Self-Checking Components for Dependable Interactive Cockpits Using Formal Description Techniques

In the last few years, glass cockpits are being replaced by interactive cockpits to provide a higher level of integration of both command and information display. Due to their event driven nature, interactive systems offer more display and control capabilities but they require specific error detection and fault tolerance techniques to reach a high level of dependability. This paper proposes a model-based approach for adding fault tolerance mechanisms to interactive cockpits. While several mechanisms are considered and presented, the contribution is focused on the formal description of self-checking widgets, being the basis for interactive cockpits.

[1]  Hoyt Lougee,et al.  SOFTWARE CONSIDERATIONS IN AIRBORNE SYSTEMS AND EQUIPMENT CERTIFICATION , 2001 .

[2]  Jan Gulliksen,et al.  Key principles for user-centred systems design , 2003, Behav. Inf. Technol..

[3]  Brian Randell,et al.  System structure for software fault tolerance , 1975, IEEE Transactions on Software Engineering.

[4]  Eric Barboni,et al.  Model-Based Engineering of Widgets, User Applications and Servers Compliant with ARINC 661 Specification , 2006, DSV-IS.

[5]  Ergonomic requirements for office work with visual display terminals ( VDTs ) — Part 11 : Guidance on usability , 1998 .

[6]  Philippe A. Palanque,et al.  A formal notation and tool for the engineering of CORBA systems , 2000, Concurr. Pract. Exp..

[7]  Philippe A. Palanque,et al.  A Petri Net based Environment for the Design of Event-driven Interfaces , 1995, Application and Theory of Petri Nets.

[8]  Andreas Beu,et al.  Engineering Joy , 2001, IEEE Softw..

[9]  David L. Parnas,et al.  On the use of transition diagrams in the design of a user interface for an interactive computer system , 1969, ACM '69.

[10]  S. Yau,et al.  Design of self-checking software , 1975, Reliable Software.

[11]  Yves Crouzet,et al.  Challenges in Building Fault -Tolerant Flight Control System for a Civil Aircraft , 2008 .

[12]  Horst Oberquelle Human-Machine Interaction and Role/Function/Action-Nets , 1986, Advances in Petri Nets.

[13]  Philippe A. Palanque,et al.  A Formal Approach for User Interaction Reconfiguration of Safety Critical Interactive Systems , 2008, SAFECOMP.

[14]  Isabelle Lacaze,et al.  Airbus fly-by-wire - A total approach to dependability , 2004, IFIP Congress Topical Sessions.

[15]  Rémi Bastide,et al.  Reconciling Safety and Usability Concerns through Formal Specification-based Development Process , 2002 .

[16]  Paul Prisaznuk,et al.  ARINC Specification 653, Avionics Application Software Standard Interface , 2006, Avionics.

[17]  Y. C. Yeh,et al.  Triple-triple redundant 777 primary flight computer , 1996, 1996 IEEE Aerospace Applications Conference. Proceedings.

[18]  Rémi Bastide,et al.  A formal notation and tool for the engineering of CORBA systems , 2000 .

[19]  Wolfgang Reisig,et al.  Proceedings of an Advanced Course on Petri Nets: Central Models and Their Properties, Advances in Petri Nets 1986-Part II , 1986 .

[20]  Ben Shneiderman,et al.  Severity and impact of computer user frustration: A comparison of student and workplace users , 2006, Interact. Comput..

[21]  Jean Arlat,et al.  Definition and analysis of hardware- and software-fault-tolerant architectures , 1990, Computer.

[22]  Eric Barboni,et al.  ICOs: A model-based user interface description technique dedicated to interactive systems addressing usability, reliability and scalability , 2009, TCHI.

[23]  Michael Heymann,et al.  ANALYSIS AND VERIFICATION OF HUMAN-AUTOMATION INTERFACES , 2003 .

[24]  David A. Carr,et al.  Specification of interface interaction objects , 1994, CHI '94.

[25]  Philippe A. Palanque,et al.  A tool-supported design framework for safety critical interactive systems , 2003, Interact. Comput..

[26]  Philippe A. Palanque,et al.  Formal specification of CORBA services: experience and lessons learned , 2000, OOPSLA '00.