Title: Stefanos Skoulaxinos
1Reliable SW/HW Co-Design for Wireless
Communication System Integrating the Spin Model
Checker and Celoxica's DK Suite
- Stefanos Skoulaxinos
- School of EPS School of MACS
- Heriot-Watt University, Edinburgh
MAPLD2005/116
Skoulaxinos
1
2Roadmap
- SW-HW Co-Design, Rules and Dangers
- The Wireless Communication System Long Range
Identification Tag (LRID) - Expected System Survivability
- Reliability Enhancement Strategies
- Implementation Targeted FPGA Platform
- Testing Procedure
- Analysis of Results and Reliability Estimation
- Work in progress 3d Tag Location
MAPLD2005/116
Skoulaxinos
2
3 SW-HW Co-Design a trip from idealism to
realism
Dangers 1 Irrational Abstraction Raising the
design level at a theoretical and impractical
level for targeted application 2 Flawed
Synthesis process
Potential 1 Increased system readability and
testability, fast code turn-arounds,
impressive productivity gains 2 Bridging the gap
between software and hardware development methods
and tools 3 Application of high level
reliability enhancement strategies 4 Level of
abstraction can lift the designer seat enabling
more complex applications through a more
testable development process 5 Possibility of
monitoring and healing system defects (SW or HW)
through a multi- layered software architecture
(Operating System). Lower levels of fault
tolerance (TMR) can be synthesized by the
Compiler automatically.
MAPLD2005/116
Skoulaxinos
3
4LRID Tag - Overview
Requirements
- Tolerate environmental noise
- Self monitor and heal
- Increased levels of survivability
- Minimal power consumption at remote station
- Maximal processing accuracy at base station
MAPLD2005/116
Skoulaxinos
4
5 LRID Tag Main Operation
1
3
4
2
6
5
MAPLD2005/116
Skoulaxinos
5
6 LRID Tag Task Overhead
MAPLD2005/116
Skoulaxinos
6
7Software Reliability Enhancement Strategies
- 1 Fault Prevention __
- High Quality Specification
- Design Diversity
- Modeling, Formal Verification
- Testing
- Structured Design Principles
Applied to the Tag
V
V
V
V
- 2 Fault Tolerance __
- Run Time monitoring (Watchdog Timers)
- Fault Location and Isolation
- SW/HW Redundancy
- N-Version Programming, Voting Schemes
Applied to the Tag
V
V
V
MAPLD2005/116
Skoulaxinos
7
8 Fault Prevention Modeling and Formal
Verification
Aiming for high levels of reliability, it is
essential to understand the system in depth.
Modeling provides an alternative view of the
design and thus contributing to this process.
Formal verification following modeling is
an exhaustive computer based verification
covering all possible event scenarios
MAPLD2005/116
Skoulaxinos
8
9Applied to the Tag
The Tag was Modelled and Verified in the Spin
Model Checker
Spin is considered one of the most efficient
software verification tools currently available.
It is actively used in safety critical NASA
applications such as the application to Cassini
(mission to Saturn) and the Mars Pathfinder.
MAPLD2005/116
Skoulaxinos
9
10 Fault Prevention Structured Design
A set of guidelines which need to be followed by
system designers. It can contribute to code
readability and testability, making
fault-removal processes easier and more effective
MAPLD2005/116
Skoulaxinos
10
11Applied to the Tag
MAPLD2005/116
Skoulaxinos
11
12 Fault Tolerance Run-time Monitoring
Software or hardware redundancy aiming to monitor
run time operation of the main system. It is
commonly used in high end safety critical
applications including NASA missions. In such
complex systems, monitoring tends to form
multilayered architectures covering both
Software and Hardware fault scenarios
MAPLD2005/116
Skoulaxinos
12
13Applied to the Tag
We have developed Watchdog timers and
Forward Error correction (FEC) architectures. We
have taken the proven watchdog timer scheme a
step further by introducing access points and
multilayered implementation. We have developed
FEC schemes to counterbalance expected medium
noise
MAPLD2005/116
Skoulaxinos
13
14Run Time Monitoring Watchdog Timers
-Watchdog Timers are monitoring architectures
utilised to detect if a system has deadlocked
-Can cover a wide range of faults including
software, hardware and real time bugs
MAPLD2005/116
Skoulaxinos
14
15Run Time Monitoring Watchdog Timers
Example of Multi-layered Implementation
16 FPGA platforms utilized during Testing
-utilized to control data communication with
user PC, ID reception from antenna and tag
location computations, all processes executed in
parallel -capable of correlating multiple IDs in
a truly concurrent manner -100 MHz on board
oscillator -can deploy 32 MB of on board
SDRAM -the Spartan IIE board supports 3.3V and
2.5V I/O standards
-Optimized for very low power high performance
systems, ideal for wireless applications -On
board low power oscillator set at 32kHz -the
board supports 1.8V and 3.3V I/O standards
MAPLD2005/116
Skoulaxinos
16
17Testing Procedure
MAPLD2005/116
Skoulaxinos
17
18 Analysis of Results Reliability Estimation
Notes Test Results were analysed in the CASRE
Reliability Estimation Tool (developed by
JPL-NASA)
MAPLD2005/116
Skoulaxinos
18
19 Work in progress 3d Tag Location
Operation 1 User activates tag location query
in the front end API (shown above) 2 API
connects with the base station hardware (Xilinx
Spartan IIE FPGA) and initiates transmission to
remote stations 3 Selected Remote stations
respond by sending their unique ID sequence. 4
Time of arrival of ID at three base station
antennas is utilized by the FPGA to compute
precise x,y and z co-ordinates of the tag. The
co-ordinates are sent back to the API, which are
displayed in a 3d animated view.
20 Conclusions
MAPLD2005/116
Skoulaxinos
19
21 Acknowledgements
The presenter wishes to thank everyone who has
contributed from the conception (2002) and
development of the research project . The
Dependable Systems Group and Microengineering
Group in Heriot-Watt University, as well as the
Institute for System Level Integration (ISLI) and
Scottish Embedded Software Centre (SESC) in
Livingston.
MAPLD2005/116
Skoulaxinos
20