Www.tttech.com Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 1 Christian Fidi Product Manager Advantages cFS.

Slides:

Advertisements

Similar presentations

Express5800/ft series servers Product Information Fault-Tolerant General Purpose Servers.

Advertisements

Threads, SMP, and Microkernels

System Area Network Abhiram Shandilya 12/06/01. Overview Introduction to System Area Networks SAN Design and Examples SAN Applications.

Copyright © 2009, TTTech Computertechnik AG. All rights reserved; may be published with permission by MAPLD 2009 Reliable Synchronization.

Advantages of Deterministic Ethernet for Space Applications

WHAT IS AN OPERATING SYSTEM? An interface between users and hardware - an environment "architecture ” Allows convenient usage; hides the tedious stuff.

Master/Slave Architecture Pattern Source: Pattern-Oriented Software Architecture, Vol. 1, Buschmann, et al.

Distributed Systems 1 Topics  What is a Distributed System?  Why Distributed Systems?  Examples of Distributed Systems  Distributed System Requirements.

1 Cheriton School of Computer Science 2 Department of Computer Science RemusDB: Transparent High Availability for Database Systems Umar Farooq Minhas 1,

Business Continuity and DR, A Practical Implementation Mich Talebzadeh, Consultant, Deutsche Bank

1: Operating Systems Overview

TTP ® - As Predictable as Time 1 Copyright © 2002, TTTech Computertechnik AG. All rights reserved. TTTech Powernode As a Linux Prototyping Platform for.

Page 1 Copyright © Alexander Allister Shvartsman CSE 6510 (461) Fall 2010 Selected Notes on Fault-Tolerance (12) Alexander A. Shvartsman Computer.

Exemplar CFS Architecture

The Pursuit for Efficient S/C Design The Stanford Small Sat Challenge: –Learn system engineering processes –Design, build, test, and fly a CubeSat project.

Computer System Architectures Computer System Software

Distributed Real-Time Systems for the Intelligent Power Grid Prof. Vincenzo Liberatore.

UNIX System Administration OS Kernal Copyright 2002, Dr. Ken Hoganson All rights reserved. OS Kernel Concept Kernel or MicroKernel Concept: An OS architecture-design.

HRTC Meeting 12 September 2002, Vienna Smart Sensors Thomas Losert.

1 Fault Tolerance in the Nonstop Cyclone System By Scott Chan Robert Jardine Presented by Phuc Nguyen.

LOGO OPERATING SYSTEM Dalia AL-Dabbagh

 What is an operating system? What is an operating system?  Where does the OS fit in? Where does the OS fit in?  Services provided by an OS Services.

Version 4.0. Objectives Describe how networks impact our daily lives. Describe the role of data networking in the human network. Identify the key components.

Operating System Review September 10, 2012Introduction to Computer Security ©2004 Matt Bishop Slide #1-1.

Virtualization. Virtualization  In computing, virtualization is a broad term that refers to the abstraction of computer resources  It is "a technique.

Chapter 3: Operating-System Structures System Components Operating System Services System Calls System Programs System Structure Virtual Machines System.

1 Client Server Architecture over the Internet Week - 2.

So, Jung-ki Distributed Computing System LAB School of Computer Science and Engineering Seoul National University Implementation of Package Management.

IMPROUVEMENT OF COMPUTER NETWORKS SECURITY BY USING FAULT TOLERANT CLUSTERS Prof. S ERB AUREL Ph. D. Prof. PATRICIU VICTOR-VALERIU Ph. D. Military Technical.

Eric Keller, Evan Green Princeton University PRESTO /22/08 Virtualizing the Data Plane Through Source Code Merging.

Chapter 2: Operating-System Structures. 2.2 Silberschatz, Galvin and Gagne ©2005 Operating System Concepts – 7 th Edition, Jan 14, 2005 Operating System.

ITER – Interlocks Luis Fernandez December 2014 Central Interlock System CIS v0.

Repeaters and Hubs Repeaters: simplest type of connectivity devices that regenerate a digital signal Operate in Physical layer Cannot improve or correct.

The University of Bolton School of Games Computing & Creative Technologies LCT2516 Network Architecture CCNA Exploration LAN Switching and Wireless Chapter.

Embedded Runtime Reconfigurable Nodes for wireless sensor networks applications Chris Morales Kaz Onishi 1.

Middleware for FIs Apeego House 4B, Tardeo Rd. Mumbai Tel: Fax:

Time Triggered Networks: use in space 2015 CCSDS spring SOIS Plenary 23 March 2015 Glenn Rakow/NASA-GSFC.

PARALLEL COMPUTING overview What is Parallel Computing? Traditionally, software has been written for serial computation: To be run on a single computer.

OSIsoft High Availability PI Replication

An Architecture and Prototype Implementation for TCP/IP Hardware Support Mirko Benz Dresden University of Technology, Germany TERENA 2001.

1: Operating Systems Overview 1 Jerry Breecher Fall, 2004 CLARK UNIVERSITY CS215 OPERATING SYSTEMS OVERVIEW.

Problem-solving on large-scale clusters: theory and applications Lecture 4: GFS & Course Wrap-up.

Simics: A Full System Simulation Platform Synopsis by Jen Miller 19 March 2004.

A. Frank - P. Weisberg Operating Systems Structure of Operating Systems.

Advantages of Time-Triggered Ethernet

Chapter 13 – I/O Systems (Pgs ). Devices  Two conflicting properties A. Growing uniformity in interfaces (both h/w and s/w): e.g., USB, TWAIN.

CCSDS SOIS Working Group Meeting – Berlin, Germany 14th of October 2008 Prototyping of CCSDS SOIS services on 1553 Bus Sev Gunes-Lasnet, Olivier Notebaert.

Real-Time Systems, Events, Triggers. Real-Time Systems A system that has operational deadlines from event to system response A system whose correctness.

Synthesis of Communication Schedules for TTEthernet-based Mixed-Criticality Systems Domițian Tămaș-Selicean 1, Paul Pop 1 and Wilfried Steiner 2 1 Technical.

Timing Analysis of Rate Constrained Traffic for the TTEthernet Communication Protocol Domițian Tămaș-Selicean 1, Paul Pop 1 and Wilfried Steiner 2 1 Technical.

NASA Orion Avionics Architecture Joseph Moholt All Points Logistics © 2015 Lockheed Martin Corporation. All Rights Reserved.

March 2004 At A Glance The AutoFDS provides a web- based interface to acquire, generate, and distribute products, using the GMSEC Reference Architecture.

1 Security Architecture and Designs  Security Architecture Description and benefits  Definition of Trusted Computing Base (TCB)  System level and Enterprise.

Click to edit Master title style Sytel’s High Availability Strategy © 2012 Sytel Limited. All rights reservedVersion 2.5.

OSIsoft High Availability PI Replication Colin Breck, PI Server Team Dave Oda, PI SDK Team.

JSTAR Independent Test Capability (ITC) Core Flight System (CFS) Utilization October 26, 2015 Justin R Morris NASA IV&V Program.

Chapter 6: Securing the Cloud

Introduction to Distributed Platforms

Software Architecture in Practice

Design and realization of Payload Operation and Application system of China’s Space Station Wang HongFei 首页.

Grid Computing.

Software Engineering Introduction to Apache Hadoop Map Reduce

Christian Fidi Product Manager 2017/05/12

QNX Technology Overview

Modeling and Simulation of TTEthernet

DETERMINISTIC ETHERNET FOR SCALABLE MODULAR AVIONICS

Advanced Exploration Systems (AES) Core Flight Software (CFS) Project

NASA/ Johnson Space Center

Knowing When to Stop: An Examination of Methods to Minimize the False Negative Risk of Automated Abort Triggers RAM XI Training Summit October 2018 Patrick.

Mark McKelvin EE249 Embedded System Design December 03, 2002

Presentation transcript:

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 1 Christian Fidi Product Manager Advantages cFS and Time-Triggered Ethernet October 26 th, 2015

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 2 Overview and Motivation IMA Considerations in Networking Requires network capable of accommodating traffic from multiple highly diverse systems (e.g. critical vs. non-critical) – potentially all from one shared computer platform. Must prevent cascading faults b/w systems of differing criticalities connected to the same physical network. Most avionic system failures result from ineffective fault containment and the resulting domino effect. Some network technologies are better suited for certain tasks. Applying the same technology everywhere traditionally results in undue expense and limited performance. Results in hybrid architectures with multiple technologies (e.g. NASA’s LRO has MIL-STD-1553, SpaceWire, LVDS).

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 3 Overview and Motivation Ethernet is promising Inexpensive, widespread, and high speed = highly flexible. Commonality promotes interchangeability between components. Can augment with QoS enhancements for critical applications. The A&S project considers Ethernet fundamental in the design of future manned spacecraft. Integrated Power, Avionics, and Software (IPAS) Flexible evaluation environment for hardware and software in simulated mission scenarios. Realistic framework of vehicle subsystems connected via Ethernet backbone. AIAA 2015 Conference presentaion of Andrew Loveless

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 4 Ethernet in Space Programs

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 5 Asynchronous Communication  Transmission points in time are not predictable  Transmission latency and jitter accumulate  Number of hops has a significant impact Ethernet = Unsynchronized Communication

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 6 Time-Triggered Ethernet TTEthernet = combination on the same physical network of SAE AS6802 fully synchronous gloabl time-base very small jitter < 1  s defined known latency redundancy MGMT SAE AS6802 fully synchronous gloabl time-base very small jitter < 1  s defined known latency redundancy MGMT Rate-Constraint ARINC664p7 asynchronous jitter < 500  s latency typical 1-10 ms redundancy MGMT Rate-Constraint ARINC664p7 asynchronous jitter < 500  s latency typical 1-10 ms redundancy MGMT IEEE802.3 asynchronous best effort Ethernet no performance guarantee high flexibility IEEE802.3 asynchronous best effort Ethernet no performance guarantee high flexibility

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 7 FT Synchronized Global Time Fault-tolerant synchronization services are needed for establishing a robust global time base in the sub-microsecond area

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 8 Master Clock Configuration Single Master Clock Configuration

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 9 Time-triggered Traffic Timing Full control of timings in the system Defined latency and sub-microsecond jitter Minimum memory needs Fault-containment regions I’ll transmit M at 10:45 I’ll accept M only between 10:40 and 10:50 I’ll forward M at 11:00 I’ll accept M only between 10:55 and 11:05 I’ll forward M at 11:10 Let’s see if I can receive M …a switch I’ll expect M between 11:05 and 11:15 MMMM

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 10 Ascent Abort 2 (AA-2) Simulation What is the Ascent Abort 2 Flight Test? Launch Abort System (LAS) carries CM away from ascent booster. Goal is to stress the capabilities of synchronized redundant control loop. Conducted AA-2 flight test demo in May ‘15 Integrated Test at JSC. Redundant Flight Computer Architecture Three identical redundant flight computers (pc-linux). Failover logic built into core Flight Software System (cFS). Synchronization over TTEthernet network (200Hz). cFS included several genuine Orion fsw components: Absolute Navigation (AbsNav) for Exploration Mission EM-1. Service module abort, stochastic/optical navigation, and propellant balancing. ANTARES simulation integrated into Tricksim. Official NASA Orion spacecraft assessment tool used by JSC’s GNC branch. AIAA 2015 Conference presentation of Andrew Loveless

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 11 Combines the concept of scheduling the execution of cFS apps with scheduling of the TTE network. Drives FSW execution (i.e. minor frame transitions) off cluster cycle interrupts. Payoff: Highly accurate scheduler despite nondeterministic platform/OS.  Important for sync/failover b/w FCs! 1 2 Network-based cFS Scheduler AIAA 2015 Conference presentation of Andrew Loveless

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 12 Flight Computer Synchronization Master/Slave – only one FC drives the sim at a time. Each computer runs identical cFS w/ different config. files. Master FC (highest priority)  Executes cFS according to TTE time base.  Instructs other machines to move b/w slots. Failover Capability FCs monitor health of peers. Failover to consecutive slot guaranteed. Future Work Network-based sync without state messages (i.e. Altair). Message-based synchronization used in AA-2 demo Network-based cFS Scheduler AIAA 2015 Conference presentation of Andrew Loveless

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 13 Conducted in iPAS facility (B29/131). A TTE network switch was failed. The primary flight computer was failed. The backup computer(s) continued flying without a loss of performance. Final setup for AA-2 demo (A&S IT1 5/2015) Engineering DOUG Graphics for Exploration (EDGE) displays simulated flight test progress IPv4 and UDP layers used for flight control loop 40Hz communication rate between FCs and sim AA-2 test setup in EV2 lab B44/132 A&S Integrated Test 1 (5/2015) AIAA 2015 Conference presentation of Andrew Loveless

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 14 Industry Trend: Partitioning Multiple SW APPs are executed in Time and Space Partitions on A high performance, low cost HW (SoCs) OS1 APP LinuxOS3 APP Hypervisor / TSP OS SoC (CPU, FPGA, MEM, …)

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 15 Distributed IMA

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 16 Distributed IMA

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 17 Conclusion No virtualization was used for the AA-2 iPAS demo The OS was synchronized to the network via IRQs Automatic scheduling tools integrating cFS task/message schedule and Network schedule would be needed for more complex schedules Would this hardware partitioning provide advantages for task in a federated OS or for partitions of an IMA OS Extend user base of TTEthernet by support projects like iPAS, Chrec, …

Ensuring Reliable Networks Copyright © TTTech Computertechnik AG. All rights reserved.Page 18 Any Questions? Thank You!