Industry Session – Mixed Criticality and Multi-Core David Corman Program Director, Cyber Physical Systems National Science Foundation 1.

Slides:

Advertisements

Similar presentations

Mafijul Islam, PhD Software Systems, Electrical and Embedded Systems Advanced Technology & Research Research Issues in Computing Systems: An Automotive.

Advertisements

Safety Critical Systems and Certification Issues DO-178B Airborne Standard

State Data Center Re-scoped Projects With emphasis on reducing load on cooling systems in OB2 April 4, 2012.

Aviation Safety ProgramSingle Aircraft Accident Prevention April NCC-1-377, Honeywell Tucson Design, Implementation, and Verification of Fault-Tolerant.

RTCA DO-178C “Software Considerations in Airborne Systems and Equipment Certification” Brock Greenhow March 21, 2013 The main idea of DO-178 is to design.

Cloud Computing Jonathan Weitz Bus: 550 June 3, 2013.

Risks  All projects have some degree of risk  Risks are issues that can cause problems  Delay in schedule  Increased project costs  Technical risk.

Module 3 UNIT I " Copyright 2002, Information Spectrum, Inc. All Rights Reserved." INTRODUCTION TO RCM RCM TERMINOLOGY AND CONCEPTS.

Introduction to Cyber Physical Systems Yuping Dong Sep. 21, 2009.

February 21, 2008 Center for Hybrid and Embedded Software Systems Cyber-Physical Systems (CPS): Orchestrating networked.

AT 209 Introduction to Civil Unmanned Aerial Systems (UAS)

1 Software Testing and Quality Assurance Lecture 37 – Software Quality Assurance.

6th Framework Programme Thematic Priority Aeronautics and Space.

REAL-TIME SOFTWARE SYSTEMS DEVELOPMENT Instructor: Dr. Hany H. Ammar Dept. of Computer Science and Electrical Engineering, WVU.

Certification Challenges for Autonomous Flight Control System Mr. David B. Homan AFRL Air Vehicles Directorate (937)

Strategic Directions in Real- Time & Embedded Systems Aatash Patel 18 th September, 2001.

NGNS Program Managers Richard Carlson Thomas Ndousse ASCAC meeting 11/21/2014 Next Generation Networking for Science Program Update.

Equipment Capability Customer DAES Analysis-Experimentation-Simulation 1 DARP Workshop System of Systems Safety Cases Parallel Session 18 th & 19 th April.

Chapter 11: Testing The dynamic verification of the behavior of a program on a finite set of test cases, suitable selected from the usually infinite execution.

TIWANA WALTON MENTOR: SHARON MONICA JONES High Level Aviation Safety Risk Assessment.

LANGLEY RESEARCH CENTER - SUAVELab TEAM June 26, 2008 Michael J. Logan, P.E. Head, Small Unmanned Aerial Vehicle Laboratory (SUAVELab) NASA Langley Research.

United States Fire Administration Fortified by History to Meet the Needs of Today Metropolitan Fire Chiefs Conference Baltimore, Maryland June 2,

Airbus flight control system  The organisation of the Airbus A330/340 flight control system 1Airbus FCS Overview.

Airbus flight control system

Industrial practice on mixed-criticality engineering and certification in the aerospace industry DATE 2013 / WICERT 2013.

I) Bob Ettinger Flight Test Manager Northrop Grumman Aerospace Systems El Segundo, CA An Approach to Flight Readiness and Executive Readiness Reviews The.

Chapter 1- Introduction

Genesis UAV Challenge Presented by Simon Butterworth Aerospace Operational Support Group RAAF.

Maintenance Malfunction Information Report (MMIR) & Event Reporting Ed DiCampli Helicopter Association International.

REAL-TIME SOFTWARE SYSTEMS DEVELOPMENT Instructor: Dr. Hany H. Ammar Dept. of Computer Science and Electrical Engineering, WVU.

Condition-based Maintenance Plus Structural Integrity (CBM+SI) & the Airframe Digital Twin Pamela A. Kobryn & Eric J. Tuegel Structural Mechanics Branch.

Is Providing More Technology for C4ISR & Security a Good Idea? Bob Chamberlain President Monterey Technologies, Inc. (831)

Massachusetts Institute of Technology 4 April 2003

CREATORS OF THE KODIAK U of I Senior Design Project Intro August 27, 2015 Jamie Slippy – Principal Engineer, Kevin Breneman – Flight Test Engineer.

© RHEINMETALL DEFENCE 2014 Systems Engineering at Rheinmetall Air Defence Dr. Marc Honikel.

EP1140 Business Operations in Information Systems.

Future Server and Storage Technology Brian Minick, Infrastructure Design Leader - GE.

Slide 1V&V 10/2002 Software Quality Assurance Dr. Linda H. Rosenberg Assistant Director For Information Sciences Goddard Space Flight Center, NASA

Why real-time scheduling theory still matters Sanjoy Baruah The University of North Carolina at Chapel Hill.

Symbiotic Simulation of Unmanned Aircraft Systems (UAS)

Grid Computing at The Hartford Condor Week 2008 Robert Nordlund

REAL-TIME SOFTWARE SYSTEMS DEVELOPMENT Instructor: Dr. Hany H. Ammar Dept. of Computer Science and Electrical Engineering, WVU.

Relaxing the Synchronous Approach for Mixed-Criticality Systems

Open Platform for EvolutioNary Certification Of Safety-critical Systems Large-scale integrating project (IP) Nuanced Term-Matching to Assist in Compositional.

Safety-Critical Systems 7 Summary T V - Lifecycle model System Acceptance System Integration & Test Module Integration & Test Requirements Analysis.

March 2004 At A Glance NASA’s GSFC GMSEC architecture provides a scalable, extensible ground and flight system approach for future missions. Benefits Simplifies.

Idaho RISE System Reliability and Designing to Reduce Failure ENGR Sept 2005.

Mixed Criticality Systems: Beyond Transient Faults Abhilash Thekkilakattil, Alan Burns, Radu Dobrin and Sasikumar Punnekkat.

Multiprocessor Fixed Priority Scheduling with Limited Preemptions Abhilash Thekkilakattil, Rob Davis, Radu Dobrin, Sasikumar Punnekkat and Marko Bertogna.

Real-Time Systems, Events, Triggers. Real-Time Systems A system that has operational deadlines from event to system response A system whose correctness.

1 Semi-partitioned Model on Dual-core Mixed Criticality System Hao Xu.

Guide to the Identification of Safety-Critical Hardware Items for RLV Developers COMSTAC RLV Working Group Meeting Washington D.C. 25 May 2005.

© Andrew IrelandGrand Challenges for Computing Research 2004 The Verifying Compiler Andrew Ireland Dependable Systems Group School of Mathematical & Computer.

Quality Assurance and Risk Management Services, Inc.

Certification Mac Mollison. Who mandates certification? l FAA (Federal Aviation Administration) »Standards DO178B, DO297 l DoD (Department of Defense)

Cisco Consulting Services for Application-Centric Cloud Your Company Needs Fast IT Cisco Application-Centric Cloud Can Help.

This project and the research leading to these results has received funding from the European Community’s Seventh Framework Programme [FP7 / ]

High Fidelity Simulation as a Route to Certification Autonomous Systems: Legal / Regulatory Aspects and V&V Workshop 22 nd February 2016 Dr. M. Jump.

Resource Optimization for Publisher/Subscriber-based Avionics Systems Institute for Software Integrated Systems Vanderbilt University Nashville, Tennessee.

Optimization of Time-Partitions for Mixed-Criticality Real-Time Distributed Embedded Systems Domițian Tămaș-Selicean and Paul Pop Technical University.

Bob Jones EGEE Technical Director

A+: A Fresh Look at an Old Favorite

FAA Building Blocks Leading to UAS Integration Emerging Trends

UA Road Transport Safety Forum Hazard & Effects Management Program

How S-18 processes help make systems trustworthy

Moving Toward Trustworthy Aerospace Vehicle (AV) Systems

Knowing When to Stop: An Examination of Methods to Minimize the False Negative Risk of Automated Abort Triggers RAM XI Training Summit October 2018 Patrick.

Unit I Module 3 - RCM Terminology and Concepts

Capitalize on Your Business’s Technology

Presentation transcript:

Industry Session – Mixed Criticality and Multi-Core David Corman Program Director, Cyber Physical Systems National Science Foundation 1

Outline Need and terms of reference Progress Remaining

What do we mean by Criticality Criticality (Aerospace)– assurance against failure. Frequently refer to levels from DO-178B – Level A – catastrophic. Failure may cause crash. Loss of critical function required to safely fly and land – Level B – hazardous. Negative impact on safety or performance, reduced ability to operate aircraft, safety significant – Level C – major. Failure is significant but lesser impact than B. May lead to passenger discomfort rather than injuries, increased workload – Level D – minor. Failure noticable, but lesser impact. Inconvenience vs distress. – Level E –Failure has no impact on safety, operation, or workload Similar issues in automotive (Automotive Safety and Integrity Levels)

Mixed Critical Systems Definition Two or more levels of criticality on same system Mixed criticality systems - a mixed-critical system is an integrated suite of hardware, operating system and middleware services and application software that supports the execution of safety-critical, mission-critical, and non-critical software within a single, secure compute platform – Ref: Joint white paper from Boeing, LM, Honeywell, AFRL, and Northrop from 2009 CPS Week

Criticality Levels – Focus on UAS Flight Critical Required to prevent ~  Unintended loss of life.  Unintended reduction of public safety.  Substantial damage to the vehicle or its support structure.  Loss of vehicle  Unintended event (e.g., crash) into politically sensitive area Mission Critical Required to prevent ~  Unintended loss of the vehicle’s function (mission sensors or other effectors).  Unintended loss of support structure function (e.g., ability of operator to use on-board UAV sensors). Maintenance Critical Required to prevent ~  Inefficient use of the vehicle’s resources.  Inefficient use of ground support structure. Red: Boeing Presentation at S5 – June 2011

Aerospace Motivation Today most platforms incorporate subsystems with separate levels of criticality Would like to evolve to more integrated platforms / systems that can be developed, meet stringent requirements for cost, SWAP, and be certified airworthy as rapidly as possible – Reduced number of processors and you reduce the weight, power required, heat generated, and cost to build, but – Increase risk in development, verification, validation, and certification

Some Initial Thoughts – From AFRL Safe & Secure Systems & Software Symposium (S5)

Roadmap from MCAR Whitepaper Not quite but some progress More challenges with Multi-core

Progress Much research progress on CPS with single processors -- great reference “Mixed Criticality Systems – A Review”, Burns and Davis, Dept of Computer Science, University of York, York, UK –WCET analysis –Scheduling models Fixed priority scheduling Maximize priority of high critical tasks subject to system being schedulable Slack Scheduling approaches – low criticality jobs are run in slack created by high criticality jobs using only low criticality execution budgets Some progress on multi-core but doesn’t seem to have been a research focus over last several years –Multi-core activity in CPS has been largely in the application side –Looking at utilization supporting multiple lower criticality applications including auto infotainment –Some activity in dynamic scheduling for automotive sensor fusion 9

Future CPS program typically includes panels dealing with platforms and infrastructures and safety / verification –Both provide logical areas for mixed criticality research at foundational level –Potentially impactful area of research with TTP option Important to check what has been previously funded in CPS, CSR, and CCF core programs.