Zusammenfassung
Computersysteme dringen immer mehr auch in sicherheitsrelevante Anwendungsbereiche vor und beginnen dort, aufgrund ihrer hohen Flexibilität und Leistungsfähigkeit die bewährten Relaissteuerungen abzulösen. Gleichzeitig sind diese Computersysteme jedoch auch wesentlich komplexer, daher sind Analyse und Nachweis ihrer Zuverlässigkeit weitaus aufwendiger und erfordern einen völlig anderen Zugang. Analysen des Ausfallverhaltens, die bei Relais noch vollständig und auf analytischem Wege möglich waren, benötigen nun einen wahrscheinlichkeitstheoretischen oder messtechnischen Zugang.
In diesem Kontext sollen am Beispiel einer Steer by wire-Anwendung im Auto folgende Aspekte schwerpunktmäßig behandelt werden: Fail-silent-Architekturen als kostengünstige Alternative zu TMR-Systemen, Zuverlässigkeitsmodellierung auf Systemebene (Analyse latenter Fehler), Fehlerinjektion als Weg zur messtechnischen Bestimmung der Fehlererkennungsrate.
Abstract
Embedded computer systems are increasingly being entrusted with vital control tasks in safety critical applications. Due to their immense versatility they are replacing conventional relay- and mechanical control systems as well as pneumatic systems. The high complexity inherent to computer control systems, however, makes the assessment and proof of their reliability more difficult. While conventional failure mode analysis has proven effective for mechanical and relay control, embedded systems rather require probabilistic and metrological approaches.
In this context our paper will concentrate on some aspects of fail-silent architectures as an alternative to TMR systems, system level reliability modelling and fault injection for the assessment of fault tolerance.
The implications of this approach will be demonstrated for an automotive steer-by-wire system.
Schrifttum
Heiner, G., Thurner. T.: Time triggered architecture for safety-related distributed real-time systems in transportation systems. Proc. FTCS-28, IEEE CS press, June 1998, S. 402–407.
Johnson, B. W.: Design and analysis of fault tolerant systems. Reading, MA: Addison-Wesley. 1989.
Siewiorek, D., Swarz, S.: Reliable computer systems: design and evaluation. 2nd ed. Bedford, MA: Digital Press. 1992.
Reisinger, J., Steininger, A.: The design of a fail-silent processing node for the predictable hard real-time system MARS. Distributed Systems Engineering Journal 1 (1993), S. 104–111. The British Computer Society.
Kopetz, H., Hexel, R., Krüger, A., Millinger, D., Nossal, R., Steininger, A., Temple, Ch., Führer, T., Pallierer, R., Krug, M.: A prototype implementation of a TTP/C controller. Proc. SAE World Congress 1997, Detroit, Michigan, February 1997, S. 9–18. Society of Automotive Engineers (SAE), Warrendale.
Steininger, A.: A measuring methodology for fault injection experiments in computing systems. Dissertationen der Technischen Universität Wien (66). Wien: Österreichischer Kunst- und Kulturverlag. 1994.
Steininger, A., Schweinzer, H.: A model for the analysis of the fault injection process. Proc. 25th Annual International Symposium on Fault-Tolerant Computing (FTCS-25), Pasadena, California, June 1995, S. 186–195. Los Alamitos, California: IEEE Computer Society Press.
Steininger, A., Scherrer, Ch.: On finding an optimal combination of error detection mechanisms based on results of fault injection experiments. Proc. 27th Annual International Symposium on Fault-Tolerant Computing (FTCS-27), Seattle, Washignton, June 1997, S. 238–247. Los Alamitos, California: IEEE Computer Society Press.
Kopetz, H., Grünsteidl, G.: TTP — a protocol for faulttolerant real-time systems. IEEE Computer, January 1994, S. 14–23.
Steininger, A., Scherrer, Ch.: On the necessity of online-BIST in safety-critical applications — a case study. Proc. 29th Annual International Symposium on Fault-Tolerant Computing (FTCS-29), Madison, Wisconsin, June 1999, S. 208–215. Los Alamitos, California: IEEE Computer Society Press.
Steininger, A., Temple, Ch.: Economic online self-test in the time-triggered architecture. IEEE Design & Test of Computers Vol. 16 (July–September 1999), No. 3, S. 81–89. Los Alamitos, California: IEEE Computer Society Press.
Hsueh, M., Tsai, T., Iyer, R.: Fault injection techniques and tools. IEEE Computer, April 1997, S. 75–82.
Jenn, E., Arlat, J., Rimén, M., Ohlsson, J., Karlsson, J.: Fault injection into VHDL models: the MEFISTO tool. In: Proc. FTCS-24, International Symposium on Fault-Tolerant Computing, S. 66–75. Los Alamitos: IEEC CS Press. 1994.
Kanawati, G. A., Kanawati, N. A., Abraham, J. A., FERRARI: a flexible software-based fault and error injection system. IEEE Trans. on Computers 2. 1995, S. 248–260.
Iyer, R. K., Tang, D.: Experimental analysis of computer system dependability, technical report. CHRC, University of Illinois at Urbana-Champaign. 1994.
Lettner, R., Prammer, M., Scherrer, Ch., Steininger, A.: Assessment of computer fault tolerance — a fault-injection toolset and the rationale behind it. Computer Standards and Interfaces, Vol. 21, October 1999, S. 357–369. Elsevier Science Publishers, Ireland.
Author information
Authors and Affiliations
Rights and permissions
About this article
Cite this article
Scherrer, C., Steininger, A. Vom Lenkrad zum Joystick. Elektrotech. Inftech. 117, 714–720 (2000). https://doi.org/10.1007/BF03157743
Issue Date:
DOI: https://doi.org/10.1007/BF03157743