A Model-Based Framework for Developing Real-Time Safety Ada Systems (original) (raw)
Related papers
Environment for the development and specification of real-time Ada programs
Reliable Software Technologies—Ada-Europe'99, 1999
The use of formal methods for real-time system provides an analysis and a validation of the accomplished specifications, however, the complexity encumbers their interest in the industrial developments. This causes a gap between the real needs of the practical users (industrial) and the scientific community. The design based on components emerges as a design technique to reduce the complexity and the validation process of software development. Moreover, in the real-time system design where the object oriented design has demonstrate its validity, the use of predefined components can strongly improve and reduce the design, implementation and validation phases. In this paper we present an tool to design real-time control systems from a set of specific components. The tool provides a graphical interface to define component levels. Each component has associated a High Level Time Petri Net and an Ada code which are composed to build a prototype and a design specification.
An MDE-Based Process for the Design, Implementation and Validation of Safety-Critical Systems
2010 15th IEEE International Conference on Engineering of Complex Computer Systems, 2010
Distributed Real-Time Embedded (DRE) systems have critical requirements that need to be verified. They are either related to functional (e.g. stability of a furnace controller) or non-functional (e.g. meeting deadlines) aspects. Model-Driven Engineering (MDE) tools have emerged to ease DRE systems design. These tools are also capable of generating code. However, these tools either focus on the functional aspects or on the runtime architecture. Hence, the development cycle is partitioned into pieces with heterogeneous modeling notations and poor coordination. In this paper, we propose a MDE-based process to create DRE systems without manual coding. We show how to integrate functional and architecture concerns in a unified process. We use industry-proven modeling languages to design functional elements of the system, and automatically integrate them using our AADL toolchain.
Development of safety-critical real-time systems
Lecture Notes in Computer Science, 1995
This paper presents an approach to the development of safetycritical real-time systems linking from the Requirements Language developed in the ESPRIT Project ProCoS to the Temporal Language of Transitions (TLT) speci cation language developed at Siemens Corporate Research. A system is de ned by a conventional mathematical model for a dynamic system where application speci c states denote functions of time. Requirements are constraints on the system states, and they are given by formulas in duration calculus (DC), a real-time interval logic. A functional design is a distributed system consisting of sensors, actuators, and a program which communicate through shared states. The sensors and actuators are speci ed in DC while the program is speci ed in TLT. The design as a whole is linked together semantically by using a DC semantics for TLT. Veri cation is a deduction showing that a design implies requirements. The TLT speci cation is the basis for developing the control program. The method is illustrated by a steam-boiler example.
Reliable software technologies-ada-europe 2012
2012
The ASSERT project defined new software engineering methods and tools for the development of critical embedded real-time systems in the space domain. The ASSERT model-driven engineering process was one of the achievements of the project and is based on the concept of propertypreserving model transformations. The key element of this process is that non-functional properties of the software system must be preserved during model transformations. Properties preservation is carried out through model transformations compliant with the Ravenscar Profile and provides a formal basis to the process. In this way, the so-called Ravenscar Computational Model is central to the whole ASSERT process. This paper describes the work done in the HWSWCO study, whose main objective has been to address the integration of the Hardware/Software co-design phase in the ASSERT process. In order to do that, non-functional properties of the software system must also be preserved during hardware synthesis.
Ada 2005 for Mission-Critical Systems
2005
For the development of mission-critical software, the choice of programming language makes a significant difference in meeting the requirements of exacting safety standards and, ultimately, high-reliability applications. Ada has a lo ng history of success in the safety-critical domain, with feat ures such as strong typing, that help early error detection, and well-defined semantics. The language has evolved based on
Modelling Support for Design of Safety-Critical Automotive Embedded Systems
2008
This paper describes and demonstrates an approach that promises to bridge the gap between model-based systems engineering and the safety process of automotive embedded systems. The basis for this is the integration of safety analysis techniques, a method for developing and managing Safety Cases, and a systematic approach to model-based engineering – the EAST-ADL2 architecture description language. Three areas are highlighted: (1) System model development on different levels of abstraction. This enables fulfilling many requirements on software development as specified by ISO-CD-26262; (2) Safety Case development in close connection to the system model; (3) Analysis of mal-functional behaviour that may cause hazards, by modelling of errors and error propagation in a (complex and hierarchical) system model.
Tool support for the construction of statically analysable hard real-time Ada systems
17th IEEE Real-Time Systems Symposium, 1996
This paper maintains that fixed-priority process-based preemptive scheduling is, arguably, more convenient, flexible and responsive than conventional cyclic scheduling for the construction of new-generation software-intensive satellite control systems. Predictable usage of preemptive priority-based scheduling, however, demands the support of mature static analysis techniques. Worst-case response time analysis models can be constructed which minimise the embodied pessimism and maximise useful processing. This paper presents the design and implementation of an Ada programming model and associated worst-case response time analysis tools aimed to support the construction of highly-predictable, highly-efficient on-board control systems.
Safety critical systems based on formal models
ACM SIGAda Ada Letters, 2000
The Ravenscar profile for high integrity systems using Ada 95 is well defined in all real-time aspects. The complexity of the run-time system has been reduced to allow full utilization of formal methods for applications using the Ravenscar profile. In the Mana project a tool set is being developed including a formal model of a Ravenscar compliant run-time system, a gnat compatible run-time system, and an ASIS based tool to allow for the verification of a system including both COTS and code that is reused.
From Model-Based to Real-Time Execution of Safety-Critical Applications: Coupling SCADE with OASIS
2012
Developing embedded safety critical real-time systems and ensuring properties such as deterministic behaviour in a simple way for the application designers is a challenging task. A large number of commercial and academic real-time operating systems (RTOS) as well as model-based development environments based on synchronous languages are available. Automatic transformations from synchronous modelling languages to RTOS are important for streamlining development of real-time applications without compromising the guarantees of their safety. In this paper, we present an automatic transformation from the SCADE synchronous language into applications for the OASIS safety-oriented real-time execution platform, a multi-scale time-triggered approach. This transformation has been partially implemented and we illustrate it with an industrial case-study from the domain of medium voltage protection relays.
An MDE methodology for the development of high-integrity real-time systems
2009 Design, Automation & Test in Europe Conference & Exhibition, 2009
This paper reports on experience gained and lessons learned from an intensive investigation of model-driven engineering methodology and technology for application to high-integrity systems. Favourable experimental context was provided for by ASSERT, a 40-month project partly funded by the EC as part of the 6th Framework Program. The goodness of fit of the MDE paradigm for the industrial domain of interest was critically assessed on a small number of candidate solutions. One of the main axes of investigation concerned HRT-UML/RCM, an advanced method and integrated tool for the model-driven development of embedded real-time software systems. HRT-UML/RCM vastly leveraged on version 2 of the OMG UML standard and combined it with the development of a domain-specific metamodel in the quest to attain correctness-by-construction from the ground up. The prototype tool developed in the project supported: (1) the separation of functional (sequential) design from the specification of real-time and concurrency requirements and properties to be preserved at run time; and (2) the exploitation of a fully generative approach to the development, equipped with support for model-based feasibility analysis and round-trip engineering.