Cyber-Physical System Design Automation: A Tale of Platforms and - - PowerPoint PPT Presentation
From Electronic Design Automation to Cyber-Physical System Design Automation: A Tale of Platforms and Contracts Pierluigi Nuzzo Ming Hsieh Department of Electrical and Computer Engineering University of Southern California, Los Angeles
Ming Hsieh Department of Electrical and Computer Engineering University of Southern California, Los Angeles nuzzo@usc.edu
International Symposium on Physical Design, San Francisco, April 16, 2019
Pierluigi Nuzzo, USC
2
Pierluigi Nuzzo, USC
3
Courtesy: A. Sangiovanni-Vincentelli
Pierluigi Nuzzo, USC
4
Pierluigi Nuzzo, USC
“Let’s Get Physical: Computer Science Meets Systems,” ETAPS Workshop, 2014
Cost Optimization
Data & Control Thermal Management
Size/Power Optimization
System Functional Specification
Subsystem Design Component Design System Architecture Verification & Validation (V&V) Component Testing Subsystem Testing
Power
Physical system (plant) Embedded system (computation) Networking Sensors Actuators
Controller
PTOLEMY II VERILOG VHDL
Conventional V&V techniques do not scale to highly complex or adaptable systems Experienced architects must rely on accrued knowledge and heuristics to take risky decisions
5 A large number of poorly integrated languages and tools
Pierluigi Nuzzo, USC
6
d+e b+h t4’ at2+c t1t3+fgh b’ h’ a d’ e’ g f c inv(1) nand2(2) nor(2) aoi21 (3) xor (5) nand3 (3)
nor3 (3) F f g d e h b a c nand3(3)
and2(3) inv(1) nand2(2)
architectural level netlists (Boolean logic, NAND2 gate)
Courtesy: A. Sangiovanni-Vincentelli
Pierluigi Nuzzo, USC
7
LNA LNA
Networks Sensors Actuators Processors Controllers Performance
Safety Reliability
[A. Sangiovanni-Vincentelli and A. Ferrari, ‘90]
Pierluigi Nuzzo, USC
8
Platform Instance Platform Design- Space Export Platform (Architectural) Space Platform Instance Function Instance Function Space Mapped Platform (Architectural) Space Function Space Platform Instance Function Instance Mapped
Automotive Smart Buildings Synthetic Biology ASV Triangles Mixed-Signal Systems on Chip Avionics
Pierluigi Nuzzo, USC
9
LNA LNA
Networks Sensors Actuators Processors Controllers Performance
Safety Reliability
Pierluigi Nuzzo, USC
10
Software Engineering and Verification System Design
Component Environment
Pierluigi Nuzzo, USC
11
System Requirements Requirement Component Req. Component Design System Design Component Design Component Design Component Req. Component Req.
Pierluigi Nuzzo, USC
12
Think about the role
physical design
Pierluigi Nuzzo, USC
13
Pierluigi Nuzzo, USC
Design architecture, i.e., the set of
Generators Batteries AC Buses DC Buses Rectifiers Transformers Transformers & Rectifiers Contactors Loads and their interconnections
… and the control algorithm under safety, reliability and real-time performance requirements Typical requirement: The probability that a critical bus is unpowered for more than 70 ms shall be smaller than 10-9… …less than 1 failure per 100,000 years
Single Line Diagram modified from Honeywell Patent “A Contract-Based Methodology for Aircraft Electric Power System Design,” IEEE Access, 2014
14
Loads “A Platform-Based Methodology with Contracts and Related Tools for the Design of Cyber-Physcal Systems,”
Pierluigi Nuzzo, USC
15 Verification and Simulation-Based Design Space Exploration Component and Control Design Lower-level Implementation Architecture Design
Cver/sim CC,syn
Top-level Specification
CA,syn
Component and Contract Library Discrete Event Hybrid Continuous Time and Hybrid Static/ Extra-functional
simultaneously powered by more than one AC source.
system shall provide power with the following characteristics: 115 +/- 5 V (amplitude) and 400 Hz (frequency) for AC loads and 28 +/-2 V for DC loads.
essential load must be less than 10-9 during a mission.
unpowered for more than 70 ms.
“Methodology and Tools for Next Generation Cyber-Physical Systems: The iCyPhy Approach,” P. Nuzzo, A. Sangiovanni- Vincentelli, R. Murray, INCOSE 2015
Pierluigi Nuzzo, USC
16
Inconsistent when time is less than 20 ms
“CHASE: Contract-Based Requirement Engineering for Cyber-Physical System Design,” P. Nuzzo et al., DATE, 2018
Application space Implementation space (library)
Optimization (MILP) Final architecture (topology, routing, mapping)
“Optimized Selection of Reliable and Cost-Effective Cyber-Physical System Architectures,” DATE’14
Dreamliner-like power system based on Honeywell patent reproduced in ~4 min
Architecture exploration of aircraft air management systems
“A Mixed Discrete-Continuous Optimization Scheme for Cyber-Physical System Architecture Exploration,” ICCAD’15
Pierluigi Nuzzo, USC
18
Boolean Constraints Convex Constraints Convex Optimization Mixed Integer Programming SAT + Convex SAT Solvers SMT Solvers
Controller Synthesis for Robotic Motion Planning [CDC’16, HSCC’17, CDC’17, ICRA’19] Secure State Estimation [ICCPS’16, TAC 17, TECS 18]
Pierluigi Nuzzo, USC
Expressed in Stochastic Signal Temporal Logic (StSTL) to support probabilistic constraints Balance expressiveness with tractability of verification and synthesis “The battery charge level B shall not be less than 0.3 with probability larger than or equal to 0.95”
19
AC Bus 1 AC Bus 2 GEN 1 GEN 3 GEN 2 TRU TRU DC Bus 1
Sheddable DC Loads 1 Non-sheddable DC Loads 1
Battery 1 DC Bus 2
Sheddable DC Loads 2 Non-sheddable DC Loads 2
Battery 2 C1 C3 C2 C4 C5 C6 C7 C8 C9 C10 C11
Battery charge versus time (50 simulations) Stochastic Model of Aircraft Power System [TECS 19] Probabilistic Environment Model
Pierluigi Nuzzo, USC
20
21