System Engineering Experiences Harold Sasnowitz, IEEE Life Senior Member.

Slides:

Advertisements

Similar presentations

© Alan Burns and Andy Wellings, 2001 Real-Time Systems and Programming Languages n Buy Real-Time Systems: Ada 95, Real-Time Java and Real-Time POSIX by.

Advertisements

Unit 7 Discrete Controllers

Khaled A. Al-Utaibi  Computers are Every Where  What is Computer Engineering?  Design Levels  Computer Engineering Fields  What.

Mars Climate Orbiter Team Magna Corp: Tim Toba Mohamed Sahil Nyema Johnson Abner Yemaneab University of Minnesota.

Computer Engineering 203 R Smith Project Tracking 12/ Project Tracking Why do we want to track a project? What is the projects MOV? – Why is tracking.

Autonomous Helicopter: James Lyden Harris Okazaki EE 496 A project to create a system that would allow a remote- controlled helicopter to fly without user.

Software Reliability Engineering

Closing Summary Design Testing Abstract Monitoring crop heath via aerial photography is a proper technique used to maximize agricultural productivity.

Fault Detection in a HW/SW CoDesign Environment Prepared by A. Gaye Soykök.

23/05/2015Dr Andy Brooks1 FOR0383 Software Quality Assurance Lecture 2 ESA Ariane 5 Rocket Flight 501.

1 Basic Definitions: Testing What is software testing? Running a program In order to find faults a.k.a. defects a.k.a. errors a.k.a. flaws a.k.a. faults.

Reegan Worobec & David Sloan In collaboration with UAARG.

Modern Software Development Fawzi Emad Chau-Wen Tseng Department of Computer Science University of Maryland, College Park.

DS -V - FDT - 1 HUMBOLDT-UNIVERSITÄT ZU BERLIN INSTITUT FÜR INFORMATIK Zuverlässige Systeme für Web und E-Business (Dependable Systems for Web and E-Business)

ARIANE 5 FAILURE ► BACKGROUND:- ► European space agency’s re-useable launch vehicle. ► Ariane-4 was a major success ► Ariane -5 was developed for the larger.

University College Cork IRELAND Hardware Concepts An understanding of computer hardware is a vital prerequisite for the study of operating systems.

CSC 402, Fall Requirements Analysis for Special Properties Systems Engineering (def?) –why? increasing complexity –ICBM’s (then TMI, Therac, Challenger...)

EEE499 Real Time Systems Software Reliability (Part II)

1 Input/Output Chapter 3 TOPICS Principles of I/O hardware Principles of I/O software I/O software layers Disks Clocks Reference: Operating Systems Design.

Chapter 2- Visual Basic Schneider1 Chapter 2 Problem Solving.

©Ian Sommerville 2006Critical Systems Slide 1 Critical Systems Engineering l Processes and techniques for developing critical systems.

UNIT 17 Computing Support.

Airbus flight control system  The organisation of the Airbus A330/340 flight control system 1Airbus FCS Overview.

Airbus flight control system

Planning for airborne LIDAR survey Dr.Lamyaa Gamal El-deen.

Results of NASA/DARPA Automatic Probe and Drogue Refueling Flight Test Keith Schweikhard NASA Dryden Flight Research Center

Copyright © Clifford Neuman and Dongho Kim - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE Advanced Operating Systems Lecture.

Verification and Validation Overview References: Shach, Object Oriented and Classical Software Engineering Pressman, Software Engineering: a Practitioner’s.

Top Level View of Computer Function and Interconnection.

 AUTOMATION  PLC  SCADA  INSTRUMENTATION  DRIVES & MOTORS.

EEL Software development for real-time engineering systems.

Modern Software Development Nelson Padua-Perez Chau-Wen Tseng Department of Computer Science University of Maryland, College Park.

System Security Chapter no 16. Computer Security Computer security is concerned with taking care of hardware, Software and data The cost of creating data.

2.2 Day 2 Reflections and Rotations combined with Scaling The concept of transformations inspired art by M.C. Escher.

Socio-technical Systems (Computer-based System Engineering)

Software Metrics and Reliability. Definitions According to ANSI, “ Software Reliability is defined as the probability of failure – free software operation.

Fuel Cell Systems Engineering, F06 Fuel Cell Systems Engineering Systems Engineering Process.

1 Pattern Recognition: Statistical and Neural Lonnie C. Ludeman Lecture 24 Nov 2, 2005 Nanjing University of Science & Technology.

EGR101-34R "lecture on hardware- software" FB 7/10/2004 Digital Electronics Logic Gates Logic gates work with the voltage level of the signals. They are.

ECEG-3202 Computer Architecture and Organization Chapter 3 Top Level View of Computer Function and Interconnection.

Cmpe 589 Spring 2006 Lecture 2. Software Engineering Definition –A strategy for producing high quality software.

Idaho RISE System Reliability and Designing to Reduce Failure ENGR Sept 2005.

Approaches to ---Testing Software Some of us “hope” that our software works as opposed to “ensuring” that our software works? Why? Just foolish Lazy Believe.

Why Do Airplanes Crash? Investigating Air Data Inertial Reference Units Department of Electrical and Computer Engineering INTRODUCTION Modern aircraft.

CSE SW Metrics and Quality Engineering Copyright © , Dennis J. Frailey, All Rights Reserved CSE8314M37 8/20/2001Slide 1 SMU CSE 8314 /

1 Design of an MIMD Multimicroprocessor for DSM A Board Which turns PC into a DSM Node Based on the RM Approach 1 The RM approach is essentially a write-through.

Computers and Space Travel January 31, 2016 Kevin Tang.

Chapter 3 System Buses.  Hardwired systems are inflexible  General purpose hardware can do different tasks, given correct control signals  Instead.

General Avionics Software Specification Paper by: C. Douglass Locke, David R. Vogel, Lee Lucas, John B. Goodenough Presented by: Jeremy Erickson August.

What is a Computer An electronic, digital device that stores and processes information. A machine that accepts input, processes it according to specified.

Chapter 1 WHAT IS A COMPUTER Faculty of ICT & Business Management Tel : BCOMP0101 Introduction to Information Technology.

BITS Pilani Pilani Campus Pawan Sharma ES C263 Microprocessor Programming and Interfacing.

Younis H. Karim, AbidYahya School of Computer University Malaysia Perlis 1.

Introduction to Transformations / Translations. By the end of this lesson, you will know… Transformations in general: A transformation is a change in.

Introduction to Transformations. What does it mean to transform something?

ES C263 Microprocessor Programming and Interfacing

Critical systems design

Chapter 4 – Requirements Engineering

Approaches to ---Testing Software

Complexity Time: 2 Hours.

Embedded Systems Design

System Development Life Cycle (SDLC)

Functional Units.

ECEG-3202 Computer Architecture and Organization

CS 501: Software Engineering Fall 1999

System Development Life Cycle (SDLC)

Chapter 7 –Implementation Issues

Chapter-1 Computer is an advanced electronic device that takes raw data as an input from the user and processes it under the control of a set of instructions.

Presentation transcript:

System Engineering Experiences Harold Sasnowitz, IEEE Life Senior Member

Agenda Angle Rate Bombing System Space Shuttle Harpoon Missile Airborne Mine Countermeasures

What is Real Time Software? Time of arrival of the solution is part of the solution Usually have hardware timer(s) causing interrupts

US Navy Angle Rate Bombing System (ARBS) Circa 1975 Purpose: precision bombing using horizontal flight path Computer Interface: Discretes, Direct memory access, interrupts, serial and parallel channels Processor: SP-1, two page processor, 250 Kop/sec Programmed in assembler language Radar image projected onto HUD; Pilot places crosshairs on target and computer determines release point Problem posed as three DMA channels, always in particular order Initial flight testing resulted in system failure: HUD blanks when system engaged Finding: DMA channel order different than originally specified Be sure specification reflects real requirement Be sure test software reflects real requirement

Space Shuttle System description 300 Kop/sec 256Kbytes ferrite core memory – later updated to semiconductor memory Programmed in HAL/S (C like) System Requirement: survive two like failures Five general purpose computers, all executing identical software All sensors and flight effectors fault tolerant and redundant All 5 computers receive all data input All 5 computers receive output data from the other 4 computers and “fail votes” Input and output sum check on minor cycle basis First launch failure at t-30 seconds

First Launch Failure Insufficient processing power drives software design 50 msec major cycle ~10 minor cycles/major cycle Computers send/compare received/calculated data Non-compare sets “fail vote” Different set of data in different minor sec backup brought into redundant set Prime sent wrong minor cycle number 7 “fixes” to create this condition

Shuttle Reliability Study Purpose: Recommend flight rules for mission abort due to computer system failures Method: Determine reliability of Shuttle computer system Reliability at time t is probability system will be working at time t For components: R=e -λt What is λ? Failure rate in failures per million hours For system: R(t)=∫e -λt dt What is λ for a system?

System State Space Diagram 4/1 4/0 3/1 λ λ λ λ λ λ 3/0 λ Vehicle loss λ

What is system λ? λ 12 λ 13 λ 14 Λ 1,23 λ 22 λ 33 λ 11 Partial Matrix shown Complete matrix is 23 x 23 elements

For system: R=∫e -λt dt Solution is alternating infinite sum Programmed in APL A high order language that has the feel of spreadsheet, but looks like a classical software language

US Navy Harpoon Anti-ship Missile Circa 1971 Mid-course Guidance Unit (MGU) Programmed in assembler language One page, 250 kops; 8K core memory For tracking state vector (v, a) contains Attitude Reference Assembly (ARA) Contains 3 gyros and 3 accelerometers ARA interface to counters in computer Present position provided by launch computer before launch Target location determined and provided by on-board radar 50 msec hardware timer interrupt causes software interrupt Interrupt Handler reads counters Test software showed g slightly off 50 msec counter off by one

US Navy Airborne Mine Countermeasures Initial Deployment Now Purpose: find and destroy shallow and deepwater mines Sensors controlled from console on-board MH-60S Numerous tests required to qualify equipment beyond performing basic function Temperature, humidity, salt spray, electromagnetic compatibility, others Coordinating scheduling of production, factory flight testing, Navy operational testing complex Programmed in C Each sensor developed by programmed by different company

Software Failures in History 22/7 = ∏ ? 24 hours = one day? How many times does the earth make a complete rotation on its axis in one 365 day year? Space probe missed Mars because dimension that should have been in English measure was in metric Errors in formula transcription (handwritten to code) The number of significant figures matters

Questions

First Flight Failure First flight not vertical launch Drop from Shuttle Carrier Aircraft Shuttle and Carrier held together with pyro bolts At separation “GPC 2 light” Studied System Services software looking for “single point failures” “All leaves cancelled” Lost Weekend to engineering staff Bad solder joint on a computer card Proved system design