Case study PPT presentation on GE Predix

5. Deployment Models

6. Connectivity

7. Predix Cloud
• Scalable cloud infrastructure as PAAS
• Can handle industrial data
• Supports security and regulatory compliances
• Software Defined Infrastructure for abstraction over
hardware
• SDI enables shared infrastructure and dynamic
automation
• Based on cloud foundry

9. Dev Ops
• Continually integrate and deliver new features through the
Continuous Delivery (CD) Pipeline service
• Automated software builds and application deployment
• Always be ready to deploy to production
• Always place emphasis on speed, efficiency and stability
• Source control management (SCM)

10. Biz Ops
• Subscription — The customer pays a fixed amount for the
product – monthly, quarterly, or annually.
• Utility — The customer pays as it consumes the product.
• Freemium — The customer enjoys the basic product for free
and only pays for add-on or premium services

11. Asset Services
• REST API layer —Applications can access the domain object
modeling layer using REST endpoints that provide a JSON
interface to describe all of their objects. The service translates
data from JSON to RDF triples for storage and query in the
graph database, and back to JSON again.
• Query engine — The query engine enables developers to use
Graph Expression Language (GEL) to retrieve data about any
object or property of any object in the asset service data store.
• Graph database — The Asset service data store is a graph
database that stores data as RDF triples.

12. Data Services
• data ingestion, cleanse the data, merge the data with other data
sources, and ultimately store the data in the appropriate type of
data store
• time series data store for sensor data
• Binary Large Object (BLOB) store for MRI images
• RDBMS – Postgress database
• HTTP streaming for real- or near-real-time data (‘fast’ data)
• FTP for more batch-style processing.
• Data ingestion supports industrial formats – Historian and OSI

13. Time series sensor data
• Efficient storage oftime series data
• Indexing the data for quick retrieval
• High availability
• Horizontal scalability
• Millisecond data point precision

14. Analytics
• Operational analytics — Data is analyzed in real time at the source
an aircraft engine, wind turbine, MRI machine, etc. — to detect
problems so that split-second changes can be made in the
operation of the asset to prevent damage and optimize
performance.
• Historical analytics — The collection and analysis of petabytes of
historical operational data. From this analysis, it is possible to build
predictive models that can be used to more efficiently operate
entire manufacturing plants or fleets of equipment.

15. Analytics
• Analytic Catalog service makes it easy to deploy an analytic
independently as a microservice and can be interacted through
REST APIs and the user interface.
• Each analytic is executed as a separate microservice; the
orchestration execution microservice coordinates their work.
• Orchestration is a group of analytics to be run as a single unit. Its
analytic workflow is defined within an Orchestration BPMN file (an
XML file conforming to the BPMN 2.0 standard).

16. Security
The UAA service: applications to authenticate users. An application developer can bind
to the UAA service in the marketplace and then use the industry standards SCIM and
Oauth to handle identity management and authentication, respectively. Together,
these two capabilities provide the basic login and logout support that every
application needs.
UAA supports SAML (Security Assertion Markup Language), which enables users to
login using third-party identity providers
The basic UAA features have been extended to include the following:
• User whitelisting: Ensures only a qualified subset of authenticated users
can login to an application.
• Client-side token validation: Eliminates extra network round trips and significantly
improves performance

17. Security
Access Control Service:
Predix Access Control service is a policy-driven authorization
service that enables applications to create access restrictions to
resources based on a number of criteria.
The policy language is JSON-based and was developed as an answer to
the deficiencies in XACML.
The access control service is well integrated with UAA and provides a
Spring security extension to make it easy for Spring Boot applications
to make access decisions.

18. User Account and Authentication (UAA)

19. Login:
cf login -a https://api.system.aws-usw02-pr.ice.predix.io
List the services in the Cloud Foundry marketplace:
cf marketplace
Create a UAA instance by entering the following command.
cf create-service predix-uaa <plan> <my_uaa_instance> -c
'{"adminClientSecret":"<my_secret>","subdomain":"<my_subdomain>"}’
<plan> is the plan associated with a service. For example, you can use the tiered plan
for the predix-uaa service.
-c option is used to specify following additional parameters.
adminClientSecret specifies the client secret.
subdomain specifies a sub-domain you might need to use in addition to the domain
created for UAA. This is an optional parameter. You must not add special characters in
the name of the sub-domain. The value of sub-domain is case insensitive.

23. Extra reading
• Historian - http://help.geautomation.com/Historian55/Subsystems/iHistGS/content/hgs_overview_of_ihistorian.htm