A Survey of Time and Space Partitioning for Space Avionics

Similar documents
Multi/many core in Avionics Systems

Integrated Modular Avionics. The way ahead for aircraft computing platforms?

International Conference on Integrated Modular Avionics Moscow

Applicability / Compatibility of STPA with FAA Regulations & Guidance. First STAMP/STPA Workshop. Federal Aviation Administration

Multicore Processing in the Avionics Industry Needs and Concerns April 21, 2017 Greg Arundale Rockwell Collins

Critical Systems and Software Solutions

Spectral Efficient COMmunications for future Aeronautical Services. Jan Erik Håkegård ICT

The organisation of the Airbus. A330/340 flight control system. Ian Sommerville 2001 Airbus flight control system Slide 1

Initial 4D Trajectory Management via SwiftBroadband Iris Event Salzberg

UNIQUE DEPENDABILITY ISSUES FOR COMMERCIAL AIRPLANE FLY BY WIRE SYSTEMS

Monitoring & Control Tim Stevenson Yogesh Wadadekar

Embedded System Development for Distributed Networked Computing Platforms

ARINC Project Initiation/Modification (APIM)

Publications and Training Solutions Course Syllabus:

User Terminal certification process considerations

SAVOIR industrial perspectives Thales Alenia Space View

Driving STM32 to success STM32 services for sophisticated embedded applications

SESAR AEROMACS PROJECTS P9.16 New Communication Technology at Airport P Airport Surface Datalink

Summary. Filename: IDOC Created: July 24, 2012 Modified: May 6, 2013

Punt Policing and Monitoring

High-speed connectivity solutions for airlines

Deutscher Wetterdienst

Progressive Technology Facilitates Ground-To-Flight-Deck Connectivity

Jeppesen Total Navigation Solution

Implementation challenges for Flight Procedures

Simulator Architecture for Training Needs of Modern Aircraft. Philippe Perey Technology Director & A350 Program Director

Air traffic services (ATS) datalink using Iris Precursor. Contextual note SESAR Solution description form for deployment planning

ARINC Project Initiation/Modification (APIM)

Quality Assurance. Introduction Need for quality assurance Answer to the need of quality assurance Details on quality assurance Conclusion A B C D E

Gogo Connected Aircraft Services

Industria, Innovazione e Ricerca: Le nuove frontiere del volo a pilotaggio remoto

The flight enabler on board the A350 XWB

Aeronautical Communications: Changes Ahead - FCI

National Microelectronics Institute Available from:

European Aviation Safety Agency. Opinion No 10/2017

Exploring Model-Based System Engineering(MBSE) /Model-Based Development (MBD) in the Life-Cycle Development for Civil Aircrafts

Wärtsilä NACOS Platinum. Navigation Automation Control System

SCADE for AIRBUS critical avionics systems

GBAS implementation status: international context and situation in France

FLIGHT PATH FOR THE FUTURE OF MOBILITY

Publications and Training Solutions Course Syllabus:

A new multimedia platform for in-room TV technology

AIRBUS Generic Flight Test Installation

Addendum: UAV Avionics

Overview: Cisco 7304 Router Carrier Cards

D DAVID PUBLISHING. Development and Achievement of the T-50 Flight Control s Consolidated OFP. 1. Introduction. 2. Consolidated OFP s Needs

Introduction to Fleet Planning Dr. Peter Belobaba and Ali Hajiyev

Payload Adapters and Separation Systems

Scalable Runtime Support for Data-Intensive Applications on the Single-Chip Cloud Computer

Chairman and Trustees of the Oklahoma City Economic Development Trust

Fly at the speed of ingenuity on your Learjet 85

NASA Aeronautics Jaiwon Shin, Associate Administrator Aeronautics Research Mission Directorate. 1

Impact of Equipage on Air Force Mission Effectiveness

INTERNATIONAL CIVIL AVIATION ORGANIZATION AFI REGION AIM IMPLEMENTATION TASK FORCE. (Dakar, Senegal, 20 22nd July 2011)

Overview Net-Enabled Aircraft Design Current Project Status Join the Team! Kristin Yvonne Rozier University of Cincinnati

MASTER THESIS. Engineer Ghazi Muqaddas Ali Shah SUPERVISED BY. Dr.Cristina Barrado Dr. Darius Rudinskas

Sawasdee Krup. Applications of RFID in Aviation. Symbol RFID Ecosystem Summit. Bangkok May Louis Kirk

EE382V: Embedded System Design and Modeling

Boeing 777 Triple Triple Redundant Flight Controller

Asia Pacific Regional Aviation Safety Team

SWIM: An ANSP Perspective. Jan-Philipp LAUER, MSc CANSO AIMWG SC Member

The next generation of in-flight, real-time 3-D moving maps. Airshow 4000 MOVING MAPS

Evidence Based Training from a Regulator s Perspective

PARAMOUNT A Local Based Service (LBS) Prototype for Mountaineers and Rescuers

Table of Content. Table of Contents Mobile Experts LLC. All Rights Reserved. 1

MULTIDISCIPLINARYMEETING REGARDING GLOBAL TRACKING

Bob Hawkins Deputy Lead Engineer SLS Integrated Avionics and Software

ESA Iris Programme: satellite communications for Air Traffic Management

In-Service Data Program Helps Boeing Design, Build, and Support Airplanes

Honeywell Advanced Technologies Europe Radek Zaruba, May, ANTARES WP33 User Terminal for General Aviation

Development of EFB. Electronic Flight Bag. a message for Flight Examiners

Agenda Item 1.17 Wireless Avionics Intra-Communications (WAIC)

Where unique experience creates outstanding ATM expertise, products and services

Global Interoperability - Airborne Architecture and Avionics Interoperability Roadmap Project Number Project Manager

RTCA SC-216 Aeronautical Systems Security

Advanced Flight Control System Failure States Airworthiness Requirements and Verification

ARINC Project Initiation/Modification (APIM)

Publications and Training Solutions Course Syllabus:

TAXIBOT. May Technical Partner

EE382M.20: System-on-Chip (SoC) Design

Background to the Article 83 bis Task Force

Operators may need to retrofit their airplanes to ensure existing fleets are properly equipped for RNP operations. aero quarterly qtr_04 11

Advisory Circular. 1.1 Purpose Applicability Description of Changes... 2

Table of Contents 2015 Mobile Experts LLC. All Rights Reserved. 1

Avionics Qualification Test Supporting Equipment

PBN Implementation Stakeholder Readiness are we ready to go?

How big can my carry-on bag be?

ASPASIA Project. ASPASIA Overall Summary. ASPASIA Project

Magnetospheric MultiScale Mission. SpaceWire Implementation

Flight Operations Briefing Notes

AEROSPACE MAINTENANCE COMPETITION AVIONICS ADS-B EVENT. JetBlue University Embry Riddle COBHAM CE Avionics

FAA GBAS Program Update January 29, 2010

Electronic visibility via ADS-B for small aircraft. John Korna, NATS

Technology that Matters

TWELFTH AIR NAVIGATION CONFERENCE

Display Systems. 1. General. A. Multi-Function Display (MFD) B. Primary Flight Display (PFD)

RAAC/15-WP/14 International SUMMARY REFERENCES. A Safety

The LINK2000+ Test Facility Presentation. Eurocontrol LINK Programme

Human Factors of Remotely Piloted Aircraft. Alan Hobbs San Jose State University/NASA Ames Research Center

Safety Enhancement SE ASA Design Virtual Day-VMC Displays

Transcription:

2018-05-25, 21:52:13 A Survey of Time and Space Partitioning for Space Avionics Presentation at DASIA 2018 31st May 2018

The Basic Idea of TSP Motivation Time and Space Partitioning (TSP) Why? several computing tasks with mixed dependability requirements on a single computer in order to save weight

Overview A Survey of Time and Space Partitioning for Space Avionics 1 Systems with Mixed Dependability 2 Integrated Modular Avionics (IMA) for Aircraft 3 Adaption of IMA for Space Avionics 4 Some Research Challenges

The Notion of Dependability Systems with Mixed Dependability Dependability (Avižienis et al. 2004) the ability of a system to avoid service failures that are more frequent and more severe than is acceptable dependability: must be validated

The Problem with Mixed Dependability Systems with Mixed Dependability several computing tasks on a single computer with mixed dependability requirements most critical task: determines criticality of all software on this computer example: danger of writing into memory of another task consequence for all tasks: degree of effort for validation of dependability = degree of the most critical task high costs for development and maintenance, if many tasks on a computer which all might impair each other

Solutions Systems with Mixed Dependability idea effect on task validation effort for task validation effort for kernel/hypervisor amount of latter validation effort operating system support separation kernel a kind of operating system + hardware support appears to be alone on computer + operating system medium yes as required for this task virtualization hypervisor + hardware support appears to be alone on bare computer (except for holes in CPU time ) like for the most critical task, but only once small no

Overview A Survey of Time and Space Partitioning for Space Avionics 1 Systems with Mixed Dependability 2 Integrated Modular Avionics (IMA) for Aircraft 3 Adaption of IMA for Space Avionics 4 Some Research Challenges

Motivation: Evolution of the Avionics Architecture Integrated Modular Avionics (IMA) for Aircraft trend to sharing computer hardware: feasible because of ever faster computers (often: 1 computer much faster than needs of 1 application) saves weight on aircraft and thus saves cost trend to general-purpose computing modules: saves on development and on worldwide stock of replacement units and thus saves cost

System Architecture of an IMA module Integrated Modular Avionics (IMA) for Aircraft application software partition 1 partition 2... system partition 1 ARINC 653 APEX interface core software operating system partitioning scheduling communication driver layer hardware MMU clock I/O (AFDX,... )

Summary of Overview Integrated Modular Avionics (IMA) for Aircraft Integrated Modular Avionics few, standardized computing modules 1 standardized type of bus (fast, real-time) 1 standardized IMA operating system interface (with partitioning) (separation kernel approach)

Used in Practice Integrated Modular Avionics (IMA) for Aircraft Airbus A380 Airbus A400M Airbus A350XWB Boeing 787 Dreamliner...

Extension/Research: Distributed Modul Avionics (DME) Integrated Modular Avionics (IMA) for Aircraft idea IMA: each sensor/actuator hard-wired to 1 IMA module DME: separate processing power from sensor/actuator interfaces (thus reducing the number of component types to a minimum)

System Architecture of Distributed Modular Electronics (DME) Integrated Modular Avionics (IMA) for Aircraft CPM CPM core processing modules (computers, without any I/O except networks) switch switch 2 redundant AFDX networks RDC RDC RDC RPC RPC remote data concentrators (for inputs) remote power controllers (for outputs)

Overview A Survey of Time and Space Partitioning for Space Avionics 1 Systems with Mixed Dependability 2 Integrated Modular Avionics (IMA) for Aircraft 3 Adaption of IMA for Space Avionics 4 Some Research Challenges

Differences Between the Aeronautical and the Space Domain Adaption of IMA for Space Avionics the speed of growth of (software) complexity scale of communication demands (among computers) online/offline maintenance pronounced mission phases radiation availability of a hardware-based memory protection unit more details: see my full paper

The Original IMA-SP Project Adaption of IMA for Space Avionics IMA-SP: " Integrated Modular Avionics for Space" research project of the European Space Agency (ESA) motivation similar to IMA but tailored for space domain: slower processors because of radiation less complex systems (compare above) original project ended 2012 several follow-up projects (more on them: see my full paper)

The IMA-SP Platform Adaption of IMA for Space Avionics adoption of the basic IMA concept, addition of space-specific requirements, removal of the standardized communication via AFDX result: a rather specific platform (not even suitable for launchers, suitable for satellites only)

My Opinion Adaption of IMA for Space Avionics the sum of user requirements results in an architecture for a rather narrow application area example: additional services for communication via shared memory are mandatory in IMA-SP, instead of optional apparently no generalization step by an up-front investigation of the common requirements of the aeronautical and the space domain emphasis: preserving long-proven ideas, approaches, and even hardware from the (satellite) space domain

Extensions for Multi-Core Processors: The MultiPARTES Project Adaption of IMA for Space Avionics " Multi-cores Partitioning for Trusted Embedded Systems" adapts the XtratuM hypervisor for multi-core processors reason: nearly all modern processors are multi-core more details: see my full paper problem: verification of real-time properties very hard with multi-core, because of common resources (e.g., cache) solution brings limited progress, only: simply several independent Leon3 CPUs on a single FPGA chip, under a single hypervisor, at least

Overview A Survey of Time and Space Partitioning for Space Avionics 1 Systems with Mixed Dependability 2 Integrated Modular Avionics (IMA) for Aircraft 3 Adaption of IMA for Space Avionics 4 Some Research Challenges

Research Challenges Some Research Challenges Research Challenges for Time Partitioning multi-core CPUs direct memory access (DMA) Research Challenges for Real-Time Property Proofs worst-case performance and processor architecture timing anomalies and processor architecture refs to some work on this: see my full paper

References Avižienis, Algirdas et al. (2004). Basic Concepts and Taxonomy of Dependable and Secure Computing. In: IEEE Trans. on Dependable and Secure Computing 1.1. Rushby, John (1981). The Design and Verification of Secure Systems. Reprint of a paper presented at the 8th ACM Symposium on Operating System Principles, Pacific Grove, CA, USA, 14 16 Dec. 1981. In: ACM Operating Systems Review 15.5, pp. 12 21.

2024 © travelsdocbox.com Privacy Policy | Terms of Service | Feedback