Runtime Verification for Ultra-Critical Systems
نویسندگان
چکیده
Runtime verification (RV) is a natural fit for ultra-critical systems, where correctness is imperative. In ultra-critical systems, even if the software is fault-free, because of the inherent unreliability of commodity hardware and the adversity of operational environments, processing units (and their hosted software) are replicated, and fault-tolerant algorithms are used to compare the outputs. We investigate both software monitoring in distributed fault-tolerant systems, as well as implementing fault-tolerance mechanisms using RV techniques. We describe the Copilot language and compiler, specifically designed for generating monitors for distributed, hard real-time systems, and we describe a case study in a Byzantine fault-tolerant airspeed sensor system.
منابع مشابه
Assuring the Guardians
Ultra-critical systems are growing more complex, and future systems are likely to be autonomous and cannot be assured by traditional means. Runtime Verification (RV) can act as the last line of defense to protect the public safety, but only if the RV system itself is trusted. In this paper, we describe a model-checking framework for runtime monitors. This tool is integrated into the Copilot lan...
متن کاملToward Monitoring Fault-Tolerant Embedded Systems
Flight-critical systems for aircraft and spacecraft must be ultra-reliable and so are designed to be fault-tolerant. For embedded control systems and data buses, a primary means for achieving fault-tolerance is hardware replication to provide redundancy so that the system can survive random hardware faults of individual components. Nevertheless, a system may fail to meet its reliability require...
متن کاملToward Monitoring Fault - Tolerant Embedded Systems ( Extended Abstract )
Flight-critical systems for aircraft and spacecraft must be ultra-reliable and so are designed to be fault-tolerant. For embedded control systems and data buses, a primary means for achieving fault-tolerance is hardware replication to provide redundancy so that the system can survive random hardware faults of individual components. Nevertheless, a system may fail to meet its reliability require...
متن کاملEnforcing Timeliness and Safety in Mission-Critical Systems
Advances in sensor, microprocessor and communication technologies have been fostering new applications of cyber-physical systems, often involving complex interactions between distributed autonomous components and the operation in harsh or uncertain contexts. This has led to new concerns regarding performance, safety and security, while ensuring timeliness requirements are met. To conciliate unc...
متن کامل