Moving From Federated to Integrated Architectures in Automotive: The Role of Standards, Methods and Tools

Cost pressure, flexibility, extensibility and the need for coping with increased functional complexity are changing the fundamental paradigms for the definition of automotive and aeronautics architectures. Traditional designs are based on the concept of a Federated Architecture in which integrated hardware/software components [Electronic Control Units (ECUs)] realize mostly independent or loosely interconnected functions. These components are connected by bus and cooperate by exchanging messages. This paradigm is now being replaced by the Integrated Architecture, - the concept comes from Integrated Modular Avionics (IMA) introduced by the avionics community (see C. B. Watkins and R. Walter, ?Transitioning from federated avionics architectures to integrated modular avionics?, in Proc. 26th Digital Avionics Syst. Conf., Oct. 2007) but it is certainly general and applicable to other fields and in particular, automotive - in which software components can be supplied from multiple sources, integrated on the same hardware platform or physically distributed and possibly moved from one CPU to another without loss of functional and time correctness and providing a guaranteed level of reliability. This shift will decouple software design from the hardware platform design and provide opportunities for the optimization of the architecture configuration, increased extensibility, flexibility and modularity. However, the integration of software components in a distributed system realizing a complex functional behavior and characterized by safety, time and reliability constraints requires a much tighter control on the component model and its semantics, new methods and tools for analyzing the results of the composition, whether by simulation or formal methods, and methods for exploring the architecture solution space and optimizing the configuration. We provide a general overview of existing challenges and possible solutions to the design and analysis problem, with special focus on the automotive domain. The development of such methods and tools must necessarily consider compatibility with existing modeling languages and standards, including UML, AUTOSAR and synchronous reactive models, on which the widely used commercial products Simulink and SCADE are based.

[1]  John P. Lehoczky,et al.  The rate monotonic scheduling algorithm: exact characterization and average case behavior , 1989, [1989] Proceedings. Real-Time Systems Symposium.

[2]  John P. Lehoczky,et al.  Timing Analysis for Fixed-Priority Scheduling of Hard Real-Time Systems , 1994, IEEE Trans. Software Eng..

[3]  Nicolas Halbwachs,et al.  LUSTRE: A declarative language for programming synchronous systems* , 1987 .

[4]  Manas Saksena,et al.  Scheduling fixed-priority tasks with preemption threshold , 1999, Proceedings Sixth International Conference on Real-Time Computing Systems and Applications. RTCSA'99 (Cat. No.PR00306).

[5]  Frédéric Boussinot,et al.  The ESTEREL language , 1991, Proc. IEEE.

[6]  Alberto L. Sangiovanni-Vincentelli,et al.  Period Optimization for Hard Real-time Distributed Automotive Systems , 2007, 2007 44th ACM/IEEE Design Automation Conference.

[7]  Diego Latella,et al.  Automatic Verification of a Behavioural Subset of UML Statechart Diagrams Using the SPIN Model-checker , 1999, Formal Aspects of Computing.

[8]  Luciano Lavagno,et al.  Hardware-Software Co-Design of Embedded Systems , 1997 .

[9]  Stavros Tripakis,et al.  Semantics-preserving and memory-efficient implementation of inter-task communication on static-priority or EDF schedulers , 2005, EMSOFT.

[10]  Albert Benveniste,et al.  Time-robust discrete control over networked Loosely Time-Triggered Architectures , 2008, 2008 47th IEEE Conference on Decision and Control.

[11]  Pascal Raymond,et al.  The synchronous data flow programming language LUSTRE , 1991, Proc. IEEE.

[12]  Filip De Turck,et al.  Evaluation of a tunnel set-up mechanism in QoS-aware Ethernet access networks , 2004, The 13th IEEE Workshop on Local and Metropolitan Area Networks, 2004. LANMAN 2004..

[13]  Alberto L. Sangiovanni-Vincentelli,et al.  Implementing Synchronous Models on Loosely Time Triggered Architectures , 2008, IEEE Transactions on Computers.

[14]  Albert Benveniste,et al.  Compositionality in Dataflow Synchronous Languages: Specification and Distributed Code Generation , 2000, Inf. Comput..

[15]  Lui Sha,et al.  Priority Inheritance Protocols: An Approach to Real-Time Synchronization , 1990, IEEE Trans. Computers.

[16]  Thomas Beck,et al.  Current trends in the design of automotive electronic systems , 2001, Proceedings Design, Automation and Test in Europe. Conference and Exhibition 2001.

[17]  Alberto L. Sangiovanni-Vincentelli,et al.  System-level design: orthogonalization of concerns andplatform-based design , 2000, IEEE Trans. Comput. Aided Des. Integr. Circuits Syst..

[18]  C.B. Watkins,et al.  Transitioning from federated avionics architectures to Integrated Modular Avionics , 2007, 2007 IEEE/AIAA 26th Digital Avionics Systems Conference.

[19]  Abhay Parekh,et al.  A generalized processor sharing approach to flow control in integrated services networks: the single-node case , 1993, TNET.

[20]  Henrik Theiling,et al.  Reliable and Precise WCET Determination for a Real-Life Processor , 2001, EMSOFT.

[21]  Shuichi Oikawa,et al.  Resource kernels: a resource-centric approach to real-time and multimedia systems , 2001, Electronic Imaging.

[22]  Abhay Parekh,et al.  A generalized processor sharing approach to flow control in integrated services networks-the single node case , 1992, [Proceedings] IEEE INFOCOM '92: The Conference on Computer Communications.

[23]  Weijia Jia,et al.  Rendezvous Planning in Mobility-Assisted Wireless Sensor Networks , 2007, RTSS 2007.

[24]  Benoît Caillaud,et al.  Correct-by-construction asynchronous implementation of modular synchronous specifications , 2005, Fifth International Conference on Application of Concurrency to System Design (ACSD'05).

[25]  Richard Paige,et al.  An Overview of Eiffel , 1999 .

[26]  Albert Benveniste,et al.  Toward an Approximation Theory for Computerised Control , 2002, EMSOFT.

[27]  Carlo Rossi The synchronous languages 12 years later , 2011 .

[28]  Alexandre Yakovlev,et al.  Moving from Weakly Endochronous Systems to Delay-Insensitive Circuits , 2005, FMGALS@MEMOCODE.

[29]  Giorgio C. Buttazzo,et al.  Sensitivity Analysis for Fixed-Priority Real-Time Systems , 2006, ECRTS.

[30]  Giuseppe Lipari,et al.  Constant bandwidth vs. proportional share resource allocation , 1999, Proceedings IEEE International Conference on Multimedia Computing and Systems.

[31]  LamportLeslie Time, clocks, and the ordering of events in a distributed system , 1978 .

[32]  W. Marsden I and J , 2012 .

[33]  Scott Shenker,et al.  Analysis and simulation of a fair queueing algorithm , 1989, SIGCOMM 1989.

[34]  Hermann Kopetz,et al.  The time-triggered architecture , 2003 .

[35]  Alan Burns,et al.  Controller Area Network (CAN) schedulability analysis: Refuted, revisited and revised , 2007, Real-Time Systems.

[36]  Alberto L. Sangiovanni-Vincentelli,et al.  Heterogeneous reactive systems modeling: capturing causality and the correctness of loosely time-triggered architectures (LTTA) , 2004, EMSOFT '04.

[37]  A. Benveniste,et al.  Applying LTTA to guarantee flow of data requirements in distr ibuted systems using Controller Area Networks ∗ , 2008 .

[38]  Lui Sha,et al.  Aperiodic task scheduling for Hard-Real-Time systems , 2006, Real-Time Systems.

[39]  Alberto L. Sangiovanni-Vincentelli,et al.  Efficient embedded software design with synchronous models , 2005, EMSOFT.

[40]  Alberto L. Sangiovanni-Vincentelli,et al.  Loosely time-triggered architectures based on communication-by-sampling , 2007, EMSOFT '07.

[41]  Alberto Sangiovanni-Vincentelli,et al.  Loosely Time-Triggered Architectures and Middleware based on Communication-by-Sampling: MoCC and Properties , 2007 .

[42]  Luciano Lavagno,et al.  Processes, Interfaces and Platforms. Embedded Software Modeling in Metropolis , 2002, EMSOFT.

[43]  Albert Benveniste,et al.  Concurrency in Synchronous Systems , 2006, Formal Methods Syst. Des..

[44]  Luciano Lavagno,et al.  Hardware-software co-design of embedded systems: the POLIS approach , 1997 .

[45]  Manfred Broy,et al.  Automotive Architecture Framework: Towards a Holistic and Standardised System Architecture Description , 2009 .

[46]  Ed F. Deprettere,et al.  A Methodology to Design Programmable Embedded Systems - The Y-Chart Approach , 2001, Embedded Processor Design Challenges.

[47]  Alberto L. Sangiovanni-Vincentelli,et al.  Synthesis of Task and Message Activation Models in Real-Time Distributed Automotive Systems , 2007, 2007 Design, Automation & Test in Europe Conference & Exhibition.

[48]  Analysis and Simulation of a Fair Queuing Algorithm , 2008 .

[49]  Alberto L. Sangiovanni-Vincentelli,et al.  Optimizing Extensibility in Hard Real-Time Distributed Systems , 2009, 2009 15th IEEE Real-Time and Embedded Technology and Applications Symposium.

[50]  Marc Pouzet,et al.  Synchronous Kahn networks , 1996, ICFP '96.

[51]  Wei Zheng,et al.  Definition of Task Allocation and Priority Assignment in Hard Real-Time Distributed Systems , 2007, RTSS 2007.

[52]  Ernesto Pimentel,et al.  Debugging UML Designs with Model Checking , 2002, J. Object Technol..

[53]  Albert Benveniste,et al.  A Protocol for Loosely Time-Triggered Architectures , 2002, EMSOFT.

[54]  Alberto L. Sangiovanni-Vincentelli,et al.  Quo Vadis, SLD? Reasoning About the Trends and Challenges of System Level Design , 2007, Proceedings of the IEEE.

[55]  Alberto L. Sangiovanni-Vincentelli,et al.  Fault-tolerant deployment of embedded software for cost-sensitive real-time feedback-control applications , 2004, Proceedings Design, Automation and Test in Europe Conference and Exhibition.

[56]  Stavros Tripakis,et al.  From simulink to SCADE/lustre to TTA: a layered approach for distributed embedded applications , 2003, LCTES '03.

[57]  Rolf Ernst,et al.  Scheduling Anomaly Detection and Optimization for Distributed Systems with Preemptive Task-Sets , 2006, 12th IEEE Real-Time and Embedded Technology and Applications Symposium (RTAS'06).

[58]  Stavros Tripakis,et al.  From simulink to SCADE/lustre to TTA: a layered approach for distributed embedded applications , 2003 .

[59]  Albert Benveniste,et al.  Actors without Directors: A Kahnian View of Heterogeneous Systems , 2009, HSCC.

[60]  Leslie Lamport,et al.  Time, clocks, and the ordering of events in a distributed system , 1978, CACM.

[61]  Paolo Gai,et al.  Time and memory tradeoffs in the implementation of AUTOSAR components , 2009, 2009 Design, Automation & Test in Europe Conference & Exhibition.

[62]  Seif Haridi,et al.  Distributed Algorithms , 1992, Lecture Notes in Computer Science.

[63]  K. Keutzer,et al.  System-level design: orthogonalization of concerns andplatform-based design , 2000, IEEE Trans. Comput. Aided Des. Integr. Circuits Syst..

[64]  Marc Pouzet,et al.  Automatic rate desynchronization of embedded reactive programs , 2006, TECS.