Presentation is loading. Please wait.

Presentation is loading. Please wait.

SEC PI Meeting San Antonio, Nov. 13-5, 2001 Integrated Design and Analysis Tools for Software Based Control Systems Principal Investigator: Tom Henzinger.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "SEC PI Meeting San Antonio, Nov. 13-5, 2001 Integrated Design and Analysis Tools for Software Based Control Systems Principal Investigator: Tom Henzinger."— Presentation transcript:

1 SEC PI Meeting San Antonio, Nov. 13-5, 2001 Integrated Design and Analysis Tools for Software Based Control Systems Principal Investigator: Tom Henzinger Co-Principal Investigator: Edward A. Lee Co-Principal Investigator: Shankar Sastry Program Manager: John Bay Organization: University of California at Berkeley Contract Number: F33615-98-C-3614 Boeing subcontract (OCP): Principal Investigator: Edward A. Lee Co-Principal Investigator: Tom Henzinger Presenters: Edward A. Lee Jie Liu John Koo UC Berkeley

2 Berkeley SEC Project, San Antonio, 2 Subcontractors and Collaborators Boeing OCP Georgia Tech blending controllers OGI & Yale embedded virtual machine Northrop Grumman multimodal control Vanderbilt/Xerox fault detection/isolation, metamodeling Stanford and SRI modal control systems - softwalls

3 Berkeley SEC Project, San Antonio, 3 Problem Description and Program Objective This project concerns the design of multi-agent multi-modal control systems, their distributed real-time software implementation, and their formal analysis. As a common foundation we build on the use of heterogeneous hybrid modeling techniques.

4 Berkeley SEC Project, San Antonio, 4 Technical Approach Summary Models of computation real-time heterogeneous Applying theory of component-based design Interface theories (with Mobies) System-level types (with Mobies) Theory of frameworks Hybrid systems theory multi-vehicle architecture integration multi-model control derivation and analysis Software laboratory: Ptolemy II Hardware laboratory: Helicopter UAVs

5 Berkeley SEC Project, San Antonio, 5 Fault Detection, Isolation, Recovery Approach: Generalized reflection Demonstration: Cooperative multi-agent control Reflection is a type theoretic notion of components that make available at run time models of themselves. Classically, these models represent only static type information. Our variant represents dynamics. One component carries a model of another component that reflects its dynamic behavior

6 Berkeley SEC Project, San Antonio, 6 Blending Controllers (Collaboration with Georgia Tech) Blending controller architecture enables disciplined transitions between control laws

7 Berkeley SEC Project, San Antonio, 7 Embedded Virtual Machine (Collaboration with OGI and Yale) The embedded machine or E machine is a virtual, real-time scheduling machine The E machine has: ports, drivers, tasks, and triggers 3 key instructions + arbitrary control flow instructions The E machine provides a platform for generating distributed, real-time scheduling code

8 Berkeley SEC Project, San Antonio, 8 The Embedded Machine: Three Instructions Synchronous Execution: Scheduled Execution: schedule( t )call( d ) Triggering: enable( g,b) Tick clk @ 20ms b: t d

9 Berkeley SEC Project, San Antonio, 9 Portability, Mobility, Real-Time Portability: no specific hardware mapping, no specific scheduling scheme Mobility: dynamic upload/linking of E code; binary application code strictly separated Real-Time: hard real-time performance

10 Berkeley SEC Project, San Antonio, 10 Boeing Subcontract: Open Control Platform - OCP We are contributing to the future evolution of the OCP by helping to define and refine its semantics, using these semantics in hardware-in-the-loop simulation, and determining how the semantic model interoperates with others, such as FSM (for mode changes) and Giotto (for hard-real-time systems). Specific tasks include: Ptolemy II domains that explore OCP semantics. Component interfaces for real-time quality of service. Concurrency management. Solving the precise mode change problem. Interoperation of heterogeneous semantic models.

11 Berkeley SEC Project, San Antonio, 11 Precise Mode Change Problem How do you get the processes to a quiescent state to take a mode change? thread or process Jie Liu

12 Berkeley SEC Project, San Antonio, 12 TM: Timed Multitasking A Model of Computation for Real Time Previously reported versions were called RTOS (real-time operating system) HPM (hierarchical preemptive multitasking) Model of computation with Concurrency Dynamic priorities Improved determinacy (vs. prioritized threads) Simple real-time interface properties Precise mode changes Possibilities for admission control, anytime algorithms… Implementable on the OCP Distributed Real-time CORBA, using event channel

13 Berkeley SEC Project, San Antonio, 13 Precise Reaction A precise reaction is a finite piece of computation that depends solely on its trigger. trigger finish computation quiescent state responsible trigger

14 Berkeley SEC Project, San Antonio, 14 Responsible Frameworks A responsible framework requests that all its components be precisely reactive and triggers these components only with responsible triggers. Deadlocks can be monitored by examining triggering rules. A model always settles in quiescent states. Solves priority inversion problems in priority-based models.

15 Berkeley SEC Project, San Antonio, 15 Compositional Precise Reaction Can we treat a composition of components as an atomic component? Yes, if the framework is responsible.

16 Berkeley SEC Project, San Antonio, 16 Precise Mode Change Solution Will the process be in a quiescent state when we do a mode change? Yes, if the framework is responsible.

17 Berkeley SEC Project, San Antonio, 17 Benefits Composable semantics arbitrarily deep hierarchies heterogeneous hierarchies Precise mode switching nest FSMs with anything else Real-time scheduling make RT scheduling policies independent of functionality controller plant actuator dynamics sensor task1 task2 TTA Hierarchical, heterogeneous, system-level model

18 Berkeley SEC Project, San Antonio, 18 Examples of Responsible Frameworks Dataflow with firing Firing rules are responsible trigger conditions. Atomic firings are precise reactions. Timed Multitasking Tasks are either nonpreemptable or arbitrarily preemptable. Event-based firing rules are responsible triggers. Split-phase execution and over-run handling to guarantee timing properties. Giotto Time are responsible triggers. Well-defined communication guarantees precise reaction. Tasks are arbitrarily preemptable.

19 Berkeley SEC Project, San Antonio, 19 Giotto – Periodic Hard-Real-Time Tasks with Precise Mode Changes t+10ms ttt+5ms Higher frequency Task Lower frequency task: Giotto compiler targets the E Machine Ptolemy II Giotto domain code generator planned

20 Berkeley SEC Project, San Antonio, 20 Helicopter Testbeds Giotto controller for Zurich helicopter written Giotto controller for Berkeley helicopter in progress

21 Berkeley SEC Project, San Antonio, 21 High Confidence Control Design for UAVs Hybrid Control Design for Multi-Vehicle Multi-Modal Systems Multi-modal controller for single vehicle Coordination of multiple vehicles High-Confidence Hybrid Control FDIR capabilities for single (envelope protection, sensor/actuator failures) and multiple vehicles (collision avoidance and conflict resolution) Hierarchical System Design Based on parallel and serial compositions of models of computation Enabling multiple vehicle corporative control Implementation on OCP John Koo

22 Berkeley SEC Project, San Antonio, 22 Technical Approach Hybrid Control design will be based on a nonlinear helicopter model and nonlinear controllers. Available for simulation in Ptolemy II and Simulink Hardware-In-the-Loop (HIL) simulation for architecture evaluation is currently under construction. System consists of an embedded controller and an emulator for emulating sensor/dynamics/actuator. Verified/Validated embedded controller will be used for controlling a R-Max helicopter. NAV COMP QNX PC104 K6-400 SECONDARY NAV COMP Win98 PC104 K6-400 ROUTER FreeBSD MediaGX233 BOEING DQI-NP Ethernet Hub NOVATELGPS RT-2 BATT Lucent WaveLAN DC/DC Converter (for DQI-NP;24V) Digital Compass Dynamics actuatorsensor Visualization GUISW

23 Berkeley SEC Project, San Antonio, 23 Hierarchical Control of Multi-Modal Systems Given a continuous control system, a collection of control modes are designed Problem Statement of Mode Switching Does there exist a finite sequence of control modes for satisfying a set of given reachability specifications? If it does exist, can the switching conditions be determined? When/ Where? Guard/Reset Synthesis What Trajectory? Performance Criteria

24 Berkeley SEC Project, San Antonio, 24 Computation Offline: Synthesis of control mode graph Reachability and Intersection Online: Synthesis of control switching sequence Reachability on Graph T. J. Koo, G. J. Pappas, and S. Sastry, “Mode Switching Synthesis for Reachability Specifications,” Hybrid Systems: Computation and Control, Lecture Notes in Computer Science, Springer, 2001. Mode Switching Algorithm for Multi-Modal Control abstraction refinement

25 Berkeley SEC Project, San Antonio, 25 Hierarchical Component-Based Design Hierarchical nesting of compositions of discrete and continuous components At each level of the hierarchy, a Model of Computation (MoC) governs the behaviors and interactions of components ODEs CT DE FSM DE PS FSM Realization in Ptolemy II

26 Berkeley SEC Project, San Antonio, 26 Our Solution: at the level closest to the environment under control, the embedded software needs to be time-triggered for guaranteed safety; at higher levels, an asynchronous hybrid controller design is required. Implementing a Design in Embedded Software Environment Embedded Hardware Board Support Packages Operating System Embedded Software Computing Platform Time-triggered Software Event-triggered Software Question: How to guarantee safety of the embedded system?

27 Berkeley SEC Project, San Antonio, 27 Ongoing Work Hardware-In-the-Loop (HIL) simulation for architecture evaluation is currently under construction. System consists of an embedded controller and an emulator for sensor/dynamics/actuator. Verified/Validated embedded controller will control an R-Max helicopter. NAV COMP QNX PC104 K6-400 SECONDARY NAV COMP Win98 PC104 K6-400 ROUTER FreeBSD MediaGX233 BOEING DQI-NP Ethernet Hub NOVATELGPS RT-2 BATT Lucent WaveLAN DC/DC Converter (for DQI-NP;24V) Digital Compass Dynamics actuatorsensor Visualization GUISW

28 Berkeley SEC Project, San Antonio, 28 Candidate Real-life Applications (with Northrop-Grumman) Vector off approach trajectory waveoff trajectory To holding pattern Lead Wingman Lead Wingman

29 Berkeley SEC Project, San Antonio, 29 Project Tasks/Schedule/Status Demos done Multi-modal helicopter control model (hybrid system) Fault detection/isolation based on generalized reflection Blending controller (with Georgia Tech) Publish & subscribe using Jini and JavaSpaces Giotto helicopter control for Zurich helicopter Precise mode changes using TM domain Multi-modal distributed control (with Lego robots) Fundamental contributions Framework theory responsible frameworks precise reactions/mode changes managing heterogeneity models of computation Timed multitasking model of computation Giotto time-triggered model of computation Multimodal control framework Controller synthesis for safety properties

30 Berkeley SEC Project, San Antonio, 30 Next Milestones Future milestones Giotto helicopter control for Berkeley helicopters Hardware-in-the-loop simulation CORBA/OCP event channel interface to the TM domain OCP E Machine realization E Machine realizations running hard-real-time code FDIR in hybrid controllers for single/ multiple vehicles Multi-vehicle formation flight Anticipated fundamental contributions Just watch!

31 Berkeley SEC Project, San Antonio, 31 Technology Transition/Transfer Classic tech transfer strategy: Copyright Retain intellectual property & leverage the profit motive Radical tech transfer strategy: Copyleft Distribute freely & impose your ideology on others Berkeley tech transfer strategy: Copycenter Take it to the copy center & copy as much as you like. Success of this model: Many companies have brought Berkeley research results into the marketplace.

32 Berkeley SEC Project, San Antonio, 32 Technology Transition/Transfer – Near-Term Plans E Machine pilot implementations will show how to Isolate designers from RTOS platforms Get a coherent semantics in the run-time environment Giotto model of computation will show how to Build hard-real-time, periodic, multimodal models Specify real-time requirement (vs. infer real-time behavior) TM model of computation will show how to Build priority-driven multitasking with precise mode changes Ptolemy II version 2.0 release will show how to Get precise mode changes in a real-time multitasking context Realize multi-modal multi-agent hybrid systems Realize blending controllers Helicopter control models will show how to Hierarchically build autonomous multi-vehicle control systems with hybrid control methods. Work with Northrop-Grumman to transfer methods.

33 Berkeley SEC Project, San Antonio, 33 Program Issues – Employing SEC Technology Homeland defense – softwalls carry on-board 3-D database with “no-fly-zones” enforce in the on-board avionics, based on localization non-networked, non-hackable hybrid, modal controller in embedded software

Download ppt "SEC PI Meeting San Antonio, Nov. 13-5, 2001 Integrated Design and Analysis Tools for Software Based Control Systems Principal Investigator: Tom Henzinger."

Similar presentations

Lecture 8: Three-Level Architectures CS 344R: Robotics Benjamin Kuipers.

Lecture 8: Three-Level Architectures CS 344R: Robotics Benjamin Kuipers.
Model Checker In-The-Loop Flavio Lerda, Edmund M. Clarke Computer Science Department Jim Kapinski, Bruce H. Krogh Electrical & Computer Engineering MURI.

Model Checker In-The-Loop Flavio Lerda, Edmund M. Clarke Computer Science Department Jim Kapinski, Bruce H. Krogh Electrical & Computer Engineering MURI.
Robotics, Intelligent Sensing and Control Lab (RISC) University of Bridgeport Department of Computer Science and Engineering Robotics, Intelligent Sensing.

Robotics, Intelligent Sensing and Control Lab (RISC) University of Bridgeport Department of Computer Science and Engineering Robotics, Intelligent Sensing.
MotoHawk Training Model-Based Design of Embedded Systems.

MotoHawk Training Model-Based Design of Embedded Systems.
Automatic Verification of Component-Based Real-Time CORBA Applications Gabor Madl Sherif Abdelwahed

Automatic Verification of Component-Based Real-Time CORBA Applications Gabor Madl Sherif Abdelwahed
EECE 396-1 Hybrid and Embedded Systems: Computation T. John Koo, Ph.D. Institute for Software Integrated Systems Department of Electrical Engineering and.

EECE Hybrid and Embedded Systems: Computation T. John Koo, Ph.D. Institute for Software Integrated Systems Department of Electrical Engineering and.
ACM SIGPLAN 2001 Workshop on Languages, Compilers, and Tools for Embedded Systems (LCTES'2001) Jun 22-23, 2001, Snowbird, Utah, USA Embedded Software from.

ACM SIGPLAN 2001 Workshop on Languages, Compilers, and Tools for Embedded Systems (LCTES'2001) Jun 22-23, 2001, Snowbird, Utah, USA Embedded Software from.
Mobies Phase 1 UC Berkeley 1 Process-Based Software Components Mobies Phase 1, UC Berkeley Edward A. Lee and Tom Henzinger PI Meeting, New York July 24,

Mobies Phase 1 UC Berkeley 1 Process-Based Software Components Mobies Phase 1, UC Berkeley Edward A. Lee and Tom Henzinger PI Meeting, New York July 24,
Process-Based Software Components for Networked Embedded Systems Edward A. Lee, PI UC Berkeley Core Technical Team (Mobies, SEC, and GSRC): Christopher.

Process-Based Software Components for Networked Embedded Systems Edward A. Lee, PI UC Berkeley Core Technical Team (Mobies, SEC, and GSRC): Christopher.
Component Technologies for Embedded Systems Johan Eker.

Component Technologies for Embedded Systems Johan Eker.
Berkeley, CA, March 12, 2002 Modal Models in Vehicle-Vehicle Coordination Control Xiaojun Liu The Ptolemy Group EECS Department, UC Berkeley.

Berkeley, CA, March 12, 2002 Modal Models in Vehicle-Vehicle Coordination Control Xiaojun Liu The Ptolemy Group EECS Department, UC Berkeley.
Advanced Tool Architectures Supporting Interface-Based Design

Advanced Tool Architectures Supporting Interface-Based Design
Integrated Design and Analysis Tools for Software-Based Control Systems Shankar Sastry (PI) Tom Henzinger Edward Lee University of California, Berkeley.

Integrated Design and Analysis Tools for Software-Based Control Systems Shankar Sastry (PI) Tom Henzinger Edward Lee University of California, Berkeley.
NSF Foundations of Hybrid and Embedded Software Systems UC Berkeley: Chess Vanderbilt University: ISIS University of Memphis: MSI A New System Science.

NSF Foundations of Hybrid and Embedded Software Systems UC Berkeley: Chess Vanderbilt University: ISIS University of Memphis: MSI A New System Science.
February 21, 2008 Center for Hybrid and Embedded Software Systems Organization Board of Directors Edward A. Lee, UC Berkeley.

February 21, 2008 Center for Hybrid and Embedded Software Systems Organization Board of Directors Edward A. Lee, UC Berkeley.
Mobies Phase 1 UC Berkeley 1 Agenda 8:00-8:30 Continental breakfast 8:30-9:00 Overview of Mobies Phase 1 effort (Edward A. Lee) 9:00-9:40 Introduction.

Mobies Phase 1 UC Berkeley 1 Agenda 8:00-8:30 Continental breakfast 8:30-9:00 Overview of Mobies Phase 1 effort (Edward A. Lee) 9:00-9:40 Introduction.
Type System, March 12, 2002 - 1 Data Types and Behavioral Types Yuhong Xiong Edward A. Lee Department of Electrical Engineering and Computer Sciences University.

Type System, March 12, Data Types and Behavioral Types Yuhong Xiong Edward A. Lee Department of Electrical Engineering and Computer Sciences University.
Hybrid Workgroup Pam Binns Magnus Carlsson David Corman Bonnie Heck Tom Henzinger Gokhan Inalhan Gabor Karsai, co-chair Wallace Kelly Edward A. Lee, chair.

Hybrid Workgroup Pam Binns Magnus Carlsson David Corman Bonnie Heck Tom Henzinger Gokhan Inalhan Gabor Karsai, co-chair Wallace Kelly Edward A. Lee, chair.
7th Biennial Ptolemy Miniconference Berkeley, CA February 13, 2007 Leveraging Synchronous Language Principles for Hybrid System Models Haiyang Zheng and.

7th Biennial Ptolemy Miniconference Berkeley, CA February 13, 2007 Leveraging Synchronous Language Principles for Hybrid System Models Haiyang Zheng and.
Department of Electrical Engineering and Computer Sciences University of California at Berkeley Behavioral Types for Actor-Oriented Design Edward A. Lee.

Department of Electrical Engineering and Computer Sciences University of California at Berkeley Behavioral Types for Actor-Oriented Design Edward A. Lee.

Similar presentations

Ads by Google