Une méthode globale pour la vérification d'exigences temps réel : application à l'Avionique Modulaire Intégrée. (A comprehensive method for real-time requirements verification : application to Integrated Modular Avnionics)

Dans le domaine de l'aeronautique, les systemes embarques ont fait leur apparition durant les annees 60, lorsque les equipements analogiques ont commence a etre remplaces par leurs equivalents numeriques. Des lors, l'engouement suscite par les progres de l'informatique fut tel que de plus en plus de fonctionnali- tes ont ete numerisees. L'accroissement permanent de la complexite des systemes a conduit a la definition d'une architecture appelee Avionique Modulaire Integree (IMA pour Integrated Modular Avionics). Cette architecture se distingue des architectures anterieures, car elle est fondee sur des standards (ARINC 653 et ARINC 664 partie 7) permettant le partage des ressources de calcul et de communication entre les differentes fonctions avioniques. Ce type d'architecture est applique aussi bien dans le domaine civil avec le Boeing B777 et l'Airbus A380, que dans le domaine militaire avec le Rafale ou encore l'A400M. Pour des raisons de surete, le comportement temporel d'un systeme s'appuyant sur une architecture IMA doit etre previsible. Ce besoin se traduit par un ensemble d'exigences temps reel que doit satisfaire le systeme. Le probleme explore dans cette these concerne la verification d'exigences temps reel dans les systemes IMA. Ces exigences s'articulent autour de chaines fonctionnelles, qui sont des sequences de fonctions. Une exigence specifie alors une borne acceptable (minimale ou maximale) pour une propriete temporelle d'une ou plusieurs chaines fonctionnelles. Nous avons identifie trois categories d'exigences temps reel, que nous considerons pertinentes vis-a-vis des systemes etudies. Il s'agit des exigences de latence, de fraicheur et de coherence. Nous proposons une modelisation des systemes IMA, et des exigences qu'ils doivent satisfaire, dans le formalisme du tagged signal model. Nous montrons alors comment, a partir de ce modele, nous pouvons generer pour chaque exigence un programme lineaire mixte, c'est-a-dire contenant a la fois des variables entieres et reelles, dont la solution optimale permet de verifier la satisfaction de l'exigence.

[1]  J.-B. Grieu,et al.  Analyse et évaluation de techniques de commutation Ethernet pour l'interconnexion des systèmes avioniques , 2004 .

[2]  Marc Boyer NC-Maude: A Rewriting Tool to Play with Network Calculus , 2010, ISoLA.

[3]  Cheng-Shang Chang,et al.  Performance guarantees in communication networks , 2000, Eur. Trans. Telecommun..

[4]  Alain Jean-Marie,et al.  Timing Analysis of Real-Time Scheduling Policies : A Trajectory Based Model , 1998 .

[5]  Jörgen Hansson,et al.  Flow Latency Analysis with the Architecture Analysis and Design Language (AADL) , 2007 .

[6]  Tarek F. Abdelzaher,et al.  Transforming Distributed Acyclic Systems into Equivalent Uniprocessors under Preemptive and Non-Preemptive Scheduling , 2008, 2008 Euromicro Conference on Real-Time Systems.

[7]  John A. Clark,et al.  Holistic schedulability analysis for distributed hard real-time systems , 1994, Microprocess. Microprogramming.

[8]  Steven C. Martin,et al.  Maîtrise de la dimension temporelle de la qualité de service dans les réseaux , 2004 .

[9]  Charles André,et al.  Syntax and Semantics of the Clock Constraint Specification Language (CCSL) , 2009 .

[10]  Jane W.-S. Liu,et al.  Maintaining Temporal Consistency: Pessimistic vs. Optimitic Concurrency Control , 1995, IEEE Trans. Knowl. Data Eng..

[11]  Liliana Cucu-Grosjean,et al.  Toward probabilistic real-time calculus , 2011, SIGBED.

[12]  Wolfgang Reisig Petri Nets: An Introduction , 1985, EATCS Monographs on Theoretical Computer Science.

[13]  Frédéric Boniol,et al.  Analyse de latence et fraîcheur pire cas sur systèmes avioniques modulaires intégrés , 2011 .

[14]  W. Tindell AN EXTENDIBLE APPROACH FOR ANALYSING FIXED PRIORITY HARD REAL-TIME TASKS , 1994 .

[15]  R. Alur Techniques for automatic verification of real-time systems , 1991 .

[16]  Philippe Schnoebelen,et al.  Systems and Software Verification, Model-Checking Techniques and Tools , 2001 .

[17]  Sang Hyuk Son,et al.  Real-Time Databases and Data Services , 2004, Real-Time Systems.

[18]  Rene L. Cruz,et al.  A calculus for network delay, Part II: Network analysis , 1991, IEEE Trans. Inf. Theory.

[19]  Stavros Tripakis,et al.  On-the-fly symbolic model checking for real-time systems , 1997, Proceedings Real-Time Systems Symposium.

[20]  Michael González Harbour,et al.  Schedulability analysis for tasks with static and dynamic offsets , 1998, Proceedings 19th IEEE Real-Time Systems Symposium (Cat. No.98CB36279).

[21]  Robert de Simone,et al.  Modeling time(s) , 2007, MODELS'07.

[22]  Krithi Ramamritham,et al.  Mutual Consistency in Real-Time Databases , 2006, 2006 27th IEEE International Real-Time Systems Symposium (RTSS'06).

[23]  Jan Karel Lenstra,et al.  Periodic Multiprocessor Scheduling , 1991, PARLE.

[24]  Verónika Peralta,et al.  A framework for analysis of data freshness , 2004, IQIS '04.

[25]  Alain Jean-Marie,et al.  Real-Time Scheduling: Non-Preemption, Critical Sections and Round Robin , 1999 .

[26]  Christian Fraboul,et al.  Improving the Worst-Case Delay Analysis of an AFDX Network Using an Optimized Trajectory Approach , 2010, IEEE Transactions on Industrial Informatics.

[27]  Wang Yi,et al.  Timed Automata: Semantics, Algorithms and Tools , 2003, Lectures on Concurrency and Petri Nets.

[28]  F. Baccelli,et al.  Elements of Queueing Theory: Palm Martingale Calculus and Stochastic Recurrences , 2010 .

[29]  Edward A. Lee,et al.  A DENOTATIONAL FRAMEWORK FOR COMPARING MODELS OF COMPUTATION , 1997 .

[30]  Laurent Nana,et al.  Cheddar: a flexible real time scheduling framework , 2004, SIGAda.

[31]  A. Land,et al.  An Automatic Method for Solving Discrete Programming Problems , 1960, 50 Years of Integer Programming.

[32]  Jérôme Ermont,et al.  Model for worst case delay analysis of an AFDX network using timed automata , 2010, 2010 IEEE 15th Conference on Emerging Technologies & Factory Automation (ETFA 2010).

[33]  Lothar Thiele,et al.  Analytic real-time analysis and timed automata: a hybrid method for analyzing embedded real-time systems , 2009, EMSOFT '09.

[34]  Jérôme Ermont,et al.  Latency and freshness analysis on IMA systems , 2011, ETFA2011.

[35]  Olivier Brun,et al.  Partition Scheduling on an IMA Platform with Strict Periodicity and Communication Delays , 2010 .

[36]  Ivan Martinovic,et al.  Performance Bounds in Feed−Forward Networks under Blind Multiplexing , 2006 .

[37]  Rene L. Cruz,et al.  A calculus for network delay, Part I: Network elements in isolation , 1991, IEEE Trans. Inf. Theory.

[38]  Holger Hermanns,et al.  On Combining Functional Verification and Performance Evaluation Using CADP , 2002, FME.

[39]  Hubert Garavel,et al.  Verification of GALS Systems by Combining Synchronous Languages and Process Calculi , 2009, SPIN.

[40]  Pascale Minet,et al.  Worst case end-to-end response times of flows scheduled with FP/FIFO , 2006, International Conference on Networking, International Conference on Systems and International Conference on Mobile Communications and Learning Technologies (ICNICONSMCL'06).

[41]  Kim Guldstrand Larsen,et al.  The power of reachability testing for timed automata , 2003, Theor. Comput. Sci..

[42]  Ahmad Al Sheikh Resource allocation in hard real-time avionic systems. Scheduling and routing problems , 2011 .

[43]  Wolfhard Lawrenz CAN System Engineering , 2013, Springer London.

[44]  Julien Delange,et al.  Validate, simulate, and implement ARINC653 systems using the AADL , 2009, SIGAda '09.

[45]  Christian Fraboul,et al.  Applying and optimizing trajectory approach for performance evaluation of AFDX avionics network , 2009, 2009 IEEE Conference on Emerging Technologies & Factory Automation.

[46]  Leslie Lamport,et al.  Time, clocks, and the ordering of events in a distributed system , 1978, CACM.

[47]  Frédéric Boniol,et al.  Safe allocation of avionics shared resources , 2005, Ninth IEEE International Symposium on High-Assurance Systems Engineering (HASE'05).

[48]  Jean-François Rolland,et al.  Développement et validation d'architectures dynamiques , 2008 .

[49]  Gilles Kahn,et al.  The Semantics of a Simple Language for Parallel Programming , 1974, IFIP Congress.

[50]  Eric Thierry,et al.  Tight performance bounds in the worst-case analysis of feed-forward networks , 2010, 2010 Proceedings IEEE INFOCOM.

[51]  Vincent David,et al.  Safety Properties Ensured by the OASIS Model for Safety Critical Real-Time Systems , 1998, SAFECOMP.

[52]  Nadège Pontisso,et al.  Association cohérente de données dans les systèmes temps réel à base de composants - Application aux logiciels spatiaux , 2009 .

[53]  Jing Liu,et al.  Verification of MARTE/CCSL Time Requirements in Promela/SPIN , 2011, 2011 16th IEEE International Conference on Engineering of Complex Computer Systems.

[54]  Alan Burns,et al.  Calculating controller area network (can) message response times , 1994 .

[55]  Christian Fraboul,et al.  TIMED ANALYSIS OF EMBEDDED NETWORKS USING TIMED AUTOMATA , 2007 .

[56]  Jérôme Ermont,et al.  Methods for bounding end-to-end delays on an AFDX network , 2006, 18th Euromicro Conference on Real-Time Systems (ECRTS'06).

[57]  Rajeev Alur,et al.  A Theory of Timed Automata , 1994, Theor. Comput. Sci..

[58]  Sébastien Gérard,et al.  MARTE: Also an UML Profile for Modeling AADL Applications , 2007, 12th IEEE International Conference on Engineering Complex Computer Systems (ICECCS 2007).

[59]  Jukka Mäki-Turja,et al.  Efficient implementation of tight response-times for tasks with offsets , 2008, Real-Time Systems.

[60]  Shin Nakajima,et al.  The SPIN Model Checker : Primer and Reference Manual , 2004 .

[61]  Edward A. Lee,et al.  A framework for comparing models of computation , 1998, IEEE Trans. Comput. Aided Des. Integr. Circuits Syst..

[62]  Christian Fraboul,et al.  Improving end-to-end delay upper bounds on an AFDX network by integrating offsets in worst-case analysis , 2010, 2010 IEEE 15th Conference on Emerging Technologies & Factory Automation (ETFA 2010).

[63]  Françoise Simonot-Lion,et al.  Configuration of in-vehicle embedded systems under real-time constraints , 2005, 2005 IEEE Conference on Emerging Technologies and Factory Automation.

[64]  F. Carcenac,et al.  Une méthode d'abstraction pour la vérification des systèmes embarqués distribués : application à l'avionique , 2005 .

[65]  Christian Fraboul,et al.  Minimizing the search space for computing exact worst-case delays of AFDX periodic flows , 2011, 2011 6th IEEE International Symposium on Industrial and Embedded Systems.

[66]  John P. Lehoczky,et al.  Fixed priority scheduling of periodic task sets with arbitrary deadlines , 1990, [1990] Proceedings 11th Real-Time Systems Symposium.

[67]  Augusto Burgueño Arjona Vérification et synthèse de systèmes temporisés par des méthodes d'observation et d'analyse paramétrique , 1998 .

[68]  Bertrand Cottenceau,et al.  COINC Library : A toolbox for Network Calculus , 2009 .

[69]  F. Frances,et al.  Using network calculus to optimize the AFDX network , 2006 .

[70]  Robert E. Tarjan,et al.  Depth-First Search and Linear Graph Algorithms , 1972, SIAM J. Comput..

[71]  Henri Bauer,et al.  Analyse pire cas de flux hétérogènes dans un réseau embarqué avion , 2011 .

[72]  Gérard Padiou,et al.  Analysis of distributed multi-periodic systems to achieve consistent data matching , 2010, 2010 10th Annual International Conference on New Technologies of Distributed Systems (NOTERE).

[73]  Marco Spuri,et al.  Holistic Analysis for Deadline Scheduled Real-Time Distributed Systems , 1996 .

[74]  Frédéric Boniol,et al.  A formal framework for verifying distributed embedded systems based on abstraction methods , 2006, International Journal on Software Tools for Technology Transfer.

[75]  Alan Burns,et al.  Applying new scheduling theory to static priority pre-emptive scheduling , 1993, Softw. Eng. J..

[76]  Christian Fraboul,et al.  An improved timed automata model for computing exact worst-case delays of AFDX periodic flows , 2011, ETFA2011.

[77]  Lothar Thiele,et al.  Real-time calculus for scheduling hard real-time systems , 2000, 2000 IEEE International Symposium on Circuits and Systems. Emerging Technologies for the 21st Century. Proceedings (IEEE Cat No.00CH36353).

[78]  James W. Layland,et al.  Scheduling Algorithms for Multiprogramming in a Hard-Real-Time Environment , 1989, JACM.

[79]  Wang Yi,et al.  Uppaal in a nutshell , 1997, International Journal on Software Tools for Technology Transfer.

[80]  Oleg Sokolsky,et al.  Performance Analysis of AADL Models Using Real-Time Calculus , 2008, Monterey Workshop.

[81]  Frédéric Mallet,et al.  Modèle de contraintes temporelles pour systèmes polychrones , 2009 .

[82]  Jean-Yves Le Boudec,et al.  Network Calculus: A Theory of Deterministic Queuing Systems for the Internet , 2001 .

[83]  Peter H. Feiler,et al.  The Architecture Analysis & Design Language (AADL): An Introduction , 2006 .

[84]  Tarek F. Abdelzaher,et al.  Delay Composition Algebra: A Reduction-Based Schedulability Algebra for Distributed Real-Time Systems , 2008, 2008 Real-Time Systems Symposium.

[85]  M. Boyer,et al.  Tightening end to end delay upper bound for AFDX network calculus with rate latency FIFO servers using network calculus , 2008, 2008 IEEE International Workshop on Factory Communication Systems.

[86]  Jérôme Ermont,et al.  Worst Case Temporal Consistency in Integrated Modular Avionics Systems , 2011, 2011 IEEE 13th International Symposium on High-Assurance Systems Engineering.

[87]  Jérôme Ermont,et al.  Analyzing End-to-End Functional Delays on an IMA Platform , 2010, ISoLA.

[88]  Balakrishna J. Prabhu,et al.  A Best-Response Algorithm for Multiprocessor Periodic Scheduling , 2011, 2011 23rd Euromicro Conference on Real-Time Systems.

[89]  Ernesto Wandeler,et al.  Optimal TDMA time slot and cycle length allocation for hard real-time systems , 2006, Asia and South Pacific Conference on Design Automation, 2006..

[90]  Matthias Brun,et al.  Code Generation from AADL to a Real-Time Operating System: An Experimentation Feedback on the Use of Model Transformation , 2008, 13th IEEE International Conference on Engineering of Complex Computer Systems (iceccs 2008).