Fault injection-based assessment of aspect-oriented implementation of fault tolerance

Alexandersson, Ruben; Karlsson, Johan

doi:10.1109/dsn.2011.5958244

Cited by 17 publications

(6 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…If the sequence silently diverges in the presence of faults, we record a silent data corruption. 2 The application state (task stacks) is checked for integrity at each checkpoint. To evaluate the fault containment within the kernel execution, we further recorded an SDC in case of violated integrity.…”

Section: Discussionmentioning

confidence: 99%

“…Our work differs in that we use the generalpurpose AspectC++ compiler that allows us to focus on the implementation of software-based EDM/ERMs in the OS/application layer, instead of implementing special-purpose compilers. AOP also allows to separate the "business logic" from fault-tolerance implementations, which has, e.g., been pioneered by Alexandersson et al [2]-however at the cost of 300% runtime overhead.…”

Section: Software-based Soft-error Detection and Correctionmentioning

confidence: 99%

See 1 more Smart Citation

Dependability Aspects in Configurable Embedded Operating Systems

Schirmeier

Borchert

Hoffmann

et al. 2020

Dependable Embedded Systems

View full text Add to dashboard Cite

As all conceptual layers in the software stack depend on the operating system (OS) to reliably provide resource-management services and isolation, it can be considered the “reliable computing base” that must be hardened for correct operation under fault models such as transient hardware faults in the memory hierarchy. In this chapter, we approach the problem of system-software hardening in three complementary scenarios. (1) We address the following research question: Where do the general reliability limits of static system-software stacks lie, if designed from scratch with reliability as a first-class design goal? In order to reduce the proverbial “attack surface” as far as possible, we harness static application knowledge from an AUTOSAR-compliant task set, and protect the whole OS kernel with AN-encoding. This static approach yields an extremely reliable software system, but is constrained to specific application domains. (2) We investigate how reliable a dynamic COTS embedded OS can become if hardened with programming-language and compiler-based fault-tolerance techniques. We show that aspect-oriented programming is an appropriate means to encapsulate generic software-implemented hardware fault tolerance mechanisms that can be application-specifically applied to a selection of OS components. (3) We examine how system-software stacks can survive even more adverse fault models like whole-system outages, using emerging persistent memory (PM) technology as a vehicle for state conservation. Our findings include that software transactional memory facilitates maintaining consistent state within PM and allows fast recovery.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Software-based Soft-error Detection and Correctionmentioning

confidence: 99%

Dependability Aspects in Configurable Embedded Operating Systems

Schirmeier

Borchert

Hoffmann

et al. 2020

Dependable Embedded Systems

View full text Add to dashboard Cite

show abstract

“…This modularity problem is attacked by exercising aspect-oriented programming with AspectC++ in [43], [44], [45]. For example, Alexandersson et al [45] implemented triple-time-redundant execution and control-flow checking as a proof of concept, which led to 300 % runtime overhead.…”

Section: Related Workmentioning

confidence: 99%

Generic Soft-Error Detection and Correction for Concurrent Data Structures

Borchert

Schirmeier

Spinczyk

2017

IEEE Trans. Dependable and Secure Comput.

View full text Add to dashboard Cite

Recent studies indicate that transient memory errors (soft errors) have become a relevant source of system failures. This paper presents a generic software-based fault-tolerance mechanism that transparently recovers from memory errors in object-oriented program data structures. The main benefits are the flexibility to choose from an extensible toolbox of easily pluggable error detection and correction schemes, such as Hamming and CRC codes. This is achieved by a combination of aspect-oriented and generative programming techniques. Furthermore, we present a wait-free synchronization algorithm for error detection in data structures that are used concurrently by multiple threads of control. We give a formal correctness proof and show the excellent scalability of our approach in a multiprocessor environment. In a case study, we present our experiences with selectively hardening the eCos operating system and its benchmark suite. We explore the trade-off between resiliency and performance by choosing only the most vulnerable data structures for error recovery. Thereby, the total number of system failures, manifesting as silent data corruptions and crashes, is reduced by 69.14 % at a negligible runtime overhead of 0.36 %.

show abstract

“…Authors in [8] proposed a fault injection study that estimates the fault coverage of two software implemented with AOP. They investigated the Double Signature Control Flow Checking (DSCFC) and the Triple Time Redundant Execution with Forward Recovery (TTRFR) mechanisms.…”

Section: Fault Tolerance Using Aopmentioning

confidence: 99%