Failure Detection, Isolation and Recovery Concept

This chapter is one of the most complex ones and covers the platform Failure Detection, Isolation and Recovery (FDIR). It starts with explaining the FDIR concept and the system redundancies. Next FDIR Events, their flow in the onboard software and their management are explained. The spacecraft reconfiguration functionalities are treated in detail, in particular the reconfiguration of the onboard computer elements and the power subsystem as well as the mode fallback hierarchy for the diverse failure types. The FDIR specifics for each subsystem are explained and also the handling of device hardware failures. Software constants and FDIR limits are provided in the book’s annexes.