ICALEPCS2019 - List of Authors (Blanco Vinuela, E.)

Paper	Title	Page
MOBPP01	PLCverif Re-engineered: An Open Platform for the Formal Analysis of PLC Programs	21
	E. Blanco Viñuela, D. Darvas CERN, Geneva, Switzerland V. Molnár BUTE, Budapest, Hungary
	Programmable Logic Controllers (PLC) are widely used for industrial automation in industry and at CERN. The reliability of PLC software is crucial, but typically only testing is used to validate it. Our work targets the use of formal verification in practical ways for many years, which showed that it can be beneficial and practically applicable to various PLC programs. In this paper, we present PLCverif, our platform for formal analysis of PLC programs which has largely enhanced the quality of the deployed PLC software. By re-engineering the previous internal prototype tool, we built PLCverif to be an open, extensible platform that can be used not only for CERN’s specific PLC programs. PLCverif is licensed under an open source license, allowing the interested parties to use and extend it.
	Slides MOBPP01 [5.586 MB]
DOI •	reference for this paper ※ https://doi.org/10.18429/JACoW-ICALEPCS2019-MOBPP01
About •	paper received ※ 27 September 2019 paper accepted ※ 09 October 2019 issue date ※ 30 August 2020
Export •	reference for this paper using ※ BibTeX, ※ LaTeX, ※ Text/Word, ※ RIS, ※ EndNote (xml)

MOPHA041	Cause-and-Effect Matrix Specifications for Safety Critical Systems at CERN	285
	B. Fernández Adiego, E. Blanco Viñuela, M. Charrondiere, R. Speroni CERN, Geneva, Switzerland M. Bonet, H.D. Hamisch, M.H. de Queiroz UFSC, Florianópolis, Brazil
	One of the most critical phases in the development of a Safety Instrumented System (SIS) is the functional specification of the Safety Instrumented Functions (SIFs). This step is carried out by a multidisciplinary team of process, controls and safety experts. This functional specification must be simple, unambiguous and compact to allow capturing the requirements from the risk analysis, and facilitating the design, implementation and verification of the SIFs. The Cause and Effect Matrix (CEM) formalism provides a visual representation of Boolean expressions. This makes it adequate to specify stateless logic, such as the safety interlock logic of a SIS. At CERN, a methodology based on the CEM has been applied to the development of a SIS for a magnet test bench facility. This paper shows the applicability of this methodology in a real magnet test bench and presents its impact in the different phases of the IEC 61511 safety lifecycle.
	Poster MOPHA041 [0.751 MB]
DOI •	reference for this paper ※ https://doi.org/10.18429/JACoW-ICALEPCS2019-MOPHA041
About •	paper received ※ 27 September 2019 paper accepted ※ 08 October 2019 issue date ※ 30 August 2020
Export •	reference for this paper using ※ BibTeX, ※ LaTeX, ※ Text/Word, ※ RIS, ※ EndNote (xml)

MOPHA131	Waste Heat Recovery for the LHC Coooling Towers: Control System Validation Using Digital Twins	520
	B. Schofield, E. Blanco Viñuela, W. Booth CERN, Geneva, Switzerland M.O. Peljo Aalto University, School of Science and Technology, Aalto, Finland
	In order to improve its energy utilization, CERN will deploy a Waste Heat Recovery system at one of the LHC’s surface sites which will provide heating power to a local municipality. To study the effects that the heat recovery plant will have on the cooling system, a ’digital twin’ of the cooling plant was created in the simulation tool EcosimPro. The primary question of interest was whether the existing control system of the cooling plant would be capable of handling transients arising from a sudden shutdown of the heat recovery plan. The simulation was connected via OPC UA to a PLC implementing the cooling plant control system. This ’virtual commissioning’ setup was used to study a number of scenarios representing different cooling loads, ambient temperature conditions, and heat recovery plant operating points. Upon completion of the investigation it was found that the current cooling plant control system will be sufficient to deal with the transients arising from a sudden stop of heat recovery plant operation. In addition, it was shown that an improvement in the controls could also enhance the energy savings of the cooling towers.
DOI •	reference for this paper ※ https://doi.org/10.18429/JACoW-ICALEPCS2019-MOPHA131
About •	paper received ※ 27 September 2019 paper accepted ※ 10 October 2019 issue date ※ 30 August 2020
Export •	reference for this paper using ※ BibTeX, ※ LaTeX, ※ Text/Word, ※ RIS, ※ EndNote (xml)

WEPHA018	Testing Solutions for Siemens PLCs Programs Based on PLCSIM Advanced	1107
	E. Blanco Viñuela, D. Darvas CERN, Geneva, Switzerland Gy. Sallai BUTE, Budapest, Hungary
	Testing Programmable Logic Controllers (PLCs) is challenging, partially due to the lack of tools for testing. Isolating a part of the PLC program, feeding it with test inputs and checking the test outputs often require manual work and physical hardware. The Siemens PLCSIM Advanced tool can simulate PLCs and provide a rich application programming interface (API). This paper presents a new CERN made tool based on PLCSIM Advanced and the TIA Portal Openness API. The tool takes a test case described in an intuitive, tabular format, which is then executed with the full PLC program or a selected part of it, effectively allowing unit testing. The inputs can be fed and the outputs can be captured via the PLCSIM API. This way the tests can be executed and evaluated automatically, without manual work or physical hardware. Therefore, it is possible to provide an automated and scalable continuous testing solution for PLC programs to reveal errors as early as possible.
	Poster WEPHA018 [1.026 MB]
DOI •	reference for this paper ※ https://doi.org/10.18429/JACoW-ICALEPCS2019-WEPHA018
About •	paper received ※ 27 September 2019 paper accepted ※ 09 October 2019 issue date ※ 30 August 2020
Export •	reference for this paper using ※ BibTeX, ※ LaTeX, ※ Text/Word, ※ RIS, ※ EndNote (xml)

WEPHA019	MONARC: Supervising the Archiving Infrastructure of CERN Control Systems	1111
	J-C. Tournier, E. Blanco Viñuela CERN, Geneva, Switzerland
	The CERN industrial control systems, using WinCC OA as SCADA (Supervisory Control and Data Acquisition), share a common history data archiving system relying on an Oracle infrastructure. It consists of 2 clusters of two nodes for a total of more than 250 schemas. Due to the large number of schemas and of the shared nature of the infrastructure, three basic needs arose: (1) monitor, i.e. get the inventory of all DB nodes and schemas along with their configurations such as the type of partitioning and their retention period; (2) control, i.e. parameterise each schema individually; and (3) supervise, i.e. have an overview of the health of the infrastructure and be notified of misbehaving schemas or database node. In this publication, we are presenting a way to monitor, control and supervise the data archiving system based on a classical SCADA system. The paper is organized in three parts: the first part presents the main functionalities of the application, while the second part digs into its architecture and implementation. The third part presents a set of use cases demonstrating the benefit of using the application.
	Poster WEPHA019 [2.556 MB]
DOI •	reference for this paper ※ https://doi.org/10.18429/JACoW-ICALEPCS2019-WEPHA019
About •	paper received ※ 30 September 2019 paper accepted ※ 19 October 2019 issue date ※ 30 August 2020
Export •	reference for this paper using ※ BibTeX, ※ LaTeX, ※ Text/Word, ※ RIS, ※ EndNote (xml)

WESH4003	Continuous Integration for PLC-based Control Systems	1527
WEPHA140	use link to see paper's listing under its alternate paper code
	B. Schofield, E. Blanco Viñuela CERN, Geneva, Switzerland J.H.P.D.C. Borrego IPFN - IST, Bobadela, Portugal
	Continuous integration is widespread in software development, but a number of factors have thus far limited its use in PLC (Programmable Logic Controller) application development. A key requirement of continuous integration is that build and test stages must be automated. Automation of the build stage can be difficult for PLC developers, as building is typically performed with proprietary engineering tools. This has been solved by developing command line utilities which use the APIs of these tools. Another issue is that the program must be deployed to a real target (PLC) in order to test, something that is typically easier to do in other types of software development, where virtual environments may easily be used. This is solved by expanding the command line utilities to allow fully automated deployment of the PLC program. Finally, testing the PLC program presents its own challenges, as it is typically undesirable to alter the program in order to implement the tests natively in the PLC. This is avoided by using an industry standard protocol (OPC UA) to access PLC variables for testing purposes, allowing tests to be performed on an unaltered program.
DOI •	reference for this paper ※ https://doi.org/10.18429/JACoW-ICALEPCS2019-WESH4003
About •	paper received ※ 27 September 2019 paper accepted ※ 09 October 2019 issue date ※ 30 August 2020
Export •	reference for this paper using ※ BibTeX, ※ LaTeX, ※ Text/Word, ※ RIS, ※ EndNote (xml)

Paper

Title

Page

PLCverif Re-engineered: An Open Platform for the Formal Analysis of PLC Programs

21

E. Blanco Viñuela, D. Darvas
CERN, Geneva, Switzerland
V. Molnár
BUTE, Budapest, Hungary

Programmable Logic Controllers (PLC) are widely used for industrial automation in industry and at CERN. The reliability of PLC software is crucial, but typically only testing is used to validate it. Our work targets the use of formal verification in practical ways for many years, which showed that it can be beneficial and practically applicable to various PLC programs. In this paper, we present PLCverif, our platform for formal analysis of PLC programs which has largely enhanced the quality of the deployed PLC software. By re-engineering the previous internal prototype tool, we built PLCverif to be an open, extensible platform that can be used not only for CERN’s specific PLC programs. PLCverif is licensed under an open source license, allowing the interested parties to use and extend it.

Slides MOBPP01 [5.586 MB]

DOI •

reference for this paper ※ https://doi.org/10.18429/JACoW-ICALEPCS2019-MOBPP01

About •

paper received ※ 27 September 2019 paper accepted ※ 09 October 2019 issue date ※ 30 August 2020

Export •

reference for this paper using ※ BibTeX, ※ LaTeX, ※ Text/Word, ※ RIS, ※ EndNote (xml)

MOPHA041

Cause-and-Effect Matrix Specifications for Safety Critical Systems at CERN

285

B. Fernández Adiego, E. Blanco Viñuela, M. Charrondiere, R. Speroni
CERN, Geneva, Switzerland
M. Bonet, H.D. Hamisch, M.H. de Queiroz
UFSC, Florianópolis, Brazil

One of the most critical phases in the development of a Safety Instrumented System (SIS) is the functional specification of the Safety Instrumented Functions (SIFs). This step is carried out by a multidisciplinary team of process, controls and safety experts. This functional specification must be simple, unambiguous and compact to allow capturing the requirements from the risk analysis, and facilitating the design, implementation and verification of the SIFs. The Cause and Effect Matrix (CEM) formalism provides a visual representation of Boolean expressions. This makes it adequate to specify stateless logic, such as the safety interlock logic of a SIS. At CERN, a methodology based on the CEM has been applied to the development of a SIS for a magnet test bench facility. This paper shows the applicability of this methodology in a real magnet test bench and presents its impact in the different phases of the IEC 61511 safety lifecycle.

Poster MOPHA041 [0.751 MB]

DOI •

reference for this paper ※ https://doi.org/10.18429/JACoW-ICALEPCS2019-MOPHA041

About •

paper received ※ 27 September 2019 paper accepted ※ 08 October 2019 issue date ※ 30 August 2020

Export •

reference for this paper using ※ BibTeX, ※ LaTeX, ※ Text/Word, ※ RIS, ※ EndNote (xml)

MOPHA131

Waste Heat Recovery for the LHC Coooling Towers: Control System Validation Using Digital Twins

520

B. Schofield, E. Blanco Viñuela, W. Booth
CERN, Geneva, Switzerland
M.O. Peljo
Aalto University, School of Science and Technology, Aalto, Finland

In order to improve its energy utilization, CERN will deploy a Waste Heat Recovery system at one of the LHC’s surface sites which will provide heating power to a local municipality. To study the effects that the heat recovery plant will have on the cooling system, a ’digital twin’ of the cooling plant was created in the simulation tool EcosimPro. The primary question of interest was whether the existing control system of the cooling plant would be capable of handling transients arising from a sudden shutdown of the heat recovery plan. The simulation was connected via OPC UA to a PLC implementing the cooling plant control system. This ’virtual commissioning’ setup was used to study a number of scenarios representing different cooling loads, ambient temperature conditions, and heat recovery plant operating points. Upon completion of the investigation it was found that the current cooling plant control system will be sufficient to deal with the transients arising from a sudden stop of heat recovery plant operation. In addition, it was shown that an improvement in the controls could also enhance the energy savings of the cooling towers.

DOI •

reference for this paper ※ https://doi.org/10.18429/JACoW-ICALEPCS2019-MOPHA131

About •

paper received ※ 27 September 2019 paper accepted ※ 10 October 2019 issue date ※ 30 August 2020

Export •

reference for this paper using ※ BibTeX, ※ LaTeX, ※ Text/Word, ※ RIS, ※ EndNote (xml)

WEPHA018

Testing Solutions for Siemens PLCs Programs Based on PLCSIM Advanced

1107

E. Blanco Viñuela, D. Darvas
CERN, Geneva, Switzerland
Gy. Sallai
BUTE, Budapest, Hungary

Testing Programmable Logic Controllers (PLCs) is challenging, partially due to the lack of tools for testing. Isolating a part of the PLC program, feeding it with test inputs and checking the test outputs often require manual work and physical hardware. The Siemens PLCSIM Advanced tool can simulate PLCs and provide a rich application programming interface (API). This paper presents a new CERN made tool based on PLCSIM Advanced and the TIA Portal Openness API. The tool takes a test case described in an intuitive, tabular format, which is then executed with the full PLC program or a selected part of it, effectively allowing unit testing. The inputs can be fed and the outputs can be captured via the PLCSIM API. This way the tests can be executed and evaluated automatically, without manual work or physical hardware. Therefore, it is possible to provide an automated and scalable continuous testing solution for PLC programs to reveal errors as early as possible.

Poster WEPHA018 [1.026 MB]

DOI •

reference for this paper ※ https://doi.org/10.18429/JACoW-ICALEPCS2019-WEPHA018

About •

paper received ※ 27 September 2019 paper accepted ※ 09 October 2019 issue date ※ 30 August 2020

Export •

reference for this paper using ※ BibTeX, ※ LaTeX, ※ Text/Word, ※ RIS, ※ EndNote (xml)

WEPHA019

MONARC: Supervising the Archiving Infrastructure of CERN Control Systems

1111

J-C. Tournier, E. Blanco Viñuela
CERN, Geneva, Switzerland

The CERN industrial control systems, using WinCC OA as SCADA (Supervisory Control and Data Acquisition), share a common history data archiving system relying on an Oracle infrastructure. It consists of 2 clusters of two nodes for a total of more than 250 schemas. Due to the large number of schemas and of the shared nature of the infrastructure, three basic needs arose: (1) monitor, i.e. get the inventory of all DB nodes and schemas along with their configurations such as the type of partitioning and their retention period; (2) control, i.e. parameterise each schema individually; and (3) supervise, i.e. have an overview of the health of the infrastructure and be notified of misbehaving schemas or database node. In this publication, we are presenting a way to monitor, control and supervise the data archiving system based on a classical SCADA system. The paper is organized in three parts: the first part presents the main functionalities of the application, while the second part digs into its architecture and implementation. The third part presents a set of use cases demonstrating the benefit of using the application.

Poster WEPHA019 [2.556 MB]

DOI •

reference for this paper ※ https://doi.org/10.18429/JACoW-ICALEPCS2019-WEPHA019

About •

paper received ※ 30 September 2019 paper accepted ※ 19 October 2019 issue date ※ 30 August 2020

Export •

reference for this paper using ※ BibTeX, ※ LaTeX, ※ Text/Word, ※ RIS, ※ EndNote (xml)

WESH4003

Continuous Integration for PLC-based Control Systems

1527

WEPHA140

use link to see paper's listing under its alternate paper code

B. Schofield, E. Blanco Viñuela
CERN, Geneva, Switzerland
J.H.P.D.C. Borrego
IPFN - IST, Bobadela, Portugal

Continuous integration is widespread in software development, but a number of factors have thus far limited its use in PLC (Programmable Logic Controller) application development. A key requirement of continuous integration is that build and test stages must be automated. Automation of the build stage can be difficult for PLC developers, as building is typically performed with proprietary engineering tools. This has been solved by developing command line utilities which use the APIs of these tools. Another issue is that the program must be deployed to a real target (PLC) in order to test, something that is typically easier to do in other types of software development, where virtual environments may easily be used. This is solved by expanding the command line utilities to allow fully automated deployment of the PLC program. Finally, testing the PLC program presents its own challenges, as it is typically undesirable to alter the program in order to implement the tests natively in the PLC. This is avoided by using an industry standard protocol (OPC UA) to access PLC variables for testing purposes, allowing tests to be performed on an unaltered program.

DOI •

reference for this paper ※ https://doi.org/10.18429/JACoW-ICALEPCS2019-WESH4003

About •

paper received ※ 27 September 2019 paper accepted ※ 09 October 2019 issue date ※ 30 August 2020

Export •

reference for this paper using ※ BibTeX, ※ LaTeX, ※ Text/Word, ※ RIS, ※ EndNote (xml)