This content is not included in
your SAE MOBILUS subscription, or you are not logged in.
Tolerating Arbitrary Node Failures in the Time-Triggered Architecture
Technical Paper
2001-01-0677
ISSN: 0148-7191, e-ISSN: 2688-3627
Annotation ability available
Sector:
Event:
SAE 2001 World Congress
Language:
English
Abstract
The Time-Triggered Architecture (TTA) is a distributed architecture for high-dependability real-time systems such as break-by-wire or steer-by-wire systems. This paper is devoted to the fault-tolerance and fault-handling capabilities of the TTA. We will present the architectural and algorithmic features of the time-triggered communication protocol TTP/C that allow isolation of arbitrary failures of a node-computer in the distributed system. Having node failures isolated, the introduction of redundant nodes accompanied by voting services located in a generic fault-tolerance layer makes the architecture tolerant to Byzantine failures of node-computers. We will also present the mechanisms that detect multiple failure scenarios at the communication system level and provide means for rapid handling of and deterministic recovery from such situations. Based on a sample brake-by-wire application we will provide some figures concerning the performance of the architecture and discuss how the system engineer benefits from the inherent properties of the TTA.
Authors
Citation
Kopetz, H., Bauer, G., and Poledna, S., "Tolerating Arbitrary Node Failures in the Time-Triggered Architecture," SAE Technical Paper 2001-01-0677, 2001, https://doi.org/10.4271/2001-01-0677.Also In
SAE 2001 Transactions Journal of Passenger Cars - Electronic and Electrical Systems
Number: V110-7; Published: 2002-09-15
Number: V110-7; Published: 2002-09-15
References
- Kopetz H. Real-Time Systems. Design Principles for Distributed Embedded Applications rd 1999 Kluwer Academic Publishers Boston 1997
- Kopetz H. TTP/C Protocol - Version 0.5 TTTech Computertechnik AG Vienna http://www.ttpforum.org
- Babaoglu Ö. Drummond R. (Almost) No Cost Clock Synchronization In Proceedings of the 17th Annual International Symposium on Fault-Tolerant Computing (FTCS-17) 42 47 Pittsburgh June 1987
- Bauer G. Kopetz H. Transparent Redundancy in the Time-Triggered Architecture In Proceedings of The International Conference on Dependable Systems and Networks (DSN 2000) 5 13 New York 2000
- Lundelius J. Lynch N. A. An upper and lower bound for clock synchronization Information and Control 62 2 3 190 204 August September 1984
- Miesterfield F. Halter R. Survey of Vehicle Multiplexing Encoding Techniques Automotive Technology International '92 253 265 Sterling Publications Int. London 1991
- Kopetz H. Ochsenreiter W. Clock Synchronization in Distributed Real-Time Systems IEEE Transactions on Computers 933 940 IEEE Computer Society 1987
- Kopetz H. et al. A Synchronization Strategy for a TTP/C Controller Application of Multiplexing Technology (SAE/SP-96/1137/960120) Warrendale, PA, USA 1996 Society of Automotive Engineers
- Lamport L. Shostak R. Pease M. The Byzantine Generals Problem ACM Transactions on Programming Languages and Systems 4 3 382 401 July 1982
- Weinstock C. B. SIFT: System Design and Implementation Proceedings of the 10th Annual International Symposium on Fault-Tolerant Computing (FTCS-10) 75 77 Kyoto, Japan October 1980 IEEE Computer Society Press
- Lala J. H. Harper R. E. Architectural Principles for Safety-Critical Real-Time Appliations Proceedings of the IEEE 82 1 25 40 January 1994
- Rushby J. Formal Methods and the Certification of Critical Systems Technical Report CSL-93-7 SRI International Menlo Park, CA, USA December 1993
- Bauer G. Paulitsch M. An Investigation of Membership and Clique Avoidance in TTP/C Proceedings 19th IEEE Symposium on Reliable Distributed Systems 118 124 Nürnberg, Germany October 2000
- Powell D. Failure Mode Assumptions and Assumption Coverage Proceedings of the 22nd Annual International Symposium on Fault-Tolerant Computing (FTCS-22) 386 395 Boston, USA July 1995
- Bauer G. Frenning T. Jonnson A.-K. Kopetz H. Temple C. A Centralized Approach for Avoiding the Babbling-Idiot Failure in the Time-Triggered Architecture Workshops and Abstracts of The International Conference on Dependable Systems and Networks (DSN 2000) B6 B7 New York 2000
- Poledna S. Fault-Tolerant Real-Time Systems: The Problem of Replica Determinism Kluwer Academic Publishers 0-7923-9657-X 1995