论文信息 - Investigating Actuation Force Fight with Asynchronous and Synchronous Redundancy Management Techniques

Investigating Actuation Force Fight with Asynchronous and Synchronous Redundancy Management Techniques

Within distributed fault-tolerant systems the term force-fight is colloquially used to describe the level of command disagreement present at redundant actuation interfaces. This report details an investigation of force-fight using three distributed system case-study architectures. Each case study architecture is abstracted and formally modeled using the Symbolic Analysis Laboratory (SAL) tool chain from the Stanford Research Institute (SRI). We use the formal SAL models to produce k-induction based proofs of a bounded actuation agreement property. We also present a mathematically derived bound of redundant actuation agreement for sine-wave stimulus. The report documents our experiences and lessons learned developing the formal models and the associated proofs.

Bruno Dutertre | Brendan Hall | Kevin R. Driscoll | Kevin Schweiker

[1] David Clark,et al. Safety and Security Analysis of Object-Oriented Models , 2002, SAFECOMP.

[2] Stephen Osder,et al. Generic Faults and Architecture Design Considerations in Flight-Critical Systems , 1983 .

[3] Michael Paulitsch,et al. Time-Triggered Ethernet , 2014 .

[4] Ashish Tiwari,et al. Modeling and Analysis of Asynchronous Systems Using SAL and Hybrid SAL , 2013 .

[5] Gloria J. Davis. An analysis of redundancy management algorithms for asynchronous fault tolerant control systems , 1987 .

[6] Wilton P. Lock,et al. Experience with synchronous and asynchronous digital control systems. [for flight] , 1986 .

[7] J. Nilsson,et al. Analysis of time delays in synchronous and asynchronous control loops , 1998, Proceedings of the 37th IEEE Conference on Decision and Control (Cat. No.98CH36171).

[8] Brendan Hall,et al. Application Agreement and Integration Services , 2013 .

[9] Bruno Dutertre,et al. Timed Systems in SAL , 2004 .

[10] Brendan Hall,et al. Modeling and Analysis of Mixed Synchronous/Asynchronous Systems , 2012 .

[11] Håkan Sivencrona,et al. Byzantine Fault Tolerance, from Theory to Reality , 2003, SAFECOMP.