Virtual networks in an integrated time-triggered architecture

Depending on the physical structuring of large distributed safety-critical real-time systems, one can distinguish federated and integrated system architectures. This paper investigates the communication services of an integrated system architecture, which combines the complexity management advantages of federated systems with the functional integration and hardware benefits of an integrated approach. A major challenge is the need to accommodate the communication services to the different types of integrated application subsystems that range from ultra-dependable control applications (e.g., an x-by-wire system) to non safety-critical applications such as multimedia or comfort systems. In particular, the encapsulation of the communication activities of different application subsystems is required not only to prevent error propagation from non safety-critical application subsystems to higher levels of criticality, but also to facilitate complexity management and permit independent development activities. This paper introduces virtual networks as the encapsulated communication infrastructure of an application subsystem in the integrated DECOS architecture. Virtual networks are constructed as overlay networks on top of the time-triggered communication system of a base architecture. Each virtual network runs a corresponding communication protocol that is determined either by a legacy platform or selected to meet the requirements of the application subsystem. Encapsulation mechanisms ensure that the temporal properties of each virtual network are known a priori and independent from the communication activities in other virtual networks. By assigning to each application subsystem a dedicated virtual network and by ensuring that the virtual network abstractions hold also in the case of faults, the integrated architecture supports the benefits of a federated system, such as fault isolation, complexity management, independent development, and intellectual property protection. In addition, virtual networks promise massive cost savings through the reduction of physical networks and reliability improvements with respect to wiring and connectors.

[1]  Roman Obermaisser,et al.  Out-of-norm assertions [diagnostic mechanism] , 2005, 11th IEEE Real Time and Embedded Technology and Applications Symposium.

[2]  Hermann Kopetz,et al.  Elementary versus composite interfaces in distributed real-time systems , 1999, Proceedings. Fourth International Symposium on Autonomous Decentralized Systems. - Integration of Heterogeneous Systems -.

[3]  Herbert A. Simon,et al.  The Sciences of the Artificial , 1970 .

[4]  K. Hoyme,et al.  SAFEbus (for avionics) , 1993, IEEE Aerospace and Electronic Systems Magazine.

[5]  Hermann Kopetz,et al.  The time-triggered architecture , 1998, Proceedings First International Symposium on Object-Oriented Real-Time Distributed Computing (ISORC '98).

[6]  Leonard Kleinrock,et al.  Queueing Systems: Volume I-Theory , 1975 .

[7]  J.W. McBride,et al.  The degradation of road tested automotive connectors , 1999, Electrical Contacts - 1999. Proceedings of the Forty-Fifth IEEE Holm Conference on Electrical Contacts (Cat. No.99CB36343).

[8]  John Rushby,et al.  A Comparison of Bus Architectures for Safety-Critical Embedded Systems , 2003 .

[9]  Hermann Kopetz,et al.  Why time-triggered architectures will succeed in large hard real-time systems , 1995, Proceedings of the Fifth IEEE Computer Society Workshop on Future Trends of Distributed Computing Systems.

[10]  Brian Randell,et al.  Fundamental Concepts of Dependability , 2000 .

[11]  Hermann Kopetz,et al.  Fault containment and error detection in the time-triggered architecture , 2003, The Sixth International Symposium on Autonomous Decentralized Systems, 2003. ISADS 2003..

[12]  Hoyt Lougee,et al.  SOFTWARE CONSIDERATIONS IN AIRBORNE SYSTEMS AND EQUIPMENT CERTIFICATION , 2001 .

[13]  Neeraj Suri,et al.  Compositional design of RT systems: a conceptual basis for specification of linking interfaces , 2003, Sixth IEEE International Symposium on Object-Oriented Real-Time Distributed Computing, 2003..

[14]  J. H. Lala,et al.  Architectural principles for safety-critical real-time applications , 1994, Proc. IEEE.

[15]  Thomas Thurner,et al.  Time-triggered architecture for safety-related distributed real-time systems in transportation systems , 1998, Digest of Papers. Twenty-Eighth Annual International Symposium on Fault-Tolerant Computing (Cat. No.98CB36224).

[16]  John M. Rushby,et al.  Bus Architectures for Safety-Critical Embedded Systems , 2001, EMSOFT.

[17]  Hermann Kopetz,et al.  Temporal firewalls in large distributed real-time systems , 1997, Proceedings of the Sixth IEEE Computer Society Workshop on Future Trends of Distributed Computing Systems.

[18]  Roman Obermaisser,et al.  Event-Triggered and Time-Triggered Control Paradigms , 2004, Real-Time Systems Series.

[19]  Robert DeLine,et al.  Resolving packaging mismatch , 1999 .

[20]  Donal Heffernan,et al.  Expanding Automotive Electronic Systems , 2002, Computer.

[21]  Hermann Kopetz,et al.  Real-time systems , 2018, CSC '73.

[22]  Robert Griessbach,et al.  byteflight - A New Protocol for Safety Critical Applications , 2000 .

[23]  R. Hammett Flight-critical distributed systems: design considerations [avionics] , 2003 .

[24]  Hussein M. Abdel-Wahab,et al.  A proportional share resource allocation algorithm for real-time, time-shared systems , 1996, 17th IEEE Real-Time Systems Symposium.

[25]  Rushby John,et al.  Partitioning in Avionics Architectures: Requirements, Mechanisms, and Assurance , 1999 .

[26]  Axel Deicke The Electrical/Electronic Diagnostic Concept of the New 7 Series , 2002 .