Abstract Two Shortcomings in Software Design for Avionics: Timing Analysis and Soft Error Protection
This paper highlights two shortcomings in the current design process of embedded systems of avionics. First, the current software design process does not adequately verify and validate worst-case timing scenarios that have to be guaranteed in order to meet deadlines. Consider the RTCA DO-178B standa...
Main Author: | |
---|---|
Other Authors: | |
Format: | Text |
Language: | English |
Subjects: | |
Online Access: | http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.87.8421 http://chess.eecs.berkeley.edu/hcssas/papers/Mueller-hcss06.pdf |
id |
ftciteseerx:oai:CiteSeerX.psu:10.1.1.87.8421 |
---|---|
record_format |
openpolar |
spelling |
ftciteseerx:oai:CiteSeerX.psu:10.1.1.87.8421 2023-05-15T17:39:57+02:00 Abstract Two Shortcomings in Software Design for Avionics: Timing Analysis and Soft Error Protection Frank Mueller The Pennsylvania State University CiteSeerX Archives application/pdf http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.87.8421 http://chess.eecs.berkeley.edu/hcssas/papers/Mueller-hcss06.pdf en eng http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.87.8421 http://chess.eecs.berkeley.edu/hcssas/papers/Mueller-hcss06.pdf Metadata may be used without restrictions as long as the oai identifier remains attached to it. http://chess.eecs.berkeley.edu/hcssas/papers/Mueller-hcss06.pdf text ftciteseerx 2016-01-08T19:36:24Z This paper highlights two shortcomings in the current design process of embedded systems of avionics. First, the current software design process does not adequately verify and validate worst-case timing scenarios that have to be guaranteed in order to meet deadlines. Consider the RTCA DO-178B standard requiring coverage testing. An additional requirement, namely predictable timing behavior, is essential real-time embedded systems. Airbus requires their suppliers to provide verifiable bounds on worst-case execution time of software for planes under development, Boeing is considering it (e.g., for Airbus 380, Boeing 787 and military aircraft). The automotive industry, among others, is evaluating similar requirements. We provide an analysis of this problem that outlines directions for future research and tool development in this area. Second, the correctness of embedded systems is currently jeopardized by soft errors that may render control systems inoperable. In general, transient faults are increasingly a problem due to (a) smaller fabrication sizes and (b) deployment in harsh environments. In commercial aviation, the next-generation planes (Airbus 380 and Boeing 787) will deploy off-the-shelf embedded processors without hardware protection against soft errors. Since these planes are designed to fly over the North Pole with an order of magnitude higher radiation (due to a thinner atmosphere), system developers have been asked to consider the effect of single-event upsets (SEUs), i.e., infrequent single bit-flips, in their software design. Current developers do not know how to address this problem. We outline much needed research in this area. Text North Pole Unknown North Pole |
institution |
Open Polar |
collection |
Unknown |
op_collection_id |
ftciteseerx |
language |
English |
description |
This paper highlights two shortcomings in the current design process of embedded systems of avionics. First, the current software design process does not adequately verify and validate worst-case timing scenarios that have to be guaranteed in order to meet deadlines. Consider the RTCA DO-178B standard requiring coverage testing. An additional requirement, namely predictable timing behavior, is essential real-time embedded systems. Airbus requires their suppliers to provide verifiable bounds on worst-case execution time of software for planes under development, Boeing is considering it (e.g., for Airbus 380, Boeing 787 and military aircraft). The automotive industry, among others, is evaluating similar requirements. We provide an analysis of this problem that outlines directions for future research and tool development in this area. Second, the correctness of embedded systems is currently jeopardized by soft errors that may render control systems inoperable. In general, transient faults are increasingly a problem due to (a) smaller fabrication sizes and (b) deployment in harsh environments. In commercial aviation, the next-generation planes (Airbus 380 and Boeing 787) will deploy off-the-shelf embedded processors without hardware protection against soft errors. Since these planes are designed to fly over the North Pole with an order of magnitude higher radiation (due to a thinner atmosphere), system developers have been asked to consider the effect of single-event upsets (SEUs), i.e., infrequent single bit-flips, in their software design. Current developers do not know how to address this problem. We outline much needed research in this area. |
author2 |
The Pennsylvania State University CiteSeerX Archives |
format |
Text |
author |
Frank Mueller |
spellingShingle |
Frank Mueller Abstract Two Shortcomings in Software Design for Avionics: Timing Analysis and Soft Error Protection |
author_facet |
Frank Mueller |
author_sort |
Frank Mueller |
title |
Abstract Two Shortcomings in Software Design for Avionics: Timing Analysis and Soft Error Protection |
title_short |
Abstract Two Shortcomings in Software Design for Avionics: Timing Analysis and Soft Error Protection |
title_full |
Abstract Two Shortcomings in Software Design for Avionics: Timing Analysis and Soft Error Protection |
title_fullStr |
Abstract Two Shortcomings in Software Design for Avionics: Timing Analysis and Soft Error Protection |
title_full_unstemmed |
Abstract Two Shortcomings in Software Design for Avionics: Timing Analysis and Soft Error Protection |
title_sort |
abstract two shortcomings in software design for avionics: timing analysis and soft error protection |
url |
http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.87.8421 http://chess.eecs.berkeley.edu/hcssas/papers/Mueller-hcss06.pdf |
geographic |
North Pole |
geographic_facet |
North Pole |
genre |
North Pole |
genre_facet |
North Pole |
op_source |
http://chess.eecs.berkeley.edu/hcssas/papers/Mueller-hcss06.pdf |
op_relation |
http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.87.8421 http://chess.eecs.berkeley.edu/hcssas/papers/Mueller-hcss06.pdf |
op_rights |
Metadata may be used without restrictions as long as the oai identifier remains attached to it. |
_version_ |
1766140720325853184 |