Kyle Dunlap,David van Wijk,Kerianne L. Hobbs

2023-08-07

Abstract:As autonomous systems become more prevalent in the real world, it is critical to ensure they operate safely. One approach is the use of Run Time Assurance (RTA), which is a real-time safety assurance technique that monitors a primary controller and intervenes to assure safety when necessary. As these autonomous systems become more complex, RTA is useful because it can be designed completely independent of the primary controller. This paper develops several translational motion safety constraints for a multi-agent autonomous spacecraft inspection problem, where all of these constraints can be enforced with RTA. A comparison is made between centralized and decentralized control, where simulations of the inspection problem then demonstrate that RTA can assure safety of all constraints. Monte Carlo analysis is then used to show that no scenarios were found where the centralized RTA cannot assure safety. While some scenarios were found where decentralized RTA cannot assure safety, solutions are discussed to mitigate these failures.

Systems and Control

Cassie-Kay McQuinn,Kyle Dunlap,Nathaniel Hamilton,Jabari Wilson,Kerianne L. Hobbs

2024-02-23

Abstract:A fundamental capability for On-orbit Servicing, Assembly, and Manufacturing (OSAM) is inspection of the vehicle to be serviced, or the structure being assembled. This research assumes autonomous slewing to maintain situational awareness of multiple vehicles operating in close proximity where several safety constraints must be satisfied. A variety of techniques may be used as the primary controller. The focus of this research is developing Run Time Assurance (RTA) filters that monitor system behavior and the output of the primary controller to enforce safety constraint satisfaction. Specifically, this research explores combining a subset of the constraints into an Active Set Invariance Filter (ASIF) RTA defined using control barrier functions. This method is minimally invasive to the primary control by minimizing deviation from the desired control output of the primary controller, while simultaneously enforcing all safety constraints. The RTA is designed to ensure the spacecraft maintains attitude requirements for communication and data transfer with a ground station during scheduled communication windows, adheres to conical attitude keep out zones, limits thermally unfavorable attitude duration, maintains attitude requirements for sufficient power generation, ensures maneuvers are below threshold to cause structural damage, ensures maximum angular velocity is below limits to maintain ability to respond quickly to new slewing commands, and conserves actuator use to prevent wear when possible. Slack variables are introduced into the ASIF controller to prioritize safety constraints when a solution to all safety constraints is infeasible. Monte Carlo simulation results as well as plots of example cases are shown and evaluated for a three degree of freedom spacecraft with reaction wheel attitude control.

Systems and Control

Joseph Breeden,Dimitra Panagou

DOI: https://doi.org/10.1109/LCSYS.2021.3136813

2021-12-22

Abstract:This paper presents a strategy for control of a spacecraft docking with a non-maneuvering target in the presence of safety constraints and bounded disturbances. The presence of disturbances prevents convergence to a unique docking state, so in our formulation, docking is defined as occurring within a set constructed using prescribed tolerances. Safety is ensured via application of Robust Control Barrier Functions to render a designated safe set forward invariant for any allowable disturbance. However, this safety strategy necessarily presumes a worst-case disturbance, and thus restricts trajectories to a subset of the safe set when a worst-case disturbance is not present. The presented controller accounts for this restriction, and guarantees that the spacecraft both remains safe and achieves docking in finite time for any allowable disturbance. The controller is then validated in simulation for a spacecraft landing on an asteroid, and two spacecraft docking in low Earth orbit.

Optimization and Control,Systems and Control

Kyle Dunlap,Kochise Bennett,David van Wijk,Nathaniel Hamilton,Kerianne Hobbs

2024-06-18

Abstract:The trial and error approach of reinforcement learning (RL) results in high performance across many complex tasks, but it can also lead to unsafe behavior. Run time assurance (RTA) approaches can be used to assure safety of the agent during training, allowing it to safely explore the environment. This paper investigates the application of RTA during RL training for a 6-Degree-of-Freedom spacecraft inspection task, where the agent must control its translational motion and attitude to inspect a passive chief spacecraft. Several safety constraints are developed based on position, velocity, attitude, temperature, and power of the spacecraft, and are all enforced simultaneously during training through the use of control barrier functions. This paper also explores simulating the RL agent and RTA at different frequencies to best balance training performance and safety assurance. The agent is trained with and without RTA, and the performance is compared across several metrics including inspection percentage and fuel usage.

Systems and Control

Kerianne Hobbs,Mark Mote,Matthew Abate,Samuel Coogan,Eric Feron

DOI: https://doi.org/10.48550/arXiv.2110.03506

2021-10-07

Systems and Control

Abstract:Run Time Assurance (RTA) Systems are online verification mechanisms that filter an unverified primary controller output to ensure system safety. The primary control may come from a human operator, an advanced control approach, or an autonomous control approach that cannot be verified to the same level as simpler control systems designs. The critical feature of RTA systems is their ability to alter unsafe control inputs explicitly to assure safety. In many cases, RTA systems can functionally be described as containing a monitor that watches the state of the system and output of a primary controller, and a backup controller that replaces or modifies control input when necessary to assure safety. An important quality of an RTA system is that the assurance mechanism is constructed in a way that is entirely agnostic to the underlying structure of the primary controller. By effectively decoupling the enforcement of safety constraints from performance-related objectives, RTA offers a number of useful advantages over traditional (offline) verification. This article provides a tutorial on developing RTA systems.

Hongyang Dong,Qinglei Hu,Maruthi R. Akella

DOI: https://doi.org/10.2514/1.g002322

2017-01-01

Abstract:This paper addresses the translational control problem for the final phase of spacecraft rendezvous and docking. For safety concerns, during the approach process, the pursuer spacecraft is required to strictly comply with the approaching path constraints and should also have obstacle-avoidance ability at the same time. A novel potential function is employed to describe these safety requirements. Two distinct path constrained zones are designed and the potential applications of them are analyzed as well. Then, based on a time-varying sliding manifold, an adaptive control law is developed to enable the arrival of the pursuer spacecraft at the docking port of the target without entering into the constrained zone or colliding with obstacle, even in the existence of disturbances, uncertainties, and actuator faults simultaneously. The stability of the closed-loop system is analyzed through Lyapunov method. Specific simulations for International Space Station and Tiangong-1 target spacecraft are performed to illustrate the effectiveness and robustness of the proposed method.

Umberto Ravaioli,Kyle Dunlap,Kerianne Hobbs

DOI: https://doi.org/10.48550/arXiv.2209.01120

2022-09-02

Abstract:With the rise of increasingly complex autonomous systems powered by black box AI models, there is a growing need for Run Time Assurance (RTA) systems that provide online safety filtering to untrusted primary controller output. Currently, research in RTA tends to be ad hoc and inflexible, diminishing collaboration and the pace of innovation. The Safe Autonomy Run Time Assurance Framework presented in this paper provides a standardized interface for RTA modules and a set of universal implementations of constraint-based RTA capable of providing safety assurance given arbitrary dynamical systems and constraints. Built around JAX, this framework leverages automatic differentiation to populate advanced optimization based RTA methods minimizing user effort and error. To validate the feasibility of this framework, a simulation of a multi-agent spacecraft inspection problem is shown with safety constraints on position and velocity.

Systems and Control

Junting Lv,Xiande Wu,Yong Hao,Wengao Lu,Fei Han

DOI: https://doi.org/10.1007/978-981-33-4102-9_64

2020-01-01

Abstract:To address the issue of actuator failure that may occur in the process of rigid spacecraft docking, a linear sliding mode surface is selected, the corresponding attitude and orbit controllers are designed, and the asymptotically stable fault-tolerant control of attitude and orbit is realized. In the fault-tolerant controller, the health matrix is used to describe the failure of the actuator, and the corresponding substitution value is designed based on the characteristics of partial failure to realize the fault-tolerant treatment of the actuator fault. By using the indirect control method, the nonlinear parts, time-varying terms and the influence of external disturbances of the spacecraft control system under different external conditions are ignored, which improves the stability performance of the spacecraft system. Meanwhile, asymptotic stability of the system conforms to the requirements of spacecraft rendezvous and docking control time. Finally, the effectiveness and stability of the designed control system are verified by simulation experiments and the simulation results are analyzed.

Wenqi Jiang,Zeyu Guo,Shihua Li

DOI: https://doi.org/10.1142/s2737480724500109

2024-01-01

Guidance Navigation and Control

Abstract:In addressing the challenges of short-range spacecraft docking in the presence of obstacles and disturbances, it is critical to integrate guidance and motion control to ensure autonomous and reliable operation. Traditional methods that separate these two layers often struggle with accurately tracking predefined paths, increasing the risk of collisions. In light of this, a proposed scheme integrating guidance and control in an organic manner has been put forth. This scheme employs the rapidly-exploring random trees (RRT) algorithm within the guidance layer to generate a collision-avoidance trajectory for the control layer, efficiently navigating the spacecraft towards its target. Then the control layer implements a second-order output-constrained controller by adding a power integrator and a novel barrier Lyapunov function (BLF) together, to guarantee that the tracking error of the predefined trajectory remains bounded and the system asymptotically converges to the target. To account for tracking errors, obstacle radii are expanded during path planning through a dilation constant. Based on theoretical derivation and simulation experiments, the effectiveness and advancement of the proposed method are validated.

Kristina Miller,Christopher K. Zeitler,William Shen,Kerianne Hobbs,Sayan Mitra,John Schierman,Mahesh Viswanathan

2023-10-06

Abstract:A runtime assurance system (RTA) for a given plant enables the exercise of an untrusted or experimental controller while assuring safety with a backup (or safety) controller. The relevant computational design problem is to create a logic that assures safety by switching to the safety controller as needed, while maximizing some performance criteria, such as the utilization of the untrusted controller. Existing RTA design strategies are well-known to be overly conservative and, in principle, can lead to safety violations. In this paper, we formulate the optimal RTA design problem and present a new approach for solving it. Our approach relies on reward shaping and reinforcement learning. It can guarantee safety and leverage machine learning technologies for scalability. We have implemented this algorithm and present experimental results comparing our approach with state-of-the-art reachability and simulation-based RTA approaches in a number of scenarios using aircraft models in 3D space with complex safety requirements. Our approach can guarantee safety while increasing utilization of the experimental controller over existing approaches.

Systems and Control,Artificial Intelligence,Formal Languages and Automata Theory

Kyle Dunlap,Nathaniel Hamilton,Francisco Viramontes,Derrek Landauer,Evan Kain,Kerianne L. Hobbs

2024-05-11

Abstract:As the number of spacecraft on orbit continues to grow, it is challenging for human operators to constantly monitor and plan for all missions. Autonomous control methods such as reinforcement learning (RL) have the power to solve complex tasks while reducing the need for constant operator intervention. By combining RL solutions with run time assurance (RTA), safety of these systems can be assured in real time. However, in order to use these algorithms on board a spacecraft, they must be able to run in real time on space grade processors, which are typically outdated and less capable than state-of-the-art equipment. In this paper, multiple RL-trained neural network controllers (NNCs) and RTA algorithms were tested on commercial-off-the-shelf (COTS) and radiation tolerant processors. The results show that all NNCs and most RTA algorithms can compute optimal and safe actions in well under 1 second with room for further optimization before deploying in the real world.

Systems and Control

LI Peng,Xiaokui YUE,Honghua DAI,Xianbin CHI

2013-01-01

Abstract:Abstract: This paper investigates the optimal rendezvous with power-limited propulsion systems and collision avoidance. A 26-state dynamic model is established including both translational and rotational dynamics. This model is effective for describing autonomous rendezvous with both a three-axis attitude stabilized target and a tumbling one. Collisions are prevented through setting a safety sphere centered at the mass center of the target. Two rendezvous scenarios in actual missions are considered in this paper. The first case is to drive the chaser vehicle to rendezvous with a three-axis attitude stabilized target. A light-of-sight (LOS) tetrahedral path constraint is imposed for vision-based sensing and safety considerations. The second is to rendezvous with a tumbling target with an arbitrary docking port. The novel concept of tumbling plane is introduced to describe the tumbling motion. Then, the optimal-fuel rendezvous is transformed into a quadratic programming problem (QPP) using the state dependent model predictive control (SDMPC). Numerical simulations demonstrate that the proposed method can guarantee the safety of the autonomous rendezvous and to minimize the fuel consumption. In addition, this algorithm can be numerically solved rapidly.

Qi Li,Jianping Yuan,Chong Sun

DOI: https://doi.org/10.1016/j.asr.2018.11.004

IF: 2.611

2019-01-01

Advances in Space Research

Abstract:In this paper, the motion control problem of autonomous spacecraft rendezvous and docking with a tumbling target in the presence of unknown model parameters, external disturbances, actuator saturation and faults is investigated. Firstly, a nonlinear six degree-of-freedom dynamics model is established to describe the relative motion of the chaser spacecraft with respect to the tumbling target. Subsequently, a robust fault-tolerant saturated control strategy with no precise knowledge of model parameters and external disturbances is proposed by combining the sliding mode control technique with an adaptive methodology. Then, within the Lyapunov framework, it is proved that the designed robust fault-tolerant controller can guarantee the relative position and attitude errors converge into small regions containing the origin. Finally, numerical simulations are performed to demonstrate the effectiveness and robustness of the proposed control strategy. (C) 2018 COSPAR. Published by Elsevier Ltd. All rights reserved.

David van Wijk,Kyle Dunlap,Manoranjan Majji,Kerianne Hobbs

DOI: https://doi.org/10.2514/1.i011391

2024-09-14

Journal of Aerospace Information Systems

Abstract:While reinforcement learning (RL) offers high-performance solutions to complex tasks, its trial-and-error paradigm presents safety concerns when exploring unsafe states may be unacceptable. Safety filtering or run-time assurance (RTA) approaches can be used to monitor the RL agent’s desired control and prevent the agent from taking unsafe actions by satisfying safety constraints during and after training. This study investigates the problem of on-orbit inspection of a chief spacecraft using a deputy spacecraft controlled by an RL agent with safety constraints. Several constraints on the state space are enforced using discrete control barrier functions and an optimization-based RTA system. This assures the safety of the deputy spacecraft and its sensors even with a neural-network-based primary controller. A detailed analysis of RL agent performance for eight separate experiments is presented, including each safety constraint individually, all constraints simultaneously, and no constraints. Results demonstrate that the RL agent can complete the inspection task while adhering to safety constraints in a simulated RL environment. These results also show that the RTA system can aid the RL agent in learning a successful policy over fewer time steps but may lead to higher fuel usage, depending on the constraint(s) enforced.

engineering, aerospace

Yong Guo,Dawei Zhang,Ai-jun Li,Shenmin Song,Chang-qing Wang,Zongming Liu

DOI: https://doi.org/10.1016/j.ast.2020.106380

IF: 5.457

2021-02-01

Aerospace Science and Technology

Abstract:<p>The finite-time controller under safe constraint is designed for the non-cooperative space autonomous rendezvous and docking by using the artificial potential function. To facilitate the establishment of the obstacle avoidance model, the elliptic cissoid is used to describe the final approaching corridor. Combining the model with the artificial potential function, a sliding mode surface that is finite-time stable is first developed to dealing with the problem of collision avoidance. Then, the finite-time controller that can make the chaser spacecraft do not collide with other space objects around the non-cooperative target spacecraft and large stationary physical attachments of the non-cooperative target spacecraft is proposed. Finally, the validity of the controller is proved by numerical simulations.</p>

engineering, aerospace

Guan-qun Wu,Shen-Min Song,Jing-guang Sun

DOI: https://doi.org/10.1177/0954410018774678

2019-01-01

Abstract:This thesis studies control schemes for spacecraft safe rendezvous and docking considering input saturation. Based on the spacecraft attitude and orbit coupled model, by using fast terminal sliding mode method, a finite-time antisaturation controller and an adaptive finite-time antisaturation controller are designed for the situations of known and unknown upper bound of external disturbances, respectively. In controller design, a novel continuous and differentiable collision avoidance potential function is presented to restrict motion area and guarantee the safety of the spacecrafts. Meanwhile, the saturation function and auxiliary system are introduced to deal with the input saturation. Lyapunov theory is utilized to prove that the error states of the system under the proposed controllers are finite-time convergent, and the rendezvous and docking without collision can be accomplished. The numerical simulation results indicate that the chaser can realize the rendezvous and docking with input saturation and safe constraint, which can further illustrate the effectiveness of the designed controllers.

Kyle Dunlap,Nathaniel Hamilton,Zachary Lippay,Matthew Shubert,Sean Phillips,Kerianne L. Hobbs

2024-05-11

Abstract:On-orbit spacecraft inspection is an important capability for enabling servicing and manufacturing missions and extending the life of spacecraft. However, as space operations become increasingly more common and complex, autonomous control methods are needed to reduce the burden on operators to individually monitor each mission. In order for autonomous control methods to be used in space, they must exhibit safe behavior that demonstrates robustness to real world disturbances and uncertainty. In this paper, neural network controllers (NNCs) trained with reinforcement learning are used to solve an inspection task, which is a foundational capability for servicing missions. Run time assurance (RTA) is used to assure safety of the NNC in real time, enforcing several different constraints on position and velocity. The NNC and RTA are tested in the real world using unmanned aerial vehicles designed to emulate spacecraft dynamics. The results show this emulation is a useful demonstration of the capability of the NNC and RTA, and the algorithms demonstrate robustness to real world disturbances.

Systems and Control

Akshit Saradagi,Avijit Banerjee,Sumeet Satpute,George Nikolakopoulos

DOI: https://doi.org/10.48550/arXiv.2209.06618

2022-09-14

Abstract:In this article, we present a control strategy for the problem of safe autonomous docking for a planar floating platform (Slider) that emulates the movement of a satellite. Employing the proposed strategy, Slider approaches a docking port with the right orientation, maintaining a safe distance, while always keeping a visual lock on the docking port throughout the docking maneuver. Control barrier functions are designed to impose the safety, direction of approach and visual locking constraints. Three control inputs of the Slider are shared among three barrier functions in enforcing the constraints. It is proved that the control inputs are shared in a conflict-free manner in rendering the sets defining safety and visual locking constraints forward invariant and in establishing finite-time convergence to the visual locking mode. The conflict-free input-sharing ensures the feasibility of a quadratic program that generates minimally-invasive corrections for a nominal controller, that is designed to track the docking port, so that the barrier constraints are respected throughout the docking maneuver. The efficacy of the proposed control design approach is validated through various simulations.

Systems and Control,Robotics

Yufeng Gao,Dongyu Li,Shuzhi Sam Ge

DOI: https://doi.org/10.1109/taes.2021.3124865

IF: 3.491

2022-01-01

IEEE Transactions on Aerospace and Electronic Systems

Abstract:For the short-rangerelative motion of the on-orbit service spacecraft during rendezvous and docking missions, this article improves control performance with the describable straight line convergence trajectory and reduces energy consumption by proposing and solving the spacecraft time-synchronized control problem. This problem requires that the closed-loop system of the spacecraft is finite/fixed-time stable, all nonzero elements converge synchronously, and the trajectory of the closed-loop system tends to be the describable straight line. Based on the time-synchronized stability (TSS) and fixed-time-synchronized stability (FTSS), this article proposes the TSS and FTSS controllers for the 6-degree of freedom (DOF) spacecraft to solve the problem. For the spacecraft closed-loop system under these optimization-free methods, the derivative of the state is always opposite to the direction of the state, then the system trajectory will tend to a straight line, and the redundant motion components in the direction orthogonal to the state are significantly suppressed (performance improvement), and the excess energy loss is reduced considerably. Conversely, redundant motion components will cause excess transient motion and more energy consumption. Furthermore, this article proposes the linear combination theorem of the ratio persistence property, which further enriches the theoretical tools for the time-synchronized control method. The rigorous theoretical proof and comparative simulation verify the rationality, effectiveness, and advantages of the controllers proposed.

Kewei Xia,Wei Huo

DOI: https://doi.org/10.23919/acc.2017.7963528

2017-01-01

Abstract:An adaptive fault-tolerant controller is investigated for a pursuer spacecraft approaching a cooperative target spacecraft and docking with it. The six degree-of-freedom (6-DOF) relative dynamics system with actuator faults is formulated. An adaptive controller is developed, where adaptive algorithm is introduced to estimate and compensate system uncertainties, and projection algorithm is introduced to guarantee that the estimation of multiplicative fault matrix is invertible. It is proved that the closed-loop dynamics system is globally uniformly ultimately bounded. Numerical simulations are given to show effectiveness of the proposed controller.