The Startup Problem in Fault-Tolerant Time-Triggered Communication

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Wilfried Steiner Articles by Hermann Kopetz

International Conference on Dependable Systems and Networks (DSN'06)

Philadelphia, Pennsylvania

June 25-June 28

ISBN: 0-7695-2607-1

	ASCII Text	x
	Wilfried Steiner, Hermann Kopetz, "The Startup Problem in Fault-Tolerant Time-Triggered Communication," Dependable Systems and Networks, International Conference on, pp. 35-44, International Conference on Dependable Systems and Networks (DSN'06), 2006.

	BibTex	x
	@article{ 10.1109/DSN.2006.69, author = {Wilfried Steiner and Hermann Kopetz}, title = {The Startup Problem in Fault-Tolerant Time-Triggered Communication}, journal ={Dependable Systems and Networks, International Conference on}, volume = {0}, year = {2006}, isbn = {0-7695-2607-1}, pages = {35-44}, doi = {http://doi.ieeecomputersociety.org/10.1109/DSN.2006.69}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Dependable Systems and Networks, International Conference on TI - The Startup Problem in Fault-Tolerant Time-Triggered Communication SN - 0-7695-2607-1 SP35 EP44 A1 - Wilfried Steiner, A1 - Hermann Kopetz, PY - 2006 KW - null VL - 0 JA - Dependable Systems and Networks, International Conference on ER -

Wilfried Steiner, Vienna University of Technology, Austria

Hermann Kopetz, Vienna University of Technology, Austria

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/DSN.2006.69

Fault-tolerant time-triggered communication relies on the synchronization of local clocks. The startup problem is the problem of reaching a sufficient degree of synchronization after power-on of the system. The complexity of this problem naturally depends on the system assumptions. The system assumptions in this paper were compiled from cooperation with partners in the automotive and aeronautic industry. We present a general startup strategy for safetycritical systems that discusses the solution to the startup problem from an abstract point of view. From this abstract view we derive and analyze a new startup algorithm that is used in a TTP/C research derivative protocol (LTTP). We also analyze the FlexRay startup algorithm and discuss its behavior in presence of simple failures. The analyses were done by exhaustive fault simulation using the SAL model checker. While LTTP was found to tolerate the arbitrary failure of one node, the FlexRay startup shows to be vulnerable to simple failure modes.

Citation:

Wilfried Steiner, Hermann Kopetz, "The Startup Problem in Fault-Tolerant Time-Triggered Communication," dsn, pp.35-44, International Conference on Dependable Systems and Networks (DSN'06), 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.