Separation in the data-, resource- and time-domain is a big challenge on multicore microcontrollers. Combined with dependencies in the same domains, the result very often is a fragile, complex structure that is difficult to handle.
In a previous project, an innovative runtime environment, which is based on ideas of Adaptive AUTOSAR has been developed together with an industrial partner. It combines high performance with good usability and a strict separation of signals in the data- and time domain. In order to ensure the integrity of signals, this concept has been extended to support monitoring algorithms. A typical structure e.g. includes monitors to check the integrity of sensordata-input, actuator-output, logic-function-supervision and system health.
The developed architecture supports a clear traceability between safety requirements and monitoring code. The execution of safety functions is clearly separated from the application code. The structure of the monitoring logic can easily be maintained including defining flexible escalation strategies in case of system errors.
Within this presentation, the following aspects will be discussed:
- Features of the developed runtime environment
- Showcase for the dataflow of signals
- Signal monitoring
- Error Handling/Escalation
I will give this presentation at the 16.03.2017 from 16:00 to 16.30 at the embedded world conference 2017 in Nürnberg/Germany. Hope to see you there!