Presentation is loading. Please wait.

Presentation is loading. Please wait.

System Engineering Experiences Harold Sasnowitz, IEEE Life Senior Member.

Published byHarriet Oliver Modified over 8 years ago

Similar presentations

Presentation on theme: "System Engineering Experiences Harold Sasnowitz, IEEE Life Senior Member."— Presentation transcript:

1 System Engineering Experiences Harold Sasnowitz, IEEE Life Senior Member

2 Agenda Angle Rate Bombing System Space Shuttle Harpoon Missile Airborne Mine Countermeasures

3 What is Real Time Software? Time of arrival of the solution is part of the solution Usually have hardware timer(s) causing interrupts

4 US Navy Angle Rate Bombing System (ARBS) Circa 1975 Purpose: precision bombing using horizontal flight path Computer Interface: Discretes, Direct memory access, interrupts, serial and parallel channels Processor: SP-1, two page processor, 250 Kop/sec Programmed in assembler language Radar image projected onto HUD; Pilot places crosshairs on target and computer determines release point Problem posed as three DMA channels, always in particular order Initial flight testing resulted in system failure: HUD blanks when system engaged Finding: DMA channel order different than originally specified Be sure specification reflects real requirement Be sure test software reflects real requirement

5 Space Shuttle System description 300 Kop/sec 256Kbytes ferrite core memory – later updated to semiconductor memory Programmed in HAL/S (C like) System Requirement: survive two like failures Five general purpose computers, all executing identical software All sensors and flight effectors fault tolerant and redundant All 5 computers receive all data input All 5 computers receive output data from the other 4 computers and “fail votes” Input and output sum check on minor cycle basis First launch failure at t-30 seconds

6

7 First Launch Failure Insufficient processing power drives software design 50 msec major cycle ~10 minor cycles/major cycle Computers send/compare received/calculated data Non-compare sets “fail vote” Different set of data in different minor cycles @t-30 sec backup brought into redundant set Prime sent wrong minor cycle number 7 “fixes” to create this condition

8 Shuttle Reliability Study Purpose: Recommend flight rules for mission abort due to computer system failures Method: Determine reliability of Shuttle computer system Reliability at time t is probability system will be working at time t For components: R=e -λt What is λ? Failure rate in failures per million hours For system: R(t)=∫e -λt dt What is λ for a system?

9 System State Space Diagram 4/1 4/0 3/1 λ λ λ λ λ λ 3/0 λ Vehicle loss λ

10 What is system λ? λ 12 λ 13 λ 14 Λ 1,23 λ 22 λ 33 λ 11 Partial Matrix shown Complete matrix is 23 x 23 elements

11 For system: R=∫e -λt dt Solution is alternating infinite sum Programmed in APL A high order language that has the feel of spreadsheet, but looks like a classical software language

12 US Navy Harpoon Anti-ship Missile Circa 1971 Mid-course Guidance Unit (MGU) Programmed in assembler language One page, 250 kops; 8K core memory For tracking state vector (v, a) contains Attitude Reference Assembly (ARA) Contains 3 gyros and 3 accelerometers ARA interface to counters in computer Present position provided by launch computer before launch Target location determined and provided by on-board radar 50 msec hardware timer interrupt causes software interrupt Interrupt Handler reads counters Test software showed g slightly off 50 msec counter off by one

13 US Navy Airborne Mine Countermeasures Initial Deployment Now Purpose: find and destroy shallow and deepwater mines Sensors controlled from console on-board MH-60S Numerous tests required to qualify equipment beyond performing basic function Temperature, humidity, salt spray, electromagnetic compatibility, others Coordinating scheduling of production, factory flight testing, Navy operational testing complex Programmed in C Each sensor developed by programmed by different company

14 Software Failures in History 22/7 = ∏ ? 24 hours = one day? How many times does the earth make a complete rotation on its axis in one 365 day year? Space probe missed Mars because dimension that should have been in English measure was in metric Errors in formula transcription (handwritten to code) The number of significant figures matters

15 Questions

16 First Flight Failure First flight not vertical launch Drop from Shuttle Carrier Aircraft Shuttle and Carrier held together with pyro bolts At separation “GPC 2 light” Studied System Services software looking for “single point failures” “All leaves cancelled” Lost Weekend to engineering staff Bad solder joint on a computer card Proved system design

17

Download ppt "System Engineering Experiences Harold Sasnowitz, IEEE Life Senior Member."

Similar presentations

© Alan Burns and Andy Wellings, 2001 Real-Time Systems and Programming Languages n Buy Real-Time Systems: Ada 95, Real-Time Java and Real-Time POSIX by.

© Alan Burns and Andy Wellings, 2001 Real-Time Systems and Programming Languages n Buy Real-Time Systems: Ada 95, Real-Time Java and Real-Time POSIX by.
Unit 7 Discrete Controllers

Unit 7 Discrete Controllers
Khaled A. Al-Utaibi  Computers are Every Where  What is Computer Engineering?  Design Levels  Computer Engineering Fields  What.

Khaled A. Al-Utaibi  Computers are Every Where  What is Computer Engineering?  Design Levels  Computer Engineering Fields  What.
Mars Climate Orbiter Team Magna Corp: Tim Toba Mohamed Sahil Nyema Johnson Abner Yemaneab University of Minnesota.

Mars Climate Orbiter Team Magna Corp: Tim Toba Mohamed Sahil Nyema Johnson Abner Yemaneab University of Minnesota.
Computer Engineering 203 R Smith Project Tracking 12/2008 1 Project Tracking Why do we want to track a project? What is the projects MOV? – Why is tracking.

Computer Engineering 203 R Smith Project Tracking 12/ Project Tracking Why do we want to track a project? What is the projects MOV? – Why is tracking.
Autonomous Helicopter: James Lyden Harris Okazaki EE 496 A project to create a system that would allow a remote- controlled helicopter to fly without user.

Autonomous Helicopter: James Lyden Harris Okazaki EE 496 A project to create a system that would allow a remote- controlled helicopter to fly without user.
Software Reliability Engineering

Software Reliability Engineering
Closing Summary Design Testing Abstract Monitoring crop heath via aerial photography is a proper technique used to maximize agricultural productivity.

Closing Summary Design Testing Abstract Monitoring crop heath via aerial photography is a proper technique used to maximize agricultural productivity.
Fault Detection in a HW/SW CoDesign Environment Prepared by A. Gaye Soykök.

Fault Detection in a HW/SW CoDesign Environment Prepared by A. Gaye Soykök.
23/05/2015Dr Andy Brooks1 FOR0383 Software Quality Assurance Lecture 2 ESA Ariane 5 Rocket Flight 501.

23/05/2015Dr Andy Brooks1 FOR0383 Software Quality Assurance Lecture 2 ESA Ariane 5 Rocket Flight 501.
1 Basic Definitions: Testing What is software testing? Running a program In order to find faults a.k.a. defects a.k.a. errors a.k.a. flaws a.k.a. faults.

1 Basic Definitions: Testing What is software testing? Running a program In order to find faults a.k.a. defects a.k.a. errors a.k.a. flaws a.k.a. faults.
Reegan Worobec & David Sloan In collaboration with UAARG.

Reegan Worobec & David Sloan In collaboration with UAARG.
Modern Software Development Fawzi Emad Chau-Wen Tseng Department of Computer Science University of Maryland, College Park.

Modern Software Development Fawzi Emad Chau-Wen Tseng Department of Computer Science University of Maryland, College Park.
DS -V - FDT - 1 HUMBOLDT-UNIVERSITÄT ZU BERLIN INSTITUT FÜR INFORMATIK Zuverlässige Systeme für Web und E-Business (Dependable Systems for Web and E-Business)

DS -V - FDT - 1 HUMBOLDT-UNIVERSITÄT ZU BERLIN INSTITUT FÜR INFORMATIK Zuverlässige Systeme für Web und E-Business (Dependable Systems for Web and E-Business)
ARIANE 5 FAILURE ► BACKGROUND:- ► European space agency’s re-useable launch vehicle. ► Ariane-4 was a major success ► Ariane -5 was developed for the larger.

ARIANE 5 FAILURE ► BACKGROUND:- ► European space agency’s re-useable launch vehicle. ► Ariane-4 was a major success ► Ariane -5 was developed for the larger.
University College Cork IRELAND Hardware Concepts An understanding of computer hardware is a vital prerequisite for the study of operating systems.

University College Cork IRELAND Hardware Concepts An understanding of computer hardware is a vital prerequisite for the study of operating systems.
CSC 402, Fall 20001 Requirements Analysis for Special Properties Systems Engineering (def?) –why? increasing complexity –ICBM’s (then TMI, Therac, Challenger...)

CSC 402, Fall Requirements Analysis for Special Properties Systems Engineering (def?) –why? increasing complexity –ICBM’s (then TMI, Therac, Challenger...)
EEE499 Real Time Systems Software Reliability (Part II)

EEE499 Real Time Systems Software Reliability (Part II)
1 Input/Output Chapter 3 TOPICS Principles of I/O hardware Principles of I/O software I/O software layers Disks Clocks Reference: Operating Systems Design.

1 Input/Output Chapter 3 TOPICS Principles of I/O hardware Principles of I/O software I/O software layers Disks Clocks Reference: Operating Systems Design.
Chapter 2- Visual Basic Schneider1 Chapter 2 Problem Solving.

Chapter 2- Visual Basic Schneider1 Chapter 2 Problem Solving.

Similar presentations

Ads by Google