Multi/many core in Avionics Systems

Similar documents
International Conference on Integrated Modular Avionics Moscow

AIRBUS FLY-BY-WIRE A TOTAL APPROACH TO DEPENDABILITY

Lithium Battery as Cargo

AIRBUS FLY-BY-WIRE A TOTAL APPROACH TO DEPENDABILITY

Designing for ease of future maintenance

Applicability / Compatibility of STPA with FAA Regulations & Guidance. First STAMP/STPA Workshop. Federal Aviation Administration

A Survey of Time and Space Partitioning for Space Avionics

Available On-Board Technologies For Runway Excursions Prevention

Go-Around Procedure. Flight Instructor Seminar / Miami, May 24 th and 25 th, 2011

Multicore Processing in the Avionics Industry Needs and Concerns April 21, 2017 Greg Arundale Rockwell Collins

MRO Trends: Airbus update

Think the solution, experience the change

AP/FD TCAS and TCAP. Airborne Conflict Safety Forum Harry Nelson. A reminder and update. Month 20XX

Integrated Modular Avionics. The way ahead for aircraft computing platforms?

ITA Europe 2015 Keynote Speaker

Stall. Review of the Fundamentals, the Procedure and the Training. Presented by Capt. Christian Norden/ Flight Crew Development

Fuel and Flight Efficiency Services by Airbus

Inadvertent Slide Deployments Update

New generation aircraft in the instrument approach domain. Jean-Christophe Lair Airbus Test pilot 1 st Feb. 2017

Technical Press Briefing

June 9th, 2011 Runway Excursions at Landing The n 1 Global Air Safety Issue Can We Reduce this Risk Through Innovative Avionics?

What did people think in 1970?

Airbus A320family FOPP Air Flow Deflector

Succeeding with Entry into Service MRO Europe: Engineering & Maintenance

Towards the Future ATM

NAVBLUE: Reach for the skies

Beijing, 18 h of September 2014 Pierre BACHELIER Head of ATM Programme. Cockpit Initiatives. ATC Global 2014

del Airbus en el mundo de la

Transformation in Procurement. Challenges for the Global Aircraft Industry. HAL Executives Presentation Toulouse, October 13, 2014

The organisation of the Airbus. A330/340 flight control system. Ian Sommerville 2001 Airbus flight control system Slide 1

ATSAW. (Airborne Traffic Situational Awareness) Presented by Laurent VIDAL - Surveillance systems manager Support to sales & programs

Services by Airbus Training. A350XWB Reaching new horizons together

Introduction to ROPS. Runway Overrun Prevention System. Presented by: Jerome JOURNADE ROPS Technical Manager

Avionics Certification. Dhruv Mittal

Flight control checks Flight Control Events

Content. Study Results. Next Steps. Background

Operational Interruption Cost Assessment Methodology

The role of Flight Data Analysis in the aircraft manufacturer s SMS.

Colombian PBN implementation: El Dorado case study

Air Transport Forecast & Scenarios Key drivers for Scenario building. EFONET Workshop The Hague November 21st 2008

OLM FBW 2006 Toulouse September Head Up Display

D DAVID PUBLISHING. Development and Achievement of the T-50 Flight Control s Consolidated OFP. 1. Introduction. 2. Consolidated OFP s Needs

Technical Standard Order

DEPARTMENT OF CIVIL AVIATION Airworthiness Notices EXTENDED DIVERSION TIME OPERATIONS (EDTO)

GENE-AUTO Status of new Airbus case Studies

AIRBUS Generic Flight Test Installation

Airport Compatibility

Form 91 Application for Approval of an EFB System

ATR FREIGHTER VERSIONS. AN EASY CONVERSION AVAILABLE SINCE 2002, TO EXTEND ATR s

Maintenance Cost Estimation Method of an Aircraft Manufacturer

Athens International Airport, Marketing Workshop. The Challenges facing Air Transport. John Blanchfield Director, Technical Marketing, Airbus

Driving STM32 to success STM32 services for sophisticated embedded applications

Quality Assurance. Introduction Need for quality assurance Answer to the need of quality assurance Details on quality assurance Conclusion A B C D E

A380: Designed for Airports

Aeronautics & Air Transport in FP7. DG RTD-H.3 - Aeronautics Brussels, January 2007

AIRWORTHINESS ADVISORY. Airworthiness Impacts of Electronic Flight Bags

Aeronautics & Air Transport in FP7

Simulator Architecture for Training Needs of Modern Aircraft. Philippe Perey Technology Director & A350 Program Director

FLIGHT PATH FOR THE FUTURE OF MOBILITY

Index. Springer International Publishing AG 2018 I. Schagaev, B.R. Kirk, Active System Control, DOI /

Critical Systems and Software Solutions

Safety Enhancement SE ASA Design Virtual Day-VMC Displays

Runway Excursions at Landing The n 1 Source of Insurance Claims for Aviation Industry How Can We Reduce this Risk Through Innovative Avionics?

Embedded System Development for Distributed Networked Computing Platforms

Advanced Flight Control System Failure States Airworthiness Requirements and Verification

AN-Conf/12-WP/162 TWELFTH THE CONFERENCE. The attached report

Development of EFB. Electronic Flight Bag. a message for Flight Examiners

UNIQUE DEPENDABILITY ISSUES FOR COMMERCIAL AIRPLANE FLY BY WIRE SYSTEMS

Agenda Item 1.17 Wireless Avionics Intra-Communications (WAIC)

FLIGHT CREW TRAINING SOLUTIONS

Scalable Runtime Support for Data-Intensive Applications on the Single-Chip Cloud Computer

ATR-600 SERIES THE LEADING TURBOPROP

Africa, Airbus; A vision of the future

B.S. PROGRAM IN AVIATION TECHNOLOGY MANAGEMENT Course Descriptions

Runway Incursion Preventive measures at aircraft level

INTERNATIONAL STANDARD

National Microelectronics Institute Available from:

User Terminal certification process considerations

9/16/ CHG 213 VOLUME 3 GENERAL TECHNICAL ADMINISTRATION CHAPTER 61 AIRCRAFT NETWORK SECURITY PROGRAM

Garrecht TRX 1500 Traffic-Sensor

Glass Cockpits in General Aviation Aircraft. Consequences for training and simulators. Fred Abbink

AIRBUS VIEW ON STRUCTURAL MODIFICATIONS TO COMPOSITE COMPONNENT

TABLE OF CONTENTS 1.0 INTRODUCTION...

Part 63 CAA Consolidation 22 June 2006 Flight Engineer Licences and Ratings

AFI Flight Operations Safety Awareness Seminar (FOSAS)

Services by Airbus. Training. Maintenance. Training. Reaching new horizons together

Morgan Stanley Commercial update. Morgan Stanley. Airbus Commercial Update. Mark Pearman Wright Head of Corporate & Investor Marketing

Global Interoperability - Airborne Architecture and Avionics Interoperability Roadmap Project Number Project Manager

RNP AR APCH Approvals: An Operator s Perspective

A350 XWB Flight Crew Training Concept

Implementation challenges for Flight Procedures

Unmanned Aircraft Systems Integration

RPAS INTEGRATION INTO EU AIRSPACE. INTERNATIONAL CONFERENCE On CIVIL RPAS OPERATIONS

State Oversight Challenges

Fly at the speed of ingenuity on your Learjet 85

U.S. DEPARTMENT OF TRANSPORTATION FEDERAL AVIATION ADMINISTRATION. National Policy

ASTM International Committee F38 Unmanned Aircraft Systems. Michael J. Goy Defense Standardization Program Office

TWELFTH AIR NAVIGATION CONFERENCE

Gogo Connected Aircraft Services

SYSTEM DEVELOPMENT AND FLIGHT TEST SOLUTIONS

Transcription:

Multi/many core in Avionics Systems 4th TORRENTS Workshop December, 13 th 2013 Presented by Jean-Claude LAPERCHE - AIRBUS

Agenda Introduction Processors Evolution/Market Aircraft needs Multi/Many-core Drawbacks & Possible ways Other challenges for multi-core in avionics system Conclusion Page 2

Introduction Improvement of Aircraft (A/C) Safety over last 50 years, Many factors : Training, Regulation rules,... Annual Accident Rate (per millions departures) 70 60 50 40 30 20 10 0 1959 2010 New A/C, New functions (Fly-by-wire,...), Safety Improvement is the result of the COTS use and above all COTS µps allowing more and more A/C functions. Page 3

Processors Evolution From 1970 to 200x : Mono-core architecture Processing power by frequency, Cache but thermal dissipation limit. In 2005, Intel stops the Ghz race for the new "performance per watt" race. Objective: consumption 10 by using Electronic integration Multi-Core Processor (MCP) architecture INTEL Roadmap Page 4

Processors Market All µp/fpga Manufacturers offer Multi-core µprocessor products Consumer Market and Telecom, Automotive, Medical markets Low power consumption multicore boosted by Tablet, Smartphone, movable device (medical, military..) Page 5

Processors Market Avionics does not lead the processors market Other targeted markets do not have the same constraints Only few multi-core COTS are eligible for avionics COTS internal architectures are in constant evolution o o Towards Systems-On-Chip Increase of power computing multi-core many-core Page 6

Aircraft trends New functions for navigation optimization, Synthetic visualization, Data transmission, Increased software size, High Speed Communication Buses(1Ghz Network 10000 A429 (100Kb/s)) Security Data management, Integration: incorporate more and more functions in one computer (less weight, volume, watts,.), Obsolescence management, Multi/Many-cores could : Be an answer for these needs, Help Aircraft Manufacturer to continue improving Safety Page 7

Multi/Many-core Drawbacks & Possible ways External Memory Controller 2 Core 1 Cache L1/L2 Core 2 Cache L1/L2... Core n Cache L1/L2 Memory Controller 1 External Memory Cache L3 I/O 1 Interconnect... I/O n Cache L3 Memory Timing variability Shared Cache (L3), Memory controllers: accesses slowed down if simultaneous requests from I/O controllers. Possible ways Limit functional usage domain (same as mono-core µp) of the Multicore SoC to decrease demonstration efforts, Find an adequate execution model to meet our predictability requirements, Determine how to support robust partitioning (temporal, space, I/Os). Page 8 WCET: Worst case Execution Time

Multi-core processor for Avionics - Draft3 November 013 Multi/Many-core Drawbacks & Possible ways Self-reconfiguration: - Frequency self modification in case of overheat, - ARM Big/Little Architecture: Self selection of the appropriate Core with no indication to the software Possible ways: - to deactivate these functions if possible, - To use these functions under software management (with a complete behavior change) Page 9

Multi/Many-core Drawbacks & Possible ways Software Integration: Lack of observability & Verification Means, Possible ways: Simulation, Instrumentation/monitoring, internal debug features, SEU/MBU (cosmic radiation) management If SEU rate should be stable, the ratio SEU/MBU ratio could increase. Analysis more complex, SEU/MBU effect on common features? Possible Ways: Duplication/Triplication of application to detect/correct impact of SEU/MBU Impact on processing power, time variability, etc Easier with many-cores than with multi-cores? Page 10 SEU: Single Event Upset MBU: Multiple Bit Upset

Multi/Many-core Drawbacks & Possible ways Reliability & Life Time: Multi/Many-core first components using electronic integration. Failure rate Life time Delivery Avionics system need Infant Mortality Random Failure Phase Impact on: Phase Reliability Infant mortality phase: failures during Final Assembly Line Reliability: MTBF ; Wear Out Phase: DMC(DirectMaintenanceCost), Prediction models? Possible ways System Architecture (Redundancy/ Backup ) Possibility to increase Reliability/Life time with a specific use : - cores switch off/on, cyclic use, lower voltage, lower frequency? New screening method to improve Infant Mortality Phase Wear out Phase Time Page 11

Multi/Many-core Drawbacks & Possible ways Safety demonstration: Quantitative analysis: Today based on constant failure rates. Tomorrow need to take into account wear-out phase (mean failure rate, Weibull law, )? Multi/many-core not developed according to aeronautical standards (as usual for COTS component), Safety analysis depends on erroneous behaviour detection coverage Possible ways Set up mitigation means to limit the Multi/Many-Core COTS undesired effects impacts (Architecture mitigation): At equipment level, At function/system level. Page 12

Multi/Many-core Drawbacks & Possible ways Mitigation means at equipment level: Example of monitoring on mono-core SOC: Not linked with A/C function Mono-Core µp CPU Core (DO178 Zone) Complex Peripheral Zone DO254 or DO178 µp Zone ( Clock, Power Supply) Equipment Inputs / Outputs Validation of ALL exchanged Data (CRC ) Global behaviors monitoring (watchdog, ) Page 13 DO178: Software considerations in airborne systems and equipment certification DO254: Design Assurance Guidance for Airborne Electronic hardware

Multi/Many-core Drawbacks & Possible ways Mitigation means at equipment level: For Multi-core : same principle with cross-check between cores and 1 final check by an external proven component. External Memory Controller 2 Core 1 Cache L1/L2 Core 2 Cache L1/L2... Core n Cache L1/L2 Memory Controller 1 External Memory Cache L3 I/O 1 Interconnect... I/O n Cache L3 Memory DO254 or DO178 µp Zone ( Clock, Power Supply) Page 14

Multi/Many-core Drawbacks & Possible ways Mitigation means at Function - AC Level: Example of monitoring on mono-core SOC COTS Computer 1 ² F F: Function MF: Monitoring Function Computer 2 Servo- Control MF CPU zone Complex Peripheral Zone Page 15

Multi/Many-core Drawbacks & Possible ways Mitigation means at Function - AC Level: Example of monitoring on mono-core SOC COTS Computer 1 F F 1 Computer 2 Servo- Control F1 : Monitoring of COTS behavior => data known, same spatial and timing that functional data linked with safety objectives. Check MF F1 CPU zone Complex Peripheral Zone Monitoring could be adapted to Multicore/manycore Page 16

Other challenges for multi/many-core in avionics Fault Tolerance concept [For safety critical system (as FlightByWire)] Multi/many cores could integrate more and more A/C functions Total Component failure: simultaneous system reconfigurations! Partial component failure (1 or more cores) or fault due to SEU : reconfiguration to another core, should be done without impact at computer/aircraft level Because, in case of failure, System Designer has to master Computers/A/C functions reconfiguration, impact on hydraulic or electric networks, A/C zonal analysis, Crew alerting. With no or limited impact on aircraft flight Internal reconfiguration of Multi/Many-core could be set up only to reach reliability/safety objectives at component/equipment level. Page 17

Other challenges for multi/many-core in avionics System Architecture o Multi-core COTS could have significant impact on system architecture: To be adapted to multi-core: WCET demonstration, parallel programming, Due to Architecture Mitigation Dissimilarity? New Monitoring? Fault tolerant architecture Certification aspects: o Mainly derived from technical aspects and ways to use the COTS (confidence in COTS is based on experience) o Airworthiness authorities could request more justifications Page 18

Other challenges for multi/many-core in avionics Industrial aspect: o Faultless support of component manufacturer (access to design data) o To design «long lasting» solutions by limiting adherence to internal COTS architectures o To Maintain competence during 30-50years o Avoid only one multi/many-core manufacturer for avionics, Page 19

Conclusion Multi/many-Core Processor : Normal evolution for avionics systems, Complexity will continue to increase, Complex/long studies to develop skills/solution/certification justifications, Potential impact on system architecture, Multi/Many-cores could : propose opportunity for new A/C functions, Help Aircraft Manufacturer to continue improving Safety. Page 20

Thank You AIRBUS S.A.S. All rights reserved. Confidential and proprietary document. This document and all information contained herein is the sole property of AIRBUS S.A.S. No intellectual property rights are granted by the delivery of this document or the disclosure of its content. This document shall not be reproduced or disclosed to a third party without the express written consent of AIRBUS S.A.S. This document and its content shall not be used for any purpose other than that for which it is supplied. The statements made herein do not constitute an offer. They are based on the mentioned assumptions and are expressed in good faith. Where the supporting grounds for these statements are not shown, AIRBUS S.A.S. will be pleased to explain the basis thereof. AIRBUS, its logo, A300, A310, A318, A319, A320, A321, A330, A340, A350, A380, A400M are registered trademarks. Page 21

2024 © travelsdocbox.com Privacy Policy | Terms of Service | Feedback