A Reusable Framework for Modeling and Verifying In-Vehicle Networking Systems in the Presence of CAN and FlexRay

In an IVN system, electronic components are connected and communicated through multiple protocols subjected to different requirements. In practice, intelligent vehicles need to exchange data between the body control subsystem and the chassis control subsystem, usually involving both the controller area network (CAN) protocol and the FlexRay protocol. In such a system, delays and congestion of frame transmissions are more likely to happen, leading to safety issues. In this paper, following a two-stage strategy, we managed to find an appropriate abstraction to model the IVN system in the presence of both protocols. Based on the abstraction, we proposed a framework for modeling and verifying IVN systems in their design phase using timed model checking techniques. To analyze the timed properties of communications, we chose the UPPAAL as the platform. Regarding concerns of reusability, this framework was structured in such a way that it is adaptable to IVN systems with different topologies. This framework was validated by checking the communication behaviors against the protocol specifications. We constructed design models with three typical topologies and estimated the response time of frames. The reusability of this framework over different topologies was demonstrated by comparing the estimated response times against the corresponding topological characteristics.

[1]  Wang Yi,et al.  UPPAAL - a Tool Suite for Automatic Verification of Real-Time Systems , 1996, Hybrid Systems.

[2]  Xinyun Zhou,et al.  Modeling and Verification of CAN Bus with Application Layer using UPPAAL , 2014, Electron. Notes Theor. Comput. Sci..

[3]  Emrah Yürüklü,et al.  Performance evaluation of FlexRay/CAN networks interconnected by a gateway , 2010, International Symposium on Industrial Embedded System (SIES).

[4]  Kim Guldstrand Larsen,et al.  Model-Based Framework for Schedulability Analysis Using Uppaal 4.1 , 2018, Model-Based Design for Embedded Systems.

[5]  Luca Fanucci,et al.  Design and Verification of Hardware Building Blocks for High-Speed and Fault-Tolerant In-Vehicle Networks , 2011, IEEE Transactions on Industrial Electronics.

[6]  Qin Gui-he,et al.  Gateway system for CAN and FlexRay in automotive ECU networks , 2010, 2010 International Conference on Information, Networking and Automation (ICINA).

[7]  Jae Wook Jeon,et al.  A gateway system for an automotive system: LIN, CAN, and FlexRay , 2008, 2008 6th IEEE International Conference on Industrial Informatics.

[8]  Sang-Sun Lee,et al.  Design and implementation of a UPnP-can gateway for automotive environments , 2013 .

[9]  Béatrice Bérard,et al.  Verification of a Timed Multitask System With Uppaal , 2005, IEEE Transactions on Automation Science and Engineering.

[10]  Alberto L. Sangiovanni-Vincentelli,et al.  Electronic-System Design in the Automobile Industry , 2003, IEEE Micro.

[11]  Man Ho Kim,et al.  Performance Evaluation of Node-mapping-based Flexray-CAN Gateway for in-vehicle Networking System , 2015, Intell. Autom. Soft Comput..

[12]  Zdenek Hanzálek,et al.  Formal verification of multitasking applications based on timed automata model , 2007, Real-Time Systems.

[13]  Toshiaki Aoki,et al.  An UPPAAL Framework for Model Checking Automotive Systems with FlexRay Protocol , 2013, FTSCS.

[14]  Indranil Saha,et al.  A Finite State Analysis of Time-Triggered CAN (TTCAN) Protocol Using Spin , 2007, 2007 International Conference on Computing: Theory and Applications (ICCTA'07).

[15]  Toshiaki Aoki,et al.  A Spin-Based Approach for Checking OSEK/VDX Applications , 2014, FTSCS.

[16]  Lee Pike,et al.  Modeling Time-Triggered Protocols and Verifying Their Real-Time Schedules , 2007, Formal Methods in Computer Aided Design (FMCAD'07).

[17]  Zdenek Hanzálek,et al.  Case study on distributed and fault tolerant system modeling based on timed automata , 2009, J. Syst. Softw..