Yuehai Wang,Menghan Xu,Hongling Zhao,Jiaojiao Li

DOI: https://doi.org/10.2991/meic-15.2015.136

2015-01-01

Abstract:In analog circuit automatic generating fault tree field, several problems are as below: currently the fault tree model had not strong structural to provide the detail realization method to automatic generating fault tree and only used Support Vector Machine algorithm to automatic generating fault tree the accuracy and stability are insufficient, the generating fault tree method is non-portable. Paper combines the SVM algorithm and the fault tree model based on IEEE 1232, analyzes the characteristics of the new fault tree model, designs and put forwards the automatic generating fault tree method, the stability and the accuracy of the generated fault tree are improved, and the portability of the automatic generating fault tree method is strengthened. Paper designs and implements the automatic generating fault tree model based on IEEE1232; the results show that the feasibility of the plan, the accuracy and the stability of the new fault tree model are improved.

Rongyao Cai,Xiao Xv,Zhengming Lu,Kexin Zhang,Yong Liu

DOI: https://doi.org/10.1109/isas61044.2024.10552597

2024-01-01

Abstract:Fault tree analysis is the most commonly used methodology in industrial safety analysis to predict the probability or frequency of system failure. Although fault tree analysis has been proposed for more than six decades, the assumptions used in most commercial fault tree analysis codes have not changed significantly, which limits the ability of the method to represent design, operation, and maintenance characteristics in the context of the increasing complexity and specialization of modern industrial systems. The basic setup of traditional fault trees is unable to include dependencies between events, time-varying failures, and repair rate realities to explain complex maintenance strategies. To address the above shortcomings, we propose a fusion tree model combining fault tree and attack tree, and simplify the causal structure of the fusion tree by modularization, and utilize the dynamic Markov model to represent the complex coupling relationship between components or nodes. Finally, we demonstrate the calculation process of fusion tree in pressure vessel systems with temporal control.

Leiming Zhang,Fan Yang,Yong Lei

DOI: https://doi.org/10.1109/tvt.2019.2929419

IF: 6.8

2019-01-01

IEEE Transactions on Vehicular Technology

Abstract:Controller area network (CAN) is the most widely adopted network protocol in vehicle communication systems. The intermittent connection (IC) fault, a random cable connectivity problem with short durations, occurring in the CAN network may result in system performance degradation and system level failures in severe cases. Therefore, the health management of CAN-based networked systems demands effective detection and accurate localization of the IC fault. However, the diagnosis of IC fault in CAN network has not been fully exploited. This paper proposes a novel tree-based IC fault diagnosis method to identify the various IC fault locations in the CAN network. First, the error event pairs for network nodes are defined by analyzing the data-link layer information upon each error. Then, the domains of error event pairs and the information cost of IC faults included in the domains are derived. Finally, a tree-based minimal cost diagnosis algorithm is proposed to find the locations of the IC faults. Laboratory testbed is constructed and the case studies are conducted to demonstrate the performance of the proposed method. The results show that IC fault identified by the proposed method agree well with the case study setups.

Jian Li,Long Zheng,JianGuo Yao

DOI: https://doi.org/10.1109/isads.2009.5207389

2009-01-01

Abstract:The communication between various on-board systems is paramount important for the concept of fly-by-wire, the issues of safety-critical applications, component interaction, which is on the forefront of modern airborne applications. Avionics full duplex switched Ethernet (AFDX) responses this challenge as a bus standard based on the Ethernet protocol and has gained recognition and widespread uses in large commercial aircraft. AFDX addresses quality of service, determinism, and reliability required in an aircraft environment, and at the same time provides the advantages in wiring bundles and the communication bandwidth, increasing network capability, and supporting deterministic requirement of the airborne system and certification guidelines system. AFDX is an implementation of the ARINC 664 Part 7 standard, which uses Ethernet hardware media, but the protocol is fundamentally different from the IEEE 802.3 Ethernet in that it provides reliable time determinism, bounded latency, guaranteed bandwidth, and fault tolerance suitable for flight safety-critical applications. In this project, we address the issue of an advanced architecture for the new avionic network based on the integration of AFDX and field bus transmission schemes. This new avionics communication network combine throughput, architecture adaptability, and secure and safe digital data stream to environment with respect to safety, availability, determinism, and environmental constraints for supporting the development of next generation of avionics applications.

Hairui Zhou,Jian Li,Yazhou Ren,Lina He,Fei Hu

DOI: https://doi.org/10.1109/wfcs.2012.6242558

2012-01-01

Abstract:Avionics Full DupleX Switched Ethernet (AFDX) is a promising technique that can replace the existing avionics data buses, such as ARINC429 and MIL-STD-1553B. However, when the time interval between the reception of the original frame and its duplicate copy is too large, the redundancy management strategy may fail in some worst case scenarios. In this paper, an active delay variation control algorithm, AVC, is proposed to improve fault tolerance in an avionics network. Meanwhile, a novel local deadline assignment principle based on traffic load is presented. Compared with traditional mechanisms, AVC significantly decreases the delay difference between two redundant frames and improves the system reliability.

Meng Li

2016-01-01

Abstract:RESUME AFDX est une technologie basee sur Ethernet, qui a ete developpee pour repondre aux defis qui decoulent du nombre croissant d’applications qui transmettent des donnees de criticite variable dans les systemes modernes d’avionique modulaire integree (Integrated Modular Avionics). Cette technologie de securite critique a ete notamment normalisee dans la partie 7 de la norme ARINC 664, dont le but est de definir un reseau deterministe fournissant des garanties de performance previsibles. En particulier, AFDX est compose de deux reseaux redondants, qui fournissent la haute fiabilite requise pour assurer son determinisme. Le determinisme de AFDX est principalement realise par le concept de liens virtuels (Virtual Links), qui definit une connexion unidirectionnelle logique entre les points terminaux (End Systems). Pour les liens virtuels, les limites superieures des delais de bout en bout peuvent etre obtenues en utilisant des approches comme calcul reseau, mieux connu sous l’appellation Network Calculus. Cependant, il a ete prouve que ces limites superieures sont pessimistes dans de nombreux cas, ce qui peut conduire a une utilisation inefficace des ressources et augmenter la complexite de la conception du reseau. En outre, en raison de l’asynchronisme de leur fonctionnement, il existe plusieurs sources de non-determinisme dans les reseaux AFDX. Ceci introduit un probleme en lien avec la detection des defauts en temps reel. En outre, meme si un mecanisme de gestion de la redondance est utilise pour ameliorer la fiabilite des reseaux AFDX, il y a un risque potentiel souligne dans la partie 7 de la norme ARINC 664. La situation citee peut causer une panne en depit des transmissions redondantes dans certains cas particuliers. Par consequent, l’objectif de cette these est d’ameliorer la performance et la fiabilite des reseaux AFDX. Tout d’abord, un mecanisme fonde sur l’insertion de trames est propose pour renforcer le determinisme de l’arrivee des trames au sein des reseaux AFDX. Parce que la charge du reseau et la bande passante moyenne utilisee augmente due a l’insertion de trames, une strategie d’agregation des Sub-Virtual Links est introduite et formulee comme un probleme d’optimisation multi-objectif. En outre, trois algorithmes ont ete developpes pour resoudre le probleme d’optimisation multi-objectif correspondant. Ensuite, une approche est introduite pour incorporer l’analyse de la performance dans l’evaluation de la fiabilite en considerant les violations des delais comme des pannes.----------ABSTRACT AFDX is an Ethernet-based technology that has been developed to meet the challenges due to the growing number of data-intensive applications in modern Integrated Modular Avionics systems. This safety critical technology has been standardized in ARINC 664 Part 7, whose purpose is to define a deterministic network by providing predictable performance guarantees. In particular, AFDX is composed of two redundant networks, which provide the determinism required to obtain the desired high reliability. The determinism of AFDX is mainly achieved by the concept of Virtual Link, which defines a logical unidirectional connection from one source End System to one or more destination End Systems. For Virtual Links, the end-to-end delay upper bounds can be obtained by using the Network Calculus. However, it has been proved that such upper bounds are pessimistic in many cases, which may lead to an inefficient use of resources and aggravate network design complexity. Besides, due to asynchronism, there exists a source of non-determinism in AFDX networks, namely frame arrival uncertainty in a destination End System. This issue introduces a problem in terms of real-time fault detection. Furthermore, although a redundancy management mechanism is employed to enhance the reliability of AFDX networks, there still exist potential risks as pointed out in ARINC 664 Part 7, which may fail redundant transmissions in some special cases. Therefore, the purpose of this thesis is to improve the performance and the reliability of AFDX networks. First, a mechanism based on frame insertion is proposed to enhance the determinism of frame arrival within AFDX networks. As the network load and the average bandwidth used by a Virtual Link increase due to frame insertion, a Sub-Virtual Link aggregation strategy, formulated as a multi-objective optimization problem, is introduced. In addition, three algorithms have been developed to solve the corresponding multi-objective optimization problem. Next, an approach is introduced to incorporate performance analysis into reliability assessment by considering delay violations as failures. This allowed deriving tighter probabilistic upper bounds for Virtual Links that could be applied in AFDX network certification. In order to conduct the necessary reliability analysis, the well-known Fault-Tree Analysis technique is employed and Stochastic Network Calculus is applied to compute the upper bounds with various probability limits.

Xin Chen,Xudong Xiang,Xuesong Zhang,Jianxiong Wan

DOI: https://doi.org/10.1109/pic.2010.5687469

2010-01-01

Abstract:As an advanced on-board data transmission protocol, Avionics Full Duplex Ethernet (AFDX) was initiated by Airbus in the evolution of its A380 Aircraft. In this paper, we deduce several properties of an AFDX network and present an AFDX System Integration Algorithm (ASIA) to guide the topology design of an AFDX network as well as Virtual Link (VL) parameters determination. We also propose an Integrity Checking (IC) algorithm based on the difference of the sequence numbers between redundant channels. The algorithm reasonably expands the reception range of valid frames and avoids potential deadlock, thus greatly enhancing the reliability of AFDX protocol.

Jian Li,Jianguo Yao,Dongshan Huang

DOI: https://doi.org/10.1109/jcn.2015.000051

2015-01-01

Journal of Communications and Networks

Abstract:Avionic databuses fulfill a critical function in the connection and communication of aircraft components and functions such as flight-control, navigation, and monitoring. Ethernet-based avionic databuses have become the mainstream for large aircraft owning to their advantages of full-duplex communication with high bandwidth, low latency, low packet-loss, and low cost. As a new generation aviation network communication standard, avionics full-duplex switched ethernet (AFDX) adopted concepts from the telecom standard, asynchronous transfer mode (ATM). In this technology, the switches are the key devices influencing the overall performance. This paper reviews the avionic databus with emphasis on the switch architecture classifications. Based on a comparison, analysis, and discussion of the different switch architectures, we propose a new avionic switch design based on a time-division switch fabric for high flexibility and scalability. This also merges the design concept of space-partition switch fabric to achieve reliability and predictability. The new switch architecture, called space partitioned shared memory switch (SPSMS), isolates the memory space for each output port. This can reduce the competition for resources and avoid conflicts, decrease the packet forwarding latency through the switch, and reduce the packet loss rate. A simulation of the architecture with optimized network engineering tools (OPNET) confirms the efficiency and significant performance improvement over a classic shared memory switch, in terms of overall packet latency, queuing delay, and queue size.

Jiaqing Qiao,Zhenyu Wang,Ping Fu,Wenbo Li,Zhihao Guo,Lei Feng,Wenbin Zheng,Shengwei Meng,Li Wang

DOI: https://doi.org/10.1109/I2MTC43012.2020.9128543

2020-01-01

Abstract:With the development of integrated avionics technology, higher requirements are put forward for the transmission speed and bandwidth of the interconnection bus. To tackle with these problems, FC-AE protocol is proposed, which has the advantages of high data bandwidth and is also suitable for long-distance transmission. In order to accelerate the process of designing and developing FC-AE (Fiber Channel Aerospace) devices and building FC-AE systems, we developed a portable FC-AE fault simulation instrument. This instrument can simulate the failure in the bus transmission path between two FC-AE instruments at three rates, which can be used to verify the fault tolerance and error handling program of the system. This paper shows the simulation project and development scheme of the fault simulation instrument firstly. After that, this paper introduces the design of logic firmware based on FPGA in detail, especially the logic design of frame/word trigger and fault simulation under four sets of trigger conditions. Finally, in order to verify whether the function of the instrument is normal or not, we built a test platform with different communication rates, and conducted fault simulation tests. The test results show that the FC-AE fault simulation instrument can meet the requirements of the proposed technical performance, and can reconstruct the fault in the process of system maintenance, which is of great significance to test the stability and reliability of an FC-AE system.

Hairui Zhou,Jian Li,Chengchen Hu,Xiaoqiang Ji,Lina He,Fei Hu

DOI: https://doi.org/10.1177/0954410012459602

2012-01-01

Abstract:Avionics Full DupleX Switched Ethernet is a deterministic communication protocol for distributed embedded real-time applications over asynchronous channels. It is a promising technique that can replace the existing avionics data buses, such as ARINC429 and MIL-STD-1553B. One of the key challenges for deploying and maintaining Avionics Full DupleX Switched Ethernet is to determine the end-to-end transmission delay in such a network. This article aims at handling this challenge effectively applying a completely theoretical analysis. An analytical method based on the network calculus theory is presented in detail to calculate the end-to-end transmission delay in an Avionics Full DupleX Switched Ethernet network, which consists of many interconnect nodes with different scheduling disciplines. Further, this approach is improved by taking into account the effects of source node initial jitter and first in, first out optimization. Additionally, a Matlab/TrueTime simulation platform is constructed to verify the effectiveness of the method. Simulation results show that switches with advanced scheduling algorithms, i.e. static priority scheduling, can significantly improve the delay performance in a multi-hop network.

Dong Haiyong,Gu Qingfan,Wang Guoqing,Zhai Zhengjun,Lu Yanhong

DOI: https://doi.org/10.1109/icaci.2018.8377503

2018-01-01

Abstract:As a high availability product, Electronic Flight Instrument System (EFIS) has very complicated redundancy structures to fulfill high safety integrity requirement. This paper presents a comprehensive study on the availability analysis for EFIS by using Dynamic Fault Tree (DFT) approach based on Markov chain with modularization method. The static fault sub tree is solved by Binary Decision Diagram (BDD) and the dynamic fault sub-tree is solved by Markov chain. A novel Markov chain expression is utilized to avoid state explosion of dynamic fault sub-tree. Besides, Minimal Cut Sequence Set (MCSS) are generated. At last, Monte Carlo simulation is carried out to verify the theoretical results.

Jie Li,Erling Gong,Zhiqiang Sun,Long Li,Hongwei Xie

DOI: https://doi.org/10.1109/icma.2014.6885725

2014-01-01

Abstract:Aeronautical ad hoc network (AANET) is a new sort of mobile ad hoc network (MANET) whose airborne nodes (ANs) move fleetly and the corresponding topology changes rapidly. Fault-tolerance against node failures is a desirable property for communication topology of such networks especially when AANET is used for military applications. ANs rapidly move depending on the objective they try to achieve, thus the topology needs to be controlled periodically. ANs have a fixed transmission range, so additional relay nodes (RNs) are required for construction of a fault-tolerant topology among network nodes. As ANs move, the RNs need to move as well and it is desirable to move them a minimum amount to re-establish the topology as quickly as possible. We propose an online algorithm for RNs' movement control to maintain the AANET fault-tolerant during running time and the total distance RNs need to move is minimum. We show via simulations that the algorithm has good performance and it is applicable to the highly-dynamic aeronautical environment.

Pablo Vera-Soto,Javier Villegas,Sergio Fortes,José Pulido,Vicente Escaño,Rafael Ortiz,Raquel Barco

DOI: https://doi.org/10.48550/arXiv.2312.13969

2023-12-21

Abstract:Aircraft are composed of many electronic systems: sensors, displays, navigation equipment and communication elements. These elements require a reliable interconnection, which is a major challenge for communication networks as high reliability and predictability requirements must be verified for safe operation. In addition, their verification via hardware deployments is limited because these are costly and make difficult to try different architectures and configurations, thus delaying the design and development in this area. Therefore, verification at early stages in the design process is of great importance and must be supported by simulation. In this context, this work presents an event-driven link level framework and simulator for the validation of avionics networks. The presented tool supports communication protocols such as Avionics Full-Duplex Switched Ethernet (AFDX), which is a common protocol in avionics, as well as Ethernet, used with static routing. Alsa, accurate results are facilitated by the simulator through the utilization of realistic models for the different devices. The proposed platform is evaluated in Clean Sky's Disruptive Cockpit for Large Passenger Aircraft architecture scenario showing capabilities of the simulator. The speed of the verification is a key factor in its application, so the computational cost is analysed, proving that the execution time is linearly dependent on the number of messages sent.

Networking and Internet Architecture,Performance

Pablo Vera-Soto,Javier Villegas,Sergio Fortes,José Pulido,Vicente Escaño,Rafael Ortiz,Raquel Barco

DOI: https://doi.org/10.3390/aerospace11040247

IF: 2.66

2024-03-22

Aerospace

Abstract:Aircraft are composed of many electronic systems: sensors, displays, navigation equipment, and communication elements. These elements require a reliable interconnection, which is a major challenge for communication networks since high reliability and predictability requirements must be verified for safe operation. In addition, their verification via hardware deployments is limited because these are costly and it is difficult to try different architectures and configurations, thus delaying design and development in this area. Therefore, verification at early stages in the design process is of great importance and must be supported with simulation. In this context, this work presents an event-driven link-level framework and simulator for the validation of avionics networks. The tool presented supports communication protocols commonly used in avionics, such as Avionics Full-Duplex Switched Ethernet (AFDX), as well as Ethernet, which is used with static routing. Also, the simulator provides accurate results by employing realistic models for various devices. The proposed platform was evaluated in the Clean Sky's Disruptive Cockpit for Large Passenger Aircraft architecture scenario, showing the capabilities of the simulator. Verification speed is a key factor in its application, so the computational cost was analyzed, proving that the execution time is linearly dependent on the number of messages sent and that the increase in the number of nodes has few quadratic components.

engineering, aerospace

Ruiying Li,Jingfu Wang,Haitao Liao,Ning Huang

DOI: https://doi.org/10.1016/j.jnca.2014.10.005

IF: 7.574

2015-02-01

Journal of Network and Computer Applications

Abstract:Avionics are connected via an airborne network, and the realization of their functions depends on successful data transmission through the network. Once the system reliability goal has been defined, reliability allocation must be performed to the subsystems and components. However, the widely used reliability allocation methods are not capable of dealing with complex connections between avionic subsystems. In this paper, an improved Advisory Group on the Reliability of Electronic Equipment (AGREE) allocation method is proposed for multi-mission networked avionics. In the proposed procedure, both the complexity and the importance of components are explicitly considered. Analytic algorithms and Monte Carlo simulation are applied to calculate the reliability of such a complex network structure. To determine the reliability allocation values, a heuristic algorithm is proposed, and an allocation adjustment procedure is provided to avoid inconsistent allocations caused by the same category of components involved in multiple missions of avionics. Our numerical study on A380 avionics, whose data are transmitted through Avionics Full Duplex Switched Ethernet (AFDX), shows that the proposed method is practical and quite efficient in handling such complex reliability allocation problems.

computer science, interdisciplinary applications, software engineering, hardware & architecture

Xiaoqiang Ji,Jian Li,Huanzhong Li,Hairui Zhou,Fei Hu

DOI: https://doi.org/10.5220/0003361204340440

2011-01-01

Abstract:Avionics Full Duplex Switched Ethernet (AFDX) is a deterministic communication protocol for real-time applications on Ethernet media. It is a promising technique that can improve the interconnection of electronic devices in an aircraft. One of the key challenges in employing AFDX is to determine the transmission delay in such a network. This paper aims at handling this challenge by theoretical analysis. A network calculus based approach is presented for analyzing the end-to-end transmission delay of virtual links in an AFDX network that may consist of many network nodes with different scheduling disciplines. We further improve the approach by taking the specific effects of virtual links into account. In addition, we conduct a simulation to verify the validity of our approach. Simulation results show that switches with different scheduling disciplines can improve the delay performance in a multi-hop network.

Mingliang Wang,Zhencai Zhu,Zui Chen,Liang Chang

DOI: https://doi.org/10.12783/dtetr/iceta2016/6966

2017-01-01

DEStech Transactions on Engineering and Technology Research

Abstract:On-board data handling (OBDH) subsystem is the critical subsystem of satellite which is supplied with hot/warm/cold spare backups, also uses triplicated bus and redundant memories for high reliability. For satellite OBDH subsystem, we present an extended dynamic fault tree model (eDFT). Because analytic approach is restricted to particular models and some probability distributions of fault rate, we use Monte Carlo simulation to analysis eDFT instead of it. However, it needs much long time to implement Monte Carlo simulation, so we provide the transformation approach to accelerate the Monte Carlo simulation. Each eDFT gate can be implemented by logic gate of mathematical circuit. The analysis result of the approach shows that acceleration value changes over the size of the eDFT-TTFT units, number of FPGA logic gates of random number generators, and number of FPGA logic gates of TTFT, so this approach can be more accurate and much faster than computer- based simulation.

Jing Wang,Mian Li

DOI: https://doi.org/10.1115/detc2014-34259

2014-01-01

Abstract:The reliability and robustness are critical aspects for engineering systems. In a complex system, usually multiple functions need to be achieved. In such cases, there exist optimal mappings between functions and physical components. In this paper, a new approach, Axiomatic Fault Tree Analysis (AFTA), is proposed to improve the system reliability and robustness simultaneously. In AFTA, system robustness is improved by using Axiomatic Design (AD) to decouple the system to an extent where a group of functions have a corresponding relationship with only one physical component. Moreover, Fault Tree Analysis and Axiomatic Design have been integrated in AFTA by using two new indices indicating the importance degrees of functions and physical components in a reliability sense, which provides a guideline for reliability improvement. A case study of a complex system is used to illustrate the procedure and applicability of AFTA. Theoretical calculations are used to verify AFTA for non-repairable systems, and multi agent based simulations are for repairable systems. Both the theoretical and simulated results show that the system reliability has been improved significantly without large additional cost.

Xin Chen,Xudong Xiang,Jianxiong Wan

DOI: https://doi.org/10.1109/NISS.2009.56

2009-01-01

Abstract:With the rapid development of advanced data transmission technologies in avionics fields, AFDX (Avionics Full Duplex Switched Ethernet) shows great potential in on-board avionics system because of its high bandwidth and real-time property. In this paper, we present a feasible software framework to implement AFDX protocol on VxWorks Operating System. Additional improvements are made to enhance the performance of the system, such as the integration of traffic shaper and VL scheduler, provision of better solution to ES reset problem. The simulative result proves that the framework works effectively with excellent performance and meets the real-time requirements of avionics data transmission.

Bin Wen,Jian Li,Guchuan Zhu,Dongshan Huang

DOI: https://doi.org/10.6138/jit.2015.16.7.20130527

2015-01-01

Abstract:With the emergence of the new generation of avionics systems characterized by more complex architectures and much richer functionalities, traditional avionics networks can no longer supply comprehensive interactions between avionics sub- systems. The AFDX (Avionic Full Duplex Switched Ethernet) is recognized as one of the appropriate solutions allowing bridging this gap. As a real-time network, the AFDX is sensitive to data transmission delay. Hence, reliability assessment represents an important issue in the design of such networks. In this paper, the AFDX protocol with SP-FIFO scheduling policy is modeled based on the theory of network calculus. A worst case upper bound on deterministic delay is obtained. Moreover, the delay distribution is modeled and a probabilistic delay upper bound is computed using the stochastic network calculus. Experiments are carried out for both deterministic and probabilistic cases and the results conformed the validity of the approaches developed in the present work.