Fault Tolerant Technology MULTI DOMAIN ARINC 653 - fsw-workshop...

Preview:

Click to see full reader

Citation preview

1 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

MULTI DOMAIN ARINC 653

Fault Tolerant Technology

2 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

AGENDA

Computer Architecture

Performance

ARINC 653 Review

Malware

Fault Tolerance

3 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

ARINC 653

Operating

System for the

IMA

APplication

EXecutive

(APEX)

Spatial and

Temporal

Partitions

Health Monitor

& Recovery

4 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

DRAWBACKS ARINC 653

CPU

overhead

Complete

partition failures

Malware

vulnerabilities

5 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

Virtual systems are not

immune to malware,

despite what some people

may believe.

6 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

“It does not work on certified flight hardware”

FAA & EASA

Android app gains

control inside an airplane

ANDROID APP GAINS

CONTROL INSIDE

AN AIRPLANE

7 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

Mikko Hypponen

Android malware spread to the

planes only because employees

were charging their phones with

the USB port in the cockpit.

8 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

UNITED 737/800

HACKED

PASS OXYGEN ON

anyone?

- Chris Roberts

9 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

MULTI DOMAIN ARCHITECTURE

DID (How)

PAD (When) PAD (Where)

10 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

HARDWARE VIEW

CPU

Memory Controller

APEX

Kernel

I/O

I/O

Application Partition 1

Application Partition 2

Application Partition 3

Application Partition 4

CPU

Memory Controller

I/O

Application Partition 1

Application Partition 2

Application Partition 3

Application Partition 4

APEX

Kernel

Single Domain Multiple Domain

11 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

FEATURE COMPARISON

Single Domain

Detects

Viruses

CPU

Overhead

1

2

Multiple Domain

Prevents

Viruses

No CPU

Overhead

1

2

12 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

@

13 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

CLOUDY PERFORMANCE: STEADY STATE PACKING

14 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

CLOUDY PERFORMANCE: STEADY STATE PACKING

15 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

HARDWARE VIEW

CPU

Memory Controller

APEX

Kernel

I/O

I/O

Application Partition 1

Application Partition 2

Application Partition 3

Application Partition 4

CPU

Memory Controller

I/O

Application Partition 1

Application Partition 2

Application Partition 3

Application Partition 4

APEX

Kernel

Single Domain Multiple Domain

16 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

ARINC 653

Reduced resource

consumption (CPU,

MEM) on the

compute node

Near bare metal

performance in

the guest

Fast network

operation

Multi Domain Architecture

17 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

FEATURE COMPARISON

Single Domain

Detects

Viruses

CPU

Overhead

1

2

Partition

Failure

3

Multiple Domain

Prevents

Viruses

No CPU

Overhead

1

2

Component

Failure

3

18 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

Hardware

- Partition Level

Sensor

PUF Definition

Hardware

- Component Level

CPU

Component

Sensor

Virus Prevention

ARINC 653

Single Domain Multiple Domain

>

>

>

>

>

>

>

>

19 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

Software

Partition Level

Stateless Recovery

-

Detects Viruses

Software

Thread Level

State Recovery

Forensic Analysis

Prevents Viruses

ARINC 653

Single Domain Multiple Domain

> >

> >

> >

>

> >

20 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

MULTI DOMAIN ARCHITECTURE

Meets ARINC

653 APEX

standards

Container

Performance

VM

versatility Prevents

Malware

21 ft@ft-technology.com ©Fault Tolerant Technology Flight Software Workshop December 14, 2016

Fault Tolerant Technology

THANK YOU

Recommended

Distributed Transactional Memory for Fault -Tolerant … · Distributed Transactional Memory for Fault -Tolerant ... Library Support for Fault-Tolerant ... class stores the set of
Documents
Express5800/ft series servers Product Information Fault-Tolerant General Purpose Servers
Documents
Hardware Design: Fault Tolerant Architectures · Introduction: Hardware Design • Fault Tolerant Architectures. • Basics of hardware management. • Fault models. • Hardware
Documents
Fault Tolerant Computer Architecture - NTUAnkoziris/presentations/ACACES2010/Fault Tolerant... · Page 1 Fault Tolerant Computer Architecture Introduction Daniel J. Sorin Department
Documents
Fault-Tolerant Avionics
Documents
Host System and FT | JAN 2 0 1 3 Fault Tolerant Configuration
Documents
FAULT-TOLERANT NETWORKS AND FAULT-TOLERANT ROUTING SONER DEDEOĞLU 10/12/2015 1
Documents
Safe and Fault Tolerant
Documents
Fault Tolerant Ethernet
Documents
Advanced Design Scheme for Fault Tolerant Distributed ... · Advanced design scheme for fault tolerant distributed networked control systems B ... coordinated and ... for Fault Tolerant
Documents
Fault Tolerant Ethernet Installation and Service Guide · Fault Tolerant Ethernet Installation and Service ... Fault Tolerant Ethernet Installation and Service Guide ... Changing/Verify
Documents
Fault Tolerant Ethernet (FTE)
Documents
FT-OSGi: Fault Tolerant Extensions to the OSGi Service ...ler//reports/doa09.pdf · FT-OSGi: Fault Tolerant Extensions to the OSGi Service Platform Carlos Torrão INESC-ID/IST carlos.torrao@ist.utl.pt
Documents
Fault tolerant systems
Technology
Fault Tolerant Ethernet Delivers Robust Networking ... · Fault Tolerant Ethernet Delivers Robust Networking Solution for Experion PKS Fault Tolerant Ethernet ... Systems (Experion,
Documents
Techniques for fault-tolerant quantum error correctionbreichar/talks/Techniques for fault-tolerant qu... · – Strictly fault-tolerant verification ... IIIXXXX ZZZIIII ZIIZZII IZIZIZI
Documents
Building Fault-Tolerant Applications on AWSd36cz9buwru1tt.cloudfront.net/AWS_Building_Fault_Tolerant_Applications.pdf · Amazon Web Services – Building Fault-Tolerant Applications
Documents
Fault Tolerant Configuration
Documents
Reactive System Verification Case Study- Fault Tolerant ... · PDF fileReactive System Verification Case Study--Fault-Tolerant ... Case Study--Fault-Tolerant Transputer Communication
Documents
Fault-Tolerant Broadcast
Documents