Applying Multi-core and Virtualization to Industrial and Safety-Related Applications

Similar documents
THE RTOS AS THE ENGINE POWERING THE INTERNET OF THINGS

10 Steps to Virtualization

Bosch Rexroth* Innovates Sercos SoftMaster* for the Industrial PC Platform with the Intel Ethernet Controller I210

Innovating and Integrating for Communications and Storage

Real-Time Systems and Intel take industrial embedded systems to the next level

Data Center Energy Efficiency Using Intel Intelligent Power Node Manager and Intel Data Center Manager

Evolving Small Cells. Udayan Mukherjee Senior Principal Engineer and Director (Wireless Infrastructure)

Intel Cloud Builder Guide: Cloud Design and Deployment on Intel Platforms

LED Manager for Intel NUC

JUST WHAT THE DOCTOR ORDERED: A SOLUTION FOR SMARTER THERAPEUTIC DEVICES PLACEHOLDER IMAGE INNOVATORS START HERE.

Intel Cache Acceleration Software for Windows* Workstation

FLUID COMPUTING. ARC FORUM, India Ricky Watts Director of Industrial Solutions, Wind River IN A SOFTWARE-DEFINED WORLD

Intel Learning Series Developer Program Self Verification Program. Process Document

ENHANCING INTELLIGENCE IN THE INTERNET OF THINGS The Business of Embedded Virtualization Alexander Damisch, Director, Industrial Vertical, Wind River

Solid-State Drive System Optimizations In Data Center Applications

Embedded and Communications Group January 2010

Intel RealSense Depth Module D400 Series Software Calibration Tool

Upgrading Intel Server Board Set SE8500HW4 to Support Intel Xeon Processors 7000 Sequence

Intel Cache Acceleration Software - Workstation

Intel Virtualization Technology Roadmap and VT-d Support in Xen

Intel Cluster Ready Allowed Hardware Variances

Dr. Thomas Willis Principal Engineer Embedded and Communica3ons Group / LEPD February 27, 2011

IEEE1588 Frequently Asked Questions (FAQs)

Intel Ethernet Controller I350 Frequently Asked Questions (FAQs)

Sample for OpenCL* and DirectX* Video Acceleration Surface Sharing

Intel RealSense D400 Series Calibration Tools and API Release Notes

Intel Atom Processor Based Platform Technologies. Intelligent Systems Group Intel Corporation

How to Create a.cibd File from Mentor Xpedition for HLDRC

Intel Atom Processor E3800 Product Family Development Kit Based on Intel Intelligent System Extended (ISX) Form Factor Reference Design

Introduction to Intel Boot Loader Development Kit (Intel BLDK) Intel SSG/SSD/UEFI

Achieving a FIPS Compliant Wireless Infrastructure using Intel Centrino Mobile Technology Clients

How to Create a.cibd/.cce File from Mentor Xpedition for HLDRC

Product Change Notification

Using a Hypervisor to Manage Multi-OS Systems Cory Bialowas, Product Manager

Transforming Utility Grid Operations with the Internet of Things

Intel Virtualization Technology for Directed I/O

Intel vpro Technology Virtual Seminar 2010

Making the Factory Floor Smarter with IoT and VxWorks

Intel Server Board S2600CW2S

Intel Virtualization Technology for Directed I/O Architecture Specification

Intel Atom Processor D2000 Series and N2000 Series Embedded Application Power Guideline Addendum January 2012

Intel vpro Technology Virtual Seminar 2010

Intel Extreme Memory Profile (Intel XMP) DDR3 Technology

Intel Desktop Board DZ68DB

Enabling the Optimized, Intelligent Factory with Intel Quark SoC

ENVISION TECHNOLOGY CONFERENCE. Functional intel (ia) BLA PARTHAS, INTEL PLATFORM ARCHITECT

Intel Core TM Processor i C Embedded Application Power Guideline Addendum

INTEL PERCEPTUAL COMPUTING SDK. How To Use the Privacy Notification Tool

Four-Socket Server Consolidation Using SQL Server 2008

OCTOBER 2016 TELIT WHITE PAPER

The Intel Processor Diagnostic Tool Release Notes

SIMPLIFYING THE CAR. Helix chassis. Helix chassis. Helix chassis WIND RIVER HELIX CHASSIS WIND RIVER HELIX DRIVE WIND RIVER HELIX CARSYNC

Performance Solution for NFV Reduces Cost-per-bit and Simplifies Service Deployment

Product Change Notification

Open FCoE for ESX*-based Intel Ethernet Server X520 Family Adapters

Installation Guide and Release Notes

Maximize Performance and Scalability of RADIOSS* Structural Analysis Software on Intel Xeon Processor E7 v2 Family-Based Platforms

A Data-Centric Approach for Modular Assurance Abstract. Keywords: 1 Introduction

Intel Atom Processor E6xx Series Embedded Application Power Guideline Addendum January 2012

Drive Recovery Panel

Intel Desktop Board DG41CN

Secure Partitioning (s-par) for Enterprise-Class Consolidation

Intel Open Source HD Graphics, Intel Iris Graphics, and Intel Iris Pro Graphics

Intel Virtualization Technology for Directed I/O

Intel G31/P31 Express Chipset

Product Change Notification

Telit Intelligent Modules Harness the Power of Intel Atom x3 Processors

Cisco UCS Mini Software-Defined Storage with StorMagic SvSAN for Remote Offices

Intel s Architecture for NFV

Developing an Enterprise Client Virtualization Strategy

Intel Dialogic CPi/200B2 and CPi/400B2 Fax Boards

The Open Application Platform for Secure Elements.

The Intel SSD Pro 2500 Series Guide for Microsoft edrive* Activation

GUID Partition Table (GPT)

OpenCL* and Microsoft DirectX* Video Acceleration Surface Sharing

VIRTUALIZATION PERFORMANCE: VMWARE VSPHERE 5 VS. RED HAT ENTERPRISE VIRTUALIZATION 3

Intel Cluster Toolkit Compiler Edition 3.2 for Linux* or Windows HPC Server 2008*

Intel Desktop Board DG31PR

COMPUTING. Centellis Virtualization Platform An open hardware and software platform for implementing virtualized applications

Intel Parallel Studio XE 2015 Composer Edition for Linux* Installation Guide and Release Notes

Intel Manycore Platform Software Stack (Intel MPSS)

True Scale Fabric Switches Series

Debugging on Intel Platforms

Intel Server Board S5520HC

NEW LIFE FOR EMBEDDED SYSTEMS IN THE INTERNET OF THINGS

ARM Security Solutions and Numonyx Authenticated Flash

Intel Cache Acceleration Software (Intel CAS) for Linux* v2.9 (GA)

NEXCOM IoT Controller Solution Brings Intelligence to Manufacturing

Intel Open Source HD Graphics Programmers' Reference Manual (PRM)

Intel Desktop Board DG41RQ

Intel USB 3.0 extensible Host Controller Driver

Using Intel Inspector XE 2011 with Fortran Applications

Winnebago Industries, Inc. Privacy Policy

Product Change Notification

Data Center Efficiency Workshop Commentary-Intel

Intel Parallel Studio XE 2011 for Windows* Installation Guide and Release Notes

Product Change Notification

Intel Desktop Board DP45SG

Installation Guide and Release Notes

Optimizing the operations with sparse matrices on Intel architecture

Transcription:

White Paper Wind River Hypervisor and Operating Systems Intel Processors for Embedded Computing Applying Multi-core and Virtualization to Industrial and Safety-Related Applications Multi-core and virtualization provide the opportunity to improve device performance, reduce costs through hardware consolidation and upgrade applications more cost effectively throughout the product lifecycle Disruptive technologies and trends are affecting the embedded market and providing device manufacturers in the industrial sector with a significant opportunity to improve both their devices and their businesses. Taking advantage of the following technical and industry trends represents a significant opportunity for competitive advantage: Multi-core processors Virtualization Increased complexity of safety-related devices The availability of multi-core processors causes both the most significant disruption the embedded market has seen in many years and one of the greatest opportunities. The latest Intel multi-core processors provide increased overall performance and improved performance per watt over single-core processors. Multi-core processor-based systems can also improve application scalability and protect software investment by allowing processors with more cores to be substituted to meet future demand. The trend towards multi-core is well underway, as evidenced by Intel dual-core and quad-core processor shipments exceeding single-core processors.

White Paper Applying Multi-core and Virtualization to Industrial and Safety-Related Applications The second technology trend is virtualization, which provides the ability to run multiple virtual machines on the same physical board by abstracting the underlying processing cores, memory and devices. Virtualization provides the ability to run multiple operating environments, such as one real-time operating system like Wind River* VxWorks* or VxWorks CERT, and a general purpose operating system like Wind River Linux*, on the same device, as shown in Figure 1. Performance gains from multi-core processors and virtualization technology enable the consolidation of what were originally independent devices running separate applications onto one device. Consolidation reduces the amount of hardware and increases energy efficiency, which can lower the overall bill of materials and operating costs of the device. Virtualization is enabled by a hypervisor, which has supervisory functions that protect the operating environments from each other and provide a measure of separation that can be leveraged to improve the reliability, security and safety of a system. This allows each application to be evolved independently, reducing the life-cycle costs of the device. Real-Time Application Wind River VxWorks Wind River hypervisor Figure 1. Virtualized System Human Machine Interface Application Wind River Linux* Single or Multicore Intel Processor Safety-related architectures are becoming more complex as demand for new features and regulatory compliance requirements increases. One trend driving complexity is the need for industrial devices to interface to more networks and systems like the Internet, top-floor and shop-floor. As a result, devices must support a larger variety of application software (e.g., security, protocol stacks) with different levels of criticality. And as system complexity increases, regulatory bodies are enforcing more formal certification methods and processes to help safeguard systems athe combination of multi-core and virtualization technologies can help device manufacturers in industrial control, process automation, energy and transportation protect their development investments. These technologies enable systems to run more applications simultaneously and safely, so it's possible to upgrade an existing multi-core platform incrementally with respect to performance, security, scalability, certifiability and usability. The enhanced performance of Intel multi-core processors can also be used to consolidate control and acquisition applications, visualization and network security onto a single board with minimal software changes. Furthermore, a virtualization layer can protect software investments by reducing direct hardware dependencies. This enables developers to more easily port and upgrade to new device architectures while managing the migration to COTS (commercial off-the-shelf) technologies more effectively. This white paper describes how Intel and Wind River multi-core and virtualization technologies are changing the way developers approach industrial and safety-related applications.gainst unintended software interactions and outside breaches. Also growing is regulatory influence by means of safety-related application standards (e.g., for IEC 61508, CENELEC 50128, ISO 26262 and IEC60880/62138) and additional industrial sub-segment standards in energy, transportation, process automation and control. Scaling Processors for Industrial Solutions VxWorks, Wind River Linux, and the Wind River hypervisor run on a wide range of Intel processors and are supported by an open standard tool chain that brings efficiency to the multi-core and multi-os development processes. These capabilities can be extended to different types of industrial control equipment represented by the different layers of the "Automation Pyramid", as shown in Figure 2. The enterprise layer or top-floor infrastructure supports servers and workstations running a mix of applications, including collaborative production management (CPM), financials and asset management databases. Intel Xeon processors supply the computing horsepower needed to keep the business running smoothly and efficiently. They run a large number of enterprise applications simultaneously by supporting configurations with eight or more processor cores and by speeding up parallel processing with large on-chip caches that reduce context switching. EP Level Cell / Control Level Field / Data Level Figure 2. Automation Pyramid Enterprise Level - Enterprise Solutions Financial and asset management Cell Level - Aggregation platforms; Control + HMI - Aggregation of Field devices (e.g. SoftPLCs, HMIs and Machine gateways) - Safety concepts - Wind River hypervisor VxWorks, VxWorks Cert, Wind River Linux* Field Level - Packaged and customized PLCs - Complex sensors / actors - Wind River hypervisor, VxWorks, VxWorks Cert 2

Applying Multi-core and Virtualization to Industrial and Safety-Related Applications White Paper The cell and control layer contains equipment performing a combination of real-time control and HMI functions that have different levels of criticality. This equipment is an ideal candidate for the Wind River hypervisor and Intel multi-core processors that can deliver the computing performance and software separation and reliability required by safety-related applications. The Intel Core 2 Duo processor, with two processor cores, can run timecritical control functions on a dedicated core and run other functions, like HMI and operator panels, on the second core. This multi-core processor has revolutionary performance per watt, allowing it to be deployed in space constrained systems. The lower field and data layer controls the factory floor, linking sensors and actuators to controllers and ultimately to manufacturing equipment. Typically, this level requires equipment with very low power consumption, which is why the Intel Atom processor Z5xx series (Figure 3) for embedded computing is a good fit. This processor has a thermal design power, as low as 2.0 watts, and delivers the benefits of Intel architecture for small form factor, embedded control devices. Embedded and Communications Alliance, Wind River works closely with Intel to ensure their solutions take advantage of the latest processor features as soon as they come to market. Virtualization with the Wind River Hypervisor The Wind River hypervisor provides the ability to partition a physical board s resources into virtual boards, as shown in Figure 4. Each virtual board can host either an operating system, known as a guest, or a minimal executive. Configuration tools are provided in order to partition the processing cores, memory and devices on the physical board. Processing cores can be allocated exclusively to one virtual board or can be shared by multiple virtual boards using the appropriate scheduling algorithm. Memory is partitioned such that each virtual board has its own unique and enforced memory space and cannot affect any other virtual board. Shared memory buffers can be allocated for high speed communication between virtual boards. Devices such as a serial line or Ethernet can be either dedicated to one virtual board or shared between multiple boards. Virtual Board 1 Real-Time Application Virtual Board 2 HMI Application Virtual Board 3 VxWorks Ethernet Wind River Linux Ethernet Core 0 Memory Serial Core 1 Memory Minimal Application Core 1 Memory Wind River hypervisor Physical Board Ethernet Serial Memory Core 0 Core 1 Dedicated to virtual board Shared between virtual boards Figure 4. Partitioning a System Into Virtual Boards Figure 3. Intel Atom Processor and the Intel System Controller Hub US15W From top-floor to shop-floor, developers can build different platforms with varying performance levels and the same code base using embedded Intel processors with long life cycle support. In addition to these advantages, equipment makers typically find maintaining software code for general purpose processors, like Intel Architecture Processors, is easier than for application specific hardware. This is because Intel processors are supported by a broad ecosystem offering a wide range of mature development tools. For example, as a member of the Intel The virtual board mechanism enables the porting and paravirtualization of an existing proprietary operating system onto the hypervisor, which can be run alongside a commercial operating system. This provides a gradual migration path to COTS technologies as well as the ability to move more easily to new hardware, including advanced Intel multi-core platforms. This allows the reuse of existing legacy applications that may be very robust and do not require changes while providing the ability to create new and innovative functionality on a more fully featured operating system such as Wind River Linux. In many industrial applications, two or more separate computing platforms were required to provide the complete system. The reason for separate hardware could have been due to the different nature of the applications; perhaps a hard real-time application for control was required while an advanced human machine 3

White Paper Applying Multi-core and Virtualization to Industrial and Safety-Related Applications interface was needed for interaction with the operator. In other cases performance limitations may have necessitated separate hardware. The improved processing power of multi-core processors coupled with the separation and protection provided by the virtual board mechanism are a compelling combination that allows for the consolidation of industrial systems. The isolation and protection between virtual boards prevent a fault in one virtual board from affecting another. If a problem occurs in the less critical human machine interface application, it will not affect another virtual board supporting critical system tasks. In addition, the supervisory functions of the Wind River hypervisor will allow for a critical fault to be detected in a virtual board and for that virtual board to be rebooted while other virtual boards continue to run. These capabilities can greatly improve the reliability of industrial applications. The Wind River hypervisor is part of Wind River s multicore software solution, which includes many technologies required for industrial device makers to take advantage of multi-core processors. The multicore software solution is comprised of: Support for multi-core software configurations and virtualization Industry Leading Operating Systems - VxWorks, the industry leading RTOS - VxWorks Cert (RTOS that is DO-178B and IEC61508-Part3 certifiable for safety-related applications) - Wind River Linux Wind River Workbench for developing, debugging and optimizing multicore and virtualized systems The Wind River hypervisor used on either Intel single-core or multi-core processors provides a high performance solution for consolidating hardware while keeping applications separate. Taking Virtualization to a New Level with Intel Virtualization Technology (Intel VT) Intel has enhanced the capabilities of virtualization technology with a complementary hardware-assist technology called Intel Virtualization Technology (Intel VT). Intel VT performs various virtualization tasks in hardware, like memory address translation, which reduces the software footprint of the hypervisor and improves its performance. The Wind River hypervisor takes advantage of Intel VT to provide optimal virtualization performance and increased reliability. Without this new technology, the hypervisor would be responsible for handing off more of the platform control to the operating system, which requires complex, compute-intensive calculations. With Intel VT, the hardware takes over this crucial operation, which reduces the computational burden on hypervisor software, thereby increasing its performance. In addition, without hardware assistance, the hypervisor is the sole protector of key processor and operating state information stored in unprotected memory space. Intel VT adds a powerful enforcement layer that prevents any software component, other than the hypervisor, from accessing key system information. Intel offers three classes of virtualization technology: Intel Virtualization Technology (Intel VT) for IA-32, Intel 64 and Intel Architecture (Intel VT-x): provides the basic framework that virtual machine monitors (VMMs) need to operate efficiently. Intel Virtualization Technology (Intel VT) for Directed I/O (Intel VT-d): facilitates the virtualization I/O devices, such as remapping DMA accesses into segment memory locations, filtering and remapping interrupts. Intel Virtualization Technology (Intel VT) for Connectivity (Intel VT-c): runs in conjunction with Intel Ethernet controllers that support filtering and mapping network traffic to specific queues 'owned' by a particular virtual machine (VM). Devices using a hypervisor that leverages Intel VT can benefit from an increase in the performance and security of its virtualized environment. Safety Certification Challenges A major challenge facing device manufacturers is that during the certification process, they must meet the requirements specified for safety-related software and demonstrate that it's separated or protected from other parts of the system. If the system's hardware and software is fully consolidated, the non-safety related applications running on a general purpose operating system must also be deemed safe. This is very challenging and expensive because of the size of the general purpose operating system (GPOS). In addition, it would be advantageous to have the flexibility to revise the non-safety related software frequently in order to improve the human interface or improve connectivity without having to endure the costs and schedule impacts of recertifying the entire system multiple times during a product s life-cycle. Safety-related components require temporal and spatial separation from other system components with different levels of criticality. Today s separation concepts are mostly designed to use completely independent subsystems for each function, but this approach isn't hardware efficient and increases cost. Furthermore, legacy dependencies imposed by proprietary or RYO 4

Applying Multi-core and Virtualization to Industrial and Safety-Related Applications White Paper (roll your own) technologies often present additional challenges when OEMs migrate to commercial-off-the-shelf (COTS) hardware and software technologies. However, developers who designed systems with software migration flexibility in mind are wellpositioned to benefit from new innovative technologies like multi-core processors and virtualization. Reducing Risk Aside from aerospace and defense, where ARINC 653 separation standards are well-defined, most industries lack a unified approach to functional safety. This leaves safety standards open for interpretation and can cause greater unpredictability and uncertainty for device manufacturers. In many cases, device manufacturers face increasing requirements to incorporate different levels of software criticality and address more stringent regulations. As in the ARINC 653 environment, a useful approach is to increase software separation so that software components can be certified as independent modules. Wind River, a market leader in DO-178B-certified ARINC 653 separation concepts, is applying its experience to the industrial market to mitigate risk and help engineers develop safe and deterministic applications. The memory protection provided by the Wind River hypervisor can be leveraged to ensure the spatial separation of the applications in the virtual boards, as shown in Figure 5. This configuration provides applications with dedicated and secure memory contexts, which is a critical aspect of guaranteeing the safety integrity of independent software modules. Spatial separation enables applications to run as independent modules, so OEMs can certify them as smaller, simpler components. Additionally, temporal separation can be provided by dedicating virtual boards to individual cores or by leveraging the appropriate scheduling algorithm in the hypervisor when multiple virtual boards share a core. Safety Related Application Wind River* VxWorks* (Certifiable) Other Applications Wind River* Linux* or Windows* Wind River Hypervisor (Certifiable) 1 Single or Multicore Intel Processor 1 The above is intended to outline Wind River's general product direction. It is intended for informational purposes only, and may not be incorporated into any contract or relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Wind River products remains at the sole discretion of Wind River. Figure 5. Virtualization System for Safety Related Applications Wind River s performance optimized hypervisor solution running on Intel processors provides: A mechanism to implement temporal and spatial separation between applications. The possibility to separate safety-related functionality (e.g., soft PLC) from other functionality (e.g., graphical user interfaces). An open modular approach that has the potential to enable cost-efficient safety. Addressing Future Safety and Performance Requirements The combination of multi-core and virtualization technologies provides a path for meeting future safety and computing performance requirements of industrial and transportation applications. As such, hardware and software technologies from Intel and Wind River can help developers using a standardized approach to temporal and spatial separation. The exceptional processing performance of Intel multi-core processors with Intel Virtualization Technology enables applications to run safely in a virtualized environment. Wind River supplies a software framework including the IEC61508 and DO-178B certifiable VxWorks Cert operating system and the certifiable Wind River hypervisor. OEMs certifying safety critical applications, according to IEC61508-Part 3 or other vertical standards derived from the IEC61508 specification, can benefit from using Wind River products with Intel Architecture Processors that enhance safety and reliability in a real-time virtualized environment. 5

For more information about Intel processors for embedded computing, please visit: www.intel.com/products/embedded Learn more about Wind River's Multicore Software Solution and hypervisor at: http://www.windriver.com/multicore-software. INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO LICENSE, EXPRESS OR IMPLIED, BY ESTOPPEL OR OTHERWISE, TO ANY INTELLECTUAL PROPERTY RIGHTS IS GRANTED BY THIS DOCUMENT. EXCEPT AS PROVIDED IN INTEL'S TERMS AND CONDITIONS OF SALE FOR SUCH PRODUCTS, INTEL ASSUMES NO LIABILITY WHATSOEVER AND INTEL DISCLAIMS ANY EXPRESS OR IMPLIED WARRANTY, RELATING TO SALE AND/OR USE OF INTEL PRODUCTS INCLUDING LIABILITY OR WARRANTIES RELATING TO FITNESS FOR A PARTICULAR PURPOSE, MERCHANTABILITY, OR INFRINGEMENT OF ANY PATENT, COPYRIGHT OR OTHER INTELLECTUAL PROPERTY RIGHT. UNLESS OTHERWISE AGREED IN WRITING BY INTEL, THE INTEL PRODUCTS ARE NOT DESIGNED NOR INTENDED FOR ANY APPLICATION IN WHICH THE FAILURE OF THE INTEL PRODUCT COULD CREATE A SITUATION WHERE PERSONAL INJURY OR DEATH MAY OCCUR. Intel may make changes to specifications and product descriptions at any time, without notice. Designers must not rely on the absence or characteristics of any features or instructions marked "reserved" or "undefined." Intel reserves these for future definition and shall have no responsibility whatsoever for conflicts or incompatibilities arising from future changes to them. The information here is subject to change without notice. Do not finalize a design with this information. Copyright 2009 Intel Corporation. All rights reserved. Intel, the Intel logo, Intel Atom, Intel Atom Inside, Intel Core, Core Inside, Pentium, Pentium Inside, Xeon and Xeon Inside are trademarks of Intel Corporation in the U.S. and other countries. *Other names and brands may be claimed as the property of others. Printed in USA 0109/SI/S2/PDF Please Recycle XXXXXX-001US

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback