Digital Business Marketplace Catalyst - Whitepaper V1.1 PDF

Digital Business Marketplace III
TM Forum Catalyst
Preliminary Whitepaper
October 2020
Table of Contents
Background ........................................................................................................................ 4
Key Contributors ............................................................................................................... 5
Executive Summary to DBM ............................................................................................ 6
1 Introduction ................................................................................................................. 8
1.1 The Journey to DBM III ..........................................................................................8
1.2 Industry 4.0 and Smart X Solutions Market Context ....................................... 10
2 Digital Business Marketplace III ............................................................................. 12
2.1 The Phase I & II Foundations ............................................................................. 12
2.2 Phase III Initiatives ............................................................................................... 12
2.3 Smart Infrastructure ............................................................................................ 14
2.4 What has changed with DBM: “Before and After”? ........................................ 15
2.5 Champion Quotes in support of DBM (October 2020) .................................... 19
3 DBM “Initiatives” and Use cases............................................................................ 21
3.1 Smart Manufacturing ........................................................................................... 21
3.1.1 The Factory Security and Service Assurance User Story ............................... 22
3.1.2 Partner Value Proposition ..................................................................................... 23
3.1.3 The Factory Hybrid 5G User Story....................................................................... 24
3.1.4 The Smart Production Line User Story ............................................................... 25
3.2 Smart Grid............................................................................................................. 26
3.2.1 Smart Grid Ecosystem Architecture ................................................................... 26
3.2.3 USE CASES ............................................................................................................. 27
3.3 Smart Entertainment ........................................................................................... 28
3.3.1 Business Architecture ........................................................................................... 28
3.3.3 USE CASES ............................................................................................................. 29
3.4 Secure Supply Chain ........................................................................................... 30
3.4.1 Business Architecture ........................................................................................... 30
3.4.3 USE CASES ............................................................................................................. 32
4 Smart Infrastructure ................................................................................................. 33

4.1 Multi-Partner Ecosystem Platform ..................................................................... 33
4.2 FIDO Secure Device Onboarding (SDO) ........................................................... 36
2
4.3 Zero-Touch Orchestration (ZTO) ....................................................................... 37
4.4 Distributed Ledger Technology (DLT) ............................................................... 37
4.5 StoreFront ............................................................................................................. 38
4.6 Digital Twins ......................................................................................................... 39
4.7 Communications Access Services .................................................................... 41
4.8 Cloud and Edge Computing ............................................................................... 42
4.9 Continuous Operations ....................................................................................... 42
4.10 5G Network Slicing .............................................................................................. 44
4.11 Ecosystem & Service Assurance ....................................................................... 45
4.12 Secure Supply Chain ........................................................................................... 47
4.13 Single Sign On (SSO) and Identity Management ............................................. 48
4.14 Cyber Security as a Service ............................................................................... 49
5 DBM Layers ............................................................................................................... 51
5.1 Architecture .......................................................................................................... 51
5.2 Store Front Layer ................................................................................................. 52
5.3 Orchestration ....................................................................................................... 53
6 Lessons Learnt ......................................................................................................... 55
7 Coming up next for DBM ......................................................................................... 56
8 Appendix .................................................................................................................... 57
8.1 Partner profiles in alphabetical order................................................................ 57
3
Background
This document includes and is based on the experiences and insights over 1.5 years’ work on
DBM leveraging the TM Forum catalyst program. DBM was demonstrated and showcased:
• May 2019, Nice France. At TM Forum’s Digital Transformation World, Digital Business
Marketplace (DBM) Phase I showcased and won an Innovation Award.
• September 2019, Dallas USA. At TM Forum’s Digital World Americas, the DBM
showcased Phase II.
• October 2019, Hague. At SDN/NFV World Congress the DBM showcased Phase II+.
• December 2019, Las Vegas. At AWS re:Invent the DBM showcased Phase II++.
• June 2020, DBM III announced the hardening to secure the Supply Chain leveraging
two DLTs, and the definitions of three Smart Verticals: Manufacturing, Grid and
Entertainment. The Virtual Show bag of CDS provided insights of this as a forerunner
for DTW.
• Oct 2020, DTWS
DBM has brought together CSPs, SIs, Product & Service players, large and small from across
the globe. It has showed how secure frictionless partner collaboration brings a different
perspective to address complex industry challenges. The DBM Catalyst has been a great
experience and proof-of-concept opportunity that has inspired and informed this paper.
Scope of this Document

This document has been conceived to introduce the Digital Business Marketplace III catalyst, its
various partners, the capabilities they bring to DBM and how their various capabilities combine
together in repeatable patterns.
This whitepaper does not include the detailed blueprint patterns formulated by the catalyst team.
DBM will be submitting inputs to all the TM Forum Frameworx categories to help organizations
wishing to engage in DBM activities – to learn what their involvement in DBM could look like.
Neither this document or the materials delivered to the TM Forum will provide or are intended to
provide the level of depth necessary for organisations to pick up and deliver DBM capabilities.
Any organization looking to engage in this topic is encouraged to reach out via any of the
organisations already participating in DBM to seek involvement.
4
Key Contributors
Name Company
Andrew Thomson Bearing Point//Beyond
Cédric Crettaz IoTLab
Dan Isaacs Digital Twin Consortium
David Shaw Intuitus Corp.
Gary Bruce BT
Jan Pauseback IOTA
John Reynolds Agile Fractal Grid
Michael Cooper R3
Michele Nati IOTA
Mohammad Hossein Zoualfaghari BT
Nima Sajadpour Intel
Nithyanandan PD Accenture
Ramshankar Maxbyte Technologies
Rakesh Dodeja Intel
Santosh Venkat Accenture
Saro Saravanan Intuitus Corp.
Takayuki Nakamura NTT
William Mcdonald Intel
Yogaratnam Rahulan University of Surrey
This preliminary version of the white paper is available for publication. The team continues to
expand with more members joining the catalyst, as interest has increased greatly in DBM3. We
anticipate adding new content in subsequent revisions.
5
Executive Summary to DBM
To deliver Industry 4.0 and Smart X solutions (for Smart Cities, Smart Transport, Smart
Entertainment, Smart Grid, etc) at scale requires cooperation by hundreds of companies who
bring their own specific products, services, Apps or other specializations.
Bringing together hundreds of physical components and services from multiple organizations,
the cloud and wherever else until now has always required an SI expert army to integrate and
deliver a specific solution. This bespoke integration approach will not scale, does not easily
manage in-life operations, is very hard to maintain and provides hackers an easy attack surface.
New technologies and techniques are also appearing such as Digital Twins which offer
simplification to deal with and manage complexity – but these are often only designed to
manage specific operating contexts and do not manage the full business lifecycle (design,
deploy, operate, upgrade, etc) or industry agnostic scenarios – so potentially adding further
complexity to an already complex world.
So, the need more than ever before, is to take a very different approach to enable the multiple
companies, the multiple experts, new technologies, existing products, services and systems to
seamlessly work together to enable the future.
The Digital Business Marketplace (DBM) has developed a digital platform which provides
traditional companies, digital platform companies and hyperscales with the capabilities to
frictionless partner and securely deliver, in life manage & monetize Industry 4.0 & Smart X
solutions for enterprise customers.
DBM enables the partnering companies to incorporate very high levels of configurability into
solution offerings so that Industry 4.0 and Smart X customers can select and tailor their solution
to suit their specific needs in a shopping cart and consume the many pieces as a solution and
“as a service”, zero touch deployed and managed from the cloud.
The partners can support a seamless deployment leveraging the DBM frictionless partnering
techniques, accelerating time to revenue, streamlining their own product and service on-
boarding and packaging with partner offerings, orchestrated solution delivery, and operations,
thus improving profitability and velocity.
At the heart of the DBM is a highly repeatable blueprint pattern which enables the secure
establishment and in life management of highly configurable smart infrastructure. The same
capabilities are leveraged by industry vertical experts who can onboard industry vertical control
systems & AI which digitally transform Enterprise Customers’ operations like power grids,
factories, cities, or entertainment venues etc.… provided “as a service”.
DBM Phase I and 2 deliver an end-to-end automated capability to define solutions offers,
expose them for selection in a shopping cart, order, provision and activate devices and enabling
software zero touch through to including the commercial orchestration across partners. It
enables Industry X.0 customers to select, configure and purchase Smart solutions in a shopping
cart, which become fully operational using zero-touch. Delivering secure trusted end points,
leveraging the basis of a secure supply chain, the DBM enables all the players in the industry
4.0 ecosystem to plug and play and be certain that their contributions into any Smart Industry
solution are granularly monetized.
6
The DBM Phase III has been conceived to build out, harden and mature the ecosystem
functionality demonstrated in phases 1 & 2 to be ready from a production perspective – and to
ensure that the repeatable patterns can support the many flavors of Industry 4.0 and other
Smart X solutions.
A key question at the beginning of Phase III was how to share out the work, given all the
verticals need smart infrastructure. To respond to this issue in Phase III, it was decided to use a
“team of teams” approach to tease out and explore different facets of the same repeatable
solution patterns across four different scenarios… and if they all worked the way we anticipated,
then all we needed to do is to bring them together to deliver “end 2 end” Industry 4.0 and Smart
Verticals solutions.
It was also deemed it best to call these four areas “initiatives” - to help people understand that
these are pieces which need to come together. The team identified the following four
“initiatives”: additional development to secure the plug and play Supply Chain capabilities
developed in Phase I & 2 from both a physical and virtual perspective, and to explore the
requirements of three Industry verticals offerings for Phase III.
• Secure Supply Chain – led by BT, R3 and IOTA, is exploring how the Corda DLT can
provide an immutable record of the Intel SDO ownership certificates to secure the virtual
supply chain, and how the IOTA Tangle leveraging IOTA partners, Zebra and PING, can be
used to secure the physical supply chain. This work is extending the work of Phase I and
Phase II to be sure that everything is fully automated with fully repeatable patterns so that
the zero-touch end to end orchestration is maintained and enhanced.
• Smart Entertainment – led by NTT, is looking to establish business partner ecosystems to
deliver a range of experience-enhancing content, initially language translations, in traditional
Japanese theatres, on-line events and stadiums with facilities for the audience to participate
in chat rooms.
• Smart Grid – led by the Agile Fractal Grid, is looking at developing a blueprint from concept
to operations, exploring the rollout process and testing several integration points with
partners around edge computing, 5G, security and a vision for Digital Twins.
• Smart Manufacturing – led by BT and leveraging Maxbyte Industry 4.0 use cases is further
broken down into several streams. One is led by Intel and is exploring security and service
assurance closed-loop feedback at the edge. A second is led by the University of Surrey
5GIC and is focused on accessibility within and across public and private 5G networks. And
a third is led by IOTA and is exploring zero-touch deployable and dynamically flexible smart
factories, with an IOTA Tangle wallet-enabled factory device.
The Secure Supply Chain is a core repeatable capability which enables and secures Smart
Infrastructure – which in turn is the underpinning fabric for any industry 4.0 or Smart X solution.
This whitepaper highlights how Secure Supply Chain enables Smart Infrastructure to be the
core capability which can enable any vertical solution. The catalyst has attracted a much bigger
group of active companies, creating an ecosystem of its own. The Champions and Participants
together have worked through various stages of design and implementations to demonstrate the
value of Collaboration, Self Service, Secure Device Onboarding, Zero Touch Deployment, etc.
from the B2B Digital Marketplace.
In summary, the Phase III focus has been on testing the DBM repeatable patterns in four
initiatives as above. While the demos do not necessarily provide a single end-to-end
demonstrable outcome for an industry 4.0 or Smart X solution requirement, however post-
catalyst, this approach will allow for all the pieces to be easily re-jigged and assembled into the
respective Smart Infrastructure and Smart X solution verticals in preparation for production.
7
1 Introduction
The introduction is in two parts. The first explains the DBM journey from the beginning of 2019.
The second part looks at the market context of Industry 4.0 and Smart X solution drivers and
requirements.
1.1 The Journey to DBM III

This whitepaper introduces the business and technical background of the capabilities of the
Digital Business Marketplace.
This introduction also provides a context which led to the DBM catalyst. The catalyst was
created by three companies for different but related reasons.
• BT had to face the reality of turning away enterprise customers’ business for millions of
surveillance cameras. BT recognized that with too many manual process activities as
part of the activation and in life management, not only was this too costly to deliver but
also this potentially exposed BT and its customers to cyber-attacks. BT decided to
automate the provisioning and activation processes.
• Intel had already identified that the IIOT was not scaling as anticipated due to the
physical & manual labour involved – as well as the lack of secure delivery processes
associated with deploying IOT devices. Consequently, Intel had been developing its
SDO “Secure Device Onboarding” Technology to address this, which is now lodged in
the FIDO Alliance as Opensource.
• BearingPoint//Beyond was aware that its Infonova Digital Business Platform offers much
deeper functionality than necessarily leveraged and wanted to demonstrate its
frictionless trading capabilities – which enables the multi-party plug & play functionality
and orchestration / monetization of any organization’s products and services required by
DBM.
The three companies teamed with Digiglu in February 2019 under BT’s leadership to deliver the
DBM Phase I PoC of what this could look like.
The results delivered in 5 weeks during Phase I were more impacting than expected, resulting in
an innovation award and several other nominations. Significantly, using the TM Forum APIs,
the three capabilities (Intel’s SDO, BT’s ZTO “Zero Touch Orchestration”, and the Infonova
multi-party frictionless trading platform) delivered full process automation right from the selection
in the shopping cart, through to zero touch deployment and activation of any device + any
services to be applied e.g. SD Wan, firewalls etc., zero touch… and illustrating a fully
automated partnering supply chain.
Phase II saw a number of new organisations join the catalyst, such as AWS and Accenture …
and the catalyst quickly moved to explore how the core capabilities could support and scale to
support much more complex requirements.
The core DBM functionality continued to support increasing complexity and showcased
significant capabilities at the SDN/NFV World Congress in the Hague in October 2019. This
was extended to showcase solutions orchestrated from multiple partners at AWS re:invent in
December 2019.
8
All this demonstrates that complex enterprise customer requirements need a different
frictionless zero touch partnering approach to enable the IIOT world to securely scale.
As the Executive Summary notes, delivering Industry 4.0 and Smart X solutions at scale
requires cooperation by hundreds of companies. Smart Transport, Smart Health, Smart X
solutions, any Industry 4.0 scenario are all dependent on devices working seamlessly and
securely 24 x 7.
Bringing together hundreds of physical components and services from multiple organizations,
the cloud and from wherever else, until now has always required an SI expert army to integrate
and deliver a specific solution. But this SI manual integration approach does not scale, it does
not provide for an automated approach for in-life operations and is very hard to maintain. The
SI expert and ad hoc approach and sharing of passwords provides hackers with an easy attack
surface.
New technologies and techniques are appearing such as Digital Twins, which offer simplification
to deal with and manage complexity. So, the need more than ever before, is to take a very
different approach to enable the multiple companies, the multiple experts, new technologies,
existing products, services and systems to seamlessly work together to enable the future.
The Digital Business Marketplace team have developed a digital platform which provides any
organization the capabilities to frictionless partner and securely deliver, manage & monetize
Industry 4.0 & Smart X solutions for enterprise customers.
The DBM Catalyst project team has attracted a broad set of champions and participants… with
a number of significant organisations still planning to join even during the DTW event and after.
Champions:
9
1.2 Industry 4.0 and Smart X Solutions Market Context
The global Industry 4.0 market stood at $78.2bn in 2018 and is projected to reach $260.7bn by
2026 [Fortune Business Insights]. About 15 million industrial sites worldwide are seeking
Industry 4.0 solutions [Harbor Research].
In 2019, there were 7.6bn connected IoT devices worldwide. In 2030, this is expected to grow to
24.1bn [IoT Business News]. Global smart cities market size is expected to reach $463.9bn by
2027, up from $83.9bn in 2019 [Grandview Research]. Similar growth expectations are
predicted for smart transport, smart entertainment, smart health, smart home, and other smart X
scenarios.
Keeping up with these predictions will become increasingly difficult as more and more
sophisticated devices need to be delivered, deployed, maintained and kept secure at every step
of the way. Additionally, solutions will become more customizable, increasingly multifaceted,
and leverage thousands of products, services and resources from hundreds of business
partners. All these challenging requirements need to be handled with grace as the markets grow
at breakneck pace.
However, the evidence of the chaos caused by lack of secure IoT devices such as with the Mirai
botnet seems a while ago, the complexities and dangers associated with hackable devices and
systems which depend on communications and compute services is increasing.
As the world moves to rely on Industry 4.0 and new Smart X solutions leveraging Digital Twins,
Augmented & Virtual Reality, the capabilities delivering the 4th industrial revolution need to be
scalable, automated and secure.
Industry X.0 combines emerging, connected and smart technologies to digitally transform the
industry. It offers an approach that uses advanced technologies to reinvent products and
services from design and engineering to manufacturing and support, accelerating operational
efficiency and enterprise-wide growth.
As per Accenture’s research only 13 percent of businesses have realized the full impact of their
10
digital investments, enabling them to achieve cost savings and create growth. The optimal mix
of technologies could save large companies up to $16 billion. The traditional value chain will
pivot toward hyper-personalized experiences, products and services driven by innovative
business models that result in new sources of revenue in coming days
Telcos can combine their connectivity services with Industry Partners to package their own with
ecosystem products & services, sell & support these new offerings to enterprise customers in a
frictionless self-service digital way.
The need to bring together hundreds of physical components and services from multiple
organizations, the cloud and wherever else needs a highly automated and scale-able capability,
which can easily manage in-life operations, easy to maintain and remove all attack surfaces.
However, traditional business, operations, partnering, customer on-boarding and solution

delivery processes across traditional industries vary considerably. While each industry has
developed specific jargon – companies and sub business units in the same industry segment
often each have their own way of doing and describing activities.
Digital platform companies such as AWS, Google or the Apple have proven that digital
frictionless partnering is the most efficient and profitable business tool in today’s world, scaling
their businesses at speeds that are unimaginable to traditional industries.
In contrast to the digital platform companies, the Industrial Internet of Things, Industry 4.0 and
Smart X solutions have not scaled as anticipated.
While a lot of projects are taking place, deployments take years where engineers from different
companies build solutions which are expensive to build and maintain. This bespoke approach is
not maintainable or secure and will not support repeatable scale-able deployments required to
meet the multi fold projected growth in coming years.
The Digital Business Marketplace 3 (DBM) catalyst is focused on enabling any type of
organisation, be it a non-digital company, a platform company or hyperscaler looking to deliver
secure Industry 4.0 and Smart X solutions for customers “as a service”, to leverage frictionlessly
partnering techniques similar to the digital platform providers, accelerating time to revenue,
streamlining customer on-boarding, solution delivery, and operations, thus improving profitability
and velocity.
The DBM capability enables enterprise customers to select, configure, and order solutions in a
shopping cart. Placing the order through one customer facing company, the DBM enables
companies to seamlessly partner to include all the necessary components and services and
deliver secure industry 4.0 and Smart X solutions.
11
2 Digital Business Marketplace III
2.1 The Phase I & II Foundations

During Phase I of the DBM in May 2019, the team demonstrated how multiple organisations in a
supply chain could frictionlessly partner to enable IoT devices to be selected and ordered in a
shopping cart, and then be provisioned, deployed and activated securely, at scale – and all the
partners were granularly monetised for their product and service contributions. All of this was
achieved repeatably without any manual processing – thereby eliminating the sharing of
passwords, which is one of the biggest problems in IIoT and enterprise services worldwide.
Leveraging the repeatable patterns enabled by Intel’s SDO Technology, BT’s ZTO and the
Infonova multi-party frictionless trading platform, the Phase I approach demonstrated a fully
automated solution from shopping cart through to device activation – traversing multiple
partnering organisations. In the case explored, DBM Phase I illustrated saving 500 person-
years of skilled work to deploy 3 million IoT devices.
During Phase II in Sept 2019, the team showcased how Product Managers from any industry
vertical (Smart X) can become their own digital operator, partnering with multiple organisations
which provide different products and services into the solution.
To do this, Phase II extended the zero-touch deployment approach achieved in Phase I. The
end-to-end DBM platform demonstrated how the shopping cart leveraged the Intel SDO “late
binding” capability to enable additional services to be purchased in the cart and deployed down
from the cloud to the target device (e.g. a uCPE) – securely and at scale… again, fully
automated with no sharing of passwords. Of course, any party involved in contributing services
is automatically granularly monetized by the DBM solution approach.
In combination with Infonova, ZTO and SDO enabled devices (such as a uCPE), a Smart X
Product Manager can offer the customer a combination of services to be deployed onto the
device, such as SDN, NFV, … and Artificial Intelligence or Machine Learning at the edge.
Phase II explored how DBM enables Product Managers to “partner” in a plug and play business
ecosystem and source various component parts from a variety of organisations… and apply and
sell those 3rd party products and services as part of their industry vertical solutions.
2.2 Phase III Initiatives

During Phase III of the catalyst, the team focused in two directions, firstly testing how additional
technologies can harden the Smart Infrastructure capabilities for production and secondly
testing the repeatability of DBM to deliver different Smart X solution scenarios.
Given all the verticals need smart infrastructure, a key question at the beginning of Phase III
was how to share out the work.
12
We decided to use a “team of teams” approach to tease out and explore different facets of the
same repeatable solution patterns across four different scenarios… and if the pieces all worked
the way we anticipated, then all we needed to do is to bring them together to deliver “end to
end” Industry 4.0 and Smart Verticals solutions.
It was also decided to call these four areas “initiatives” - to help people understand that these
are pieces which need to come together.
The Phase III initiatives illustrate very different requirements – all of which demonstrate use of
the DBM repeatable pattern capabilities:
• Underpinning Smart Infrastructure with a DLT-, SDO- and ZTO-enabled cyber-physical
commercial plug & play frictionless B2B2x Secure Supply Chain
• Smart Entertainment – a range of experience-enhancing capabilities, language
translation, “on-line” stadiums with facilities for audience feedback & participation
• Smart Grid – a blueprint to overlay, abstract, orchestrate and fractalize the existing grid,
ensuring each community has power in isolation for as long as required
• Smart Manufacturing – architecting and testing automated cyber healing services for
robots, delivering secure trusted endpoints with AI across public and private 5G
networks, and establishing a factory robot-as-a-service
It should be noted that the Secure Supply Chain initiative is a key enabling part of Smart
Infrastructure. Smart Infrastructure is itself key to enabling all Smart Verticals.
Phase III helped to develop clarity on specific definitions of “initiatives, verticals, infrastructure,
and secure supply chain”. The “initiatives” addressed in the next chapter each represent a
different use of parts of DBM repeatable design. The reader needs to reflect that DBM is the
aggregate capability of all the parts, perhaps best illustrated by the diagram below.
13
Chapter 3 explores the Phase III “initiatives”, the Secure Supply Chain, and the three Smart
Solution vertical requirements of Smart Grid, Smart Manufacturing and Smart Entertainment.
2.3 Smart Infrastructure

Chapter 4 addresses the Smart Infrastructure requirements.
The hypothesis underpinning DBM is that multiple organisations are required to deliver an
Industry 4.0 or Smart X vertical solution. To do this securely needs an approach where the
solution (including all the partners components) is selectable in the shopping cart, deployable
and manageable in life “zero touch” – with absolutely no sharing of passwords!
This smart configurable infrastructure, such as 5G and IoT devices plus compute at the edge
provides the basis for industry vertical Smart x Product Managers to deploy their appropriate
industry vertical control systems, such as Smart Manufacturing Artificial Intelligence and Digital
Twins, and other devices / services on top of the smart infrastructure, delivering and enabling
their Industry X.0 solution. AGAIN, to do this securely means that everything is selectable in the
shopping cart, deployable and manageable in life “zero touch” – with absolutely no sharing of
passwords!
The matrix of core DBM capabilities established in Phase I and provided collectively by the
partnering companies includes secure supply chains, core platform governance and
management, settlements, service assurance, federated identity management, distributed
ledger technology, network mapping, secure device onboarding, 5G and fiber provisioning,
service level agreements and contracts, software-defined networking, network functions
virtualization, digital experience orchestration & monetization, ZTO, multi-edge and cloud, and
industry 4.0 vertical-specific devices and services.
TM Forum Open APIs enable the digitalized elements of the various orchestrated products and
services to be assembled to suit specific needs at particular times, and ensures they are
interoperable from an Enterprise perspective. The automation of DBM partnering ecosystem is
provided by the Infonova Digital Business and Partnering Platform which extends the TM Forum
API’s and Frameworx from an Enterprise focus into Multi-party capability.
14
More details on the Smart Infrastructure are covered under Section 4, but the key point to
convey here is that the Smart Infrastructure services are key enablers for the Smart Verticals.
2.4 What has changed with DBM: “Before and After”?

Many companies are engaged with delivering Industry 4.0 and Smart X solutions. DBM
automates the existing processes, emails, order screens, spreadsheets which are being used
by and between the various companies who are supplying each other various parts of the
overall solution.
15
The summary illustrated on these two slides above cannot be over-emphasized strongly enough
and therefore is summarized here:
Careful work has been undertaken to articulate this is an Osterwalder Value Proposition canvas:
The overall BMC illustrates the marketplace of marketplaces scenario:
16
Additional work has been undertaken to explore the difference for enterprise customers before
and after DBM:
As well as the jobs to be done by the Industry 4.0 or Smart X Product Manager, before and after
DBM:
17
18
2.5 Champion Quotes in support of DBM (October 2020)
Heritage AG International - David Shaw, Chairman of Heritage AG
• A new, exciting Champion has joined the DBM Catalyst, Heritage AG International.
Heritage AG and a federation of infrastructure enterprises are executing a project to
develop and deliver 15,000 housing units near Accra, Ghana. Heritage AG owns
1,800 acres of land near Accra. A portion (800 acres) has been allocated for the
development of the 15,000 housing units in various categories which have already
been allocated for occupation for private families via a unique government contract.
New Accra, Ghana Model
• Supporting the New Accra families is a highly advanced Smart City complex consisting of a
K12 school, hotel resort with casino, 500 bed hospital, retail amenities, a STEM focused
university, parks and other greenspaces. This project is grown from a green field approach;
a blank slate of 1800 acres to produce a vibrant, resilient smart community that will change
the face of Ghana.
• Leveraging TM Forum’s Collaboration Catalyst Program, the Digital Business Marketplace
partners have developed a digital platform capability which provides for traditional
companies, digital platform companies and hyperscalers to seamlessly partner in a
frictionless ecosystem to deliver and in-life manage secure, zero touch, industry 4.0
solutions for complex customer requirements.
• The DBM partners rapid and exciting progress has prompted Heritage AG International to
join the Catalyst and pledge to engage with virtually all of the DBM capabilities, including the
Secure Supply Chain and Smart Grid operations. David Shaw, Chairman of Heritage AG,
says: “The Ghana project will benefit from a greater choice of secure solutions, an
ecosystem of partners, lower cost, and a better experience from solutions that meet their
exacting needs as this massive project matures to eventually be a model for hundreds of
similar projects throughout Africa that will greatly improve the quality of life for millions of its
population.”
19
Digital Twin Consortium – Dan Isaacs, Vice President / Technical Director
• “The DTC are delighted to be a champion of the DBM. The changing world across many
industries is rapidly adopting Digital Twins with significant business benefits, economic
impacts and cost reduction outcomes.
• Industry agnostic business lifecycle management, digital partnering, including frictionless
trading capabilities, offering design, secure in life management and monetization – with
everything including configurable customizations – are important inputs to the evolution of
digital twin technology.
• TM Forum assets, such as Frameworx, the Shared Information Data Model (SID) and APIs,
as evidenced through the Digital Business Marketplace offer compelling opportunities for our
Consortium members.”
Agile Fractal Grid – John Reynolds, CEO

• “The DBM 3.0 Catalyst is a very exciting program with the depth of the participants and
champion's that are now participating. We are using many of the efforts underway as the
initial stages for the production operations for implementation of mass customized fractal
microgrids.”
Maxbyte – Ramshankar CS, CEO

• “The Digital Business Marketplace catalyst has provided Maxbyte the opportunity to validate
the promise of zero touch frictionless partnering, so that we can transform the way that
Maxbyte services its customers.
• DBM capabilities with zero touch solutions as a service would help Maxbyte's current
industry 4.0 self-service platform development.
• This enables our solutions to be securely deployed, in-life managed via digital twins from
cloud to the edge… leveraging our industry 4.0 Bytefactory platform via TMF API’s,
delivering Factory as a Service, M2M transactions, Robot healing services - leveraging
capabilities such as AI, DLT, cyber agents, with granular monetization for all our partners
using the DBM digital platform.”
20
3 DBM “Initiatives” and Use cases
This section outlines the 4 initiatives developed within DBM Phase III:
• Smart Manufacturing
• Smart Grid
• Smart Entertainment
• Secure Supply Chain
3.1 Smart Manufacturing

The Smart Manufacturing initiative led by BT with significant input, guidance and requirements
provided by Maxbyte, explores DBM zero touch capabilities in delivering 5G connectivity to
support two sample use cases: “digital factory as a service” using zero touch deployment of
IOTA DLT capabilities as a service, and automated “self-healing” services for devices struck
down with viruses.
Maxbyte’s industry x.0 services proposition illustrated in the slide below provides a useful insight
to the breadth of services which Maxbyte provides its broad range of multinational heavy
industry enterprise customers.
Maxbyte offer advanced services often using Digital Twins and Augmented Reality and currently
provide massive value for their customers.
Maxbyte have generally delivered their services on a project type basis but have recognized
that in a post-COVID world delivering these services zero touch will not only provide better
protection for their own and customers staff, but also provides a different approach to scaling.
The three use cases explored are

• Automated “self-healing” services for devices e.g. robots
21
• 5G connectivity
• “digital factory as a service” using zero touch deployment of IOTA DLT.
3.1.1 The Factory Security and Service Assurance User Story
As the CISO for my factory,
I need to be able to order security and service assurance services,
so that I can identify and mitigate security threats automatically.
To do this I need to be able to order multiple resources (e.g. robotic arms, conveyor belts,
surveillance cameras) and services (e.g. ZTO, Self-Healing Networking (SHN), Intent-Based
Micro-Segmentation (IBMS), and other forms of intrusion detection and response) from different
vendors, and configure them in a shopping basket.
I know that I am successful when the detection systems identifies the security threat, the
IBMS quarantines the attacker device, and the response systems addresses the security breach
automatically and bring the service back the correct level of trust as soon as possible.
Use case 1 automated “self-healing” services for devices e.g. robots, addresses the customer’s
need to identify and mitigate security threats automatically.
It provides an approach to self-healing networks, leveraging forensic real time techniques to

provide immediate removal of an infected device from the core network. The use case is
sophisticated and orchestrates a number of different systems, devices and services, including
data management Service Assurance, Cameras, Sensors, IOT Gateway, Robot Actuators,
provided by a number of partners leveraging the DBM core patterns.
3.1.1.1 Offering Architecture
The offering architecture of user story 1 illustrates the various services which together deliver
the self-healing services.
22
Accenture’s Self-service Portal, consumes the overall offering from the Infonova catalogue and
enables the customer to select and order the appropriate solution.
3.1.2 Partner Value Proposition
The DBM ecosystem partnering architecture leverages the repeatable patterns of the Smart
Infrastructure secure supply chain.
This use case illustrates how the various required services can be brought together by the
Smart Manufacturing Product Manager at customer facing the organization, Maxbyte.
The solution includes products and services from Intel, Splunk, Intuitus, Adva, Dell, BT’s ZTO,
Dell as well as Bytefactory services which have been extended with TM Forum service ordering
API’s.
The complete solution is offered via the Accenture’s Storefront, leveraging the digital partnering
of the Infonova platform – enabling each organization to sell their offerings as a service into
through Maxbyte, with the frictionless secure supply chain orchestration with SDO enabled
devices and BT’s ZTO.
23
3.1.3 The Factory Hybrid 5G User Story
As the factory customer,
I need to be able to order and automatically provision public and private networks and private-
public network access rights for my factory,
so that I can connect my private network to the public network and control network accessibility
across the two.
To do this I need to be able to order multiple resources (e.g. virtualised MECs, Radios, SIMs,
5G CPE) and services (e.g. SD-WANs, 5G, Firewalls and Access Control Systems) from
different vendors, and configure them in a shopping basket.
I know that I am successful when I can manage and control what my company personal
devices and visitor personal devices can access when inside the factory, and what my company
personal devices can access when outside the factory.
Use case 2 addresses the customer need to manage and control employees’ access rights to
the 5G devices in converged networks. It also illustrates how to turn on, allocate and assure 5G
slices at the edge.
24
3.1.4 The Smart Production Line User Story
As the smart factory customer,
I need to be able to order and configure a flexible smart production line,
so that I can setup and dynamically change my production lines to accommodate the
autonomous manufacture of different products.
To do this I need to create a production line with zero-touch, enable manufacturing devices to
operate their own wallets, enable manufacturing devices to order resources and sell services,
and allow manufacturing devices to by dynamically configurable.
I know that I am successful when all the production lines components are automated and
trackable securely, and can trade with each other, without human interaction.
Use case 3 explores how to apply digital wallets zero touch to robots so that they can transact
with other robots in a factory. This enables Maxbyte to offer its customers’ “digital factory as a
service”.
25
3.2 Smart Grid
Current National grids are aging infrastructure that were conceived and built starting in the
late 19th century. They rely on huge power stations generating power centrally and distributing it
nationwide over thousands of miles of high-voltage transmission lines. They are highly
inefficient, rely largely on fossil fuels, and the transmission lines pose a significant risk of forest
fires in drier regions. The loss of a single high-voltage transmission line could put millions at risk
for loss of power.
Microgrids have emerged as a way that organizations, campuses, and communities can
significantly reduce dependence on the electrical grid and fossil fuels; however, they are not
always viable on a sustained basis. The Agile Fractal Grid, Inc. (AFG) has created an operating
system and blueprint that can transform a cluster of microgrids into a system of systems to
behave like a utility, with the ability to participate in grid resiliency services and energy markets
at scale, improving their economic viability and ability to help each other in times of need.
The Smart Grid initiative demonstrates the use of DBM to enable the frictionless deployment of
thousands of microgrids using the AFG blueprint, further improving their economic viability and
providing for rapid implementation across the globe.
3.2.1 Smart Grid Ecosystem Architecture

Designed for use in smart cities and military bases, the architecture being modeled in the
Catalyst has four tiers for a national deployment as illustrated in the following diagram.
At Tier-1 are fractal microgrids and nano grids, each containing their own ability to generate
carbon-free power. Each one a cell using a 4 or 5G communications environment. Each with
its own fault-tolerant edge computing platform. Each constituting its own cybersecurity enclave.
Each one perfectly capable of operating in islanded mode independent of the rest of the world.
At Tier-2, we have pairs of district private cloud computing clouds that optimize fleets of Tier-1
microgrids, balancing the level of power available to the district regardless of operational
turbulence anywhere in the fleet.
At Tier-3, we operate either in a private cloud environment as a virtual power pool selling power
on the various regional energy markets generated at the various Tier-2 clusters for transmission
to buyers elsewhere on the main power grid.
At Tier-4, we provide shared consciousness to Independent Service Operators operating as
26
balancing authorities for different regions, also for large carriers who are operating the national
communications backbone networks. Also, for our Security Operations Center operating as a
service for all of the participating environments.
Also, at the top, we operate a Digital Twin providing mass customization services for rolling out
new microgrid instances using fractal patterns for rapid unfolding of the new power system.
Participants around the country use the Tech-YOU-Topia system to learn the basics and then
design, integrate, certify, construct, and then operate their own semi-custom microgrids using
the fractal patterns.
Agile Fractal Grid - The value proposition for creating smart grids using the fractal patterns is
that clean power is available on a resilient basis to the participants at times where wildfires and
other catastrophes might have left them without power for days.
The fractal nodes also provide the communications cells for extending carriers’ access coverage
into areas that might not have been economical for the telco operator to have served with their
own resources.
The fractals also provide enormous computing power with real-time low latency in areas not
practical for distant public cloud services to support.
The fractals contain special Operational Technology (OT) cybersecurity to protect these edge
enclaves against willful attack from adversaries abroad and domestic.
3.2.3 USE CASES

The use cases explored in the Catalyst in this third round of expanding interest demonstrate the
following themes:
• High speed synchro phasors radiating types of precision measurements 120 time per
second per measurement point and delivering those messages in fault tolerant DDS
communications paths and Stratus edge computing elements for operations of the Tier-I
microgrids.
• Consumers and producers (“prosumers”) discover and agree in power exchanges between
themselves in an accountable way using information shared through distributed ledger
technology based on the IOTA Tangle.
• Demonstration of the Energy Digital Twin elements used to test and tune the operations of
the power system as changes are contemplated for microgrids.
Throughout the delivery of these vertically focused initiatives, the smart grid also makes use of
Smart Infrastructure capabilities including the cybersecurity management by the Security
Operations Center services, the Secure Supply Chain, and the Zero Touch Onboarding used
during the deployments.
27
3.3 Smart Entertainment
The Smart Entertainment solutions provides new hybrid experience in various situation with
the scalability in the number of participants, and the efficiency with reliability in the business
processes for the service providers in Entertainment and related verticals.
3.3.1 Business Architecture

As an example of Smart X solutions, Smart Entertainment is also an influential vertical which
leverages the smart infrastructure capabilities.
To explore Smart Entertainment vertically focused initiative, especially under this COVID19
circumstance, we focus on providing new hybrid experience in various situation with the
scalability in terms of the number of participants, e.g. hundreds at theater, thousands at
conference type event, tens of thousands at stadium, which may be available at home in
addition to the event site.
In order to realize the business model according to the diagram on the left, a Marketplace for
the partnering Service Providers as well as a Portal for End Users are the foundation.
New hybrid experience scopes seamless experience with correct time at both physical and
virtual environment, which is fulfilled with SSO across different use cases over Business
Marketplace through Tablet with Zero touch orchestration.
NTT - sets entertainment industry as the potential target and introduced “Theatre model”. This
model scopes the hospitality for customers at Theatre performance (e.g. Noh-play), in addition
to the automation for both theatres and suppliers at backyard operations based on the current
service complexities and business requirements of Japanese market.
BearingPoint//Beyond - provides a SaaS-based BSS as digital business and partnering

platform, which enables organizations to reinvent their own business model, and provides their
customers a seamless experience across all their existing portfolios offerings in addition to
newly onboarded capabilities.
28
Beautiful Ones - provides capabilities related to a tablet rental service (subtitles with machine
learning translation, collecting tablet usage fee with QR code) and shared the knowledge
acquired through real business experience of a tablet rental service at the theatre.
Digiglu – provides the integration of digital services and a smart digital experience through
ZTO, which facilitates digital business efficiency and orchestrates business capabilities from
multiple parties.
Intel/BT - provides SDO and ZTO for the secure and zero-touch orchestrated deployment of
Tables, which drastically reduces the manual operations related to device management
starting from onboarding process to maintenance processes.
Intuitus – provides the domain knowledge and onboards potential service provider, which
illustrates existing real needs for Marketplace so that Smart Entertainment workstream
articulates use cases in addition to the security aspects.
Mvine - provides one stop portal for performances and related services with SSO, which
enables the end customers to benefit from all the provided capabilities including Live chat,
Survey, purchasing goods etc, with self-care through the site once they login while provides
Theatre with asset mgt. and consolidated customer ID mgt. etc.
3.3.3 USE CASES
The use cases explored in the Catalyst as Smart Entertainment vertical initiative are the
following themes:
•Smart Theatre: To assist theaters in Japan to provide digital contents for their customers, CSP
as Digital Platform provider bundles all services (rental ZTO tablets, wifi, translation, live chat,
etc.) which theaters need and provide it through JP marketplace. Based on the capabilities, the
theaters’ customers, including non-Japanese speakers, can understand the performance better
and enjoy their experience in theatres.
•Online Event: To assist companies to hold online events for their customers or their own
employees, CSP as Digital Platform provider bundles all services (BYOD tablets, BYO
connectivity, translation, live chat, etc.) which companies need and provide it through
Marketplace. Based on the capabilities, the companies’ customers or employees can attend the
event from remote locations and communicate each other seamlessly.
•Stadium: To assist stadiums to provide digital contents for their customers, CSP as Digital
Platform Provider bundle all services (rental ZTO tablets or BYOD tablets, 5G, translation, live
chat etc.) which stadiums need and provide it through Marketplace. Based on the capabilities
the stadiums can enhance the customer experience during events in the stadium.
29
3.4 Secure Supply Chain
The 4th industrial revolution and Smart X scenarios are being held back by market segment
fragmentation, and costly and labour-intensive processes. As a result, Industry 4.0 and Smart X
deployments will struggle to scale until the supply chain evolves into an ecosystem that can
repeatedly deliver secure devices, services and solutions, which can be easily aggregated,
offered, ordered, installed and managed online.
3.4.1 Business Architecture

For our secure supply chain use case we created a scenario where an enterprise customer
wishes to purchase, in a secure and zero-touch way, a solution which is composed of a bundle
of products and services that will be delivered through multiple supply chains.
The commercial actors in this ecosystem are the customer, the multinational retailer, the global
supplier, the global exporter, the U.S. manufacturer, the national SDO provider, the national
CSP, the national IoT hardware vendor and three global software providers.
Infonova platform to underpin this commercial ecosystem not only because it can provide a
rich BSS capability as a service to every business partner in the ecosystem, but, more
importantly, because it is the only platform know to us that can allows chains of ecosystem
partners to trade products and services with each other in a frictionless way – a quality that is
paramount in supply chains
In this scenario, the bundle being purchased consists of a Dell VEP uCPE, which is an edge
compute node, a Teltonika router, an AWS DeepLens smart camera, a Raspberry Pi, which acts
as an IoT controller, some network connectivity, and an assortment of software services running
30
in the cloud and on edge devices. When the customer orders the bundle, we assume that no
physical stock is held locally by the multinational retailer, the global supplier, or the global
exporter. The US manufacturer will therefore be supplying the uCPE; the national IoT hardware
vendor will be supplying the router, camera and IoT controller; the national CSP will be
providing the network connectivity; and the multinational retailer, national SDO provider and
three global software providers will be providing the assorted software services.
The commercial supply chain runs from left to right as far as purchase ordering is concerned,
right to left as far as invoicing is concerned, and again, left to right as far as payments are
concerned.
Delivery of the physical goods is done by a physical supply chain, which runs from right to left.
Here, we have a short national supply chain from the national IoT hardware vendor to the
Customer, and a longer international supply chain from the US manufacturer to the Customer.
Additional actors are brought into play, such as couriers, freight forwarders, transit sheds and
customs, which could be added to the commercial ecosystem or, as in this case and for
simplicity, regarded as supporting roles and were kept outside the scope of our commercial
ecosystem but very much in scope as far as the physical supply chain is concerned.
IOTA foundation DLT and Tangle network to underpin and immutably record this physical
supply chain ecosystem because it is fast, highly scalable, feeless, permission-less [Question to
IF: because not all writers are known?], and because there are a number of great track and
track services that leverage the IOTA, of which, we’ve used Zebra track and track for our
national physical supply chain, and PING asset for our international one.
To deliver firmware, software, certificates, credentials and configuration to edge devices in a
secure and zero-touch way, we used Intel SDO, R3 Corda DLT and BT ZTO.
Intel SDO because it supports chip-to-management platform encrypted channels, it enables

devices to be provisioned at the point of installation rather than only at the point of manufacture,
and because it offers something called “late binding” which allows customers the ability to
choose their target device management platform at the time of ordering. Additionally, Intel is
driving SDO into the Fast Identity Online, or FIDO, IoT standards working group.
Intel SDO uses an artefact called an ownership voucher that is needed for a cloud- or edge-
based service to claim ownership of a device before it is powered up. This ownership voucher
originates at the device manufacturer and needs to be extended and passed on as the device’s
ownership changes across the commercial supply chain. Intel SDO assumes a secure supply
chain in which to propagate the ownership voucher along the commercial supply chain.
R3 Corda DLT to underpin and immutably record this ownership voucher supply chain because,
like IOTA, it too is fast, highly scalable and feeless. Additionally, Corda operates a permissioned
DLT that keeps information to a known network of commercial entities on a need-to-know basis,
and because Corda supports the concept of a notary, which allows business partners to quickly
reach a consensus over ownership voucher transfer transactions.
Whilst Intel SDO provides a single attestation technology and the ability for a single device
management system to claim ownership of and manage devices, there is a need to provide
customer choice regarding attestation technologies and the ability to use multiple device
management systems to manage multiple aspects of a device - for example, one DMS to
manage the hardware, one to manage the software infrastructure, and one to manage each of
the applications running on the device.
BT ZTO because it provides these extra capabilities, permitting extra choice and flexibility over
and above Intel SDO. In addition, and a big missing piece in device zero-touch capability, is the
31
ability for devices to automatically find and securely connect to a network access point without
requiring an administrator to manually log into the device and enter any network access point
credentials, which is an error-prone, time-consuming and costly process, which also opens up a
number of cyber-attack surfaces. So, we also used BT ZTO because it enables this zero-touch
connection capability for a range of network access technologies, such as Wi-Fi, NB-IoT, LoRa,
4 and 5G.
3.4.3 USE CASES
For Secure supply chain use case, we created a scenario where an enterprise customer wishes
to purchase, in a secure and zero-touch way, a solution which is composed of a bundle of
products and services that will be delivered through multiple supply chains.
In this scenario, the bundle being purchased consists of a Dell VEP uCPE, which is an edge
compute node, a Teltonika router, an AWS DeepLens smart camera, a Raspberry Pi, which acts
as an IoT controller, some network connectivity (5G, Wi-Fi, Fiber Broadband) , and an
assortment of software services running in the cloud and on edge devices. When the customer
orders the bundle, we assume that no physical stock is held locally by the multinational retailer,
the global supplier, or the global exporter. The U.S. manufacturer will therefore be drop-shipping
the uCPE to the customer, while the national IoT hardware vendor will be supplying the router,
camera and IoT controller. The national CSP will be providing the network connectivity, while
the multinational retailer, national SDO provider and the three global software providers will be
providing the assorted software services.
The commercial supply chain runs from left to right as far as purchase ordering is concerned;
right to left as far as invoicing is concerned; and again, left to right as far as payments are
concerned.
Delivery of the physical goods is done by a physical supply chain, which runs from right to left.
Here, we have a short national supply chain from the national IoT hardware vendor to the
Customer, and a longer international supply chain from the U.S. manufacturer to the Customer.
Additional actors are brought into play, such as couriers, freight forwarders, transit sheds and
customs, which could be added to the commercial ecosystem or, as in this case and for
simplicity, regarded as supporting roles and were kept outside the scope of our automated
commercial ecosystem but very much in scope as far as the physical supply chain is concerned.
32
4 Smart Infrastructure
DBM’s blueprint and repeatable patterns makes Industry X.0 and Smart X “vertical”
solutions easy to design and quick to deploy.
To enable this, DBM implements a "Smart Infrastructure", with key underpinnings such as zero-
touch deployment of field and customer premise equipment, supply chain security leveraging
fully automated business process actions across all the partners, distributed ledgers for physical
and virtual supply chain validation, automated cybersecurity threat detection and mitigation,
identity credentialing and access management, and business and operational support systems
built into the platform.
The diagram below illustrates the capabilities, products, services and technologies which
together enable Smart Infrastructure to easily support Vertical Solutions. Of course the vertical
solutions also include a range of components, services, resources, systems specific to each
vertical…
The DBM platform enables all the players to trade frictionlessly… NO MANUAL PROCESSES
from the shopping cart selection right through provisioning, activation and in life management.
This section explores the various capabilities, components, products and services which
combine to deliver Smart Infrastructure.
4.1 Multi-Partner Ecosystem Platform

BearingPoint//Beyond defines an effective ecosystem as an open, multisided collaboration
between different parties, but where each organization can choose who they partner with. And
recommends leveraging ecosystems to create compelling products and services driven by
genuine customer insight.
33
BearingPoint//Beyond’s Infonova platform has capabilities to manage diverse customers,
partners, products and services and participate in the business success of the platform partners.
With commercial models between the ecosystem partners being supported, automated revenue
allocation, partner settlement, and multi-party commercial agreements.
Each partner has their own use of tenant created on the Infonova platform, to host their
products and services, source partner offerings and sell via direct or partner channels.
The platform can be configured to have,
▪ Open Business - all business partners can cross-sell each other’s products and
services on the platform
▪ Controlled Ecosystem - the platform provider has the option to control the platform
tenants’ capabilities and interactions
The platform enables multi-sided and cross-industry B2B, B2C and B2B2x business models
where customers, partners and things play a wider role in re-selling services via multi-tenancy.
Partners can sell directly, through channels or through channel partners. Easier to on board new
partner offers to bundle and sell. The E2E service orchestration processes spans across
partner’s own services, multiple business partners, and multiple service providers
The capability gives customers,

• Wider choice - with a combination of own services and partner services
• Tailored offers and convergent bundles of services with flexible pricing.
• Seamless service enablement - spanning services from multiple business partners
• Convergent billing and charging - for all services on a single invoice
DBM3 leverages the capabilities of the Infonova platform to manage a multi partner ecosystem,
across smart vertical and horizontals.
The end-to-end business process automation of the Infonova digital platform design is
conceived to enable frictionless partnering, which can be used in a fully recursive approach if
partners so wish to do.
From a DBM perspective, the Infonova platform enables each organisations to run their own
business and participate in the partnering ecosystem with the certainty that they will be able to
bill whatever is consumed by their partners.
34
Products and services from various partner tenants and enabled to offer at the end customer
from the four customer facing tenants. Notice the Secure supply chain tenant (an Industry
horizontal) is a customer facing tenant, and also has its offerings available to the Smart Industry
verticals.
35
4.2 FIDO Secure Device Onboarding (SDO)
FIDO (Fast IDentity Online) together with Intel offers the Zero-Touch, Late-Binding
Provisioning for IoT Devices
Most “zero-touch” provisioning solutions in the market today require a unique device SKU
for each customer/cloud combination. This adds significant friction to the supply chain because
unique devices are needed for each end-customer— requiring that products be built-to-order.
Intel SDO uses a “late binding” approach, however, that makes it possible to configure devices
at the point of installation, rather than having to be customized in advance for each customer
system. This capability not only improves ease of installation, but also enables original device
manufacturers (ODMs) to build identical IoT devices in high volume.
Intel SDO is implemented across an IoT solution ecosystem using software-enabling toolkits
to configure devices, DMS systems, and services to run the appropriate onboarding protocols.
This Intel SDO enablement model can be applied to sensors, devices, and IoT edge servers.
The payload delivered to each device is configurable, able to address various use cases and IT
security requirements. Typical payloads that can be sent to the device include an operational
device identity, a DMS agent, and software updates.
Step 1: The bare metal Intel edge server is mass produced as a single SKU with a standard
image, hardware root of trust and Intel SDO agent.
Step 2-3: The enterprise customer orders a uCPE and one or more virtual networking
functions from a communication service provider (CoSP). An “ownership credential” is
loaded into the Service Chain Orchestration Console and Intel SDO Rendezvous
Service as part of a sales order, and the bare metal device is drop-shipped to the install
location.
Step 4-5-6: At power on, the uCPE, NFVi OS, and SD-WAN, virtual firewall, and other VNFs
are automatically and securely onboarded using Intel SDO Servers, hosted in the cloud.
36
Optionally, the Intel SDO service can be run on the uCPE as a VNF to onboard dependent
IoT devices from a local edge server rather than a hosted cloud service.
4.3 Zero-Touch Orchestration (ZTO)

BT’s patented Zero-Touch Orchestration (ZTO) technology extends Intel’s SDO capability,
enabling complete zero-touch during the device establishment and in-life management phases.
ZTO encompasses Zero-Touch Connectivity (ZTC), Attestation (ZTA), Device Management
(ZTD) and Bootstrap (ZTB).
• Zero-touch connection allows devices to connect, upon “power on”, to the network
(using Wi-Fi, LoRa, etc.) automatically and without pre-provisioning, but also securely
• Zero-touch attestation is a wrapper for Intel’s SDO and other attestation technologies
that allows devices to establish bi-directional trust with their device managers and their
digital owners
• Zero-touch bootstrapping enables the device owner to request the creation of a
bootstrap for the device. The bootstrap is composed of a list of required firmware,
operating system, certificates, credentials, protocols, applications, containers and
microservices (including the device management agent), which is bound with a set of
installation instructions based on the device profile and the device management system it
will be connected to
• Zero-touch device management supports remote and secure in-life management of the
device, including device monitoring, managing, controlling, reassigning and
decommissioning, based on standard protocols
4.4 Distributed Ledger Technology (DLT)

IOTA is an open source, feeless, and scalable distributed ledger technology, designed to
support frictionless data and value transfer. It is highly scalable and uses a Directed Acyclic
Graph data structure allowing transactions to be added in parallel, unlike blockchain
alternatives. Its technology has low resource requirements and is designed for devices, such as
sensors, to participate in a low-energy network. IOTA allows zero-fee transactions that are
confirmed within minutes and has optional quantum robustness with Winternitz signatures that
make IOTA resilient to the next generation of computing. With a globally distributed network,
IOTA is resilient and robust against attacks.
In the Smart Grid Vertical IOTA Foundation brings the vision of a decentralized energy
flexibility trading platform. Built on the IOTA distributed ledger and its second layer protocols,
the IOTA flexibility marketplace allows any energy assets producing and consuming energy
(prosumers) to trade their energy flexibility, i.e., the excess of produced and not needed energy.
In particular renewable energy sources and their use can be tracked as it flows between assets
and energy sustainability is achieved. Through the IOTA marketplace demand and offer of
energy is exchanged without needs for third party aggregators, energy distribution matched and
billed in real-time, based on actual consumption, with payments settled without any extra costs.
Thanks to integration with the fast broadband communication and the development of an IOTA-
powered energy meter any energy asset, everywhere in the world can connect to the
marketplace with secure E2E transactions and start generating value. Hierarchical federation of
marketplace and easy integration with DSOs can easily help expand the scope of the
marketplace and achieve sustainability of a district, a city and an entire region.
37
4.5 StoreFront
Accenture provides the Storefront for the DBM3 to support the B2B customer
engagement. The Accenture approach to customer engagement aligns to the DBM vision,
to offer products and services across industry horizontals and verticals.
According to a late 2019 report, the self-service market valued at $28.01 billion in 2019
and is expected to reach $68.01 billion by the end of 2025. Businesses look for a stable
trusted partner over a single channel for all their enterprise needs.
Accenture's Storefront offers industry vertical specific product catalogue capabilities for
supporting new business models, optimizing usage of network resources and engaging
with external ecosystems and third-party partners, in order to effectively monetize new
enterprise opportunities.
DBM is aimed at addressing complex industry challenges, and a solution is worked out
with the industry experts and partners in the ecosystem in the specific area. The
components of the solutions form various entities of the solution bundle, each entity is
generally offered by different partner from the ecosystem. The final offering to Business
customer will comprise of bundled solutions, where customer will be able to choose
product offerings across various areas, with options to configure bundles.
An Example, Consider the Security as a Service (SECaaS) and Service Assurance

38
offering under the Smart Manufacturing case developed in DBM3.
Solution offerings –
• Edge Bundle and Connectivity
▪ CPEs, Camera, Robotic Arm and Tablets, along with Connectivity
Services.
• Self-Healing Network Hardware Bundle
▪ Security Management Appliance and Tapping Hardware devices
• Self-Healing Network Software Services
▪ Self-Healing Network with IBMS
▪ Service Assurance
▪ Security Analytics
▪ Platform Telemetry & Analytics
The DBM3 leverages Accenture’s expertise as a Technology partner in creating a tailored

solution leveraging Native Cloud services. Considering a blueprint phase and MVP incremental
approach the StoreFront adopting modern engineering approach such as SAFE agile for
development.
Few additional responsibilities of the storefront include,

• Manage Single Sign On
• Customer and Role Managements
• Product Catalog Management
• Bundle Management
• Design Customization
• Including back-office and support professional services
• Integrated with MAG services
• Manage Payments.
4.6 Digital Twins

A digital twin is an abstraction of something in the real world. It may be physical (a
device, product, system or other asset) or conceptual (a service, process or notion). A digital
twin captures the behaviour and attributes of its physical sibling with data and life cycle state
changes potentially moving in either, or both, directions.
39
A digital twin may be used for simulation, as a kind of prototype to understand expected
behaviour, existing before there is a physical twin. It can also capture real-world behaviour so
that, for example, analytics and learning can be performed. Digital twins can also be used in
virtual reality (VR) and augmented reality (AR).
There may be many instances of the same type, for example several robots or several aircraft
engines all conforming to the same specification. And digital twins may be aggregated: the
several robots in a factory or the several aircraft engines on an airplane.
Accordingly, digital twin is also a methodology for the rapid creation and control of physical
systems that delivers value to the companies employing it.
Although many firms talk about being specialists in the technology of a “digital twin”, many are
talking about just a specific part of the lifecycle where a digital twin approach would be useful.
In the bigger picture of the use of digital twins, there are many levels of usefulness, and what is
important in a large and complex project is to use nested digital twins as being formalized by the
Digital Twin Consortium.
The architectural strategy for maintaining “wholeness” as opposed to a piece part inefficiency
draws from the guidance from masters in the world of architecture:
Eero Saarinen:
Never design a thing without first understanding
the next larger context into which it must fit.
• A chair within a room,
• A room within a house,
• A house within a neighborhood,
• A neighborhood within a city.
Christopher Alexander:
Use a system of design patterns to
allow local teams to design their own systems
out of interchangeable parts such that
integration is assured from the outset…
but such that no two local systems ever look exactly the same.
In keeping with this guidance, one such buildup of nested digital twins is being used for the
Agile Fractal Grid approach to incrementally decentralizing the power grid into a more reliable
and secure infrastructure is to use fractal patterns for distributed energy resources, high speed
communications, edge computing, and cybersecurity enclaves. In succeeding more
encompassing models, the digital twin layers starting with the bottom might be arranged in the
following sequence:
• Materials Manufacturing (fabrication)
• Product Manufacturing (assembly)
• Engagement and Planning – including Integrated Logistics
• Design Engineering
40
• Construction and Commissioning
• Operations and Service Assurance
• Acquisition and Onboarding of Digital Services
• Continuous Deployment and Evolution
The structure for the organic evolution of the Agile Fractal Grid four tiers of deployment are thus
at different nested levels:
• A device within a fractal node pattern
• A node within a building or yard
• A building within a neighborhood
• A neighborhood within a city
• A city within a state
• A state within a country
• A country within the world
Each of these elements of the end environment must operate effectively and efficiently on their
own, especially when disconnected, but also must operate effectively as an integrated system of
systems produced by a team of teams.
The Tier-1 operation for a building or microgrid yard is a self-sufficient, semi-autonomous
operation of the different equipment needed to generate power from renewable sources. The
Tier-2 District operation has a simpler, but more technically complex structure, primarily for
operational matters. The Tier-3 Regional operation primarily manages financial matters
regarding the supply chain and the markets interfaces and splits of participations. And the Tier-
4 operation must maintain a shared consciousness for a country as a whole for balancing and
security matters.
The Digital Twin system of systems must include provision to operate at all four tiers to be able
to support the responsiveness and continuity of operations. But it must do so in a distributed
way to prevent single points of failure. As such, it needs to follow natural patterns as Einstein
had recommended to simplify the process such that it is much more easily manageable.
4.7 Communications Access Services

Fractal Communications is providing a 5G style of Multiple Operator Radio Access
Network (MORAN) service as an infrastructure offering to carriers as an “in between” service
that fills the gap for CSPs between classic carrier communications services and private
enterprise internal services. The premise behind the 5G MORAN standard is that there will be
situations in which the landlord or rural infrastructure owner will have physical assets already in
place, and shared network apparatus that would benefit multiple CSPs, but that a shared
arrangement (similar in benefit to shared cell towers) is more beneficial to carriers who cannot
justify service in an area with their own dedicated assets alone. In these situations, it makes
much more sense to lease the wholesale MORAN service and associated local service
assurance teams than it does in more traditional metropolitan environments.
Even in metropolitan environments, inside wiring and communications tend to be more of the
responsibility of the landlord in many cases, and independent infrastructure for each of the
myriad of CSPs wanting high quality 5G communications services for their tenants is not really
viable for the landlord. It is for these reasons that the new 5G standards have been structured
in the way that they have.
The answer to this “in between” need is for wholesale services that leverage the ubiquity of the
new electric power control fiber paths to allow CSPs to enjoy sequestered service access
41
without being burdened by CAPEX matters and ongoing OPEX expenses for each inside wiring
arrangement or rural byway arrangement. These CAPEX obligations provide downward
pressure on CSP market caps which is why these environments are normally shunned wherever
possible by CSPs.
Wholesale arrangements such as Fractal Communications wholesale offerings offer this “in
between” access service for CSPs where the resulting incremental revenues are a gross = net
opportunity for CSPs looking for expanding their service coverage without CAPEX or
incremental OPEX burdens.
The wholesale coverage extensions include both 4G / 5G cellular service plus 5G styles of wi-fi
mesh services that can support the need for rapid expansion of Internet service in areas
typically shunned in the past.
These services are orderable through the Digital Business Marketplace offered by the Agile
Fractal Grid wherever they are in place for metropolitan and rural markets.
4.8 Cloud and Edge Computing

The rapid rise of IoT applications using new developments in drone and artificial
intelligence capabilities have created a great demand for Edge Computing, which is the use of
powerful server-class computers that are able to be more responsive to the resulting computing
and network bandwidth requirements. One persistent issue, however, is the need for labor-
intensive deployments, which curtails the otherwise promising growth opportunities.
Intel SDO and BT ZTO are complementary technologies that enable providers of edge
computing applications and servers to minimize deployment costs. Dell Virtual Edge Platform
(VEP), Stratus ZTC Edge, and Intuitus SMA are examples of DBM3 participants or participant
partners who are committed to using Intel SDO and BT ZTO.
Intel Multi-Edge Computing (MEC) and OpenNESS technologies allow application developers to
seamlessly and easily deploy their applications to edge or cloud servers as appropriate.
All these technologies contribute to reducing friction for Industry 4.0 solutions.
4.9 Continuous Operations

DBM aims to reduce or eliminate friction in solutions development and delivery of Industry
4.0 solutions. One of the core components of the DBM Smart Infrastructure that helps reduce
friction is the ability to do continuous operations of the solutions. DBM defines this as a set of
best practices, enabled by a methodology named DevSecOps.
Organizations practicing DevSecOps are capable of being highly responsive to changing

customer and operational needs because fixes and updates could be made to production in
hours as opposed to weeks or months doing it the traditional way, while maintaining the highest
levels of security. This is enabled by completely eliminating manual setup and update of
infrastructure and applications.
DevSecOps is an organizational software engineering culture and practice that aims to unify
software development (Dev), security (Sec) and operations (Ops). The main characteristic of
DevSecOps is to automate, monitor, and apply security at all phases of the software lifecycle:
plan, develop, build, test, release, deliver, deploy, operate, and monitor. In DevSecOps, testing
and security are “shifted to the left” through automated unit, functional, integration, and security
42
testing - this is a key DevSecOps differentiator since operational, security, and functional
capabilities are tested and built simultaneously.
As opposed to the traditional model of agile development, where there is a separation of product
development/engineering, operations, and security teams, the new model of DevSecOps
demands a cultural shift where all teams have responsibilities in all aspects of the software
development lifecycle. Security and operational considerations are built into every step of the
development lifecycle by appropriate team members and highly automated.
The objective is to increase development velocity, operational agility, and security in equal
measure to enable continuous operations, where features and bug fixes can be delivered into
production in hours, not weeks or months. Manual configuration, settings, and deployment are
completely eliminated. Infrastructure-as-code (IaC) and configuration-as-code (CaC) ensure
provable running conditions. The source control and management system becomes a single
source of truth for all aspects of software development, integration, testing, staging, and
deployment. In effect, software is developed and delivered via a software factory, which
provides a set of continuous delivery pipelines for teams to deliver software products and
services.
This does not come easy. DevSecOps is not simply about deploying a set of automated tools,
but requires rethinking and potential restructuring of the teams to ensure success. The DoD
DevSecOps Reference Design document provides an excellent blueprint that bakes in best
practices in a number of different disciplines within the software lifecycle.
43
DevSecOps requires an internal or external security services provider to be embedded within
the product development and deployment organization. Intuitus Corp provides DevSecOps as a
service to AFG in their deployment of fractal microgrids.
4.10 5G Network Slicing

Network slicing enables the provision of both traditional single industry, single network
slices at the same time as multi-industry networks providing multi-service offerings as different
network slices. In this manner an operator can slice their network to best provide for their current
subscribers whilst developing alternative slices to attract new industry combinations.
Before we discuss what Network Slicing means for a mobile network let’s consider the potential
market-place that 5G is now trying to address. Traditionally, a vertical market is categorized by
a set of products that all meet requirements for a particular market sector, such as: manufacturing,
health, education, finance and utilities. For example: in the vertical health market, communication
products would be classified as part of the health market if they are tailored for supporting the
health industry and would not be suitable for any other markets. Similarly, hardware equipment
for the vertical market, such as surgeons’ tools, if they are limited to this vertical, market would
not be suitable for say the manufacturing market.
In contrast, in a horizontal market, then products are common across several or all vertical
markets. A good example of a product type that may be classified as being a horizontal market
would be catering. Catering products are required by most vertical markets as all markets need
people and they all need to eat. With the advent of products that can be customized and/or
programmed and/or support an application framework such as with IT, and mobile equipment,
these products can more easily address a smart horizontal in the marketplace.
In a network slicing (NS) context, there may be good reasons for a particular operator to support
slices that support both horizontal and vertical business markets.
However, whilst communications devices are programmable and the standards from 3GPP up to
44
4G provide for QoS class definition, commercial PLMNs rarely provide much, if any support, for
different QoS classes other than best efforts. The reason for this is that provision is expensive
and the control structure to provide, operate and maintain tailored services (in terms of QoS and
other factors) for a commercial network is only just being defined comprehensively in 5G in the
form of Network Slicing.
With the advent of network slicing, 3GPP introduces the concept of multiple network slices, where
each network slice potentially provides different capabilities in terms of: functionality, performance
per service: enhanced Mobile Broadband (eMBB), massive Internet of Things (mIoT), and Ultra
Reliable Low Latency Communications (URLLC), and user scope.
For example, a network slice that simply provides a basic form of eMBB effectively provides the
traditional best efforts (BE) Internet service as a horizontal communications service that is
required by all vertical markets. Please note, in practice, a 5G slice type of eMBB may in fact be
setup and marketed with several levels of QoS, e.g. slices such as eMBB(BE) and eMBB (fast-
download)_and eMBB(High Quality Video) may all be offered as different network slice options.
In contrast, a network slice that has been configured for URLLC with additional priority and low
latency transmission may be more attractive to segments of vertical markets that can justify the
likely additional extra cost of such provision, unlike the education sector which may not need or
want to afford this provision, this approach covers network slicing functionality and performance,
where both tailored network slices may be defined for a specific vertical market need or more
cost-effectively a number of common network slices may be defined and then the communications
needs of each vertical market or section thereof can be mapped to one of these common slices.
As an example of the user scope of network slicing, let us say that a Public Land Mobile Network
(PLMN) defines three common slices, one to support each of the 3 x 3GPP, 5GS defined use
case groupings of: eMBB, mIoT and URLLC. In this example, to support the health vertical market:
appointments could be supported by mapping communications to the eMBB slice, IoT devices
that are monitoring people in care could be supported by mapping their communications to the
mIoT slice and communications for remote operations could be mapped to the low latency URLLC
slice.
It is assumed that all of the network slices used by the health market are likely to have higher
security requirements than other vertical markets and as such slice differentiation by security level
could also be another PLMN service differentiator that operators are likely to want to provide with
network slicing.
4.11 Ecosystem & Service Assurance

Service Assurance is the application of policies and processes to ensure that services offered
over networks meet a pre-defined service quality level for an optimal subscriber experience.
Security, redundancy, and fail safety in networks and network equipment are some of the ways
that a CSP can implement Service Assurance.
Service Assurance is a key part of the DBM3 platform. Products and services can offer this as
one or more selectable features in the DBM3 storefront which a customer can choose when
ordering. User story 3 in the DBM3 demonstrates how a user orders multiple resources (e.g.
robotic arms, conveyor belts, surveillance cameras) and services (e.g. ZTO, Self-Healing
Networking (SHN), Intent-Based Micro-Segmentation (IBMS), and other forms of intrusion
detection and response from different vendors, and configures them in a single shopping basket
before placing the order.
45
Dell makes universal customer premises equipment (uCPE) running the Ensemble Connector
from ADVA. Data analytics are evolving to automate management of enterprise edge compute
nodes or uCPE. The applications for uCPE are growing, but success with these remote
deployments is dependent on scalable and cost-effective management.
Splunk offers a powerful analytics platform that enables service providers, and the enterprises
that they serve, to gain end-to-end visibility, and to monitor and secure their uCPE
infrastructure, WAN connections, and applications. It also enables remediation when network
events violate network policies.
Intuitus provides the 24/7/365 full time monitoring and security of components and devices that
make up or are attached to any IP network. A deployed network consists of firewalls, routers,
switches, access points, and end points including everything from servers, workstations, and
IOT devices.
Together, these products and services can provide a very high degree of Service Assurance.
The combination of the ability to monitor across all of these components with the ability to act on
threats allows us to nullify the impacts that cyber threats typically have in a networked
environment. This means service can be assured so that you continue to do business with little
to no interruption from threat actors, rogue devices, insider threats, misconfigured security and
others.
To show how analytics at the edge and cybersecurity protection can increase levels of visibility
for business operations, Intel and its partners implemented an edge-IoT reference architecture
that uses Splunk Analytics to aggregate platform telemetry data from the Dell EMC VEP4600,
along with NFVI OS telemetry from ADVA Ensemble Connector and application data from the
Fortinet FortiGate vfirewall. Intuitus provided cybersecurity continuous diagnostics and
mitigation services.
Service assurance was demonstrated at the DBM3 conference in the following manner as
shown in the above picture.
User story 3 showcases Intent-Based Micro-Segmentation, i.e. the detection of a security threat
46
(i.e. a robotic arm infected with malware), quarantining the infected endpoint, and bringing the
infected endpoint back to the trust of the network gradually, as follows. Intuitus SMA is
continuously monitoring network traffic looking of anomalies. When a particular endpoint is
suspected to have been attacked, Intuitus notifies Splunk of the anomaly. Splunk instructs Adva
’s Ensemble Connector Networking OS to move the infected endpoint from the green, trusted
zone to the red, untrusted zone, thereby quarantining the endpoint that was attacked. Following
the removal of the malware, Intuitus instructs Ensemble Connector, through Splunk, to move the
endpoint to the yellow zone. Finally, after the endpoint has regained the trust of the network,
the endpoint is moved to the green, trusted zone.
Separately, remediation of an attack on the Fortinet FortiGate vfirewall running on the uCPE is
demonstrated. A DoS attack is simulated by an event log being pushed to Splunk. Splunk
determines that a new firewall rule, i.e., a source MAC addresses blacklist, must be created in
order to respond to the attack. Splunk pushes the new rule back to FortiGate, which
implements it, thereby thwarting the DoS attack. Splunk continues to monitor the firewall to
determine the impact of this rule.
Also showcased in this Catalyst is Intel’s ‘platform health insights’ report, which converts fine
grained platform telemetry available from the Dell EMC VEP4600 uCPE into networking and
operational insights that Splunk Analytics can use to influence the behavior of MANO and SDN
controllers. This health insights report, which looks at memory, storage, network interface and
processor availability, can be used to give the platform view of a broader service assurance
story.
4.12 Secure Supply Chain

The Secure Supply Chain initiative is fundamental to all Industry 4.0 and Smart X scenarios. It
forms the part of the Smart Infrastructure needed for the secure and zero-touch delivery,
deployment and management of devices and services for all Industry 4.0 and Smart X
scenarios. [Other examples of Smart Infrastructure are Data Hubs, Cloud and Edge compute.
The market size of global supply chain management was $15.8bn in 2019 and predicted to
reach $37.4bn by 2027 [Allied Market Research], however, the supply chain is still troubled by
issues such as theft, fraud, loss, damage and delays.
The DBM Catalyst secure supply chain initiative is actively addressing and mitigating against
these issues by stitching together a number of ecosystem, distributed ledger and zero-touch
technologies and will deliver the maximum growth for the supply chain business and the
Industry 4.0 and Smart X ecosystems.
As such this work delivers a Smart Infrastructure which enables any of the industry and Smart X
verticals to deploy and manage their industry vertical control systems and Artificial Intelligence
on top.
In Phase I and 2 of the DBM Catalyst, our focus wasn’t on the secure supply chain but on
enabling secure zero-touch deployment of devices; enabling a frictionless ecosystem of
business partners; and providing an ecosystem-wide plug and play environment for product
managers. In these earlier phases, we felt that these three capabilities would form the basis of a
secure supply chain, but we knew that there were gaps in our solution that needed to be
addressed in this phase.
47
So, what have we built in the phase, what’s new and how does it meet the requirements for a
global and end-to-end secure supply chain? The main solution components are either
production-grade or already live products. Our innovation has centered on researching and
bringing these components together in a way to overcome current secure supply chain and IoT
business problems.
4.13 Single Sign On (SSO) and Identity Management

Ensuring that only appropriately credentialed users have access to specified resources and
maintaining it over the employment lifecycle of an employee, contractor, or group is a
challenging undertaking even within the bounds of a single enterprise. When multiple
enterprises are involved, as is the case with the DBM, the complexity increases exponentially.
There are examples in the industry where it could take weeks or months to onboard a single
contractor into an organization. The DBM catalyst provides a solution to reduce the friction in
this process: MVine.
MVine Identity Broker (see picture below) solves the issues faced with multiple heterogeneous
user stores or cross domain user provisioning by connecting multiple Identity Providers (IdPs)
and Service Providers (SPs) via a SAML2 IdP proxy, primarily for AFG-external solutions (tier
4). It is the perfect solution for businesses with complex user identity and application
management requirements that span multiple business units, departments, and partners.
MVine tackles the whole set of use cases that arise from employees in one enterprise providing
service to employees or customers of another enterprise.
MVine’s Identity and Access Management capability offers enterprises the ability to securely
access applications outside the firewall using their own identity store and for their clients and/or
partners to access your applications using their own identity store:
48
• Connect Multiple IdPs and SPs – Mvine solves the issues faced with multiple
heterogeneous user stores or cross domain user provisioning by connecting multiple
Identity Providers (IdPs) and Service Providers (SPs) via a SAML2 IdP proxy. The
perfect solution for businesses with complex user identity and application management
requirements that span multiple business units, departments and partners.
• No Virtual or Hybrid Identity Stores – Mvine eliminates the need for a combined directory
of all identity data. No need for a hybrid, virtual or another user directory with all of its
integration, latency and scalability challenges.
• No Admin or User Passwords Seen or Stored – Security & privacy are enhanced - you
no longer have to share your LDAP or AD credentials, removing your responsibility to
store your partners' user identities.
• Mvine also connects legacy web applications via an advanced SP proxy, so you can
leverage old software investments.
MVine’s Collaboration Portal allows users and customers from multiple enterprises to
collaborate safely and securely:
• Unlimited special interest groups supported by social collaboration tools.

• Establish access rights by role and selectively delegate admin privileges.
• Simple and flexible directory integration with on-boarding services.
• Real-time business intelligence supports specified governance policies and provides
valuable user activity insights.
• Integrated with multiple back-end systems, to enrich business relationships with live
data.
4.14 Cyber Security as a Service

Intuitus Corp. provides key elements of the DBM Smart Infrastructure to support
automated cybersecurity threat detection and mitigation. The Intuitus approach to cybersecurity
is well aligned with the DBM vision to make the configuration and provisioning of underlying
services, and continuing operations, as seamless as possible.
Cyber terrorists and state actors are waging a relentless war, and all of us have become
unwilling combatants. According to a late 2019 report, it takes a business on average 279 days
to identify a serious cybersecurity breach. No wonder then, that ransomware damages are
expected to reach $6 Trillion worldwide by 2021. This is despite the fact that the cybersecurity
marketplace is expansive, and customers have a wide variety of vendors and options. Too
many solutions, not enough integration or automation, and a shortage of skills have caused
huge alert backlogs and weakened protections for organizations.
Built on core software deployed by Boeing to secure some of the nation’s most critical assets for
decades, the Intuitus automated cybersecurity threat detection and mitigation solution can
eliminate threat backlogs and dramatically improve an organization's security posture quickly.
Unlike competitors, Intuitus Managed Detection and Response (MDR) comes as a fully pre-
integrated solution, including all the products, processes, and people, that can be deployed
within hours on a fully outsourced basis, providing great value and convenience. Being highly
automated, it provides continuous diagnostics and automated mitigation to keep networks
secure at a fraction of the cost of other vendors.
The cybersecurity marketplace has a litany of tools for action-oriented approaches to securing
your business, but the elements of an outcome-oriented approach are simple. To detect attacks
49
early and thwart breaches before they happen, at a minimum, the following elements need to be
in place:
● Instrumentation of the organization's unique network segments and key host systems to
capture all activity.
● Automated intelligent procedures to detect off-pattern and nefarious activity early.
● A security operations center (SOC) staffed 24/7 by trained cybersecurity analysts who
can monitor unusual activity for possible breaches and employ other proactive measures
such as threat-hunting.
● An incident response team and plan that can rapidly implement counter-measures for
any detected nefarious activity.
● Continuous ongoing vigilance and training within the organization aimed at preventing
infiltration.
Intuitus’s solution can also be categorized as SECaaS (Security-as-a-Service) or SOCaaS

(Security Operations Center-as-a-Service) depending on its deployment model. Intuitus has
developed highly sophisticated security management appliances that work in tandem with
Intuitus’s global SOC based on this unified threat correlation technology. Intuitus’s operations
are conducted by a formidable team of cybercrime fighters, many of them veterans, dedicated to
making the world safer from cyberattacks, 24/7/365
Intuitus cybersecurity defense analysts and consultants can also provide comprehensive
support to set up incident response plans and in all matters relating to cybersecurity
governance, risk, and compliance.
Intuitus can eliminate a lot of costs and headaches while at the same time providing an
outcome-based approach (as opposed to procedure-based) to cybersecurity and cyber-physical
systems security. At the end of the day, it does not matter that your employees were trained in
cybersecurity or that you followed procedures - all it takes is one weak link for hackers or
insiders to exploit your network. With Intuitus, you will be alerted immediately, and cyber
defense experts will help you respond effectively before any lasting damage can be done. The
Intuitus methodology is so thorough that if you want to prosecute the perpetrators or provide
information to Law Enforcement, all of the forensic evidence is preserved.
50
The latest innovation from Intuitus is an improvement on MDR, called Continuous
Diagnostics and Automatic Mitigation (CDAM), which automatically mitigates threats on a near-
real-time basis while coordinating with highly-trained cyber defense analysts from Intuitus. By
implementing MDR with CDAM, an organization’s security posture can be transformed to a
proactive, active cyber defense stance very quickly, in a matter of days or weeks depending on
the complexity of the networks.
5 DBM Layers
The Digital Business Marketplace can be explained with two different layers of
interaction as captured below.
The Digital Trading Ecosystem (DTE) Layer encompass the partner ecosystem lead by a
client facing partner, a promoter of the ecosystem. This partner brings together the other
partners to bundle offerings to create solutions for Industry challenges. The other partners could
be Device manufacturers, distributors or another Marketplace.
The Service and Resource (SAR) Control Layer caters to the hardware order fulfillments at
the industry specific corporate sites like Factory, Theatre etc., The software services are
enabled across areas of cloud to set up infrastructure, connectivity, device onboarding,
authentication etc. Every partner offering a service, as part of the bunded offering will be
responsible for enabling their portion of the order.
5.1 Architecture
The DBM3 Architecture hosts a Digital Experience layer at the top with Customer facing
Storefront developed by Accenture. Customer engagement, product catalog management,
51
bundling the services to create and show case value are some of its responsibilities.
The orders are managed by Infonova- A Digital Business Platform by Bearing Point, at the
backend of the store. Partner-Tenant management, Order Management, Pricing controls, Billing
and settlement are some of the functions The bundled order is further managed at the
Orchestration Layer using TMF standard APIs, where the orders are split and sent from
various partners whose services are part of the bundle. Various partner tenants like
connectivity, supply chain, IoT Solutions etc. are triggered for fulfillment.
5.2 Store Front Layer

The Internal implementation of white-labeled platform asset leverages native cloud
capabilities, designed to scale and provided as a service. The DBM Store front is an MVP,
offers a flexible solution. The microservices layer manages various industry vertical offerings.
A simple architecture of the Storefront is depicted as above. Integration with downstream
52
systems like Infonova is managed over standard TMF APIs.
The services configurations are managed in Infonova, As part of the customer journey, various
selections made by the customer are captured in a JSON and mapped accordingly to match the
services in Infonova. The microservices from StoreFront communicates to Infonova to fetch
price and other details to display on the StoreFront.
Any change of price or any product information by the partner, will reflect on the StoreFront as
the information is fetched in real time to display.
StoreFront can communicate with other systems and manage the product mapping. In DBM3,
the SD WAN Services are triggered by the storefront for spinning a new instance. The Micro
service calls the Ansible Tower, to map the requested service and then trigger the spinning of
new instance in Nokia Nuage.
5.3 Orchestration
The DBM Ecosystem host multiple partners and each partner is a tenant in the background,
which host their own offerings along with their partner’s offerings.
All the partner tenants roll up to a customer facing tenant, leveraging the Multi-tenant
functionality of Infonova. From here, the services are made available in the StoreFront for the
customer.
The product catalog is managed to be in sync with all the partners, on the other side, when an
order is received the order is split as per services in the order and sent to the corresponding
tenant for fulfilment. Infonova leverages the standard TMF APIs to communicate with all its
tenants.
When the customer facing partner sells the services, the service partner automatically receive
the orders for those services and the Partner Orchestration orchestrates the services to the
service layer. The integrated interfaces enables seamless service activations of own services
and that of the partners.
53
54
6 Lessons Learnt
In 2018, MIT’s Digital team, Prof Geoff Parker wrote: “Firms are likely to deploy ‘platform
enabling platform’ technologies that help to create horizontal linkages across their vertical
businesses. We can expect to see more and more businesses adopting such technology as
they seek to digitalise their global business operations.”
The DBM is a realization of Prof Parker’s articulation.
However, innovation is a very challenging process. Innovation is naturally rejected by

corporations – Kodak is the world’s most known example. Geoffrey Moore presented the
reasons for this in various books and in presentations, such as : Zone to Win - Organizing to
Compete in an Age of Disruption.
The DBM team have benefited from the neutral environment of the TM Forum catalyst program
which allows a team to form and storm. The catalyst environment allows for the team to adopt a
democratic approach and a level playing field so that from the world’s smallest to the world’s
largest companies, be they traditional companies, digital platform players or hyperscalers …
they can all contribute to the exploration and innovation to establish a world beating partnering
ecosystem.
As a consequence, the DBM have determined that the best way to maintain this ecosystem
ethos, is to establish a long-run DBM program under a TM Forum Charter to support ecosystem
contracted delivery, leveraging TM Forum’s Open Digital Lab. This will persist the realization
that developing a partnering ecosystem needs a neutral environment to nurture the level playing
field and democracy required to deliver such partnerships.
55
7 Coming up next for DBM
The TM Forum Catalyst program is all about enabling innovation and rapid prototyping. It is
also about preparing new solutions to meet Champions’ needs – and sometimes Champions
take a catalyst to production to support market activities.
As with all innovation programs, probably only 1% make it through to productization.
The DBM team have discussed the future of the solution. Several of the Champions have
indicated their intent to take DBM to market.
The flexibility and speed to market DBM provides is very clear. The business impacts and the
technological innovation is world class. In a production scenario, any organization which joins
the DBM has the certainty that they can choose who they partner with and what they wish to
trade – with the certainty that whatever they sell … they will also be able to bill correctly (which
is not the case with traditional pre-digital platform systems).
In parallel and as the DBM team stays alert to the Champions’ potential contracts, the DBM
team are preparing to submit contributions spanning the TM Forum Frameworx, articulating how
the DBM blueprint details, APIs used and other assets created contribute to the TM Forum
Frameworx.
CONTRIBUTION – “Outstanding Contribution Award Submission”
ODA / ODF Other - i.e Report,

Best Practices OPEN APIs Use Cases
Assets Catalyst Whitepapers
Please insert
Please insert the Please insert Please insert Please insert the Jira
the Jira
Jira contribution the Jira the Jira contribution link /
contribution
link contribution link contribution link plugged in document.
link
Will include...
Will
Definitions, Will include...
include...
criteria, blueprint Corda, IOTA &
ODA/ODF Will include...
and minimal Others Open Will include...
additions / DBM whitepaper,
capabilities API’s enabling All horizontal
amendments including a level 1 of all
required for any the secure and vertical high
to meet the DBM III
company supply chain level UC’s
DBM deliverables
wishing to join and frictionless
ecosystem
the DBM trading for DBM
enablement
ecosystem
The DBM team have also determined to establish a long-run DBM program under a TM Forum
Charter to support ecosystem contracted delivery, leveraging TM Forum’s Open Digital Lab.
This will persist the realization that developing a partnering ecosystem needs a neutral
environment to nurture the level playing field and democracy required to deliver such
partnerships.
The DBM team with AWS guidance are also planning to evolve and demonstrate aspects of the
catalyst at AWS re:Invent 2020.
56
8 Appendix
8.1 Partner profiles in alphabetical order
Accenture
Accenture is a leading global professional services company, providing a broad range of
services in strategy and consulting, interactive, technology and operations, with digital
capabilities across all these services. A strong foothold in Telcom, engaged with 19 of 20 top
Global Telcos.
Agile Fractal Grid

The Agile Fractal Grid is a Multi Service Operator that provides infrastructure deployed in fractal
node patterns for combined distributed power, 4/5 G broadband communications, edge
computing, and cyber enclaves. It is a distributor of partner digital services over these new
infrastructural deployments.
AWS
Amazon Web Services (AWS) is a subsidiary of Amazon providing on-demand cloud computing
platforms and APIs. These cloud computing web services provide a variety of basic abstract
technical infrastructure and distributed computing building blocks and tools. One of these
services is Amazon Elastic Compute Cloud (EC2), which allows users to have at their disposal a
virtual cluster of computers, available all the time, through the Internet.
BearingPoint//Beyond
BearingPoint//Beyond is a SaaS-based BSS and digital platform provider.
Our Infonova Digital Business & Partnering Platform enables organizations to reinvent their own
business model, providing their customers a seamless experience across all their existing
portfolios offerings.
Simultaneously, Infonova also enables rapid onboarding of new offerings and solution creation
via frictionless partnering and trading with other 3rd party companies creating growth with new
revenue streams – enabling each organization to run their own marketplace and simultaneously
participate in a global marketplace of marketplaces.
Beautiful Ones
Beautiful Ones offers a multilingual tablet guide rental service at cultural tourism facilities such
as theatres and museums for supporting the viewing of people with hearing difficulties and
foreign tourists. We will accelerate the development of this business toward the Olympics and
the Paralympic in Tokyo.
BT
BT Group PLC provides communication services and solutions. The Company offers networked
IT services globally, local, national, and international telecommunications services for use at
home, work, and on the move, broadband, TV, and Internet products and services. BT Group
consists of four customer facing units: Consumer, Enterprise, Global, and Openreach.
Chunghwa Telecom
Chunghwa Telecom is the largest telecommunication service provider in Taiwan. It offers fixed
line services, mobile services, broadband access service, and Internet service. The company
also provides information and communication technology services to corporate customers.
57
Digiglu
The Digital Economy provides the opportunity to businesses to establish new business models
based on friction-less interaction with partners across digital ecosystems. Leveraging these
opportunities creates new sustainable revenue streams and exponential growth. Digital
transformation and the facilitation of digital business models usually means embarking to
unknown territory and a high level of commercial and technical uncertainty - digiglu ltd. helps to
mitigate these risks by digital experimentation and continuous improvement. Digital business
models are based on distributed business capabilities and data - digiglu ltd. provides technology
to create best-in-class friction-less digital business operation.
Digital Twin
Digital Twin Consortium is a global ecosystem of users who are driving best practices for digital
twin usage and defining requirements for new digital twin standards.
Etisalat
Etisalat is a multinational Emirati based telecommunications services provider, currently
operating in 15 countries across Asia, the Middle East and Africa. Some of the Internet services
for home users that Etisalat offers include - 3G,4G,Broadband,Prepaid and post-paid dialup
Internet access, Cloud Gaming services.
Heritage International
Heritage AG International is a real estate development services company, Heritage AG and a
federation of infrastructure enterprises are executing a project to develop and deliver 15,000
housing units near Accra, Ghana.
Intel
Intel is an industry leader, creating world-changing technology that enables global progress and
enriches lives. Inspired by Moore’s Law, we continuously work to advance the design and
manufacturing of semiconductors to help address our customers’ greatest challenges. By
embedding intelligence in the cloud, network, edge and every kind of computing device, we
unleash the potential of data to transform business and society for the better. To learn more
about Intel’s innovations, go to newsroom.intel.com and intel.com.
Intuitus Corp.
Intuitus detects and thwarts cyber-attacks on customer networks proactively. Unlike
competitors, our managed security service is a fully self-contained solution to deploy automated
defense-grade cybersecurity rapidly at a very affordable price. Intuitus provides continuous
detection and automated mitigation so threats can be eradicated under the supervision of our
highly trained cyber-defense analysts before they can do any damage.
IoT Lab
IoT Lab (www.iotlab.com) is an international platform of services for the Internet of Things (IoT)
headquartered in Geneva with expertise in IoT, interoperability, and data protection. Born from
the European research program, IoT Lab supports technology transfer from the research
community to the industry, standardization, and the SDGs. It aims at transforming industrial
challenges into reliable, interoperable, efficient and scalable solutions. With its testbed
infrastructure, IoT Lab provides a one-stop-shop for developing, assessing, selecting, planning
and deploying IoT,- from research to heterogeneous systems integration and large scale
exploitation. Delivering data protection by design solutions complying with Euro privacy
standard.
IOTA
58
The IOTA Foundation is a not-for-profit organization driven by the mission of developing and
standardizing a new generation of Distributed Ledger Technologies (DLTs). The IOTA Tangle is
a ledger for the Internet of Things, designed to be a trust layer for secure sharing of value and
data. The foundation teams focus on research, technology development and adoption in
different verticals and horizontal domains, including supply chains, automotive and
telecommunication industry.
Maxbyte
Maxbyte Technologies Private Limited is a smart manufacturing solutions provider with Products
and Services enable digital engineering, operations and services to improve productivity,
improve quality, reduce cost and help towards eco-friendly environment. Maxbyte Products and
Services provide an end to end digital technology solutions from sensors, communication
gateways, cloud, SaaS applications and analytics to help companies undergo their digital
transformation journey smooth and successful.
Mvine
Mvine Ltd is an established British SME headquartered in London and delivers next generation
platforms that power the digital economy. Its primary line of business is authoring and selling
Cyber-Secure Platforms for Collaboration Portals and for Identity Management as well as
delivering cloud support services. Mvine is a Crown Commercial Service (CCS) Supplier and
has listings on Digital Marketplace G-Cloud framework. Information confidentiality, integrity,
availability and security is at the heart of everything we do. Our business complies to numerous
standards; among the better known ones is Cyber Essentials.
NTT
As “Your Value Partner,” NTT Group will aim to resolve social issues by means of advancing
digital transformation through its business activities under “Society 5.0” with SDG contribution,
by utilizing its various management resources and capabilities, such as R&D, ICT infrastructure
and personnel, while also collaborating with its partners.
R3
R3 is an enterprise blockchain software firm working with a broad ecosystem of more than 300
members and partners across multiple industries from both the private and public sectors to
develop on Corda, its open-source blockchain platform, and Corda Enterprise, a commercial
version of Corda for enterprise usage.
R3’s global team of over 200 professionals in 14 countries is supported by over 2,000 technology,
financial, and legal experts drawn from its global member base.
Stratus
Stratus Technologies, Inc. is a major producer of fault tolerant computer servers and software.
Stratus Technologies’ solutions enable rapid deployment of always-on infrastructures, from
enterprise servers to clouds, without any changes to your applications. Our products (software
and servers) combined with our people, enable us to prevent downtime before it occurs,
ensuring uninterrupted 24 x 7 x 365 performance of essential business operations.
Tantallo
Telenor
Telenor Group is a leading telecommunications company across the Nordics and Asia.
Connectivity has been Telenor’s domain for more than 160 years, and our purpose is to connect
our customers to what matters most.
59
Telus
TELUS is Canada’s fastest-growing national telecommunications company, TELUS provides a
wide range of communications products and services, including wireless, data, Internet protocol
(IP), voice, television, entertainment and video, and is Canada's largest healthcare IT provider.
Ulster University
Ulster University is Northern Ireland’s civic university and our multi-campus dynamic means that
although we are international in our outlook, we have our roots firmly embedded in the local
community. Our civic contribution is evident through our pioneering research, our inspiring
teaching delivery, our focus on employability and our collaboration with industry partners.
University of Surrey
The University of Surrey is one of the UK’s top professional, scientific and technological
universities. Surrey has a world-class profile and a leading reputation in teaching and research.
It offers students a unique combination of high academic standards, employment success and a
prime location in beautiful surroundings, yet with ease of access to London.
VETRO
VETRO FiberMap is headquartered in Portland, is committed to serving broadband providers,
and becoming an integral part of the community building the next internet infrastructure. VERTO
FiberMap is an innovative new FTTx network mapping platform designed specifically to meet
the needs of small and mid-sized ISPs and community fiber networks. Now you can access and
manage all of your critical data in one place. Secure, scalable, affordable, and easy to use.
60

Digital Business Marketplace Catalyst - Whitepaper V1.1 PDF

Uploaded by

Copyright:

Available Formats

Digital Business Marketplace Catalyst - Whitepaper V1.1 PDF

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Digital Business Marketplace Catalyst - Whitepaper V1.1 PDF

Uploaded by

Copyright:

Available Formats

Digital Business Marketplace III

4 Smart Infrastructure ................................................................................................. 33

• Oct 2020, DTWS

Scope of this Document

1.1 The Journey to DBM III

However, traditional business, operations, partnering, customer on-boarding and solution

2.1 The Phase I & II Foundations

2.2 Phase III Initiatives

2.3 Smart Infrastructure

2.4 What has changed with DBM: “Before and After”?

The overall BMC illustrates the marketplace of marketplaces scenario:

New Accra, Ghana Model

Agile Fractal Grid – John Reynolds, CEO

Maxbyte – Ramshankar CS, CEO

3.1 Smart Manufacturing

The three use cases explored are

3.1.1 The Factory Security and Service Assurance User Story

As the CISO for my factory,

I need to be able to order security and service assurance services,

so that I can identify and mitigate security threats automatically.

It provides an approach to self-healing networks, leveraging forensic real time techniques to

3.1.1.1 Offering Architecture

3.1.2 Partner Value Proposition

As the factory customer,

As the smart factory customer,

I need to be able to order and configure a flexible smart production line,

3.2.1 Smart Grid Ecosystem Architecture

3.2.2 Partner Value Proposition

3.2.3 USE CASES

3.3.1 Business Architecture

3.3.2 Partner Value Proposition

BearingPoint//Beyond - provides a SaaS-based BSS as digital business and partnering

3.3.3 USE CASES

3.4.1 Business Architecture

3.4.2 Partner Value Proposition

Intel SDO because it supports chip-to-management platform encrypted channels, it enables

3.4.3 USE CASES

4.1 Multi-Partner Ecosystem Platform

The capability gives customers,

4.3 Zero-Touch Orchestration (ZTO)

4.4 Distributed Ledger Technology (DLT)

An Example, Consider the Security as a Service (SECaaS) and Service Assurance

The DBM3 leverages Accenture’s expertise as a Technology partner in creating a tailored

Few additional responsibilities of the storefront include,

4.6 Digital Twins

4.7 Communications Access Services

4.8 Cloud and Edge Computing

4.9 Continuous Operations

Organizations practicing DevSecOps are capable of being highly responsive to changing

4.10 5G Network Slicing

4.11 Ecosystem & Service Assurance

4.12 Secure Supply Chain

4.13 Single Sign On (SSO) and Identity Management

• Unlimited special interest groups supported by social collaboration tools.

4.14 Cyber Security as a Service

Intuitus’s solution can also be categorized as SECaaS (Security-as-a-Service) or SOCaaS

5.2 Store Front Layer

A simple architecture of the Storefront is depicted as above. Integration with downstream

The DBM is a realization of Prof Parker’s articulation.