mixed criticality systems based on time triggered
play

Mixed-Criticality Systems Based on Time- Triggered Ethernet with - PowerPoint PPT Presentation

Dec 13, 2023 •208 likes •433 views

Mixed-Criticality Systems Based on Time- Triggered Ethernet with Multiple Ring Topologies University of Siegen Mohammed Abuteir, Roman Obermaisser Naturwissenschaftlich-Technische Fakultt Department Elektrotechnik und Informatik / Embedded

  1. Mixed-Criticality Systems Based on Time- Triggered Ethernet with Multiple Ring Topologies University of Siegen Mohammed Abuteir, Roman Obermaisser Naturwissenschaftlich-Technische Fakultät Department Elektrotechnik und Informatik / Embedded Systems

  2. Mixed-Criticality Systems • Need for mixed-criticality systems due to pressing requirement to reduce the number of nodes and cables • Integration of functions with different importance and certification assurance levels on a shared computing platform • Validation of each subsystem to the respective criticality and modular certification Naturwissenschaftlich-Technische Fakultät 2 Department Elektrotechnik und Informatik / Embedded Systems

  3. Requirements for the Communication Network of Mixed-Criticality Systems • Timing Requirements – Fault-tolerant global time with high precision – Bounded latency and low jitter • Encapsulation and Fault Containment – Absence of interference and unintended side-effects due to integration – Fault containment using time and space partitioning – Foundation for modular certification • Heterogeneity of Mixed-Criticality Systems – Multiple assurance levels (e.g.,SIL1-4 in IEC61508,Class A-E in DO178B) – Different reliability and fault-tolerance requirements – Different timing models (e.g., periodic, sporadic and aperiodic activities) Naturwissenschaftlich-Technische Fakultät 3 Department Elektrotechnik und Informatik / Embedded Systems

  4. Real-Time Ethernet in Mixed-Criticality Systems • Avionics Full-Duplex Switched Ethernet (AFDX) – Rate-constrained virtual links and priorities – Bounded timing effects between virtual links • Time-Triggered Ethernet (TTE) – Time-triggered communication according to a static TDMA scheme – Contention with rate- constrained and best-effort communication resolved using timely blocking, shuffling or preemption Naturwissenschaftlich-Technische Fakultät 4 Department Elektrotechnik und Informatik / Embedded Systems

  5. Fault Assumptions • End systems, switches and physical links regarded as Fault Containment Regions (FCR) • Failure modes based on IEC61508-2 – Component crash – Link failures – Omission – Corruption – Delay – Babbling idiot – Masquerading • Single failure of an end system or detectably faulty behavior of switch Naturwissenschaftlich-Technische Fakultät 5 Department Elektrotechnik und Informatik / Embedded Systems

  6. System Model of Ring-Based Real-Time Ethernet Architecture • Non-redundant and redundant end-systems • Connection of end systems to switches in star topology • Interconnection of switches in ring topology • Interconnection of rings using peripheral switches End End End End System System System System 1.1 1.2 2.1 2.2 End End System System End Switch Switch 1.3 Switch Switch 1.1 1.2 1.7 System 2.1 2.2 2.3 Peripheral Switch 1 End Switch End Switch System Peripheral Switch Switch 1.4 1.3 System Switch 2 2.4 1.6 2.3 2.7 End System End End End End 2.6 System System System System 1.4 1.5 2.4 2.5 Naturwissenschaftlich-Technische Fakultät 6 Department Elektrotechnik und Informatik / Embedded Systems

  7. End Systems • Safety-critical end system – RC and TT messages on double channels – BE can exploit two channels for higher bandwidth – Connection to two switches • Non safety-critical end system – Non redundant channel to one switch – Support for replication of messages at first switch Naturwissenschaftlich-Technische Fakultät 7 Department Elektrotechnik und Informatik / Embedded Systems

  8. Conceptual Switch Model • Bridge forwards messages between ingress and egress queues • Schedule for time- triggered messages • Bandwidth Allocation Gap (BAG) and jitter for each virtual link • MAC layer and physical layer based on 802.1 and 802.3 Naturwissenschaftlich-Technische Fakultät 8 Department Elektrotechnik und Informatik / Embedded Systems

  9. Redundancy Management • Hides the path and latency of the redundant messages • Establishment of redundancy – Outgoing time-triggered and rate-constrained messages from non safety-critical end systems – First switch that meets rate-constrained or time- triggered traffic creates copies of an incoming message – Transmission using redundant paths of the ring • Fusion of redundant messages – Last switch of a message’s path to a non safety-critical end-system – Safety-critical end-systems fuse internally Naturwissenschaftlich-Technische Fakultät 9 Department Elektrotechnik und Informatik / Embedded Systems

  10. Redundancy Management (RM) Layer • Time-triggered Messages – RM layer interfaces with the time-triggered scheduling layer to hide the redundant paths and to perform the deduplication of time-triggered messages – RM layer checks the corresponding virtual-link buffer before the sending time and takes the decision to send on of the redundant time-triggered messages accordingly – Establishment of deterministic timing (e.g., no effect on timing due to an omission failure on a redundant channel) • Rate-constrained Redundancy Management Decision messages Redundant TT Message TT Message VL1 VL1 – Sequence number – first valid wins policy Naturwissenschaftlich-Technische Fakultät 10 Department Elektrotechnik und Informatik / Embedded Systems

  11. Error Detection and Containment • Error detection by MAC layer (e.g., CRC) • Time-triggered traffic – Reception from correct ingress port – Specified receiving window – Protection of receiving end systems and channels (e.g., babbling idiot, masquerading) – Dedicated guaranteed buffer capacity for different virtual links (and different criticalities) • Rate constrained traffic – Violation of BAG – Dedicated guaranteed buffer capacity • Best effort – Error detection and containment based on standard Ethernet – Spanning Tree Protocol Naturwissenschaftlich-Technische Fakultät 11 Department Elektrotechnik und Informatik / Embedded Systems

  12. End System End System • Fork layer maps Application layer messages to Application #1 Application #2 Application #n applications • Time-triggered clock Fork Layer layer transmits messages according to RC BE TT Shaper the schedule Priorty clock • Rate-constrained TTE controller shaper enforces BAG at end system MAC interface • TTE controller layer sends messages MAC Layer MAC Layer according to their Physical Layer Physical Layer priority Naturwissenschaftlich-Technische Fakultät 12 Department Elektrotechnik und Informatik / Embedded Systems

  13. Evaluation based on Simulation • TTEthernet simulation environment based on OPNET • Simulation building blocks for switches and end systems • Simulation of MAC and physical layer from previous work ES_ 1 ES_ 2 SW_1 SW_2 ES_ 7 Link #2 Link #6 Link #3 Link #5 ES_ 3 SW_4 SW_3 ES_ 6 Link #4 ES_ 5 ES_ 4 Naturwissenschaftlich-Technische Fakultät 13 Department Elektrotechnik und Informatik / Embedded Systems

  14. Example Scenario ES_ 1 ES_ 2 SW_1 SW_2 ES_ 7 Link #2 Link #6 Link #3 Link #5 ES_ 3 SW_4 SW_3 ES_ 6 Link #4 Naturwissenschaftlich-Technische Fakultät ES_ 5 ES_ 4 14 Department Elektrotechnik und Informatik / Embedded Systems

  15. Example ES_ 1 ES_ 2 SW_1 SW_2 ES_ 7 Link #2 Link #6 Link #3 Link #5 ES_ 3 SW_4 SW_3 ES_ 6 Link #4 ES_ 5 ES_ 4 Naturwissenschaftlich-Technische Fakultät 15 Department Elektrotechnik und Informatik / Embedded Systems

  16. Results (1) Babbling Idiot Omission Application Fault Free Case ID Sender Failure (ES3) Failure (SW3) Type Latency Jitter Latency Jitter Latency Jitter 1 App.1 ES 1 0,10 0,00 0,10 0,00 0,10 0,00 2 App.4 ES 1 1,02 0,00 1,02 0,00 1,02 0,00 3 App.7 ES 2 93,97 93,95 97,91 97,89 122,02 122,00 4 App.2 ES 3 134,05 126,00 Fault Injection 146,07 146,02 5 App.7 ES 3 155,19 155,14 Fault Injection 177,25 177,22 6 App.1 ES 4 0,09 0,00 0,09 0,00 0,09 0,00 7 App.2 ES 4 138,79 138,76 158,05 158,02 139,75 139,05 8 App.4 ES 4 2,03 0,00 2,03 0,00 2,03 0,00 9 App.5 ES 4 70,09 68,27 70,09 68,27 97,66 97,64 10 App.3 ES 5 5,07 0,00 5,07 0,00 5,07 0,00 11 App.5 ES 5 61,65 61,64 61,68 61,67 88,26 88,17 12 App.2 ES 6 132,10 132,05 138,81 138,76 100,16 100,13 13 App.6 ES 6 92,00 91,97 100,06 98,86 102,11 102,09 14 App.3 ES 7 0,01 0,00 0,01 0,00 0,01 0,00 15 App.6 ES 7 98,06 78,73 98,14 98,13 112,26 112,25 Naturwissenschaftlich-Technische Fakultät 16 Department Elektrotechnik und Informatik / Embedded Systems

  17. Results (2) Omission Link Delay Application ID Sender Failure (L2) Failure (L3) Failure (ES5) Type Latency Jitter Latency Jitter Latency Jitter 1 App.1 ES 1 0,10 0,00 0,10 0,00 0,10 0,00 2 App.4 ES 1 1,02 0,00 1,02 0,00 1,02 0,00 3 App.7 ES 2 119,91 119,89 90,01 89,99 93,97 93,95 4 App.2 ES 3 110,30 110,23 76,05 75,99 132,05 124,00 5 App.7 ES 3 151,39 151,37 151,16 151,14 155,19 155,14 6 App.1 ES 4 0,09 0,00 0,09 0,00 0,09 0,00 7 App.2 ES 4 138,79 138,76 142,19 141,85 166,07 166,03 8 App.4 ES 4 2,03 0,00 2,03 0,00 2,03 0,00 9 App.5 ES 4 70,09 68,27 71,05 69,04 70,08 68,26 10 App.3 ES 5 5,07 0,00 5,07 0,00 5,07 0,00 11 App.5 ES 5 57,89 57,88 65,68 65,67 161,65 161,64 12 App.2 ES 6 134,05 126,04 137,20 157,18 132,10 132,05 13 App.6 ES 6 92,00 91,97 96,00 95,98 100,05 100,02 14 App.3 ES 7 0,01 0,00 0,01 0,00 0,01 0,00 15 App.6 ES 7 97,09 88,38 78,09 78,03 98,06 78,73 Naturwissenschaftlich-Technische Fakultät 17 Department Elektrotechnik und Informatik / Embedded Systems

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Programming with Time for Mixed Criticality Systems Dagstuhl Seminar, March 16-20, 2015 Mixed

Programming with Time for Mixed Criticality Systems Dagstuhl Seminar, March 16-20, 2015 Mixed

Programming with Time for Mixed Criticality Systems Dagstuhl Seminar, March 16-20, 2015 Mixed Criticality on Multicore/Manycore Platforms David Broman Associate Professor, KTH Royal Institute of Technology Assistant Research Engineer,

202 views • 6 slides
Non Preemptive Scheduling of Periodic Mixed Criticality Real-Time Systems Jasdeep Singh, Luca

Non Preemptive Scheduling of Periodic Mixed Criticality Real-Time Systems Jasdeep Singh, Luca

Non Preemptive Scheduling of Periodic Mixed Criticality Real-Time Systems Jasdeep Singh, Luca Santinelli, Federico Reghenzani Konstantinos Bletsas, Zhishan Guo Outline Real-time systems Probabilistic Real-time systems Mixed

573 views • 11 slides
State-Based Mode Switching with Applications to Mixed-Criticality Systems Pontus Ekberg , Martin

State-Based Mode Switching with Applications to Mixed-Criticality Systems Pontus Ekberg , Martin

State-Based Mode Switching with Applications to Mixed-Criticality Systems Pontus Ekberg , Martin Stigge, Nan Guan & Wang Yi Uppsala University, Sweden WMC 2013 Mixed Criticality as Mode Switching At a switch between modes (e.g., lo to hi),

627 views • 48 slides
for Real-Time and Mixed Criticality Applications Author: Vittoriano Muttillo

for Real-Time and Mixed Criticality Applications Author: Vittoriano Muttillo

CPS Summer School 2017 Designing Cyber-Physical Systems From concepts to implementation System-Level HW/SW Co-Design Methodology for Real-Time and Mixed Criticality Applications Author: Vittoriano Muttillo

486 views • 7 slides
AdaptMC A Control-Theoretic Approach for Achieving Resilience in Mixed-Criticality Systems

AdaptMC A Control-Theoretic Approach for Achieving Resilience in Mixed-Criticality Systems

AdaptMC A Control-Theoretic Approach for Achieving Resilience in Mixed-Criticality Systems Alessandro V. Papadopoulos, Enrico Bini, Sanjoy Baruah, Alan Burns Embedded system ! 2 Mixed-criticality system C Each task has its Monitoring

456 views • 27 slides
Mixed Criticality Systems: Beyond Transient Faults Abhilash Thekkilakattil, Alan Burns, Radu

Mixed Criticality Systems: Beyond Transient Faults Abhilash Thekkilakattil, Alan Burns, Radu

Mixed Criticality Systems: Beyond Transient Faults Abhilash Thekkilakattil, Alan Burns, Radu Dobrin and Sasikumar Punnekkat Motivation and Contribution State of the art of mixed criticality scheduling mainly focuses on WCET overruns WCET

258 views • 23 slides
HEPSYCODE-RTMC: a Real-Time and Mixed Criticality Extensions for a System-Level HWSW Co-Design

HEPSYCODE-RTMC: a Real-Time and Mixed Criticality Extensions for a System-Level HWSW Co-Design

2st Italian Workshop on Embedded Systems (IWES 2017) HEPSYCODE-RTMC: a Real-Time and Mixed Criticality Extensions for a System-Level HWSW Co-Design Methodology Author: Vittoriano Muttillo , Vincenzo Stoico, Daniele Ciambrone, Giacomo Valente,

1.1k views • 52 slides
Mixed Criticality Systems view from the industry side MAXI M Cristia n Airb us Ope ra tio

Mixed Criticality Systems view from the industry side MAXI M Cristia n Airb us Ope ra tio

Mixed Criticality Systems view from the industry side MAXI M Cristia n Airb us Ope ra tio ns S.A.S Da g stuhl Se mina r - 27/ 03/ 2017 Criticality (notions) itic ality is a de sig na tio n o f the le ve l o f a ssura nc e Cr a g

287 views • 24 slides
A safety concept for a wind power mixed-criticality embedded system based on multicore

A safety concept for a wind power mixed-criticality embedded system based on multicore

A safety concept for a wind power mixed-criticality embedded system based on multicore partitioning Jon Perez, David Gonzalez, Salvador Trujillo Ton Trapman, Jose Miguel Garate Embedded Systems Group Software and Performance Ik4-IKERLAN

330 views • 6 slides
Real-Time Mixed-Criticality Wormhole Networks Leandro Soares Indrusiak Real-Time Systems Group

Real-Time Mixed-Criticality Wormhole Networks Leandro Soares Indrusiak Real-Time Systems Group

Leandro Soares Indrusiak Real-Time Mixed-Criticality Wormhole Networks Leandro Soares Indrusiak Real-Time Systems Group Department of Computer Science University of York United Kingdom 1 Real-Time Systems Group Leandro Soares Indrusiak

1.36k views • 101 slides
Mixed Criticality A Personal View Alan Burns Contents Some discussion on the notion of mixed

Mixed Criticality A Personal View Alan Burns Contents Some discussion on the notion of mixed

Mixed Criticality A Personal View Alan Burns Contents Some discussion on the notion of mixed criticality A brief overview of the literature An augmented system model Open issues (as I see it) What is Criticality A

568 views • 25 slides
A Practical Degradation Model for Mixed Criticality Systems Vijaya Kumar Sundar, Arvind Easwaran

A Practical Degradation Model for Mixed Criticality Systems Vijaya Kumar Sundar, Arvind Easwaran

A Practical Degradation Model for Mixed Criticality Systems Vijaya Kumar Sundar, Arvind Easwaran Nanyang Technological University (NTU), Singapore May 8, 2019 Research Outline Research Objective: A new degradation model for Mixed Criticality

1.02k views • 87 slides
mixed criticality systems (Experience from MultiPARTES, DREAMS and PROXIMA FP7) Dr. Jon Perez

mixed criticality systems (Experience from MultiPARTES, DREAMS and PROXIMA FP7) Dr. Jon Perez

Road to certification in multicore partitioned mixed criticality systems (Experience from MultiPARTES, DREAMS and PROXIMA FP7) Dr. Jon Perez Dr. Alfons Crespo November 04 th , 2014. Berlin. AUTOSAR Working Group Agenda Introduction

595 views • 31 slides
The Feasibility Analysis of Mixed-Criticality Systems Saravanan Ramanathan, Xiaozhe Gu, Arvind

The Feasibility Analysis of Mixed-Criticality Systems Saravanan Ramanathan, Xiaozhe Gu, Arvind

Motivation Open Problem Possible Solution Design Methodology The Feasibility Analysis of Mixed-Criticality Systems Saravanan Ramanathan, Xiaozhe Gu, Arvind Easwaran Nanyang Technological University, Singapore July 5, 2016 NTU RTSOPS2016 1

1.67k views • 18 slides
Mixed-Criticality Systems with Permitted Failure Probability Zhishan Guo , Luca Santinelli * , and

Mixed-Criticality Systems with Permitted Failure Probability Zhishan Guo , Luca Santinelli * , and

EDF Schedulability Analysis on Mixed-Criticality Systems with Permitted Failure Probability Zhishan Guo , Luca Santinelli * , and Kecheng Yang Department of Computer Science, UNC Chapel Hill *ONERA The French Aerospace Lab at Toulouse The

432 views • 42 slides
Guaranteeing some service upon mode switch in mixed-criticality systems Zhishan Guo Department

Guaranteeing some service upon mode switch in mixed-criticality systems Zhishan Guo Department

Guaranteeing some service upon mode switch in mixed-criticality systems Zhishan Guo Department of Computer Science, Missouri S&T Presented at Dagstuhl Seminar 17131 Mar. 28, 2017 MC & Vestals Interpretation MC: functionalities

570 views • 15 slides
Towards a Reliability-aware Design Flow for Kahn Process Networks on NoC-based Multiprocessors

Towards a Reliability-aware Design Flow for Kahn Process Networks on NoC-based Multiprocessors

Towards a Reliability-aware Design Flow for Kahn Process Networks on NoC-based Multiprocessors Onur Derin , Leandro Fiorin ALaRI, Faculty of Informatics, University of Lugano, Switzerland { derino,fiorin } @alari.ch L ubeck Feb 25, 2014

415 views • 27 slides
System Aware Cyber Security Barry M. Horowitz, PI University of Virginia November, 2012 System

System Aware Cyber Security Barry M. Horowitz, PI University of Virginia November, 2012 System

System Aware Cyber Security Barry M. Horowitz, PI University of Virginia November, 2012 System Aware Cyber Security Operates at the system application-layer , For security inside of the network and perimeter protection provided for the

164 views • 3 slides
Modernizing Miami- -Dade Dade s s Modernizing Miami Signal System Signal System

Modernizing Miami- -Dade Dade s s Modernizing Miami Signal System Signal System

Modernizing Miami- -Dade Dade s s Modernizing Miami Signal System Signal System Visits to Operational Sites Visits to Operational Sites Based on RFI response, PWD staff developed a list Based on RFI response, PWD staff developed a

554 views • 18 slides
A NonStop Kernel Outline Hardware and Fault Models NonStop Kernel Messages System bus Process

A NonStop Kernel Outline Hardware and Fault Models NonStop Kernel Messages System bus Process

442 views • 33 slides
BASE DESIGNS S YSTEMS I NTEGRITY AIR TO OPEN with AIR TO OPEN with PST PST

BASE DESIGNS S YSTEMS I NTEGRITY AIR TO OPEN with AIR TO OPEN with PST PST

SPSI S ERVICES P RODUCTS BASE DESIGNS S YSTEMS I NTEGRITY AIR TO OPEN with AIR TO OPEN with PST PST AIR TO CLO AIR TO CLOSE ESDV SE ESDV 1 AIR TO OPEN without PST AIR TO OPEN without PST CONTRO

353 views • 9 slides
Kinematic Design of Redundant Robotic Manipulators that are Optimally Fault Tolerant Presented

Kinematic Design of Redundant Robotic Manipulators that are Optimally Fault Tolerant Presented

Introduction Kinematics Fault Tolerance Goal 3R Planar 4R Planar To Spatial 4R Spatial 7R Spatial Conclusions Kinematic Design of Redundant Robotic Manipulators that are Optimally Fault Tolerant Presented by: Khaled M. Ben-Gharbia

1.11k views • 76 slides
Protocols The Glue for Applications Torben Hoffmann CTO @ Erlang Solutions

Protocols The Glue for Applications Torben Hoffmann CTO @ Erlang Solutions

Protocols The Glue for Applications Torben Hoffmann CTO @ Erlang Solutions torben.hoffmann@erlang-solutions.com @LeHoff Why are we here? Distributed Systems How likely is it that this will just work? source:

872 views • 51 slides
Vehicles Prof. Jzsef BOKOR, Vice President, Hungarian Academy of Sciences Hungarian Academy of

Vehicles Prof. Jzsef BOKOR, Vice President, Hungarian Academy of Sciences Hungarian Academy of

Control Theory of Autonomous Vehicles Prof. Jzsef BOKOR, Vice President, Hungarian Academy of Sciences Hungarian Academy of Sciences Institute for Computer Science and Control Hungarian Academy of Sciences MTA SZTAKI MTA SZTAKI is a

468 views • 22 slides

More recommend