The TTA's Approach to Resilience after Transient Upsets

Steiner, Wilfried; Paulitsch, Michael; Kopetz, Hermann

doi:10.1007/s11241-005-4681-6

Cited by 7 publications

(4 citation statements)

References 22 publications

(23 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A more recent protocol also requires a majority of active nodes, handles benign faults, and is extended to work in systems with event-triggered scheduling [5]. Authors of [32] identify a class of non fail-silent faults which are not fully tolerated by the TTP/C membership protocol even if bus guardians are used, and fix the problem under the single fault assumption. Our protocols tolerate multiple coincident non-Byzantine and Byzantine faults and have the same message complexity as existing ones, with the exception of the partitionable membership protocol which requires O(2N ) bits per message.…”

Section: Related Workmentioning

confidence: 99%

“…Experimental evaluation has pointed out some limitations of this integrated approach [31]. The TTA approach of tolerating transient upsets by detecting faulty nodes and by letting them converge to a correct state is discussed in [32]. Such rejuvenation techniques are orthogonal to our work, which only focuses on fault detection, but can be easily integrated with it.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Application-Level Diagnostic and Membership Protocols for Generic Time-Triggered Systems

Serafini¹,

Bokor

Suri

et al. 2011

IEEE Trans. Dependable and Secure Comput.

View full text Add to dashboard Cite

We present on-line tunable diagnostic and membership protocols for generic time-triggered (TT) systems to detect crashes, send/receive omission faults and network partitions. Compared to existing diagnostic and membership protocols for TT systems, our protocols do not rely on the single-fault assumption and also tolerate non fail-silent (Byzantine) faults. They run at the application level and can be added on top of any TT system (possibly as a middleware component) without requiring modifications at the system level. The information on detected faults is accumulated using a penalty/reward algorithm to handle transient faults. After a fault is detected, the likelihood of node isolation can be adapted to different system configurations, including configurations where functions with different criticality levels are integrated. All protocols are formally verified using model checking. Using actual automotive and aerospace parameters, we also experimentally demonstrate the transient fault handling capabilities of the protocols.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Application-Level Diagnostic and Membership Protocols for Generic Time-Triggered Systems

Serafini¹,

Bokor

Suri

et al. 2011

IEEE Trans. Dependable and Secure Comput.

View full text Add to dashboard Cite

show abstract

“…The synchronization protocol should not only include fault tolerant clock synchronization during synchronous operation, but should also consider the less often invoked but equally important startup and integration scenarios The protocol behavior of synchronization should not only include tolerance to all faults within the fault hypothesis, but also include means to address robustness aspects in order to resolve any potential system state after faults outside of the fault hypothesis, within bounded periods in a legal system state. Such robustness is also called self-stabilization of a protocol and in the case of synchronous communication networks referred to as clique resolution or aggregation [PH08,SPK06].…”

Section: Communications Requirements For Distributed Engine Contromentioning

confidence: 99%

Jet Engine Control Using Ethernet with a BRAIN

Hall¹,

Paulitsch²,

Benson³

et al. 2008

44th AIAA/ASME/SAE/ASEE Joint Propulsion Conference &Amp;amp; Exhibit

Self Cite

View full text Add to dashboard Cite

The public reporting burden for this collection of information is estimated to average 1 hour per response, including the time for reviewing instructions, searching existing data sources, searching existing data sources, gathering and maintaining the data needed, and completing and reviewing the collection of information. Send comments regarding this burden estimate or any other aspect of this collection of information, including suggestions for reducing this burden, to Department of Defense, Washington Headquarters Services, Directorate for Information Operations and Reports (0704-0188), 1215 Jefferson Davis Highway, Suite 1204, Arlington, VA 22202-4302. Respondents should be aware that notwithstanding any other provision of law, no person shall be subject to any penalty for failing to comply with a collection of information if it does not display a currently valid OMB control number.

show abstract

“…As a result, depending on the communication schedule configuration there is a probability that cliques scenarios are not diagnosed. In LTTP we propose a clique resolution algorithm that is not based on the relative number of correct messages received, but on the absolute number [SPK06]. If the number of received messages falls beyond an off-line calculable threshold for a given duration, cliques are detected.…”

Section: Clique Resolution Algorithmsmentioning

confidence: 99%

Advancements in Dependable Time-Triggered Communication

Steiner

2007

Software Technologies for Embedded and Ubiquitous Systems

Self Cite

View full text Add to dashboard Cite

When developing strategies for future research directions it may be a wise decision to reflect on the development in the respective area during the last few years. As to future applications of embedded systems, we consider a concise solution for interconnecting embedded systems to be one of their core requirements. In particular, we focus on the development of dependable communication. Our paper recapitulates progress in research and development of dependable time-triggered communication protocols as done by the Institute for Computer Engineering at the Vienna University of Technology and by TTTech Computertechnik AG over the last five years. We provide an overview of the current situation and discuss the ongoing research and development directions.

show abstract

The TTA's Approach to Resilience after Transient Upsets

Cited by 7 publications

References 22 publications

Application-Level Diagnostic and Membership Protocols for Generic Time-Triggered Systems

Application-Level Diagnostic and Membership Protocols for Generic Time-Triggered Systems

Jet Engine Control Using Ethernet with a BRAIN

Advancements in Dependable Time-Triggered Communication

Contact Info

Product

Resources

About