dOSEK: the design and implementation of a dependability-oriented static embedded kernel

Hoffmann, Martin; Lukas, Florian; Dietrich, Christian; Lohmann, Daniel

doi:10.1109/rtas.2015.7108449

Cited by 21 publications

(12 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This chapter focuses on the system-level timing aspect of errors affecting the applications. We assume thereby the absence of failures in critical components [13,32], such as the OS/hypervisor, the replica manager/voter (e.g., Romain), and interconnect (e.g., NoC), which can be protected as in [23,39]. The Worst-Case Response Time (WCRT) of replicated execution has been analyzed in [6], where replicas are modeled as fork-join tasks in a system implementing Partitioned SPP.…”

Section: Related Workmentioning

confidence: 99%

ASTEROID and the Replica-Aware Co-scheduling for Mixed-Criticality

Rambo

Ernst

2020

Dependable Embedded Systems

View full text Add to dashboard Cite

The ASTEROID project developed a cross-layer fault-tolerance solution to provide reliable software execution on unreliable hardware under soft errors. The approach is based on replicated software execution with hardware support for error detection that exploits future many-core platforms to increase reliability without resorting to redundancy in hardware. This chapter gives an overview of ASTEROID and then focuses on the performance of replicated execution and the proposed replica-aware co-scheduling for mixed-criticality. The performance of systems with replicated execution strongly depends on the scheduling. Standard schedulers, such as Partitioned Strict Priority Preemptive (SPP) and Time-Division Multiplexing (TDM)-based ones, although widely employed, provide poor performance in face of replicated execution. By exploiting co-scheduling, the replica-aware co-scheduling is able to achieve superior performance.

show abstract

Section: Related Workmentioning

confidence: 99%

ASTEROID and the Replica-Aware Co-scheduling for Mixed-Criticality

Rambo

Ernst

2020

Dependable Embedded Systems

View full text Add to dashboard Cite

show abstract

“…Although non-negligible, the observed performance overheads are low in comparison with other software and hardware-based fault-tolerance approaches for safety-critical real-time systems [12], [51]. Evaluating only timing can be a pitfall since the cost of the approach might be hidden.…”

Section: B Performance Evaluation: Avionics Use Casementioning

confidence: 99%

Providing Integrity in Real-Time Networks-on-Chip

Rambo

Shang

Ernst

2019

IEEE Trans. VLSI Syst.

View full text Add to dashboard Cite

Mixed-critical real-time systems must meet strict integrity, resilience and timing constraints, as specified by safety standards. Due to the increasing threat of random hardware faults, efficiently achieving high reliability and dependability calls for cross-layer fault-tolerance solutions. This work introduces the Advanced Integrity Q-service (AIQ), a mechanism to ensure the integrity and predictability of on-Chip communication under random hardware faults. Devised for cross-layer and hierarchical fault-tolerance solutions, AIQ realizes low-overhead error detection in hardware and delegates error handling to arbitrary strategies in software. Experimental evaluation featuring benchmark applications and an industrial avionics use case shows that AIQ operates with high reliability and availability and low hardware and performance overheads. In a many-core mixed-critical platform under expected real-time scenarios, AIQ performs with execution time overhead between 1.4% and 7.1%.

show abstract

“…The technology treads to develop efficient and high-performance processors shrinking dimensions and operating voltage, and increased frequency and density have dramatically increased the possibilities of SEUs [15], which could result in unexpected failures in the system [23,36] There has been a large body of research in the control systems community regarding the design of fault tolerant control of UAV systems [34]. While these fault tolerant controllers are designed to handle structural damage, actuator and sensor failures, they typically do not handle system-level failure such as on-board computing platform malfunction, which prevents execution of the control algorithms in the first place.…”

Section: Motivationmentioning

confidence: 99%

“…C'Mon focuses on detecting OS-level timing faults (e.g., deadline misses due to scheduling) that are caused by SEUs [36]. To guard the OS code and data against SEUs, dOSEK proposed to use a special encoding in storing OS code and data, which enables detection and recovery from the SEUs [23]. However, its software-based approach comes at a significant performance penalty.…”

Section: Related Workmentioning

confidence: 99%

A Simplex Architecture for Intelligent and Safe Unmanned Aerial Vehicles

Vivekanandan

Garcia

Yun

et al. 2016

2016 IEEE 22nd International Conference on Embedded and Real-Time Computing Systems and Applications (RTCSA)

View full text Add to dashboard Cite

Unmanned Aerial Vehicles (UAVs) are increasingly demanded in civil, military and research purposes. However, they also possess serious threats to the society because faults in UAVs can lead to physical damage or even loss of life. While increasing their intelligence, for example, adding vision-based sense-and-avoid capability, has a potential to reduce the safety threats, increased software complexity and the need for higher computing performance create additional challenges software bugs and transient hardware faults that must be addressed to realize intelligent and safe UAV systems.In this thesis, we present a fault tolerant system design for UAVs. Our proposal is to use two heterogeneous hardware and software platforms with distinct reliability and performance characteristics: High-Assurance (HA) and High-Performance (HP) platforms. The HA platform focuses on simplicity and verifiability in software and uses a simple and transient fault tolerant processor, while the HP platform focuses on intelligence and functionality in software and uses a complex and high performance processor. During the normal operation, the HP platform is responsible for controlling the UAV. However, if it fails due to transient hardware faults or software bugs, the HA platform will take over until the HP platform recovers.We have implemented the proposed design on an actual UAV using a low-cost Arduino and a high-performance Tegra TK1 multi core platform. Our case-studies show that our design can improve safety without compromising performance and intelligence of the UAV.iii

show abstract

dOSEK: the design and implementation of a dependability-oriented static embedded kernel

Cited by 21 publications

References 22 publications

ASTEROID and the Replica-Aware Co-scheduling for Mixed-Criticality

ASTEROID and the Replica-Aware Co-scheduling for Mixed-Criticality

Providing Integrity in Real-Time Networks-on-Chip

A Simplex Architecture for Intelligent and Safe Unmanned Aerial Vehicles

Contact Info

Product

Resources

About