L1Simplex: Fault-tolerant control of cyber-physical systems

As the complexity of Cyber-Physical Systems (CPS) increases, it becomes more and more challenging to ensure the reliability of CPS, especially in the presence of system failures. Simplex architecture is shown to be an efficient tool to address the software failure in such systems. However, when physical failures also appear, Simplex does not work any more because the physical dynamics change due to physical failures. The Simplex architecture designed for the original physical model may not be suitable for the new dynamics. To address both software and physical failures, this paper presents the L1Simplex architecture, which contains the safety monitor, the high-performance controller (HPC), the L1- based high-assurance controller (HAC), and the decision logic for controller switching. The safety monitor is used to monitor the system behavior. It leads to another controller switching rule besides the stability-envelope-based rule in the decision logic. The HAC is designed based on the L1 adaptive controller, with which the stability envelope is computed. We show that the L1Simplex architecture can efficiently handle a class of software and physical failures.

[1]  Algirdas A. Avi The Methodology of N-Version Programming , 1995 .

[2]  Lui Sha,et al.  ORTEGA: An Efficient and Flexible Software Fault Tolerance Architecture for Real-Time Control Systems , 2008, 2008 Euromicro Conference on Real-Time Systems.

[3]  Hans-Peter Nee,et al.  Model-based current control of AC machines using the internal model control method , 1995 .

[4]  Eduardo Sontag,et al.  On characterizations of the input-to-state stability property , 1995 .

[5]  Karl Johan Åström,et al.  Adaptive Control Theory , 1988 .

[6]  Lui Sha Dependable system upgrade , 1998, Proceedings 19th IEEE Real-Time Systems Symposium (Cat. No.98CB36279).

[7]  Lui Sha,et al.  The Simplex Reference Model: Limiting Fault-Propagation Due to Unreliable Components in Cyber-Physical System Architectures , 2007, 28th IEEE International Real-Time Systems Symposium (RTSS 2007).

[8]  Irene M. Gregory,et al.  $\mathcal {L}_1$Adaptive Control for Safety-Critical Systems , 2011, IEEE Control Systems.

[9]  Hyungbo Shim,et al.  An almost necessary and sufficient condition for robust stability of closed-loop systems with disturbance observer , 2009, Autom..

[10]  Danbing Seto,et al.  Case Study: Development of a Baseline Controller for Automatic Landing of an F-16 Aircraft Using Linear Matrix Inequalities (LMIs) , 2000 .

[11]  L. Praly,et al.  Adaptive nonlinear regulation: estimation from the Lyapunov equation , 1992 .

[12]  Stephan Merz,et al.  Model Checking , 2000 .

[13]  Lui Sha,et al.  An Engineering Method for Safety Region Development , 1999 .

[14]  Naira Hovakimyan,et al.  L1 Adaptive Control Theory - Guaranteed Robustness with Fast Adaptation , 2010, Advances in design and control.

[15]  Chengyu Cao,et al.  ℒ1 adaptive control of system with unmatched disturbance by using eigenvalue assignment method , 2012, 2012 IEEE 51st IEEE Conference on Decision and Control (CDC).

[16]  Lui Sha,et al.  Using Simplicity to Control Complexity , 2001, IEEE Softw..

[17]  Chengyu Cao,et al.  Stability Margins of ${\cal L}_{1}$ Adaptive Control Architecture , 2010, IEEE Transactions on Automatic Control.