEE TSN and the LLDP protocol used for Ethernet topology discovery.Including a detailed list of PTP-or TSN-related features and profiles would exceed the scope of this white paper,which takes an ar

183、chitectural perspective.Another consideration for detailed work is that,while the logical functions are independent of the actual implementation,it is helpful to acknowledge the implementation technologies that are clearly going to be used in any case,like Ethernet-based technologies on the device-s

184、ide local network.Ethernet PHY is therefore included in the logical architecture schemes shown below for that interface.Please note that while some local peripheral interfaces will also use Ethernet-based technologies,it cant be assumed that this will generally be the case,so no technology label is

185、applied to that interface.4.2.1 Logical Architecture for Supporting Applications Inside a 5G Industrial DeviceIn the logical architecture shown in figure 27,OT applications like those serving sensors or actuators are either embedded in the device itself or,as shown in the figure,connected as local p

186、eripherals.This is an architecture that doesnt connect to a local network on the device side and therefore doesnt need a local network termination function.The device can have an application layer gateway function between its Ethernet or IP connectivity on the 5G network side and use any protocol or

187、 technology to link to local peripherals.See figure 8 c)and d)for examples.Figure 27:Logical architecture for supporting applications inside a 5G industrial device White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities28 The top-level“5G network termination”function discussed

188、 above mainly maps to the UE shown in figure 27,which consists of a mobile equipment(ME),a mobile termination(MT),and a universal subscriber identity module(USIM).The last of these also hosts 3GPP-based AKA authentication functions.The USIM is a logical function hosted on the universal integrated ci

189、rcuit card(UICC).For visualizing the internal interfaces of an industrial 5G device,its enough to keep in mind that all of the connections to the UE terminate at the ME.Extensible authentication protocol(EAP)authentication,which is hosted by the extensible authentication protocol identity function(E

190、IF),can be used for connecting to nonpublic networks.Its connected to the ME for control signaling(indicated by a gray line).EIF is needed to apply authentication methods other than EAP authentication and key agreement(EAP-AKA)when no suitable USIM is available.This function isnt covered by the 3GPP

191、 standards.EIF is functionally similar to USIM in the sense that it can also be used to store subscription information and security credentials and also terminates the EAP protocol.The possibility has already been discussed that it can also be necessary to connect the EIF to the application hosting

192、the OT-related functions in the device.This control signaling functionality is therefore included in the figure as an option.Since EIF is used with OT networks,its important to enable flexible OT-defined deployment and provisioning options for it.Depending on the networks requirements,either USIM or

193、 EIF can be used as the primary authentication instance.The industrial 5G device can support both.This logical architecture has a“5G clock”interface between the 5G communication module(ME)and the applications.The ME can be synchronized with 5G time(typically traceable to UTC),and the interface lets

194、5G time be distributed to local applications as well.This is a basic time management capability that lets applications use 5G time for timestamping events(such as a measurement made by a peripheral)and also comes into play when a global time domain is needed for subsequent processing of measurements

195、(for example,to determine the order in which events have taken place).Depending on the needs of applications and the network or other end stations to which a device is connected,it may be necessary to provide IP and Ethernet protocol functionality with more advanced time management capabilities and

196、support for QoS.The following sections(4.2.2,4.2.3,and 4.2.4)describe different versions of these capabilities for the local network termination function used to connect a device to a local network.They can also be used for applications inside a device.It is assumed here that all of the logical elem

197、ents shown for the logical architectures described in section 4.2 need to be managed,either separately or together with other functions.The logical architecture includes a device management function that can be contacted via a local or remote management interface and is able to execute management ac

198、tions for all of the devices functions.This calls for logical links to all of the depicted functions.For remote management,the device management function can present itself as an Ethernet or IP-based application inside the device for sending and receiving remote management commands,which are treated

199、 as payload traffic in the local or 5G network.For simplicitys sake,these connections have been omitted from the figure.4.2.2 Logical Architecture for Supporting Applications or Networking Using IP or Ethernet with Traditional Non-Time-Aware QoSFigure 28 shows the logical architecture for cases that

200、 require support for QoS but not for TSC/TSN.5G connectivity is used to support Ethernet or IP traffic.Both are shown here:traffic to and from the application integrated in the device,and traffic routed to the devices Ethernet port,shown by the blue line in the middle.This line only represents traff

201、ic that the 5G system recognizes as user payload traffic;there is no direct interface for control signaling between these elements.White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities 29 This logical architecture contains the same functions as the logical architecture that

202、supports applications inside the 5G industrial device(see section 4.2.1)while adding functions related to local network termination.This enables the device to execute an Ethernet bridge function as shown in figure 8 a),an IP router as shown in figure 8 b),or an application-layer gateway(implemented

203、as an application within the device)between IP-and/or Ethernet-based application protocols.The Ethernet network bridge and IP router can support QoS via mechanisms such as DiffServ or Ethernet priority code points(PCP)while mapping them to 5G QoS on the 5G network side.The 5G network termination(UE)

204、,application,EAP identity function(EIF),5G clock interface,and device management are identical to those already described in section 4.2.1.In the context of this logical architecture,5G time could also be distributed to the local network connected to the 5G industrial device by NTP,PTP,or some other

205、 method.However,this kind of logical architecture isnt suited for accurately distributing external time domains via PTP over 5G radio,which introduces jitter.Synchronization to and distribution of an external working clock signal via PTP requires the capabilities provided by the 3GPP device-side tim

206、e-sensitive networking translator(DS-TT)function,which is the central element of the corresponding logical architecture described in section 4.2.3.4.2.3 Logical Architecture for Supporting Applications Using IP and Ethernet with QoS and Precision Time Protocol over a 5G Radio LinkTime synchronizatio

207、n is important for many industrial applications.3GPP has defined a set of functions for supporting IEEE TSN;it is applicable to applications that have been specifically designed for TSN.3GPP has specified that these functions must reside in a device-side time-sensitive networking translator(DS-TT).H

208、owever,many network deployments and use cases dont require the full set of TSN traffic scheduling or shaping-related features;support for accurate PTP time synchronization is sufficient in conjunction with conventional IP and Ethernet QoS mechanisms.For these purposes,3GPP Release 17 will include th

209、e possibility of having a DS-TT with only PTP-specific capabilities.To sum up,the DS-TT is needed to deduce exactly how much time a PTP(sync)message has spent inside the 5G system(called the residence time),in other words between the DS-TT and the network-side TSN translator(NW-TT),which acts simila

210、rly to the DS-TT in the 5G core network user plane function(UPF).3GPP Release 16 requires the PTP grand master clock to be on the UPF/NW-TT side of the 5GS,with PTP sync messages only being delivered to devices/DS-TTs in the downlink direction.Release 17 also allows PTP GM on the device/DS-TT side w

211、ith delivery of sync messages in the downlink direction and,via the UPF,to other devices/DS-TTs.Figure 28:Logical architecture for applications using IP or Ethernet with QoS support White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities30 Figure 29:Logical architecture for su

212、pporting applications via IP and Ethernet with QoS and PTP time synchronizationIt is possible to determine the residence time between NW-TT and any DS-TT or between two DS-TTs because NW-TT and all DS-TTs are synchronized with 5G time.The time-sensitive networking translator on the egress side,which

213、 is either a DS-TT or a NW-TT depending on the direction,inserts the residence time value into the PTP packet headers as a correction term.The NW-TT and DS-TT operations for PTP are necessary when time synchronization accuracy on the order of microseconds is required,owing to the variable delay intr

214、oduced by 5G radio.Generally speaking,a device with DS-TT that supports(g)PTP but not TSN traffic scheduling capabilities can be used in two types of network deployment scenarios:1)The device is connected to the 5G network using an Ethernet PDU session and acts as a port in a 5GS bridge formed by 5G

215、 UPF/NW-TT and other devices.The bridge can operate as an IEEE 802.1AS(gPTP profile)time-aware system or as an IEEE 1588(PTP)boundary clock or transparent clock.The port,including its(g)PTP operation,is managed by a special 3GPP-specified TSN application function.The 5GS bridge as a whole,modeled as

216、 a PTP instance,may operate and be managed as part of an(industrial)Ethernet network when(g)PTP support is required.Support for gPTP profiles is specified in 3GPP Release 16,while the other type of PTP support is specified in Release 17.2)The device is connected to the 5G network using an Ethernet o

217、r IP PDU session and,along with UPF/NW-TT and possibly other devices,modeled as a PTP instance that can work as a IEEE Std 802.1AS time-aware system(for Ethernet only)or as an IEEE Std 1588 boundary clock or transparent clock.Operation of PTP instances can be managed by any application function usin

218、g the 3GPP NEF time synchronization API.This deployment scenario with 5G-managed PTP operation is specified in 3GPP Release 17.The DS-TT is managed via management containers carried in the 5G control plane,so the DS-TT also needs the ability to send and receive them.This is shown in the figure as a

219、special“management containers”interface.This logical architecture version is shown in figure 29 below.White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities 31 The 5G network termination(UE),the application,the EAP identity function(EIF),and device management are the same as

220、those described for the first logical architecture version in section 4.2.1.This version also has other capabilities,since it incorporates functions related to time-sensitive networking.A time management function has been introduced for interlinking multiple clocks running in the device,in case a si

221、mple point-to-point interface isnt sufficient.The time management function is also a basic feature of functions that are needed to manage different time domains within a device,and a connection to the application is therefore also included here as an option.The DS-TT can also optionally include supp

222、ort for the IEEE link layer discovery protocol(LLDP).LLDP(IEEE 802.1AB)is used for topology discovery for Ethernet.It is mandatory for TSN-capable bridges,but can also be used in non-TSN-specific Ethernet deployments.4.2.4 Logical Architecture for Supporting Applications Using Ethernet with IEEE TSN

223、Figure 30 shows a logical architecture version containing the functions described above as well as all of the other functions that support TSN,in particular the time-aware shaper(IEEE 802.1Qbv).This lets an industrial 5G device act as a port for TSN-capable 5GS bridges as defined in 3GPP Releases 16

224、 and 17.A 5G industrial device acting as a standalone Ethernet bridge is unable to support TSN traffic shaping or scheduling features over 5G radio on its own due to the delay variability of the radio;it has to join the distributed 5GS bridge for this purpose.Where PTP is concerned,TSN requires supp

225、ort for the IEEE 802.1AS profile of PTP,for which the DS-TT functionality is described in detail in 3GPP Release 16.This logical architecture may be considered to be the most advanced version.From the 5G network termination perspective,this version differs mainly in its ability to control user plane

226、 payload traffic while interfacing the local network with time-sensitive network(TSN)scheduling.For this purpose,it integrates a DS-TT function defined by 3GPP that includes egress scheduling and ingress policing.The DS-TT scheduling and policing parameters are configured by the time-sensitive netwo

227、rking function via the same management containers that are used for PTP management.This function exposes management of the entire 5GS bridge via standardized IEEE interfaces to the centralized network controller(CNC)for time-sensitive networking,which is ultimately what provides the DS-TT scheduling

228、 and shaping configurations.The 5GS bridge and TSN both require the 5G core network to support TSN/TSC capabilities as defined in 3GPP Release 16 and enhanced in Release 17.The network also needs to deploy the time-sensitive networking function for bridge management.Figure 30:Logical architecture fo

229、r applications using Ethernet with IEEE TSN White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities32 4.3 Device Authentication4.3.1 IntroductionMutual authentication between a 5G network and 5G device is based on the conventional USIM model known from previous cellular genera

230、tions.Summing up,the USIM holds the devices permanent 5G-specific identity(referred to as the SUPI in the context of 5G),a long-term secret key shared by the USIM and network,and a cryptographic algorithm that permits mutual proof of possession of this long-term key.The USIM also stores the subscrib

231、er profile,which includes but is not limited to network-specific cellular parameters that define how the device behaves toward a given network(a list of preferred networks is one example).Authentication is executed between USIM and the network during initial network registration(in other words,when

232、a cellular device attempts to connect to the network).This is referred to as primary authentication.3GPP defines two types of industrial networks that take different approaches to device authentication and the Universal Subscriber Identity Model(USIM);they are described in the following two sections

233、.In the first approach,private networks piggyback onto the infrastructure of a public mobile network(the PNI-NPN scenario),while in the second private networks dont rely on the functions of a public land mobile network or PLMN(the SNPN scenario).Besides primary authentication,5G includes the concept

234、s of slice-specific authentication and authorization,which take place completely independently of a USIM.They are covered in section 4.3.4 below.4.3.2 Primary Authentication for PNI-NPNsIn network deployments that take the public network interface nonpublic network(PNI-NPN)approach,one or more slice

235、s or cells(constituting“closed access groups”)of the public network are dedicated to a specific OT network.The device must use a USIM issued by the public mobile operator in order to attach to the PLMN network that is providing the resources for the PNI-NPN.Since an ordinary(IMSI-based)operator USIM

236、 is involved,its deployment is bound to UICCs(or eUICCs),and mobile operator procedures are applied to distribute and manage it.In the case of PLMNs(including PNI-NPNs),its mandatory to deploy a USIM(universal subscriber identity module)on a dedicated secure element called a UICC(universal integrate

237、d circuit card).In the context of remote provisioning,there is no such thing as a USIM permanently coupled with a UICC.For previous cellular generations,GSMA had already introduced the possibility of dynamically deploying USIM profiles(a text description of the entire content of a USIM)as embedded u

238、niversal integrated circuit cards or eUICCs.The main difference between an eUICC and a UICC(which also exists in soldered form)is the possibility of storing USIM profiles in the eUICC.The geometry of a USIM deployment is clearly relevant to the physical layout of an industrial device,and it has an e

239、ven greater impact on how industry verticals use key management and distribution procedures.Physically distributing and inserting removable cards could work well in a limited number of entry scenarios,but isnt an economically viable option for complex,large-scale deployments.Capabilities for electro

240、nically deploying(“provisioning”)USIM profiles in a device are essential,however.One option for SNPNs is to adopt eUICCs and the GSMAs remote SIM provisioning framework.However,although administrative issues related to certification requirements could definitely be resolved,it is unclear whether thi

241、s approach could provide optimal synergies between existing key and identity management approaches at OT companies and management of 5G-specific identities and credentials.The next section therefore goes into detail on how primary authentication can be executed with SNPNs without having to rely on U

242、SIMs and UICCs.White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities 33 4.3.3 Primary Authentication of SNPNsSince a SNPN doesnt rely on network functions provided by a PLMN,the corresponding 3GPP specification TS 33.501 allows for the use of new primary authentication metho

243、ds(apart from USIM-based ones).The choice of(EAP)authentication methods is left to the private network owner,for example the OT operator.How identities and credentials for these new methods are stored and processed in a device is beyond the scope of the 3GPP specifications.This paves the way for ind

244、ustrial devices without UICCs or eUICCs.Both aspects are discussed in greater detail below.New EAP MethodsUp to Release 15,the only available authentication method was the AKA(authentication and key agreement)protocol,which uses symmetric keys shared by the USIM and network.Two variants of AKA exist

245、 within 5G:5G AKA and EAP-AKA.5G AKA has evolved from the EPS-AKA protocol used for previous cellular generations,while EAP-AKA is an adaptation of the AKA protocol used with the extensible authentication protocol(EAP).3GPP has added the EAP framework to enable new authentication methods that could

246、be especially helpful for industry verticals in private networking scenarios.One example,which is expected to be relevant to industrial deployments,is the EAP-TLS protocol;it uses private public key cryptography instead of shared symmetric keys.In addition to specifying in detail the implementation

247、of EAP-TLS for 5G authentication,Release 16 has introduced a new type of permanent identifier as an alternative to the conventional IMSI-based SUPI consisting only of decimal digits.A SUPI of this new network-specific identifier(NSI)type has the form.While the EAP framework and new SUPI type were im

248、portant steps toward authentication schemes optimized for verticals,3GPP has left open how EAP should be implemented in devices.In the current USIM architecture,the EAP protocol is terminated by the mobile equipment,in other words outside the USIM.During authentication,the USIM is invoked for a cryp

249、tographic operation that uses a single command and is the same for both EAP-AKA and 5G AKA.This command cant currently be used for EAP-TLS.3GPP would have to define new commands and storage capabilities for a private key and certify the USIM in order for it to be used in combination with an USIM.It

250、should also be noted that SUPIs of the new NSI type can so far only be used in combination with AKA protocols,although 3GPP has specified a dedicated non-IMSI variant of the USIM in Release 16.Migrating the EAP client of mobile equipment to a new authentication client while adding generic EAP suppor

251、t may provide benefits by making it possible to introduce new EAP variants without modifying the equipment.In the context of this white paper,the term EAP identity function(EIF)is proposed for designating such an EAP-enabled authentication client(replacing the USIM),despite the fact that no formal s

252、pecifications exist for it.Primary Authentication Without UICCOne property of the EIF is that(as opposed to USIMs),3GPP doesnt define any requirements(such as use of an UICC)related to its deployment.The industrial 5G devices manufacturer may therefore implement the EIF in accordance with the requir

253、ements of a particular industrial use case,for instance as an application running on a host CPU.In the case of a Wi-Fi or 802.1X network,there are numerous options for deploying the EAP client(used by a WPA supplicant)on the host.However,it should be kept in mind that the USIM or EIF doesnt only han

254、dle authentication but also stores the subscriber profile.Simply replacing the USIM with a WPA supplicant would therefore be insufficient in the case of cellular networks.The full functionality of the EIF is needed,specifically for providing access to the subscriber profile and terminating EAP sessi

255、ons while being deployed as part of the OT domain.However,an existing WPA supplicant could be part of the EIF implementation and provide the required EAP client functionality.The fact that the EIF forms part of the OT domain also means that methods defined and executed within the OT domain are used

256、to provision the EIF in the device.It should be noted that deploying the EIF outside an UICC in the operational domain doesnt necessarily lower the security bar.The EIF could integrate the industrial devices secure element(using,for instance,the Generic Trust Anchor API)to provide a high level of se

257、curity.White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities34 4.3.4 NSSAA and Secondary Authentication3GPP has also foreseen that 5G networks will be operated in environments with multiple stakeholders and that authentication and authorization decisions may not necessarily

258、be made by a single entity in the network.This is the reason for introducing the concepts of network slice specific authentication and authorization(NSSAA)and secondary authentication(also known as data network(DN)authentication or protocol data unit(PDU)authentication).They are applicable to both S

259、NPN and PNI-NPN deployment models.In the case of NSSAA,in order for a device to access a certain logical partition of the 5G network(known as a slice)it may need to perform authentication and authorization via an additional authentication,authorization and accounting(AAA)server that could be outside

260、 of the 5G system and operated by the OT company.NSSAA doesnt replace primary authentication;it is optionally executed in addition to it.Access to certain LAN or data center resources(which are grouped into a DN)also requires secondary authentication and authorization by the DN owners AAA server.How

261、ever,these dont replace primary authentication either,being optionally executed in addition to it instead.They use the EAP framework.Arbitrary EAP methods can be used between the device and a AAA server.3GPP doesnt define any requirements for the EAP method or specify how identities and credentials

262、for these new authentication types should be processed or handled on an industrial device.If these additional authentication methods are required,an authentication client needs to be deployed as part of the industrial devices OT domain.Neither NSSAA nor secondary authentication is related to authent

263、ication or security procedures on the level of the industrial network protocol.Summing up,an industrial device could support up to four levels of authentication using different identities and credentials and key management approaches operated by different entities.4.3.5 SummaryIn the PNI-NPN model,i

264、f the OT takes advantage of user-plane services and slices provided by PLMN,for example,its mandatory to use the USIM application for primary authentication on UICC or eUICC(including the iUICC form factor).This cant be avoided unless an agreement between the PLMN and the OT allows for an alternativ

265、e mechanism.Regarding the SNPN scenario,which is based on a standalone 5G network deployed and managed by OT,authentication for accessing the network may also use USIMs.Besides adopting the existing SIM ecosystem,vertical industries could benefit from replacing the USIM with an authentication client

266、 that supports EAP-based authentication for non-AKA credentials.These could be deployed as part of the OT domain of an industrial device,in other words independently of a UICC or eUICC(including the iUICC form factor).Due to the USIMs strong legacy and major role in cellular networks,an approach com

267、bining storage functionality for subscriber profiles(traditionally provided by the USIM)with EAP client functionality to create a new function called EIF can only be implemented if there is strong support and the remaining architectural and technical issues are resolved.White Paper 5G-ACIA Report In

268、dustrial 5G Devices Architecture and Capabilities 35 5.Industrial 5G Device Physical Reference ArchitectureIn this section,we discuss various aspects of the physical architecture of industrial 5G devices.First we address several defining aspects of this architecture:The need for explosion protection

269、 for devices in hazardous areas Options for implementing storage of credentials The ability to use either a chipset or a module The existing radio module form factor standards Selection of a standalone application processor or one that is integrated with the radio chipset Selection of an interface b

270、etween the application processor and radio moduleThen we present reference architecture diagrams for the device types introduced in section 3.1.5.1 Explosion Protection for Devices in Hazardous Areas5.1.1 IntroductionFlammable gases and vapors can occur in processing plants of the petroleum and chem

271、ical industries,among others.An area that has or may have such an explosive atmosphere is called a hazardous area.Special precautions must be taken when installing and operating devices in areas of this type to prevent them from causing fires or explosions.5.1.2 Classification of ZonesThe IEC 60079

272、9 series of international standards establishes various requirements for the development,installation,operation,etc.of devices in hazardous areas.The requirements of most regional regulations on electrical devices,including the ATEX directives and the EN 60079 standards in Europe,are based on the IE

273、C 60079 standards.Hazardous areas with explosive atmospheres are assigned to three types of zones depending on how often explosive conditions occur and how long they last.IEC 60079 also stipulates the kinds of explosion protection that devices used in each zone must have(see 5.1.3)in order to minimi

274、ze the risks.Zone 0:An explosive atmosphere is present continuously,for long periods,or frequently(for example,inside a tank of flammable liquid).Zone 1:An explosive atmosphere is likely to occur occasionally during normal operation(for example,around relief valves that release flammable gas during

275、normal operation).Zone 2:An explosive atmosphere is unlikely to occur during normal operation,and if it does occur will quickly dissipate(for example,parts of a plants premises to which flammable gas may occasionally drift).All of the device types presented in section 3.1 can be installed or used in

276、 zone 1,zone 2,or non-hazardous areas depending on the use cases,configuration,and the plants policy,while typically only sensors and actuators can be used in zone 0 areas.5.1.3 Types of Explosion Protection for Industrial DevicesThis section introduces some of the explosion protection types defined

277、 by the IEC 60079 series of standards and describes the requirements that 5G communication modules would potentially have to meet for each level of explosion protection.Protection by Flameproof Enclosure(Ex d)An enclosure is considered to be flameproof(Ex d)if it is able to resist an internal explos

278、ion and prevent it from spreading to a surrounding explosive atmosphere.The requirements are White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities36 specified in IEC 60079-1.“Ex d”protection is usually provided for electrical equipment in zone 1 and 2 areas to prevent it fro

279、m igniting an explosive atmosphere.Internal electronic components,including 5G communication modules,could be vulnerable but a flameproof enclosure prevents the gas atmosphere surrounding them from igniting.If an internal explosion does occur,however,the electrical equipment inside the enclosure may

280、 be damaged by it.Protection by Increased Safety(Ex e)Increased safety or Ex e is an explosion protection concept that provides increased security against the risk of excessive temperatures and/or electrical arcs and sparks arising from electrical equipment in hazardous areas.IEC 60079-7 details the

281、 requirements for achieving this,such as impregnating coils,providing clearance between bare conductive parts,and so on.They make it possible to install and use equipment containing electronic circuits(like industrial 5G devices)under zone 2 conditions.No surfaces of any internal parts,including 5G

282、communication modules,should reach a temperature high enough to ignite an explosive atmosphere.IEC 60079 defines three groups of gases on the basis of their minimum ignition energies(IIA,IIB,and IIC)and six temperature classes based on the autoignition temperature of gases(T1 to T6),which must be ta

283、ken into account when designing equipment for increased safety protection.Protection by Intrinsic Safety(Ex i)Protection by intrinsic safety or Ex i limits the electrical and thermal energy within equipment to a level below that at which ignition could be caused by sparking or heating,also under fau

284、lt conditions.An apparatus called an intrinsic safety barrier limits the flow of energy supplied to the electrical equipment.The electrical equipment also restricts internal accumulation of energy.This protects areas with an explosive atmosphere and qualifies the electrical equipment as“intrinsicall

285、y safe”.The requirements are specified by IEC 60079-11.Equipment that qualifies for the highest level of protection defined by IEC 60079-11(“Ex ia”)may operate in zone 0 conditions.Figure 31:An example configuration of an industrial 5G device architecture protected by a flameproof enclosureFigure 32

286、:An industrial 5G device architecture with enhanced protection(Ex e)White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities 37 A 5G communication module designed for intrinsic safety must run on a limited energy supply.The energy stored in electronic circuits(like capacitors a

287、nd inductors)of the equipment must also be limited.These constraints prevent the equipment from having enough energy to release an ignition spark in case a fault condition as defined by IEC 60079-11 occurs.5.2 Physical Implementation for Storing CredentialsManagement of credentials is an important a

288、spect of industrial 5G network security.As shown in figure 34,credentials can be stored in different ways.Its also possible to combine several methods in the same industrial 5G device.In this section,we describe the physical process of storing credentials in industrial 5G devices.How secure elements

289、 are connected inside an industrial 5G device is explained in chapter 4 from a logical perspective and further below in this section from a physical perspective.To simplify the following description,here the concept of a“trust anchor”holding a devices initial credentials is introduced.It is also use

290、d to derive or securely download additional credentials.It is possible to have two trust anchors,one for cellular authentication and another for application layer authentication.Alternatively,the same trust anchor can be used for both cellular and application layer authentication.Please refer to sec

291、tion 4.3 for a full description of the various authentication methods supported by the 5G system.Figure 33:An industrial 5G device architecture with protection by intrinsic safety(Ex i)Figure 34:Physical implementation options for storing credentials White Paper 5G-ACIA Report Industrial 5G Devices

292、Architecture and Capabilities38 5.2.1 Removable Secure Element The trust anchor can be stored in a removable secure element.The secure element holding the trust anchor is then inserted into the industrial 5G device as shown in figure 34a.A typical example of this is the UICC used to store the USIM a

293、pplication and possibly also other applications.The credentials are programmed into the UICC before the UICC is inserted into the device.5.2.2 Embedded Secure Element Without Key Management InterfaceIts also possible to integrate a secure element into an industrial 5G device.This is shown in figure

294、34b.In this case,the industrial 5G device lacks a key management interface.It is therefore necessary to program the trust anchor into the secure element before it is provided to the final customer.A good example of this is the embedded or integrated UICC that supports GSMAs embedded SIM(eSIM)remote

295、provisioning architecture.5.2.3 Embedded Secure Element with Key Management InterfaceFinally,its possible to have an embedded secure element with a key management interface.This is shown in figure 34c.In this case,there is no need to load any credentials before supplying the industrial 5G device to

296、the final customer.Depending on the provisioning protocol,the key management interface ensures the integrity and/or confidentiality of data arriving via the interface.This is commonly implemented as a local wired or short-range interface with optical,acoustic,near-field,or short-range wireless commu

297、nication.An example of this is a secure element used to store certificates for EAP authentication.The certificate is loaded using the simple certificate enrollment protocol(SCEP).Initially,a shared secret key is loaded via the key management interface.Then the certificate can be securely loaded via

298、a wireless or wired interface into the secure element,also using SCEP.5.2.4 Provisioning of Cellular CredentialsProvisioning of cellular credentials is generally accomplished in one of two different ways,as illustrated in figure 35.In figure 35a,USIM credentials are generated and then transferred to

299、 both an UICC and a 5GS.For public networks,UICCs are normally programmed at a central location and then physically transported to subscribers.For private networks,UICCs are normally programmed on site using a credentials generator.Alternatively,credentials can be provisioned based on the GSMAs remo

300、te SIM provisioning framework.This is shown in figure 35b.First an embedded identity document(EID)is stored on the eSIM.The EID allows secure remote downloading of USIM credentials from a 5GS.The secure Figure 35:Provisioning of cellular credentials White Paper 5G-ACIA Report Industrial 5G Devices A

301、rchitecture and Capabilities 39 remote download is based on a public key infrastructure to which all participating 5GS and credentials generators belong.Both provisioning methods can be used for all three implementation options shown in figure 34Finally,its possible to use EAP-based cellular authent

302、ication.One example is EAP-TLS,which was introduced in 3GPP Release 15.EAP provides many different provisioning options,but credentials are usually provisioned via a key management interface on the device and/or using an automated credential management protocol.5.3 Chipset Versus ModuleManufacturers

303、 have two main choices for implementing a 5G industrial device:a standard 5G modem chipset or a communication module containing one.Choosing a 5G modem chipset makes it possible to develop a design thats optimized for a particular product.Fewer materials are also required,and theres no need to wait

304、for modules to become available in the market before initiating product development.The downside is that it takes considerable expertise and experience to design and build a well-shielded and smoothly operating terminal(called UE in 3GPP terms).One critical aspect is radio frequency(RF)design,and an

305、other is meeting certification requirements.If the chipset is poorly designed,the 5G modems performance,interoperability,and electromagnetic compatibility(EMC)will be compromised.This can result in unreliable connections,lower data throughput,increased latencies,and EMC certification challenges.Owin

306、g to these challenges,a chipset mainly makes sense for high-volume products.5G communication modules are a recommended way of mastering these challenges.The module vendor takes care of RF calibration during production.The industrial 5G device manufacturer doesnt need to focus as much on RF design,si

307、nce this is already largely covered by the module manufacturer.The interfaces provided by the module can simply be taken advantage of.Whats more,its possible to buy precertified 5G modules,thus greatly speeding up the certification process.In addition to these benefits,when integrating readily avail

308、able 5G modules into a 5G industrial device its possible to take advantage of ready-made modules that provide important processing resources(CPU,memory,I/Os)and can be used to implement core industrial device functionality beyond wireless cellular communications.For all of these reasons,the expectat

309、ion is that the market will generally opt for the 5G module approach.5.4 Radio Module Form Factor StandardsWith regard to 5G module form factors and physical connections,two main categories of modules are available in the market:modules for soldering onto a printed circuit board(PCB)(like Land Grid

310、Array(LGA)form factors)and pluggable modules(generally with an M.2 interface).The solderable modules typically include extra pins,making it possible to access more functionality of the 5G modem or use additional I/Os instead of a pluggable form factor with dedicated pins.On the other hand,no widely

311、accepted specific form factor standard exists.This means that there is no guarantee that different 5G modules will be interchangeable.Pluggable form factors,with M.2 being a prominent format,have fewer pins but extensively standardized electrical properties.This lets 5G industrial device manufacture

312、rs upgrade their 5G industrial devices more easily later on without having to completely redesign them.Both form factor categories are technically feasible.At the end of the day,its up to 5G industrial device manufacturers to decide which option meets their requirements better.5.5 Standalone Versus

313、Integrated Application ProcessorOther architectural choices that 5G industrial device manufacturers must make include whether or not to integrate an application processor in the 5G module and if so,which other capabilities such as additional I/Os should be included.If the 5G module includes an adequ

314、ately performing internal processor for executing customer-specific applications,its functionality can be expanded.Tasks normally assumed by dedicated external hardware,such as control applications(PLC,DCS,or motion or robot controllers),artificial intelligence algorithms,or visualization,can also b

315、e carried out by the internal application processor.White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities40 This wont necessarily impact its communication performance.Both architectural approaches with or without a processor involve tradeoffs.For example:Using a module with

316、an integrated application processor may result in a smaller,more compact BOM and designing the PCB is simpler,but the 5G industrial device manufacturer will have fewer hardware resources available and more limited choices for integrating the OT application software in the 5G module.Which approach is

317、 better depends on the specific use case.Due to the mentioned advantages of using a 5G communication module,going forward it is expected to be the most common model.The architectural choices for industrial 5G devices shown in section 5.7 therefore assume that this approach is taken.For simplicitys s

318、ake,several of the components that a real industrial device would have are left out here(such as mechanical plugs,a power source,a housing and so on).Although the architectures shown in the following examples lack an integrated application processor,it could be feasibly be included in all of them.5.

319、6 Interface Between Application Processor and Radio ModuleIf a standalone application processor is chosen,there must be an interface to the radio module.This interface needs to support both data transfer and time synchronization.5.6.1 Data InterfaceThe data interface can be implemented as multiple p

320、hysical interfaces.Common options include:UART serial interface Universal serial bus(USB)Peripheral component interconnect express(PCIe)UART-based serial interfaces used to be extensively used in modems.Due to their limited throughput,however,today they are mainly found in applications where this is

321、nt an issue.USB provides greater speed than UART-based serial interfaces.USB 3.1 can support up to 10 Gbit/s.The mobile broadband interface model(MBIM)interface was published by the USB Implementers Forums to enable broadband data connectivity via USB for cellular devices.PCIe is an alternative to U

322、SB that makes it possible to scale up the speed even further.It also gives vendors greater flexibility for implementing higher-layer protocols.The interfaces just described are primarily intended for configuration and data transfer.They are less suited for time synchronization between the applicatio

323、n processor and radio module.5.6.2 Time Synchronization InterfaceA dedicated hardware interface is commonly used for time synchronization with GNSS receivers and other applications.Called 1pps or PPS,it generates a pulse that accurately repeats at regular time intervals.The timing information for ea

324、ch pulse arrives via a data interface.Consequently,there are actually two interfaces in play:a low-level interface that generates a pulse every second with microsecond accuracy without indicating which second it is and a high-level interface that indicates the second of the day.A 5G system supports

325、both global time domain and working clock domain synchronization.The use of a pulsed time reference signal together with higher-layer messaging via a digital interface is an effective way to synchronize an industrial 5G device with a TSN grand master or 5G system clock.A similar interface can be use

326、d for time synchronization between a physical layer network interface and a radio module or application processor.Here the purpose is accurate synchronization of transmitted and received data frames.5.7 Generic Block Diagrams for Industrial 5G Devices and Interface OptionsIt is useful to categorize

327、the available architectures for industrial devices based on their use cases.This approach White Paper 5G-ACIA Report Industrial 5G Devices Architecture and Capabilities 41 lets them be grouped according to their characteristics(such as power,interfaces,processing capabilities,and so on)for defining

328、the properties of 5G communication modules.The scheme presented in section 3.1 is the basis for doing this.5.7.1 Industrial 5G Devices with Low-Power and Low-Latency Sensors/Actuators and 2D/3D Sensors An industrial device of any of these types normally comprises a 5G communication module,interfaces

329、 for on-board or off-board connection of physical sensors/actuators or I/O transceivers,and optionally an application processor.A 5G communication module typically has the following interfaces:Configuration interface(e.g.USB,UART)Host interface(e.g.USB,UART)Power supply Integrated antenna or antenna

330、 connector Time synchronization interface With an internal application processor,optionally digital interface(s)(SPI,I2C,UART etc.)for connecting I/O-protocol-specific transceiver(s)(such as IO-Link)or direct connection to analog or digital I/Os(such as GPIO,ADC,PWM)for directly connecting analog or

331、 digital sensors/actuators.Optional support for an(e/i)UICC/EAP identity functionAn architecture with integrated application processor and 5G communication module can accommodate devices with fewer and more compact components while minimizing power consumption.Conversely,an external processor soluti

332、on permits partial reuse of existing software and layouts,thus potentially accelerating integration.5.7.2 HMI and xR DevicesHMI and xR industrial devices typically contain among other components a 5G communication module and an internal application processor plus optional sensor/actuator hardware an

333、d integrated audio/visual components and/or interfaces to external A/V components.The processor(possibly including accelerators for xR processing)needs to be adequate for supporting visualization and xR applications.Figure 36:Example 5G device architecture with sensor/actuator low-power industrial temperature sensor,5G communication module,and external application processor White Paper 5G-ACIA Rep