Schedulability and end-to-end latency in distributed ECU networks: formal modeling and precise estimation

Authors:
A. C. Rajeev;Swarup Mohalik;Manoj G. Dixit;Devesh B. Chokshi;S. Ramesh
Affiliations:
General Motors Global Research and Development, Bangalore, India;General Motors Global Research and Development, Bangalore, India;General Motors Global Research and Development, Bangalore, India;ETH Zurich, Zurich, Switzerland;General Motors Global Research and Development, Bangalore, India
Venue:
EMSOFT '10 Proceedings of the tenth ACM international conference on Embedded software
Year:
2010

Citing 18
Cited 2

A theory of timed automata

Theoretical Computer Science
Decidable integration graphs

Information and Computation
Holistic scheduling and analysis of mixed time/event-triggered distributed embedded systems

Proceedings of the tenth international symposium on Hardware/software codesign
The theory of hybrid automata

LICS '96 Proceedings of the 11th Annual IEEE Symposium on Logic in Computer Science
Formal Verification of the MetaH Executive Using Linear Hybrid Automata

RTAS '00 Proceedings of the Sixth IEEE Real Time Technology and Applications Symposium (RTAS 2000)
Schedulability analysis of fixed-priority systems using timed automata

Theoretical Computer Science - Tools and algorithms for the construction and analysis of systems (TACAS 2003)
Analysis and optimization of distributed real-time embedded systems

Proceedings of the 41st annual Design Automation Conference
System architecture evaluation using modular performance analysis: a case study

International Journal on Software Tools for Technology Transfer (STTT)
Controller Area Network (CAN) schedulability analysis: Refuted, revisited and revised

Real-Time Systems
Synthesis of task and message activation models in real-time distributed automotive systems

Proceedings of the conference on Design, automation and test in Europe
Period optimization for hard real-time distributed automotive systems

Proceedings of the 44th annual Design Automation Conference
Loosely time-triggered architectures based on communication-by-sampling

EMSOFT '07 Proceedings of the 7th ACM & IEEE international conference on Embedded software
Composing Functional and State-Based Performance Models for Analyzing Heterogeneous Real-Time Systems

RTSS '07 Proceedings of the 28th IEEE International Real-Time Systems Symposium
Model checking based analysis of end-to-end latency in embedded, real-time systems with clock drifts

Proceedings of the 45th annual Design Automation Conference
A Conservative Approximation Method for the Verification of Preemptive Scheduling Using Timed Automata

RTAS '09 Proceedings of the 2009 15th IEEE Symposium on Real-Time and Embedded Technology and Applications
Optimal scheduling using branch and bound with SPIN 4.0

SPIN'03 Proceedings of the 10th international conference on Model checking software
Solving real-time scheduling problems with model-checking

ICESS'05 Proceedings of the Second international conference on Embedded Software and Systems
Timing analysis of distributed end-to-end task graphs with model-checking

EUC'05 Proceedings of the 2005 international conference on Embedded and Ubiquitous Computing

Translating end-to-end timing requirements to timing analysis model in component-based distributed real-time systems

ACM SIGBED Review - Special Issue on the 24th Euromicro Conference on Real-Time Systems
Verifying timing synchronization constraints in distributed embedded architectures

DATE '12 Proceedings of the Conference on Design, Automation and Test in Europe

Quantified Score

Hi-index	0.00

Visualization

Abstract

Embedded control systems in automobiles are typically implemented by a set of tasks deployed on multiple Electronic Control Units (ECUs) communicating via one or more buses like CAN or FlexRay. In the case of safety-critical systems, there are hard real-time bounds on the (i) response times of tasks/messages, and (ii) end-to-end latencies of certain task/message chains. These depend on various factors like the number of tasks (and messages) involved in the processing (and communication) sequence, parameters of these tasks/messages, scheduling policies, communication protocols, clock drifts, etc. Moreover, since the data transfer among tasks/messages is typically via asynchronous buffers that are overwritable and sticky, multiple semantics are possible for end-to-end latency. Hence, precise estimation of response times and end-to-end latencies in embedded systems is a non-trivial problem. In this paper, we propose a model-checking based technique to compute worst-case response times and end-to-end latencies. We consider a distributed system made of preemptively scheduled tasks and non-preemptively scheduled messages. Given a chain in the system, we estimate two different end-to-end latencies --LIFO and LILO-- which are important in automotive domain. From a system description, we automatically synthesize a formal model based on a discrete event simulation formalism called Calendar Automata. It is then model-checked to compute response times and end-to-end latencies. Our technique is more scalable than the existing formal methods based techniques. We have illustrated this technique on reasonably large case-studies from the automotive domain.