Dependable Systems made by FIRST

Similar documents
Building Reliable High-Performance Hardware. Fraunhofer FOKUS. Fraunhofer FOKUS

The special radiation-hardened processors for new highly informative experiments in space

MultiChipSat: an Innovative Spacecraft Bus Architecture. Alvar Saenz-Otero

SCS750. Super Computer for Space. Overview of Specifications

Safety and Reliability of Software-Controlled Systems Part 14: Fault mitigation

University Würzburg Am Hubland, Würzburg

Fault-Tolerance Projects at Stanford CRC

PowerPC- based Processor Modules for Space Applications

Error Mitigation of Point-to-Point Communication for Fault-Tolerant Computing

EVT/WOTE 09 AUGUST 10, Ersin Öksüzoğlu Dan S. Wallach

Processor and Peripheral IP Cores for Microcontrollers in Embedded Space Applications

Space Micro Satellite Computer Goals Space Computer Performance Goals: >1,000 MIPS throughput Less than 1 SEU in 1,000 days Less than 10 watts power R

COTS Commercial is not always advertising Monica Alderighi

SINGLE BOARD COMPUTER FOR SPACE

Rad-Hard Microcontroller For Space Applications

SpaceComRTOS. A distributed formal RTOS adapted to SpaceWire enabled systems

A ONE CHIP HARDENED SOLUTION FOR HIGH SPEED SPACEWIRE SYSTEM IMPLEMENTATIONS

S950 3U cpci Radiation Tolerant PowerPC SBC

486DX Network Computer with TTL I/O, A/D, D/A, Ethernet, PC/104 SBC2486DX

CSP: HIGH PERFORMANCE RELIABLE COMPUTING FOR SMALLSATS

Outline Background Jaluna-1 Presentation Jaluna-2 Presentation Overview Use Cases Architecture Features Copyright Jaluna SA. All rights reserved

Ultra Depedable VLSI by Collaboration of Formal Verifications and Architectural Technologies

GR712RC A MULTI-PROCESSOR DEVICE WITH SPACEWIRE INTERFACES

EPC -8 Highly integrated Intel486 -based VMEbus Embedded CPU

VORAGO TECHNOLOGIES. Solutions for Selective Radiation-Hardened Components in CubeSats Ross Bannatyne, VORAGO Technologies

Matching Logic A New Program Verification Approach

A Reference Architecture for Payload Reusable Software (RAPRS)

On Design for Reliability

Runtime Checking for Program Verification Systems

Proof Carrying Code(PCC)

RAD6000 Space Computers

FAULT TOLERANT SYSTEMS

COMPARISON BETWEEN GR740, LEON4-N2X AND NGMP

GAUSS OBC ABACUS 2017

Practical Programmable Logic Controllers (PLCs) for Automation and Process Control. Contents

USB Keyboard Mouse. VGA Compact Flash

Command & Data Handling. By: Justin Hadella Brandon Gilles

CprE 458/558: Real-Time Systems. Lecture 17 Fault-tolerant design techniques

ReconOS: An RTOS Supporting Hardware and Software Threads

Introduction to ARM LPC2148 Microcontroller

Designing Embedded Processors in FPGAs

ESA Contract 18533/04/NL/JD

High temperature / radiation hardened capable ARM Cortex -M0 microcontrollers

JamaicaVM Java for Embedded Realtime Systems

Redundancy in fault tolerant computing. D. P. Siewiorek R.S. Swarz, Reliable Computer Systems, Prentice Hall, 1992

Reaching for the sky with certified and safe solutions for the aerospace market

386EX PC/104 Computer with CompactFlash and PCMCIA SBC1390

Review for Midterm. Starring Ari and Tyler

Computer Science 146. Computer Architecture

88 Dugald Campbell. Making Industrial Systems Safer Meeting the IEC standards

Buried Treasure: Unlock the Processing Power of Wireless Modules

Verifying control systems using CSP, FDR, and Handel-C.

FPGAs in radiation-harsh environments

Outline of Presentation Field Programmable Gate Arrays (FPGAs(

MIL-STD-1553 (T4240/T4160/T4080) 12/8/4 2 PMC/XMC 2.0 WWDT, ETR, RTC, 4 GB DDR3

Overview of Microcontroller and Embedded Systems

AUGER NORTH Station controller R&D report. J-M.Brunet, S.Colonges, B.Courty, Y.Desplanches, L.Guglielmi, G.Tristram APC Laboratory CNRS / IN2P3

DIVA: A Reliable Substrate for Deep Submicron Microarchitecture Design

S100 Series. Compact Smart Camera. High Performance: Dual Core Cortex-A9 processor and Xilinx FPGA. acquisition and preprocessing

Advanced Computing, Memory and Networking Solutions for Space

Network on Chip round table European Space Agency, ESTEC Noordwijk / The Netherlands 17 th and 18 th of September 2009

Agenda. CSE P 501 Compilers. Java Implementation Overview. JVM Architecture. JVM Runtime Data Areas (1) JVM Data Types. CSE P 501 Su04 T-1

Cisco IOS Embedded Event Manager

PXA270 EPIC Computer with Power Over Ethernet & Six Serial Protocols SBC4670

Software Development Using Full System Simulation with Freescale QorIQ Communications Processors

OPERATING SYSTEM SUPPORT FOR REDUNDANT MULTITHREADING. Björn Döbel (TU Dresden)

Introduction to Embedded Systems

Migrating from the UT699 to the UT699E

Industrial Control SE-607

CHAPTER 3 LabVIEW REAL TIME APPLICATION DEVELOPMENT REFERENCES: [1] NI, Real Time LabVIEW. [2] R. Bishop, LabVIEW 2009.

A Low-Cost SEE Mitigation Solution for Soft-Processors Embedded in Systems On Programmable Chips

Detector Control System board for FAIR. J. A. Lucio Martínez Infrastructure and Computer Systems in Data Processing (IRI) Goethe University Frankfurt

William Stallings Computer Organization and Architecture 8 th Edition. Chapter 18 Multicore Computers

Multi-DSP/Micro-Processor Architecture (MDPA)

SKA Monitoring & Control Realisation Technologies Hardware aspects. R.Balasubramaniam GMRT

Radiation Tolerant Digital I/O Module KM6784.1

Cover Page. The handle holds various files of this Leiden University dissertation

Introduction to Embedded Systems

Embedded Systems: Hardware Components (part II) Todor Stefanov

ECE 587 Hardware/Software Co-Design Lecture 12 Verification II, System Modeling

Express Logic s ThreadX RTOS for RISC-V

Advanced 486/586 PC/104 Embedded PC SBC1491

SpaceFibre Flight Software Workshop 2015

Computer Hardware Requirements for ERTSs: Microprocessors & Microcontrollers

2 Control Equipment for General Applications

Verifying a Compiler for Java Threads

FAULT TOLERANT SYSTEMS

OS and Computer Architecture. Chapter 3: Operating-System Structures. Common System Components. Process Management

CPU6501 REV1.0 1 WILLOWGLEN MSC BERHAD

Space-to-Ground Data Viewer (S2G) & DFDL for Space Library (DFDL4S)

Memory classification:- Topics covered:- types,organization and working

ADVANCED ELECTRONIC SOLUTIONS AVIATION SERVICES COMMUNICATIONS AND CONNECTIVITY MISSION SYSTEMS

From eventual to strong consistency. Primary-Backup Replication. Primary-Backup Replication. Replication State Machines via Primary-Backup

Reliable Computing I

FUNCTIONAL SAFETY FOR INDUSTRIAL AUTOMATION

Next Generation Microprocessor for Power Systems Control September 2006 M. Ruiz, SABCA, Belgium

CPC501. Best solutions to fit your demands! 6U CompactPCI Pentium M SBC.

GOES-R SpaceWire Implementation

MIL-STD-1553 (T4240/T4160/T4080) 12/8/4 2 PMC/XMC 2.0 WWDT, ETR, RTC, 4 GB DDR3

A Smart Port Card Tutorial --- Hardware

Transcription:

Dependable Systems made by FIRST Sergio Montenegro FhG FIRST www.first.fhg.de/~sergio sergio@first.fhg.de

Dependable Systems made by FIRST Automation Traffic Space Missions ICER ELIMA PowerBIRD BOSS

BOSS... Real time embedded operating system Design for dependability Design for formal verification Support for fault tolerance Fast, small,... and... Open Source! DLR

BOSS... designed for dependability Irreducible complexity Framework technology to reduce complexity component technology to handle complexity (not to create complexity) -> + Formal verification

Complexity destroys safety Required mental capacity Safety limit Forbidden area To complex to be safe Eg. BIRD: To complex to exist? Human mental capacity Design and implementation errors have their roots in the high complexity Komplexity Complexity of the underlying System DLR

Simple ->Formal Verification BOSS basic functions (for every thing): lists Operations: Insert in list remove from list -> So easy, so safe -> application of formal methods becomes possible Modell checker Theorem prover

Simple! 10kB Foot Print

BOSS... designed for dependability Irreducible complexity Framework technology to reduce complexity component technology to handle complexity (not to create complexity) -> + Formal verification

BOSS Framework external Thread xx; class TestThread: public Thread { // active object void run () { while(1) { {... do something } yield(); {... do something } suspend(); {... do something } suspendfor(1000); resume(xx); } } }; /** Another example: **/ Semaphore monitor; class OtherTestThread : public Thread { void run () { TimeControl timecontrol; //To implement time loops timecontrol.startat(5000); // Time point for the first time timecontrol.every(100); // Cyclus time while(1) { timecontrol.wait(); monitor.enter(); // protected area, {... do something } monitor.leave(); } } }; /** Create 6 threads or applications ***/ TestThread a, b, xx; OtherTestThread x, y, z; OS Framework: modern software technology / engineering Design for real time safety critical applications cost effective

BOSS... designed for dependability Irreducible complexity Framework technology to reduce complexity component technology to handle complexity (not to create complexity) -> + Formal verification

Complexity mastering by using Components Build the System by plugging applications as components Communication by using Software buses and routers

Java VM on BOSS Fast and safe upload of User (not RT) Applications Execution of user precedures Execution of macro commands Interpreter to experiment Mature and cost effectiv interpreter secure safe easy to use standard Powerfull

Middle Ware (3): What you can get Fault tolerance support multiple voters monitors TMR and beyond Distributed FT

BOSS + Hardware Fault tolerance support multiple voters monitors TMR and beyond Distributed FT

BOSS... designed for dependability Irreducible complexity Framework technology to reduce complexity component technology to handle complexity (not to create complexity) -> + Formal verification

BOSS... is it correct? Hand Code Hand Code Operational Specification... How to do... BOSS + Applic. C++ HOL semantics of C++ Asserts HOL Time Constraints Temp. Logic Axiomatic Specification: What to do What not to do Gcc Front-End Gcc Front-End Code Generator HOL Generator Machine Code HOL Operat. Spec. Execution/ Test Compiler Checker Isabelle Checker Timing Checker Universität Karlsruhe Valid: Yes/No Logfile with Time Consistent: Yes/No Satisfied: Yes/No

Enabling COTS technology for space HARD BIRD modern VLSI technology: 10x faster than rad-hard technology: Imagine all you could do, if you had 10x more computing power... 10x compacter and integrated (less weight and space) 10x less power consumption 100x cheaper Mass production, billions of processors each year... Fault tolerance concepts are being used in millions of devices every day.... and is becoming rad-hard! (submicron & SOI technologies) SOI: rad hard, no SEU, compact, low power, commercial DLR

You do not need to be radiation hard to survive radiation!! Human 3000000 RAD! 3x10^4 RAD 2x10^5 RAD 3x10^6 RAD HARD Deinococcus radiodurans... No radiation hard DNA! -> Redundancy

BOSS + Hardware DLR

An Example: Control of the Satellite BIRD DLR

20 K ions/chip/sec.: no problem for BIRD DLR

ROM, RAM: EDC (n:bits), shadow, data replication FPGA: internal redundant codes, internal replication and comparators external: replication latch up protection CPU: SW redundancy: plausibility checks, watchdogs, code program counter traces duplicated execution of code IO: replication DLR

UART parallel 64 Analog Input Ethernet I 2 C COBT Timer UART 8 x serial Modem Input Down Link Image Data 64 x Analog Input Serial I/O Interface UART 8 X RS 485 Latch-up Monitor Modem Interface Debug Port Power PC MPC823 (66 MHz) FPGA Telemetry I/O Interface (Downlink) Flash 4 MByte Ethernet Memory EDC DRAM 8 MByte Example: Node Computer of the BIRD Satellite DLR

Next Step... Replications, redundant codes (EDC) and reconfiguration management DLR

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback