Mission Data System A Unified Model-based Systems and Software Engineering Approach to ISHM Michel Ingham, Gregory Horvath, David Wagner Jet Propulsion.

Slides:



Advertisements
Similar presentations
ARCHITECTURES FOR ARTIFICIAL INTELLIGENCE SYSTEMS
Advertisements

MBD in real-world system… Self-Configuring Systems Meir Kalech Partially based on slides of Brian Williams.
Object-Oriented Software Development CS 3331 Fall 2009.
© Chinese University, CSE Dept. Software Engineering / Software Engineering Topic 1: Software Engineering: A Preview Your Name: ____________________.
Software Modeling SWE5441 Lecture 3 Eng. Mohammed Timraz
CS 795 – Spring  “Software Systems are increasingly Situated in dynamic, mission critical settings ◦ Operational profile is dynamic, and depends.
SSP Re-hosting System Development: CLBM Overview and Module Recognition SSP Team Department of ECE Stevens Institute of Technology Presented by Hongbing.
Copyright © 2006 Software Quality Research Laboratory DANSE Software Quality Assurance Tom Swain Software Quality Research Laboratory University of Tennessee.
Integrating POMDP and RL for a Two Layer Simulated Robot Architecture Presented by Alp Sardağ.
Course Instructor: Aisha Azeem
IV&V Facility Model-based Design Verification IVV Annual Workshop September, 2009 Tom Hempler.
Architectural Design Establishing the overall structure of a software system Objectives To introduce architectural design and to discuss its importance.
Software Architecture. Agenda " Why architect? " What is architecture? " What does an architect do? " What principles guide the process of architecting?
1 Software Testing Techniques CIS 375 Bruce R. Maxim UM-Dearborn.
Domain-Specific Software Engineering Alex Adamec.
PROGRAMMING LANGUAGES The Study of Programming Languages.
UML - Development Process 1 Software Development Process Using UML (2)
1 EVALUATING INTELLIGENT FLUID AUTOMATION SYSTEMS USING A FLUID NETWORK SIMULATION ENVIRONMENT Ron Esmao - Sr. Applications Engineer, Flowmaster USA.
Katanosh Morovat.   This concept is a formal approach for identifying the rules that encapsulate the structure, constraint, and control of the operation.
CSCE 548 Secure Software Development Risk-Based Security Testing.
CLEANROOM SOFTWARE ENGINEERING.
A Hierarchical Approach to Model-based Reactive Planning in Large State Spaces Artificial Intelligence & Space Systems Laboratories Massachusetts Institute.
Rational Unified Process Fundamentals Module 4: Disciplines II.
Instructor: Peter Clarke
Mathematical Modeling and Formal Specification Languages CIS 376 Bruce R. Maxim UM-Dearborn.
Object-Oriented Software Engineering Practical Software Development using UML and Java Chapter 1: Software and Software Engineering.
SOFTWARE DESIGN (SWD) Instructor: Dr. Hany H. Ammar
Testing Workflow In the Unified Process and Agile/Scrum processes.
University of Toronto Department of Computer Science © Steve Easterbrook. This presentation is available free for non-commercial use with attribution.
MIT Dept of Aeronautics and Astronautics March 21, 2003 Graduate Open House Aero/Astro Open House MERS Research Group Model-based Embedded and Robotic.
Lecture 7: Requirements Engineering
BE-SECBS FISA 2003 November 13th 2003 page 1 DSR/SAMS/BASP IRSN BE SECBS – IRSN assessment Context application of IRSN methodology to the reference case.
1 Jillian Redfern Orbital Express Presentation TITAN All-Hands 07/08/2003.
MURI: Integrated Fusion, Performance Prediction, and Sensor Management for Automatic Target Exploitation 1 Dynamic Sensor Resource Management for ATE MURI.
Review of Software Process Models Review Class 1 Software Process Models CEN 4021 Class 2 – 01/12.
Aero/Astro Open House MERS Research Group Model-based Embedded and Robotic Systems Group Space Systems Laboratory Massachusetts Institute of Technology.
Database Environment Chapter 2. Data Independence Sometimes the way data are physically organized depends on the requirements of the application. Result:
MILAN: Technical Overview October 2, 2002 Akos Ledeczi MILAN Workshop Institute for Software Integrated.
Cmpe 589 Spring 2006 Lecture 2. Software Engineering Definition –A strategy for producing high quality software.
Massachusetts Institute of Technology September 7, 2005 A Tractable Approach to Probabilistically Accurate Mode Estimation Oliver B. Martin Seung H. Chung.
Requirements Validation
Architecture View Models A model is a complete, simplified description of a system from a particular perspective or viewpoint. There is no single view.
Software Engineering1  Verification: The software should conform to its specification  Validation: The software should do what the user really requires.
Smart Home Technologies
Discovery and Systems Health Technical Area NASA Ames Research Center - Computational Sciences Division Automated Diagnosis Sriram Narasimhan University.
21/1/ Analysis - Model of real-world situation - What ? System Design - Overall architecture (sub-systems) Object Design - Refinement of Design.
OOD OO Design. OOD-2 OO Development Requirements Use case analysis OO Analysis –Models from the domain and application OO Design –Mapping of model.
Methodology Review Chapter 7 Part 2: Design Methodology Object-Oriented Modeling and Design Byung-Hyun Ha
Testing Overview Software Reliability Techniques Testing Concepts CEN 4010 Class 24 – 11/17.
Application architectures Advisor : Dr. Moneer Al_Mekhlafi By : Ahmed AbdAllah Al_Homaidi.
Timed Model-based Programming: Executable Specifications for Robust Mission-Critical Sequences Michel Ingham, Seung Chung, Paul Elliott, Oliver Martin,
Sub-fields of computer science. Sub-fields of computer science.
CSCE 548 Secure Software Development Risk-Based Security Testing
Monitoring Dynamical Systems: Combining Hidden Markov Models and Logic
The Development Process of Web Applications
Reading B. Williams and P. Nayak, “A Reactive Planner for a Model-based Executive,” International Joint Conference on Artificial Intelligence, 1997.
OVERVIEW Impact of Modelling and simulation in Mechatronics system
Complexity Time: 2 Hours.
NASA Ames Research Center
Software Requirements
The Extensible Tool-chain for Evaluation of Architectural Models
Model Checking for an Executable Subset of UML
Chapter 20 Object-Oriented Analysis and Design
Chapter 5 Architectural Design.
Analysis models and design models
Automated Analysis and Code Generation for Domain-Specific Models
Presented By: Darlene Banta
Chapter 5 Architectural Design.
Overview Activities from additional UP disciplines are needed to bring a system into being Implementation Testing Deployment Configuration and change management.
Presentation transcript:

Mission Data System A Unified Model-based Systems and Software Engineering Approach to ISHM Michel Ingham, Gregory Horvath, David Wagner Jet Propulsion Laboratory, California Institute of Technology Oliver Martin, Seung Chung, Paul Elliott, Brian Williams Computer Science and Artificial Intelligence Laboratory, MIT ISHEM Workshop 11/09/2005

Motivation Spacecraft operate in a harsh, uncertain environment. Spacecraft achieve robustness by managing a complex set of redundant subsystems, over a range of possible nominal and off-nominal scenarios. Reasoning about interactions within and between subsystems during sensing and actuation is complex and error-prone, and requires significant interaction between systems engineers and software programmers. The traditional gap between systems and software engineering can lead to errors that manifest themselves as software defects. NASA software engineering practice has been challenged to create and verify space systems that assure correctness, reliability, and robustness in a timely and cost effective manner.

Objective/Vision Current Practice: System Software is a Surrogate for Systems Engineers, and Software Engineers perform the transformation. Our Goal: Models from Systems Engineers are provided directly to the embedded system, which is capable of reasoning through them to accomplish mission objectives and manage the health of the system!

Approach  The State-of-the-Art is still far from fully achieving this Vision  Yet even incremental steps toward this Vision can greatly improve on the current practice, producing software that is: Less error-prone, More robust to off-nominal situations,  Three facets of our approach: Develop representations and algorithms that endow the embedded system with the requisite reasoning capabilities (Model-based Programming and Execution) Integrate these technologies into a principled software architecture that facilitates adaptation to a particular application (State-based control architecture and MDS software framework) Provide Systems Engineers with methods and tools that help them reason through the system design and develop models in a rigorous way (State Analysis) Cheaper, Easier to verify, etc…

State Analysis  A uniform, methodical, and rigorous approach for…  Discovering, characterizing, representing, and documenting the states of a system  Modeling the behavior of states and relationships among them, including information about hardware interfaces and operation  Capturing the mission objectives in detailed scenarios motivated by operator intent  Keeping track of system constraints and operating rules, and  Describing the methods by which objectives will be achieved  For each of these design aspects, there is a simple but strict structure within which it is defined… Available Power Margin Module Temperature Battery State of Charge derived effects derived state (dependent state) independent state measurement data state data effect state effect command data state RTG Output Current Measurement s state RTG Output Current External Temperature Module Temperature Measurements Heater Switch Measurements Battery State of Charge Measurements Heater Switch Status and Health Heater Power Use Heater Switch Commands An example State Effects Diagram

Msmt: Ant_N Pointing Msmt: Ant_N Motor Current Msmt: Ant_N Mech OpMode Msmt: Ant_N Mech Power Msmt: Array Correlator Power Simple: Ant_N Mech OpMode & Health Cmd: Ant_N Mech D.S. Cmd: Signal Inclusion D.S. Simple: Array SP Correlator & Combiner State Simple: Background & Noise Signal State Target Signal State Msmt: Ant_N Received Signal Simple: Ant_N Received Signal Msmt: Correlation matrix Msmt: Signal Weights Simple: Combined Signal State Msmt: Combined Signal SNR Overview of State Analysis 1. System to be controlled 3. Model informs software design 2. State Analysis produces model 4. Model informs operations Ant_N Mech OpMode & Health: Healthy, Tracking & On-point Target Signal: Always Present Noise & Background: Unconstrained Received Signal 1: Target Signal present Received Signal 1: Is Known Received Signal 1: Transition to Target Signal Present If Ant_N Mech OpMode & Health = not shutdown or offline if Target Signal State = present and Ant_N Mech OpMode & Health = on-point then: Target + Noise + Background else: Noise + Background Goal Supporting Goal Min to Max Power off Stowed or go-idle End-of-profile or go-idle Power on Shutdown Idle Off-pnt msmt On-pnt msmst Tracking On-pnt Off-pnt Power off Go to Stowed Begin Tracking Offline & ready Come online cmd Go offline cmd Repaired msmt Offline & not ready Stowing Ant. N Mech. Controller Ant. N Hardware Adapter Ant. N Mech. Estimator Measurements & Commands Commands State Functions State Values Ant. N Mech. State Variable Models

State-based Control Architecture System Under Control State Control Hardware Adapter Mission Planning & Execution Control Goals Sense State Estimation Act Measurements & Commands Commands State Functions State Values Knowledge Goals State Knowledge Models Clear delineation between control system and system under control Explicit state variables Separation of estimation from control; diagnosis and recovery are integrated with nominal execution Models inform all aspects of control system System operation via overt, objective statements of intent

Goals State Variables Estimators Controllers Measurements Commands Various Models Resources Allocations State Constraints Time Constraints Scenario Fragments Time EWS/EWC Serialization ACE C++ Standard Library Unit TestingRTOS NamingTimeDM/DT/PolicyCCSDSELF MathEstimationExceptionUtilityInitialization Components/ConnectorsData CatalogValue HistoryData Transport State KnowledgeGoal Achiever:H/w AdapterGoal Network GEL Graph State Variable State Query VisualizationSimulationScheduler GraphPhysics: Common Vocabulary Reduces Errors of Translation State Analysis: Model-based Requirements Map Directly to Software Bridging the Gap between Systems & Software Engineering System Under Control State Control Hardware Adapter Mission Planning & Execution Control Goals Sense State Estimation Act Measurements & Commands Commands State Functions State Values Knowledge Goals State Knowledge Models

Embedded programs interact with the system’s sensors/actuators: Read sensors Set actuators Model-based programs interact with the system’s (hidden) state directly: Read state Set state Embedded Program State Plant Obs Cntrl Programmers must reason through interactions between state and sensors/actuators. Model-based Executives automatically reason through interactions between states and sensors/actuators. Model-based Embedded Program State Plant Estimated State Model-based Executive ObsCntrl Model-based Programming

Integrating Model-based Programming and Execution into the Architecture System Under Control State Control Hardware Adapter Mission Planning & Execution Control Goals Sense State Estimation Act Measurements & Commands Commands State Functions State Values Knowledge Goals State Knowledge Models Model-based reasoning algorithms to compute a series of commands that progress the system towards a least-cost state that achieves the goal. Goal Interpreter Reactive Planner Configuration Goals Goal State Command Current State Model-based reasoning algorithm: Tracks a limited set of most-likely states Explores state space in best-first order Models are used EXPLICITLY by the control system

Model Representation: PCCA (Variant of Factored POMDP) Standby Engine Model Off Failed Firing component modes… (thrust = full) AND (power_in = nominal) (thrust = zero) AND (power_in = zero) (thrust = zero) AND (power_in = nominal) described by finite domain constraints on variables… with deterministic and probabilistic transitions… off-cmd standby-cmd standby-cmd fire-cmd and cost/reward one per component … operating concurrently Camera Model On Off turnoff-cmd turnon-cmd (power_in = zero) AND (shutter = closed) (power_in = nominal) AND (shutter = open) Resettable reset-cmd

Estimation Using PCCA Models  PCCA system model is compiled into a form suitable for reasoning (propositional logic)  Belief State evolution visualized with a Trellis Diagram  Complete history knowledge is captured in a single belief state by exploiting the Markov property  For each estimation cycle, belief states are computed using the HMM belief state update equations: tt+1

Computationally Tractable State Estimation & Fault Diagnosis  Recast Belief State Update problem as an Optimal Constraint Satisfaction Problem (OCSP)  Solve using OPSAT engine: conflict-directed best-first search most-likelycandidate most-likely state estimate conflicts (infeasible modes) consistent with model & obs? consistent with model & obs? conflict database conflict database  The belief state can be accurately approximated by maintain the k most likely estimates  The probability of each state can be accurately approximated by the most likely trajectory to that state  The observation probability can be reduced to  1.0 for observations consistent with the state,  0.0 for observations inconsistent with the state Approximations to Estimation Assumptions made by Livingstone, Livingstone-2 Assumptions relaxed by Titan Model-based Executive

Diagnostic Algorithm Performance  Two primary concerns regarding application of model-based reasoning onboard spacecraft are processor throughput and memory limitations  To address this concern, we have evaluated the performance of Titan’s state estimation capability in terms of estimation time and static/heap memory utilization  Variety of models (up to subsystem-size)  Variety of nominal and off-nominal scenarios (auto-generated)

Computationally Tractable State Control & Fault Recovery INPUT  Current State  Tank = full  Pressure = nominal  Driver = off  Valve = closed  Thruster = off  Configuration Goal  Thrust = on OUTPUT  Goal State  Tank = full  Pressure = nominal  Driver = off  Valve = open  Thruster = on Goal Interpreter Configuration Goals Goal State Current State OPSAT is used to generate optimal goal state that achieves the Configuration Goal! Reactive Planner Goal State Command Current State Ensures progress toward the goal state, only generates non-destructive actions, never proposes actions that lead to dead- end plans, and operates at reactive time scale. INPUT  Current State  Tank = full  Pressure = nominal  Driver = off  Valve = closed  Thruster = off  Goal State  Tank = full  Pressure = nominal  Driver = off  Valve = open  Thruster = on OUTPUT  Command  Turn driver on fail Goal fail driver = on cmd = open idle driver = on cmd = close Current Open Closed Stuck Open Closed Goal cmd = onidle cmd = off Current On Off Resettable On Off cmd = resetcmd = off

Demonstrated Benefits End-to-end Lifecycle Approach  Model-based systems engineering at the core  Earlier consideration of off-nominal behavior and operations  Regular architecture allows development of accurate cost and performance models Simplified estimator & controller development  Current ad-hoc algorithm implementation reduced to model development and use of pre-validated general estimation & control algorithms  Greater s/w reuse: only application-specific engineering models need to be developed; the reasoning engine is generic and reusable Enhanced diagnosis and recovery capabilities  Uses complete, any-time inference algorithm to detect and respond to failures “on-the-fly”  Increased runtime performance using a precompiled model  Reasons over component interactions and “hidden” states  Tracks multiple state possibilities; prunes inconsistent states Inspectable & verifiable models  Models are specified using an intuitive graphical representation (Factored POMDP)  Models are compiled offline into a set of rules that can be verified by systems engineers  Formal modeling semantics provides greater opportunity for automated verification (e.g., model-checking)

Next Steps  Demonstrate integrated architecture and approach on scaled-up system  Accommodate other modeling representations and estimation algorithms, e.g., hybrid systems (discrete modes with continuous dynamics)  Elevate deliberative ISHM capabilities by integrating planning & scheduling based on same models  Develop formal V&V approach for model-based programs  probabilistic analysis of possible system executions  lead to verifiably-correct system behavior for both nominal and off-nominal execution  focus on specific validation needs of future NASA exploration missions closed part. open stuck closed stuck open Flow Regulator Discrete modes Continuous state: flow x Proposed DSN Array

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.