Contact
+49 941 58692 888

Call-back service

Project enquiry

Page navigation:

Remote control in action
The smart substation:
» Networking
» Data acquisition
» Automation
» Secure in critical infrastructures
Added value
FAQ

Remote control in action

These and other customers from the energy industry are already successfully using communication technology from INSYS icom.

„Gamechanger“ in the energy industry: the smart substation

Networking – connecting substations with communication technology

When transmitting metering data in energy grids, it is often necessary to consider two starting points: First, the data from smart metering systems from households and companies converge in the local substation and are collected in the cloud of the metering backend. Second, the actual values for low and medium voltage from the substation itself must reach the SCADA and management systems in the grid control centre in order to ensure secure and stable grid operation (§14a EnWG).

Smart grid routers in the local substation make this possible by opening up connections via DSL, LTE, and even LTE450 or fibre if necessary. Several VPN tunnels guarantee secure data transmission in parallel to the systems of the various stakeholders, including via private networks.

LTE450 MHz cellular radio for critical infrastructure

  • Complete network coverage
  • Highest availability
  • IT security for critical infrastructures
More about LTE450

Secure networking via multi VPN

  • Multiple parallel VPN tunnels
  • Client and server
  • Cryptographic procedures according to BSI TR-02102
  • VPN technologies: OpenVPN, IPSec, GRE, Dynamic VPN

Data acquisition – from local to remote

Locally integrated sensors are responsible for recording a wide range of data. On the consumer side, this primarily provides information on the current output as well as the switch-on and switch-off requirements. At the local substation, actual values for voltage, power, frequency and temperature are displayed.

To get this flood of data from the local collection point to the remote cloud or grid control centre, it is worth pre-processing the information on the intermediate smart grid router. Edge computing makes this possible and not only minimises the amount of data, but also the transmission costs.

Container environment for individual applications

  • Collect, pre-process and analyse data on site
  • Minimise data volumes and transfer costs
  • Simply transfer pre-processed data to cloud services
To Edge Computing

Automation – efficiency in the energy transition

The desired energy transition requires a massive expansion of the energy grid. In contrast, there is a general shortage of skilled labour, which is also affecting the energy sector. The solution: digitalise and automate as many points as possible.

This requires systems that are scalable and allow a high degree of efficiency. Centralised device management usually covers this well with smart grid routers, so that the focus in day-to-day work can be on other areas.

Secure rollout and operation of large router fleets

  • Central monitoring of all routers
  • Mass rollouts and automated processes
  • Regular updates of firmware, certificates and software
To icom Router Management

Secure in critical infrastructures

Energy operators must ensure the reliable transport of energy and data. However, both goods are highly vulnerable due to their high value, which is why the energy sector is categorised as a critical infrastructure. While security of supply depends on other factors, the smart grid router plays a central role in IT security.

  • Compliant for critical infrastructures; provider with the most installations in critical infrastructure
  • MRX3-LTE router certified according to BSI BSZ for critical infrastructures
  • Firmware update signed and encrypted
  • Support packages encrypted
  • Cryptographic procedures conforming to BSI TR-02102-2
  • Hardened firmware
  • Regular penetration tests
  • Update-Policy

  • 8 weeks update cycle for router firmware
  • White-list industrial firewall with IP packet and MAC filtering
  • No default passwords
  • User/PW, RADIUS or certificate-based authentication
  • Certificates

Arrange a consultation now!

Test router free of charge

Added value of the INSYS icom solution

Extensive routing, VPN and firewall functions

OSPF, RIP, GRE, IPsec, OpenVPN, DMVPN, parallel tunnels, EST, stateful firewall, IP/MAC, Port filter

null

Analysis & debugging tools

Tools for analysing the network: ping/icmp, tcpdump, traceroute, …

null

Multi VPN

Setup of several parallel VPN tunnels possible (IPsec, OpenVPN); client and server available

null

Web proxy function

Access to web interface (e.g. from video cameras without VPN client) from smartphone, tablet and browser

null

Own software containers

LXC container technology for installing your own applications on the router; dedicated IP endpoint for full firewall control

Die Applikationssoftware icom Data Suite ermöglicht dem Betreiber, Daten direkt auf dem Router zu erfassen und zu verarbeiten (Edge Computing).

Quality

Durable products in established industrial quality

null

Standard-compliant

Compatibility with all common network products and protocols, e.g. Cisco, Fortinet, Juniper

null

Interfaces

In addition to Ethernet, also analogue and digital IOs as well as serial interfaces (e.g. Modbus)

Durch die flexiblen MRcards schafft der modulare Router MRX mit bis zu 17 Ethernet-Ports, seriellen Schnittstellen oder digitalen und analogen I/Os viele verschiedene Anwendungs-Schnittstellen.

All products and services are also regularly tested by an independent organisation. Find out more here.

Communication technology for smart grid – Frequently asked questions

Is it possible to operate several VPN tunnels in parallel?

Multi-VPN operation can be realised with the routers from INSYS icom. It is possible to operate both OpenVPN and IPsec tunnels to different remote stations in parallel. The networks are completely isolated from each other and can therefore also be used for external participants.

Is INSYS icom certified for critical infrastructure?

INSYS icom has received a security certificate for critical infrastructure from the German Federal Office for Information Security (BSI) for the MRX3-LTE. In addition, regular penetration tests are carried out for all products by an independent organisation. Further information on IT security can be found here.

Do INSYS icom products fulfil legal requirements?

The standards specified in laws such as NIS2 do not normally affect our routers and services directly. However, our products are generally compatible with the systems that have to fulfil the requirements of the statutory environment.
On our IT security page, you will find detailed documentation that may be required for an audit in this context.

How can a smart grid router support the implementation of §14a EnWG?

§14a of the Energy Industry Act regulates the ‘grid-orientated control of controllable consumption devices and controllable grid connections’. One key aspect is data collection in the energy grid and the associated monitoring and digitalisation of secondary substations. Grid operators must manage the balancing act of implementing the applicable regulations promptly and cost-effectively, while at the same time striving for a flexible long-term solution should the requirements change.
The MRX router series from INSYS icom has a modular design and can be expanded with different plug-in cards depending on the interface and connection requirements. Investments are therefore initially limited to the current requirements, but nothing prevents flexible retrofitting in the secondary substations.

As an operator in critical infrastructure, can I use cloud-based services?

The current legal situation does not exclude the use of cloud services. INSYS icom’s critical infrastructure customers certainly use our solutions such as the icom Connectivity Suite – VPN or icom Router Management. Ultimately, implementation depends on company-specific regulations.

Can I implement device management for routers if cloud solutions are not authorised?

An ‘on-premises’ installation in a private network is possible for icom Router Management. Depending on the number of routers in operation, it is advisable to integrate a server or a data centre. Further information on icom Router Management can be found here.

How and where are industrial routers installed?

Industrial routers are clicked onto a DIN-rail in the control cabinet or screwed directly to the housing or a bracket. With cellular routers, the external cellular antenna is routed out of the control cabinet and mounted on the outside wall of the building.

What interfaces do the routers have for operation and monitoring?

Our smart grid routers can be easily integrated into existing monitoring systems with the following interfaces: REST-API, CLI, SNMP.
Information on a solution for centralised monitoring together with our partner Paessler can be found here.

Any further questions? We will be happy to assist you!