UNIVERSIDAD DEL CAUCA. VELASCO, LINA.
, NARVAEZ,
LUIZA., MELENDEZ, LUIS. RTU.
State of the Art
RTU
Velasco Rodrguez, Lina Patricia., Narvaez Timana, Luiza Fernanda. and Melendez Medina, Luis Felipe.
(vlina, ulnarvaez, mmluis)@unicauca.edu.co
Universidad del Cauca
AbstractThe development of this project pretend expose
important points about the Remote Terminal Unit (RTU). All
based on research and prior consultations, with the purpose to
expanding the knowledge on Industrial Communication Systems.
Index TermsRTU.
I. I NTRODUCTION
I N this document, the state of the art will be considered
in which it is basically desired to know relevant aspects
of the (RTU). As its concept, communication protocols, pro-
gramming languages, among other characteristics. Like, delve
into some specific vendors and referrals, to get a vision of the
devices that are facing in the market.
March 4, 2017
II. W HAT ARE RTU S ?
Remote terminal Units are data acquisition and field control
devices, whose main function is to interface between local
instrumentation and control equipment and the data acqui-
sition and monitoring system. A remote terminal unit has
the capability to monitor a number of I / O related to a
process, analyze and maintain data in real time, execute user-
programmed control algorithms, communicate with the master
station, and in some Cases, with others remote. It is a device
based on microprocessors, which allows to obtain independent
signals of the processes and to send the information to a
remote site where it is processed. Generally this remote site is
a control room where there is a central SCADA system that
allows visualizing the variables sent by the RTU.
III. RTU C OMMUNICATION P ROTOCOLS
A RTU may be interfaced to multiple master stations and
IEDs (Intelligent Electronic Device) with different communi-
cation media (usually serial (RS232, RS485, RS422) or Ether-
net). An RTU may support standard protocols (Modbus, IEC
60870-5101/103/104, DNP3,IEC 60870-6-ICCP, IEC 61850
etc.) to interface any third party software.
A. The MODBUS-RTU PROTOCOL
The Modbus protocol was developed by Modicon, part of
Schneider Automation. In the protocol are defined the format
of the messages used by the elements that are part of the
Modbus network, services that can be offered via red, and
1
also as these data exchange of the elements in the red. The
protocol specification defines the transmission modes: ASCII
and RTU. The modes define how the bytes of the message
are transmitted. It is not possible to use the two transmission
modes on the same network. In RTU mode, each transmitted
word has 1 start bit, 8 data bits, 2 stop bits, no parity. Thus,
the bit sequence for the transmission of a byte is as follows:
TABLE I. Bit sequence for the transmission of a byte.
Start B0 B1 B2 B3 B4 B5 B6 B7 Stop Stop
In RTU mode, each data byte is transmitted as a single word
with its value directly in hexadecimal. The SRW 01 only uses
this mode of transmission for communication, thus not having
communication in the ASCII mode.
The Modbus-RTU network uses the master-slave system for
message exchange. Allows up to 247 slaves, but only one
master. All communication starts with the teacher making a
request to a slave, and the slave responds to the teacher who
was asked.
B. Distributed Network Protocol (DNP 3.)
Non-proprietary communication protocol that must comply
with IEC 60870-5 and must optimize transmission of data
acquisition and control of instructions from one station to
another station in Supervisory Control and Data Acquisition
(SCADA) applications between an RTU Local and / or remote
and a master station. Presents important functionalities that
make it more robust, efficient and compatible than other older
protocols, such as Modbus, with the counterpart of being a
much more complex protocol.
The frame format used is based on IEC 60870-5 specifications
and uses the Cyclic Redundancy Check (CRC) for error
detection.
C. IEC 60870-5-101, IEC 60870-5-104
The IEC protocol is an international standard prepared to
monitor energy systems, control systems and their associated
communications. The IEC 60870-5-104 protocol is the exten-
sion of the 60870-5-101 protocol. Both are similar but the IEC
60870-5-104 version incorporates changes. The IEC 60870-
5-104 protocol allows the communication of control stations
with substations via TCP / IP. The TCP protocol is oriented to
transmit data in a secure way. The IEC 60870-5-104 protocol

UNIVERSIDAD DEL CAUCA. VELASCO, LINA., NARVAEZ,
LUIZA., MELENDEZ, LUIS. RTU.
limits the data being transmitted and the configuration param-
eters defined with IEC 60870-5-101, which means that not all
functions supported by the IEC 60870-5-101 are compatible
with IEC 60870 -5-104.
D. IEC 60870
In electrical engineering and power system automation, the
International Electrotechnical Commission 60870 standards
define systems used for telecontrol (supervisory control and
data acquisition). Such systems are used for controlling electric
power transmission grids and other geographically widespread
control systems. By use of standardized protocols, equipment
from many different suppliers can be made to interoperate.
IEC standard 60870 has six parts, defining general informa-
tion related to the standard, operating conditions, electrical
interfaces, performance requirements, and data transmission
protocols. The 60870 standards are developed by IEC Techni-
cal Committee 57 (Working Group 03).
IV. B UILT- IN TECHNOLOGIES
A. GSM and GPRS
GSM [Global System for Mobile Communications] and
GPRS [General packet radio service] can be used for data
transfer for industrial application. It is one of the cheapest
means of wireless communication, but at the cost of reliability.
Though cheap it has a recurring cost and depends on public
wireless communication domain. However, due to GSM and
GPRS technology user can achieve wireless communication
up to far greater distances as compared to point to point
communication at a very low competitive cost.
Communication via GSM technology is at the middle of the
GSM radio modem can be interconnected with the PLC /
SCADA and RTUs. The data can be transmitted and received
between PLC / RTU and SCADA using a GSM modem
with SIM cards of any public network that supports GSM
technology. Data can be transferred via two ways:
By sending and receiving Short messages-via short message
service (SMS) facility. * By Data calling user can connect to
remote location via dial up to transfer data serially i.e. By
creating Dial Up connection between SCADA /PLC and RTU
In the communication via technology GPRS the GPRS radio
modem can be interconnected with the PLC / SCADA and
RTUs. The data can be transmitted and received between PLC
/ RTU and SCADA using GPRS modem with SIM cards of
any public network that supports GSM technology.
B. VPN Technology
In those cases in which the recommendations to obtain
an ideal scenario mentioned above can not be applied, it
is necessary to protect the communications between Control
Center and Remote RTU, regardless of the protocol used.
The solution requires applying two different technologies to
Firewall and VPN tunnels.
Virtual Private Network (VPN) tunnels allow you to es-
tablish IP communications over unsafe networks such as
2
LAN or WAN, ensuring encrypted and authenticated Point-
to-Point communication. SSL VPNs are used to establish
an encrypted HTTPS tunnel to a Web server on the remote
device. OpenVPN is a VPN technology that also allows to
establish encrypted VPN tunnels and allows authentication.
This protocol can be found in RTU Control devices, it is based
on the SSL standard.
The advantages of using a VPN technology in RTU control
devices are, for example, that any communication protocol
regardless of its weakness can travel through a VPN in
complete safety and that the information travels encrypted and
can not be altered by a bad user deliberate.
V. P ROGRAMMING LANGUAGES
The industry has standardized on the IEC 61131-3 func-
tional block language for creating programs to run on RTUs
and PLCs, although nearly all vendors also offer proprietary
alternatives and associated development environments.
A. IEC 61131-3
Part 3 of IEC 61131 deals with basic software architecture
and programming languages of the control program within
PLC. It defines two graphical and two textual programming
language standards:
Ladder diagram (LD), graphical.
Function block diagram (FBD), graphical.
Structured text (ST), textual.
Instruction list (IL), textual.
Sequential function chart (SFC), has elements to organize
programs for sequential and parallel control processing.
VI. R EFERENCES
Among references of different brands were:
ADAM-3600:
Fig. 1. ADAM-3600
http://www.directindustry.es/prod/advantech/product-4657-1782415.html
SIEMENS
High Performance CPU Cortex A8 600MHz.
Low Power DDR3L 256MB RAM.
Embedded Real-time Linux Kernel.
Domain Focused Onboard IO -8AI / 8DI / 4DO.
4-Slot I/O Expansion.
High I/O Flexibility with 4-slot I/O Expansion.
Multiple wireless options for Zigbee/ Wi-Fi/ 3G/ 4G/
GPRS.

UNIVERSIDAD DEL CAUCA. VELASCO, LINA., NARVAEZ,
LUIZA., MELENDEZ, LUIS. RTU. 3

IEC 61131-3C Programming Language. SICAM MIC:

Modbus DNP3 Protocol.
Operation Temperature -40 70C.

SICAM AK:

Fig. 4. SICAM MIC

http://www.directindustry.es/prod/siemens-energy-management/product-
30064-1199471.html
SIEMENS

From the leader in innovating comes SICAM MIC a

Fig. 2. SICAM AK product of sophisticated engineering by SIEMENS. It
http://www.directindustry.es/prod/siemens-energy-management/product- features a modular, telecontrol substation and belongs
30064-589133.html
SIEMENS to the proven SICAM automation family. The devices
consist of a master control element and various I/O
The innovative SICAM AK 1703 ACP automation modules and are designed for DIN rail mounting.
component provides a high level of flexibility and
functionality, making for a successful automation SICAM Safety:
system. Comprehensive options for communication,
telecontrol and for connecting peripheral equipment are
included. The SICAM AK 1703 ACP aids automation of
the power supply networks which can match redundancy
and performance requirements due to its system concept.

SICAM CMIC

Fig. 5. SICAM Safety

http://www.directindustry.es/prod/siemens-energy-management/product-
30064-1588248.html
SIEMENS

Whether for hydropower plants or in the oil and gas

sector, the energy industry relies on automation for
energy distribution. But many plant components are
safety-critical. So it is good when the necessary safety
Fig. 3. SICAM CMIC functions are already incorporated right in the automation
http://www.directindustry.es/prod/siemens-energy-management/product-
30064-1199389.html
solution.
SIEMENS
750-880/025-002
The SICAM CMIC by SIEMENS. Is a product that
was developed to meet the demands of todays power
supply issues. It features integrated UPS functionality,
a simple, direct connection of the mains voltage and
storage batteries is all thats needed.

In addition , SICAM CMIC delivers 12 V DC and

24 V DC to supply modems and to scan floating
signaling contacts. It is designed to cater a wide variety
of applications and concepts.

Quality tested to get the stamp of approval from even the

Fig. 6. 750-880/025-002
most strictest Approval Companies. A definite must have. http://www.directindustry.es/prod/wago/product-1012-1279307.html
WAGO

UNIVERSIDAD DEL CAUCA. VELASCO, LINA., NARVAEZ,
LUIZA., MELENDEZ, LUIS. RTU. 4

Though it has a limited number of I/O modules, the
WAGOs ECO Telecontroller(750-880/025-002) is cost
effective and the best alternative to complex control
units. Nonetheless, not all applications in the telecontrol
sector requires a large number of I/O modules. This
telecontroller only connects to a maximum of four I/O
modules.
standard, since there are some parameters that are not exactly
met, or doesnt give many information about them.
VIII. C OMPARISON R EFERENCES
1) SICAM A8000 is modular: the Z-miniRTU is GSM and
GPRS.

GSMZ-miniRTU.
6-Run AutoPILOT PRO XL.
DGCM.
C2363A-0-0.
SPRECON-E-C.

VII. OTHER FEATURES

As important property, the RTUs allow the collection of
signals from elements located in the field and their most
known transmission media are concentrated in unguided
means, in that sense, this is a very important factor when
collecting signals where it is not possible Establish the
installation of a PLC (some RTUs carry a PLC or controller
immersed).
Fig. 7. SICAM 8000
http://w3.siemens.com/smartgrid/global/en/products-systems-
solutions/substation-automation/substation-automation/Pages/SICAM-
A8000.aspx
2) SICAM provides cyber security: the Z-MINIRTU does
not present it.

In this way, based on the above approach, it is possible

to analyze how well the RTUs are with some ISA standards,
which will be briefly explained below:

1) ISA100, Wireless Systems for Automation: The ISA100

Committee addresses wireless manufacturing and control
systems in the areas of the: * Environment in which the
wireless technology is deployed
Technology and life cycle for wireless equipment and systems
Application of Wireless technology
The wireless environment includes; the definition of wireless,
radio frequencies (starting point), vibration, temperature,
humidity, EMC, interoperability, coexistence with existing
systems, and physical equipment location.

2) ISA99, Industrial Automation and Control Systems

Security: The ISA99 standards development committee
brings together industrial cyber security experts from across
the globe to develop ISA standards on industrial automation
and control systems security. This original and ongoing ISA99
work is being utiilized by the International Electrotechnical
Commission in producing the multi-standard IEC 62443
series.
Several references mention the most important property
to which its name makes mention: to collect information
remotely, reason why it was considered that to a great extent,
references like: SICAM MIC, SICAM AK, ADAM-3600,
among others of the Brand SIEMENS are in accordance
with the ISA100 standard. As for cyber security, many
references seek to provide reliability on this subject, but do
not clearly specify in the subject, explaining standards or
security systems. Therefore, it was considered that a little
more should be done in order to fully agree with the ISA99
Fig. 8. Z- MINIRTU
https://www.seneca.it/es/linee-di-prodotto/acquisizione-dati-e-
automazione/cpu-multifunzione-iec-61131/z-minirtu
Both provide GPRS communication.
When comparing these two RTUs we can observe the signif-
icant difference that presents the brand of Siemens since it
gives us a bigger vision of what it can provide us, give us
from its physical part in which it exposes the temperatures to
which it can work, beginning From -40 C to 70 C, practical
for any type of environment, disadvantage presented by the
RTU Z-miniRTU because it does not present this type of
information; the SIEMENS RTU can be used for use directly
in substations, giving us a high voltage of 5kV, while the Z-
miniRTU is mainly used for small automation systems that
require data acquisition. The Z-miniRTU works to automate
datalogging, commands, measurements and alarms, and the
SICAM A8000 features automation functions to control a
regulated transformer of the distribution or for load control.

UNIVERSIDAD DEL CAUCA. VELASCO, LINA., NARVAEZ,
LUIZA., MELENDEZ, LUIS. RTU. 5

IX. C ONCLUSION
RTUs are devices that allow better performance of
industrial processes in terms of control, monitoring and
acquisition of data through communication protocols
that allow a secure and real-time communication with
the control center.

This device has the advantage of its remote installation

that obtains data, decrypts it and transmits the data to a
Master Terminal Unit.

This unit has advantages over the PLC, since the RTU
has evolved in the electrical industry, and other branches,
where large SCADA systems, require the management
of a large number of signals with milli-second precision,
which is impossible with the PLCs.

R EFERENCES
[1] Gonzales Barbosa, Herman Dario. O. Supervision de las Unidades de
Transmision Remota de la electrificadora de Santander S.A. ESP mediante
protocolo IEC 60870 5 101 Bucaramanga, Colombia. 2016.
2
[2] Direct Industry. Available:www.directindustry.es/fabricante-
industrial/unidad-terminal-remota-95772.html
3
[3] COMITE DE NORMALIZACIN DE PETROLEOS MEXICANOS
Y ORGANISMOS SUBSIDIARIOS. PROTOCOLOS DE COMUNI-
CACION EN SISTEMAS DIGITALES DE MONITOREO Y CON-

TROL. MEXICO.2012.
4
[4] MOTOROLA SOLUTIONS. Available:www.motorolasolutions.com
5
[5] Wireless Systems for Automation.ISA Std. 100. 2005. Available:
https://www.isa.org/isa100/
6
[6] Industrial Automation and Control Systems Security.ISA Std. 99. 2002.
Available: https://www.isa.org/isa99/
7
[7] INDUSTRIAL NETWORK AND SYSTEM SECURITY. ISA Std. IEC
62443. 2007