Fault Tolerance in Critical Information Systems

Knight, John; Elder, Matthew

doi:10.18130/v3xv3f

Cited by 6 publications

(4 citation statements)

References 53 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This works only cover unit tests and requires the source code of the tested components to be available. M. Elder in his Ph.D. Thesis [10] identifies the relationships among fault tolerance and dependability, but it does not provide any testing technique to confirm the implementation conformance to fault tolerance requirements.…”

Section: Related Workmentioning

confidence: 99%

“…Fault removal and fault forecasting, instead, mean to reduce the number and severity of faults, and to estimate present and future incidence and consequences of faults. As discussed in [10], fault prevention mechanisms can fail to prevent/remove the occurrence of all faults, and fault tolerance is the most promising mechanism for achieving dependability requirements.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Architecting Fault-tolerant Component-based Systems: from requirements to testing

Bucchiarone

Muccini

2007

Electronic Notes in Theoretical Computer Science

View full text Add to dashboard Cite

Fault tolerance is one of the most important means to avoid service failure in the presence of faults, so to guarantee they will not interrupt the service delivery. Software testing, instead, is one of the major fault removal techniques, realized in order to detect and remove software faults during software development so that they will not be present in the final product. This paper shows how fault tolerance and testing can be used to validate component-based systems. Fault tolerance requirements guide the construction of a fault-tolerant architecture, which is successively validated with respect to requirements and submitted to testing. The theory is applied over a mining control system running example.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Architecting Fault-tolerant Component-based Systems: from requirements to testing

Bucchiarone

Muccini

2007

Electronic Notes in Theoretical Computer Science

View full text Add to dashboard Cite

show abstract

“…Details of the results can be found elsewhere [6] but the overall conclusion was that the RAPTOR mechanism as modified to operate in the Willow system will provide the desired fault-tolerance capability.…”

Section: Evaluation and Status Of Componentsmentioning

confidence: 99%

The Willow Architecture: Comprehensive Survivability for Large-Scale Distributed Applications

Knight¹,

Heimbigner²,

Wolf³

et al. 2001

View full text Add to dashboard Cite

The Willow architecture is a comprehensive approach to survivability in critical distributed applications. Survivability is achieved in a deployed system using a unique combination of (a) fault avoidance by disabling vulnerable network elements intentionally when a threat is detected or predicted, (b) fault elimination by replacing system software elements when faults are discovered, and (c) fault tolerance by reconfiguring the system if non-maskable damage occurs. The key to the architecture is a powerful reconfiguration mechanism that is combined with a general control structure in which network state is sensed, analyzed, and required changes effected. The architecture can be used to deploy software functionality enhancements as well as survivability. Novel aspects include: node configuration control mechanisms; a workflow system for resolving conflicting configurations; communications based on wide-area event notification; tolerance for wide-area, hierarchic and sequential faults; and secure, scalable and delegatable trust models. Report Documentation Page SPONSORING/MONITORING AGENCY NAME(S) AND ADDRESS(ES) 10. SPONSOR/MONITOR'S ACRONYM(S) SPONSOR/MONITOR'S REPORT NUMBER(S) DISTRIBUTION/AVAILABILITY STATEMENTApproved for public release; distribution unlimited SUPPLEMENTARY NOTES ABSTRACTThe Willow architecture is a comprehensive approach to survivability in critical distributed applications. Survivability is achieved in a deployed system using a unique combination of (a) fault avoidance by disabling vulnerable network elements intentionally when a threat is detected or predicted, (b) fault elimination by replacing system software elements when faults are discovered, and (c) fault tolerance by reconfiguring the system if non-maskable damage occurs. The key to the architecture is a powerful reconfiguration mechanism that is combined with a general control structure in which network state is sensed, analyzed, and required changes effected. The architecture can be used to deploy software functionality enhancements as well as survivability. Novel aspects include: node configuration control mechanisms; a workflow system for resolving conflicting configurations; communications based on wide-area event notification; tolerance for wide-area, hierarchic and sequential faults; and secure, scalable and delegatable trust models.

show abstract

“…Thses techniques realize the so-called nonmasking fault tolerance [11,8] techniques such as alternative task; basically, these techniques allow alternative tasks to be launched to deal with not only user-defined exceptions but also the failures that task-level techniques fail to mask (e.g., due to not enough redundant resources) in the task level.…”

Section: Introductionmentioning

confidence: 99%

Grid workflow: a flexible failure handling framework for the grid

Hwang¹,

Kesselman²

High Performance Distributed Computing, 2003. Proceedings. 12th IEEE International Symposium On

View full text Add to dashboard Cite

The generic, heterogeneous, and dynamic nature of the Grid requires a new form of failure recovery mechanism to address its unique requirements such as support for diverse failure handling strategies, separation of failure handling strategies from application codes, and user-defined exception handling. We here propose a Grid Workflow System (Grid-WFS), a flexible failure handling framework for the Grid, which addresses these Grid-unique failure recovery requirements. Central to the framework is flexibility in handing failures. We describe how to achieve the flexibility by the use of workflow structure as a high-level recovery policy specification. We show how this use of high-level workflow structure allows users to achieve failure recovery in a variety of ways depending on the requirements and constraints of their applications. We also demonstrate that this use of workflow structure enables users to not only rapidly prototype and investigate failure handling strategies, but also easily change them by simply modifying the encompassing workflow structure, while the application code remains intact. Finally, we present an experimental evaluation of our framework using a simulation, demonstrating the value of supporting multiple failure recovery techniques in Grid systems to achieve high performance in the presence of failures.

show abstract

Fault Tolerance in Critical Information Systems

Cited by 6 publications

References 53 publications

Architecting Fault-tolerant Component-based Systems: from requirements to testing

Architecting Fault-tolerant Component-based Systems: from requirements to testing

The Willow Architecture: Comprehensive Survivability for Large-Scale Distributed Applications

Grid workflow: a flexible failure handling framework for the grid

Contact Info

Product

Resources

About