AN-Encoding Compiler: Building Safety-Critical Systems with Commodity Hardware

Fetzer, Christof; Schiffel, Ute; Süßkraut, Martin

doi:10.1007/978-3-642-04468-7_23

Cited by 30 publications

(23 citation statements)

References 35 publications

(50 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Reis et al integrated control-flow checking and error detection into one compiler, SWIFT [34]. SWIFT still had a couple of vulnerabilities that were addressed by Fetzer et al [11] using arithmetic coding techniques.…”

Section: Related Workmentioning

confidence: 97%

See 1 more Smart Citation

Operating system support for redundant multithreading

Döbel

Härtig

Engel

2012

Proceedings of the Tenth ACM International Conference on Embedded Software

View full text Add to dashboard Cite

In modern commodity operating systems, core functionality is usually designed assuming that the underlying processor hardware always functions correctly. Shrinking hardware feature sizes break this assumption. Existing approaches to cope with these issues either use hardware functionality that is not available in commercial-off-the-shelf (COTS) systems or poses additional requirements on the software development side, making reuse of existing software hard, if not impossible.In this paper we present Romain, a framework that provides transparent redundant multithreading 1 as an operating system service for hardware error detection and recovery. When applied to a standard benchmark suite, Romain requires a maximum runtime overhead of 30 % for triplemodular redundancy (while in many cases remaining below 5 %). Furthermore, our approach minimizes the complexity added to the operating system for the sake of replication.

show abstract

Section: Related Workmentioning

confidence: 97%

“…In contrast to the application layer, we have full control over the software stack running in the critical core. This allows us to make use of potentially expensive techniques available at the software level such as applying basic block signatures [26], operand encoding [11], and compiler-inserted assertions [45].…”

Section: System Architecturementioning

confidence: 99%

Operating system support for redundant multithreading

Döbel

Härtig

Engel

2012

Proceedings of the Tenth ACM International Conference on Embedded Software

View full text Add to dashboard Cite

show abstract

“…Surprisingly, in spite of their impact on total system resiliency and -compared to the rest of the system -their very small memory footprint, state-of-the-art OS kernels are not equipped with softwarebased protection against memory errors: An efficient softwarebased fault-tolerance technique would offer an enormous potential to reduce system failures. Unfortunately, most earlier attempts to apply software-based memory protection suffer from excessive runtime overhead, ranging between 30 % and 260 % [13], [14], [15], [16]. These studies only address userlevel applications; such extreme performance degradations are considered unacceptable for the OS layer, especially in the case of general-purpose OS.…”

Section: Problem Analysismentioning

confidence: 99%

“…Fetzer et al [16] use arithmetic AN-encoding of memory (among other methods) to detect errors by essentially doubling the storage space for encoded values. Even at this high level of redundancy, recovery is unaddressed.…”

Section: Software-based Memory Protectionmentioning

confidence: 99%

Generative software-based memory error detection and correction for operating system data structures

Borchert¹,

Schirmeier²,

Spinczyk³

2013

2013 43rd Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN)

View full text Add to dashboard Cite

Abstract-Recent studies indicate that the number of system failures caused by main memory errors is much higher than expected. In contrast to the commonly used hardware-based countermeasures, for example using ECC memory, softwarebased fault-tolerance measures are much more flexible and can exploit application knowledge, such as the criticality of specific data structures. This paper presents a software-based memory error protection approach, which we used to harden the eCos operating system in a case study. The main benefits of our approach are the flexibility to choose from an extensible toolbox of easily pluggable error detection and correction schemes as well as its very low runtime overhead, which totals in a range of 0.09-1.7 %. The implementation is based on aspect-oriented programming and exploits the object-oriented program structure of eCos to identify well-suited code locations for the insertion of generative fault-tolerance measures.

show abstract

“…To reduce costs and make soft error tolerance available to a wider range of application scenarios, software-based fault handling methods for control flow [15,16,14,17,29,22,6] or memory protection [23] were developed over the recent years. Lately, Chang et al [21] proposed SWIFT-R, an approach that triplicates machine instructions and uses a majority voter in combination with encoding techniques.…”

Section: Related Workmentioning

confidence: 99%

Automated application of fault tolerance mechanisms in a component-based system

Thomm

Stilkerich

Kapitza

et al. 2011

Proceedings of the 9th International Workshop on Java Technologies for Real-Time and Embedded Systems

View full text Add to dashboard Cite

Due to the reduction of structure sizes in modern embedded systems, tolerating soft errors presenting itself as bit flips becomes a mandatory task even for moderate critical applications. Accordingly, software-based fault tolerance mechanisms recently gained in popularity and a multitude of approaches that differ in the number and frequency of tolerated errors as well as their associated overhead have been proposed. As a consequence, an application-and environment-tailored selection of mechanisms is required to balance protection and costs.Accounting the diverse solution space, we propose to make software-based fault tolerance a matter of configuration that should be transparent to the applications. While this would be cumbersome when using an unsafe programming language, we show that in the context of KESO, a JVM for deeply embedded systems, this can be achieved by utilizing the Java type system and static code analysis. As an initial technique we decided to add redundant execution to KESO, which enables us to selectively and transparently replicate an application. This essentially builds a first step to a JVM, which offers reliable execution of components as demanded by the system configuration.

show abstract

AN-Encoding Compiler: Building Safety-Critical Systems with Commodity Hardware

Cited by 30 publications

References 35 publications

Operating system support for redundant multithreading

Operating system support for redundant multithreading

Generative software-based memory error detection and correction for operating system data structures

Automated application of fault tolerance mechanisms in a component-based system

Contact Info

Product

Resources

About