Formal Specification and Analysis of AFDX Redundancy Management Algorithms
نویسندگان
چکیده
Reliable communication among avionic applications is a crucial prerequisite for today’s all-electronic fly-by-wire aircraft technology. The AFDX switched Ethernet has been developed as a scalable, cost-effective network, based upon IEEE 802.3 Ethernet. It uses redundant links to increase the availability. Typical consensus strategies for the redundancy management task are not feasible, as they introduce too heavy delays. In this paper, we formally investigate AFDX redundancy management algorithms, making use of Lamport’s Temporal Logic of Actions (TLA). Furthermore, we present our experiences made with TLA and the TLA model checker TLC.
منابع مشابه
Architecting of Avionics Full Duplex Ethernet (AFDX) Aerospace Communication Network
AFDX (Avionics Full Duplex Switched Ethernet) is an avionics data network based on commercial 10/100Mbit switched Ethernet. AFDX uses a special protocol to provide deterministic timing and redundancy management providing secure and reliable communications of critical and non-critical data. AFDX communication protocols have been derived from commercial standards (IEEE802.3 Ethernet MAC addressin...
متن کاملFormal Modeling and Analysis of AFDX Frame Management Design
The Avionics Full Duplex Switched Ethernet (AFDX) has been developed to provide reliable data exchange with strong data transmission time guarantees in internal communication of the aircraft. The AFDX design is based on the principle of a switched network with physically redundant links to support availability and be tolerant to transmission and link failures in the network. In this work, we de...
متن کاملVerification of the Redundancy Management System for Space Launch Vehicle: A Case Study
In the recent years, formal methods has been widely recognized as effective techniques to uncover design errors that could be missed by a conventional software engineering process. This paper describes our experience with using formal methods in analyzing the Redundancy Management System (RMS) for a Space Launch Vehicle. RMS is developed by AlliedSignal Inc. for the avionics of NASA’s new space...
متن کاملForward End-To-End delay Analysis for AFDX networks
Packet switched networks and message multiplexing have been a major upgrade for industrial systems communications. In the avionics domain, this evolution was brought by the introduction of Avionics Full Duplex Switched Ethernet (AFDX). Guaranteed upper bounds of end-to-end delays for messages transmitted over an AFDX network are mandatory for certification reasons. In this article, we present t...
متن کاملWeb Service Choreography Verification Using Z Formal Specification
Web Service Choreography Description Language (WS-CDL) describes and orchestrates the services interactions among multiple participants. WS-CDL verification is essential since the interactions would lead to mismatches. Existing works verify the messages ordering, the flow of messages, and the expected results from collaborations. In this paper, we present a Z specification of WS-CDL. Besides ve...
متن کامل