Security and Hardware Features: Agilent Connected Instrument Device (CID) for OpenLab CDS
Technical notes | 2024 | Agilent TechnologiesInstrumentation
The rapid growth of Internet-of-Things (IoT) technologies in analytical laboratories demands secure, resilient and easily managed instrument control solutions. The Agilent Connected Instrument Device (CID) and its associated cloud-based CID Hub address these needs by offering a turnkey appliance and centralized management platform for OpenLab CDS deployments. Robust security, streamlined IT workflows and remote troubleshooting capabilities make this approach particularly relevant for modern QA/QC and research environments.
This technical overview describes the architecture, security measures and operational features of the Agilent CID and CID Hub for OpenLab CDS. The primary goals are to illustrate how the CID replicates the functions of a traditional Analytical Instrument Controller (AIC) while adding cloud-native deployment, centralized management and enhanced resilience. The paper details network connectivity, device registration, remote access mechanisms and role-based security controls.
The authors present a layered approach combining on-premises IoT hardware with cloud services. Key methodological elements include:
The CID functions equivalently to the traditional AIC for instrument control while isolating the Windows VM from direct network exposure. Only outbound HTTPS or Secure WebSocket connections on TCP port 443 are used, enforcing a strict security posture. Automated certificate-based authentication, daily credential rotation and a reverse-proxy layer further minimize attack surface. The CID Hub’s role-based access ensures that only authorized users or support personnel can initiate remote sessions. A health-check portal offers real-time network performance diagnostics.
By consolidating deployment, management and troubleshooting into a unified cloud interface, the CID solution yields several practical advantages:
As laboratories embrace digital transformation, the following directions are anticipated:
The Agilent Connected Instrument Device and CID Hub present a modernized approach to analytical instrument control that aligns with enterprise IT security policies while simplifying deployment and support. By leveraging IoT principles and cloud-native services, this solution enhances resilience, streamlines workflows and lays the groundwork for advanced data-driven lab operations.
Alok Mishra, Sunil Rehman, Mike Kicinski, Edison X Cerda. Agilent Connected Instrument Device (CID) for OpenLab CDS: Security and Hardware Features. Agilent Technologies, Inc., May 2024. Document No. 5994-7490EN.
Software
IndustriesEnvironmental
ManufacturerAgilent Technologies
Summary
Importance of the Topic
The rapid growth of Internet-of-Things (IoT) technologies in analytical laboratories demands secure, resilient and easily managed instrument control solutions. The Agilent Connected Instrument Device (CID) and its associated cloud-based CID Hub address these needs by offering a turnkey appliance and centralized management platform for OpenLab CDS deployments. Robust security, streamlined IT workflows and remote troubleshooting capabilities make this approach particularly relevant for modern QA/QC and research environments.
Study Objectives and Overview
This technical overview describes the architecture, security measures and operational features of the Agilent CID and CID Hub for OpenLab CDS. The primary goals are to illustrate how the CID replicates the functions of a traditional Analytical Instrument Controller (AIC) while adding cloud-native deployment, centralized management and enhanced resilience. The paper details network connectivity, device registration, remote access mechanisms and role-based security controls.
Methodology
The authors present a layered approach combining on-premises IoT hardware with cloud services. Key methodological elements include:
- Dual-interface design: one port on the corporate WAN for CID Hub communication, and one on the private lab LAN for instrument control.
- Linux-based host OS with an embedded Windows 10 IoT Enterprise LTSC virtual machine dedicated to OpenLab CDS operations.
- Secure outbound connections over TLS to predefined AWS IoT Core endpoints and Agilent REST APIs for registration, configuration and status updates.
- AWS S3 storage for distribution of drivers, software updates and release notes.
- AWS Secure Tunneling for bidirectional IoT-managed console access to both Linux Cockpit and the Windows VM.
Used Instrumentation
- Agilent Connected Instrument Device (CID) appliance with pre-installed Linux OS and embedded Windows 10 IoT Enterprise VM.
- Agilent CID Hub: multitenant SaaS application hosted on AWS, providing device registration, monitoring and management.
- AWS IoT Core, Secure Tunneling and S3 services to support secure connectivity and firmware/software distribution.
Key Findings and Discussion
The CID functions equivalently to the traditional AIC for instrument control while isolating the Windows VM from direct network exposure. Only outbound HTTPS or Secure WebSocket connections on TCP port 443 are used, enforcing a strict security posture. Automated certificate-based authentication, daily credential rotation and a reverse-proxy layer further minimize attack surface. The CID Hub’s role-based access ensures that only authorized users or support personnel can initiate remote sessions. A health-check portal offers real-time network performance diagnostics.
Benefits and Practical Applications
By consolidating deployment, management and troubleshooting into a unified cloud interface, the CID solution yields several practical advantages:
- Rapid provisioning of new or replacement instrument controllers without Windows PC setup.
- Centralized oversight of firmware, driver and software updates across multiple sites.
- Enhanced security via outbound-only firewall rules, certificate authentication and isolated VMs.
- Remote access to Linux and Windows consoles for support and failover operations.
- Reduced IT burden through automated credential management and SaaS-based device registration.
Future Trends and Potential Applications
As laboratories embrace digital transformation, the following directions are anticipated:
- Integration of real-time performance analytics and predictive maintenance using IoT telemetry.
- Expansion of edge-computing capabilities for on-device data processing and local decision-making.
- Interoperability with laboratory information management systems (LIMS) and electronic lab notebooks (ELN).
- Adoption of AI-driven diagnostics to optimize instrument uptime and reduce troubleshooting time.
Conclusion
The Agilent Connected Instrument Device and CID Hub present a modernized approach to analytical instrument control that aligns with enterprise IT security policies while simplifying deployment and support. By leveraging IoT principles and cloud-native services, this solution enhances resilience, streamlines workflows and lays the groundwork for advanced data-driven lab operations.
Reference
Alok Mishra, Sunil Rehman, Mike Kicinski, Edison X Cerda. Agilent Connected Instrument Device (CID) for OpenLab CDS: Security and Hardware Features. Agilent Technologies, Inc., May 2024. Document No. 5994-7490EN.
Content was automatically generated from an orignal PDF document using AI and may contain inaccuracies.
Similar PDF
Virtualizing OpenLab CDS Client/Server Systems
2021|Agilent Technologies|Technical notes
Technical Overview Virtualizing OpenLab CDS Client/Server Systems Introduction This guide specifies how to virtualize Agilent OpenLab CDS client/server systems. Although based on VMWare vSphere and uses VMWare terminology, the requirements also apply to other virtualization software such as Microsoft Windows…
Key words
virtualization, virtualizationopenlab, openlabvirtual, virtualserver, serverrequirements, requirementsaic, aicnetwork, networkcds, cdscpu, cpurouter, routerchemstation, chemstationvirtualized, virtualizedclient, clientvms, vmshost
Agilent InfinityLab Assist Hub: Representing Advancements in Cybersecurity
2025|Agilent Technologies|Others
White Paper Agilent InfinityLab Assist Hub: Representing Advancements in Cybersecurity Abstract Ensuring the security of connected infrastructure and devices in an ever-evolving threat landscape has become increasingly challenging. As stated in the European Commission's proposal for the second version of…
Key words
security, securitycybersecurity, cybersecurityassist, assistaccess, accessinsecure, insecurehub, hubinfinitylab, infinitylabvulnerabilities, vulnerabilitiesmalware, malwaresystems, systemsattacks, attacksransomware, ransomwareagilent, agilentsegmentation, segmentationdevices
Running Agilent GeneSpring MPP on the Cloud
2014|Agilent Technologies|Technical notes
Running Agilent GeneSpring MPP on the Cloud Technical Overview Authors Introduction Stephen Madden, Rick A. Fasani, Cloud computing means efficiently sharing a pool of interconnected computational resources such as processing power, disk space, network bandwidth, and software applications among users…
Key words
genespring, genespringcloud, cloudcomputing, computingmpp, mppcollaboratorium, collaboratoriumtoxome, toxomevms, vmsremote, remotesoftware, softwarelinux, linuxvirtualization, virtualizationservices, servicesfirewall, firewallrunning, runninguser
Agilent Sample Scheduler for OpenLab revision 2.4 - Site Preparation Checklist
2020|Agilent Technologies|Manuals
Software Site Preparation Checklist Agilent Sample Scheduler for OpenLab revision 2.4 Site Preparation Checklist Thank you for purchasing Agilent software. To get you started and to assure a successful and timely installation, please refer to this specification or set of…
Key words
scheduler, schedulerlims, limsopenlab, openlabagent, agentsql, sqlcds, cdschecklist, checklistsample, samplesite, siteserver, serverezchrom, ezchrominstalled, installedsoftware, softwarepreparation, preparationdatabase
