Leadership Development Model based Personal Development Plan
Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3....
Transcript of Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3....
![Page 1: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/1.jpg)
Model-based Developmentfor
Embedded Control Systems
– Which embedded control systems ?
– Aerospatiale pioneering role
– State of the art
– Table of Contents
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 2: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/2.jpg)
Which Embedded Control Systems ?
safety critical systems
mission critical systems, time to market
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 3: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/3.jpg)
Two Questions
Knowing the low reliability of computing technology
– thousands of car “recalled” for computing bugs
– Ariane V accident
– your personal computer . . .
1. Is it wise to use this poor technology in safety critical systems ?
2. Why, nevertheless, things are not as bad as could be expected ?
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 4: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/4.jpg)
A Tentative Answer
The safety-critical control industry has designed a very strong model-based
development method
A short story of this method :
– Aerospatiale pioneering role
– How things evolved since then
– State of the Art and perspectives
Are academic people really aware of this story ?
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 5: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/5.jpg)
Aerospatiale pioneering steps in the early eighties
control models (block-diagrams)
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 6: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/6.jpg)
Aerospatiale pioneering steps in the early eighties
control models (block-diagrams)
= formal software specification
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 7: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/7.jpg)
Aerospatiale pioneering steps in the early eighties
control models (block-diagrams)
= formal software specification
↓
automatic code generation
↓
Software
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 8: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/8.jpg)
Aerospatiale pioneering steps in the early eighties
control models (block-diagrams)
= formal software specification
↓
automatic code generation
↓
Software
“Specification Assistee par Or-
dinateur”(SAO)
“Computer Aided Specifica-
tion”
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 9: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/9.jpg)
Interest of SAO
Twofold :
– Automatic code generation from high-level control models :
easier and earlier debugging
– Graphic language close to the cultural background of avionic engineers,
test pilots, suppliers, certification authorities, . . . :
allows easier communication within the entreprise
preserves the know-how and makes easier the technology transfer
SAO participates to the success of A320
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 10: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/10.jpg)
From then on. . .
Powerful model-based development tools :
– SAO replaced by SCADE
commercial product partially based on synchro-
nous technology
Do178B level A qualified automatic code generator
– Simulink/StateflowFrom Control Models to Real-Time Software
Paul CaspiVerimag-CNRS
1. The synchronous approach
2. Simulink
Sousse juillet 2008 Ecole STICSousse juillet 2008 Ecole STICSousse juillet 2008 Ecole STIC
continuous/discrete time simulation toolbox
the defacto standard in control modelling
– Formal methods : automatic mathematical proofs for dynamic systems
. . .
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 11: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/11.jpg)
From then on. . .
More powerful execution platforms :
– multi-tasking
– distributed and multi-processor
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 12: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/12.jpg)
State of the Art
modelling
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 13: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/13.jpg)
State of the Art
simulationdebuggingmodelling
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 14: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/14.jpg)
State of the Art
automatic import
simulationdebuggingmodelling
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 15: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/15.jpg)
State of the Art
formal verification
automatic import
simulationdebuggingmodelling
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 16: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/16.jpg)
State of the Art
automatic code generationarchitecture choice
formal verification
automatic import
simulationdebuggingmodelling
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 17: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/17.jpg)
State of the Art
tests
automatic code generationarchitecture choice
formal verification
automatic import
simulationdebuggingmodelling
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 18: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/18.jpg)
Perspectives
Faithfulness
tests
automatic code generationarchitecture choice
formal verification
automatic import
simulationdebuggingmodelling
more modelling frameworks
more formal tools
more architectures
more test methods
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 19: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/19.jpg)
A Key Issue : Faithfulness
What you
model
simulate
prove
is what you
implement
execute
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 20: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/20.jpg)
Implantation de systemes de controle
– Pourquoi ce cours ?
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 21: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/21.jpg)
Les systemes embarques
Les systemes informatiques embarques sont ces systemes informatiques
qui sont des sous-systemes de systemes plus importants. On les trouve
dans une multitude de domaines d’applications :
– transports, avions, metros, trains, automobiles...
– controle-commande industriel, nucleaire, chimie, usines...
– communication, telephones, multi-media,
– electronique de consommation, imprimantes, photocopieurs, machines a
laver, monetique...
On admet (www.cpuplanet.com) que 98% des processeurs produits se
trouvent dans cette informatique embarquee.
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 22: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/22.jpg)
De nombreux debouches
– a Grenoble :
Schneider, STMicroelectronic..., CEA, Scalagent(Motorola), Philips,
Xerox, FranceTelecom R&D, Jay, Athys, Polyspace, Dophin, Atral,...
– dans la region :
Sextant avionique (Valence), Renault vehicules industriels (Lyon),...
– en France, en Europe, dans le monde...
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 23: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/23.jpg)
Systemes embarques, automatique et informatique
La plupart de ces systemes informatiques commandent ou controlent des
systemes ou des signaux physiques :
– voix, musique, images...
– capteurs de donnees physiques :
position, vitesse, acceleration, masse, pression, temperature,...
– actionneurs :
moteurs, aimants,...
Il est important de pouvoir dialoguer, communiquer avec les specialistes de
ces domaines
comprendre leurs langages, leurs problemes, leurs methodes
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 24: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/24.jpg)
Systemes embarques, automatique et informatique
Beaucoup de ces systemes informatiques interagissent avec ces systemes
physiques. Le systeme global acquiere de nouvelles proprietes issues de
cette interaction.
– resonnance
Scope1
ScopePhysique
Out1
Calculateur
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 25: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/25.jpg)
Systemes embarques, automatique et informatique
Beaucoup de ces systemes informatiques interagissent avec ces systemes
physiques. Le systeme global acquiere de nouvelles proprietes issues de
cette interaction.
– resonnance
Scope1
ScopePhysique
Out1
Calculateur0 50 100 150 200
−5
0
5
Time offset: 0
0 50 100 150 200−5
0
5
Time offset: 0
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 26: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/26.jpg)
Systemes embarques, automatique et informatique
Beaucoup de ces systemes informatiques interagissent avec ces systemes
physiques. Le systeme global acquiere de nouvelles proprietes issues de
cette interaction.
resonnance
Scope1
ScopePhysique
Out1
Calculateur
0 50 100 150 200−5
0
5
Time offset: 0
0 50 100 150 200−5
0
5
Time offset: 0
Vibrations dangereuses, degats possibles
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 27: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/27.jpg)
Systemes embarques, automatique et informatique
Beaucoup de de ces systemes informatiques interagissent avec ces
systemes physiques. Le systeme global acquiere de nouvelles proprietes
issues de cette interaction.
– stabilite
Scope1
ScopePhysique
In1 Out1
Calculateur
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 28: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/28.jpg)
Systemes embarques, automatique et informatique
Beaucoup de de ces systemes informatiques interagissent avec ces
systemes physiques. Le systeme global acquiere de nouvelles proprietes
issues de cette interaction.
– stabilite
Scope1
ScopePhysique
In1 Out1
Calculateur0 10 20 30 40 50
−5
0
5
Time offset: 0
0 10 20 30 40 50−5
0
5
Time offset: 0
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 29: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/29.jpg)
Systemes embarques, automatique et informatique
Beaucoup de de ces systemes informatiques interagissent avec ces
systemes physiques. Le systeme global acquiere de nouvelles proprietes
issues de cette interaction.
– stabilite
Scope1
ScopePhysique
In1 Out1
Calculateur0 10 20 30 40 50
−5
0
5
Time offset: 0
0 10 20 30 40 50−5
0
5
Time offset: 0
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG
![Page 30: Model-based Development for Embedded Control Systemstdang/DocumentsCours/SLE2Amodel... · 2016. 3. 11. · Powerful model-based development tools : –SAOreplaced bySCADE commercial](https://reader036.fdocuments.net/reader036/viewer/2022081623/614989be080bfa626014acad/html5/thumbnails/30.jpg)
Systemes embarques, automatique et informatique
Les concepteurs de ces systemes utilisent des formalismes et outils
particuliers pour specifier des programmes d’ordinateurs :
1
Out1z
1
Unit Delay2
z
1
Unit Delay1
z
1
Unit Delay
1
In1
Il faut les comprendre et savoir les utiliser !
SLE, ENSIMAGSLE, ENSIMAGSLE, ENSIMAG