Title

Author(s)

Short Description

Date

Resilient Mixed-Criticality Sytstems

Lui Sha

Most complex cyber-physical systems (CPSs) are mixed-criticality systems that have to be resilient against software design faults, hardware failures, and physical hazards under software control. This article reviews useful design principles and architecture patterns for the development of such systems.

September/October 2009

Modeling the Static Software Architecture in AADL (pdf, 79 lb)

Peter Feiler

Abstraction and encapsulation are two principles that have been introduced to manage the complexity of software systems through modular design. They have manifested themselves in the concept of classes and methods to support data abstraction, in the concept of package to support organization of the design space, and the concept of component to support structuring the system architecture. AADL has been developed as architecture modeling language for embedded software systems. As such it focuses on modeling the runtime architecture, i.e., the dynamics of the operational system and its non-functional quality attributes, such as performance and safety. In this note we discuss how AADL supports modular design of software in a hierarchical fashion, its organization into libraries, and constraints on the architecture structure

July 2009

Validating Safety and Security Requirements for Partitioned Architectures (pdf, 164 kb)

Julien Delange, Lucien Pautet, Peter Feiler

This presentation discusses using AADLv2 to model ARINC653 and MILS systems and validating safety and security requirements. The work presented in this document is reflected in the ARINC653 annex to AADL.

June 2009

Compositional analysis of ARINC653 Systems (pdf, 266 kb)

Arvind Easwaran, Insup Lee, Oleg Sokolsky, Steve Vestal

This presentation describes steps toward analyzing schedulability in an ARINC653 OS.

June 2009

ARINC653 and AADL (pdf, 436 kb)

Julien Delange and Lucien Pautet

This presentation from Telecom ParisTech discusses the ARINC653 annex for AADLv2. It also provides a comparison of AADL and XML for code generation and points out the need to test the use of AADL as a backbone for ARINC653 systems in an industrial setting.

June 2009

Formal Verification of AADL Specifications in the Topcased Environment (pdf, 486 kb)

B. Berthomieu, J.-P. Bodeveix, C. Chaudet, S. Dal Zilio, M. Filali, F. Vernadat

This presentation describe the verification of an AADL to Fiacre transformation on the Topcased environment. The Fiacre project aims to develop "models and tools for safety and security analysis of distributed components and their composition."

June 2009

Validation of Safety-Critical Embedded Systems with AADL (pdf, 1.5 mb)

Peter Feiler

For safety-criticality, AADL supports fault management through architecture patterns and fault tolerant configurations and modes; dependability through the error model annex, the capability to specify fault occurrence and fault propagation information, use in hazard and fault effect modeling, and reliability and fault tree analysis; and behavior validation through the behavior model annex, model checking, and source code validation.

June 2009

Model-Based Engineering of Cyber-Physical Systems using AADL (pdf, 3 mb)

Sandeep K. S. Gupta, Tridib  Mukherjee

Cyber-physical systems are dynamic, distributed, large-scale systems to monitor, coordinate, control, integrate, and facilitate physical processes. This presentation focuses on the application of AADL regarding design decisions for safety and survivability in these systems

June 2009

AADL Experimentation at Airbus (pdf, 726 kb)

Pierre Gaufillet

This report provides an update on experimentation with AADL in the areas of air traffic control, dynamic architecture, static architecture, behavior modeling, behavior verification, direct memory access. Some conclusions are that AADL is a first class language for real-time architecture modeling, that "combining static and dynamic designs in a unique model still requires some work," and that scalability needs to be investigated.

April 2009

Cyber-Physical Systems and AADL (pdf, 3.2 mb)

Sandeep K.S. Gupta

Cyber-physical systems are dynamic, distributed, large-scale systems used to control physical processes. Some examples are data centers, biomedical sensor networks. Future work in this area includes developing an AADL annex with interference and criticality modeling capabilities.

April 2009

AVSI System Architecture Virtual Integration (SAVI) Proof of Concept Demonstration (pdf, 1.4 mb)

Peter H. Feiler

This presentation discusses the SAVI proof of concept pilot of multi-tier modeling and analysis of aircraft architecture including integrator/subcontractor support.

April 2009

Modeling the Mission Data System Reference Architecture in AADL (pdf, 667 kb)

This presentation concludes that AADL can represent reference architectures which can be validated. Also , AADL supports the instantiation of reference architecture for a specific system using an MDS case study.

April 2009

Safety-Critical Embedded Systems Development Issues and Cost Impact (pdf, 1.1 mb)

Peter H. Feiler

This presentation discusses the need for virtual system integration, analytical models with well-defined semantics, and cost impact and to-be business process.

April 2009

Model-Based Architectural Verification and Validation (pdf, 1.1 mb)

Peter H. Feiler

This presentation describes architecture-centric, model-based engineering; multi-fidelity model-based analysis; and validation of implementations. It makes these recommendations for moving toward architecture-centric engineering: build on architecture tradeoff analysis, facilitate pattern-based technical architecture root cause analysis, scalability through architecture extraction, support system and software assurance.

February 2009

ICM Introduction Extracted from “Final Report: Integrating Systems and Software Engineering (IS&SE) Study” (pdf, 3 mb)

Barry Boehm, Jo Ann Lane, Arthur Peyser

This presentation examines the incremental commitment model (ICM) in some detail. It contains extensive notes and a reference list.

February 2009

Simulink Integration (pdf, 163 kb)

Julien Delange and Jérôme Hugues

This presentation provides an updated on an investigation of how to integrate Simulink in AADL models. The presentation  addressing these questions: How to map Simulink blocks in AADL, how to represent Simulink types in AADL, and how to combine AADL and Simulink generated code. It explores a use case involving the F-14 aircraft guidance system.

February 2009

Architectural Security Modeling with AADL (pdf, 780 kb)

Jorgen Hansson, Peter Feiler, Aaron Greenhouse

This presentation overviews the SEI security framework in AADL that features representation of confidentiality requirements of resources (i.e., objects); representation and generation of security clearance/privileges of subjects operating on the objects; representation of access matrix, specifying allowed access operations of subjects on objects to support integrity; analysis of an AADL model system with respect to basic confidentiality principle, need-to-know principle, least privileges, and controlled sanitization; and support for MLS and Bell-LaPadula based frameworks.

February 2009

Aerospace Vehicle Systems Institute: System Architecture Virtual Integration (pdf, 572 kb)

This presentation is an overview of the AVSI organization and the SAVI project. The AVSI objective is to shift architecting, design, and production activities to explicitly address integration issues early, reducing program execution risks, cycle time and cost. Its approach is to adopt/develop “integration-based” software and system development processes with emphasis on integrating component-based, model-based and proof-based development.

February 2009

Architectural Computer System Model-Based Engineering with AADL (pdf, 2mb)

Bruce Lewis, Peter Feiler

This presentation is an overview of model-based engineering using AADL. It is a survey of activity in the AADL standard and of tools developed for use with AADL architectural models.

February 2009

Improving a Distributed Software System’s Quality of Service via Redeployment (pdf, 2mb)

Nenad Medvidovic

This presentation discusses the research question “How could we improve system’s deployment architecture to maximize users’ satisfaction?” The solution proposed involves a framework that provides an extensible system model, multiple QoS improvement algorithms, and extensible tool support.

February 2009

On Resource Allocation in Architectural Models (In the proceedings of the 11th IEEE International Symposium on Object-oriented Real-time Distributed Computing)

Dionisio de Niz, Peter Feiler

Resource allocation decisions are critical for the design of embedded real-time systems. Today's trend to software integration makes these decisions tightly coupled to the software architecture. In this paper we discuss the use of architectural models to guide and maintain the integrity of the resource allocation decision at different levels of refinement of the system design. We discuss the budgeting process to split the development process into different teams, the use of bin packing techniques for low level resource allocation and the isolation strategies to separate the different criticality levels of these systems.

May 2008

Efficient Embedded Runtime Systems through Port Communication Optimization (pdf, 355kb)

Peter H. Feiler

This paper discusses an analytical framework that allows us to optimize port-based communication by generating a runtime executive that utilizes shared data areas where appropriate, while ensuring the timing semantic assumed by the control application. Also available in the Proceedings of 13th IEEE International Conference on Engineering of Complex Computer Systems (ICECCS08), UML&AADL Workshop, at http://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=04492906..

April 2008

Building Secure Systems Using Model-Based Engineering and Architectural Models (pdf, 157kb)

Jorgen Hansson, Peter H. Feiler, John Morley

In this article, model-based engineering (MBE) and architectural modeling are shown to be a platform for multi-dimensional, multi-fidelity analysis that is conducive for use with Bell-LaPadula, Biba, and MILS approaches, and enables a system designer to exercise various architectural design options for confidentiality and data integrity prior to system realization. In that way, MBE and architectural modeling can be efficiently used to validate the security of system architectures and, thus, gain confidence in the system design. (In CrossTalk - The Journal of Defense Software Engineering

September 2008

Aspect Oriented Modeling of Component Architectures Using AADL

Lydia Michotte, Thomas Vergnaud, Peter Feiler, Robert France

To be published in the Proceedings of the Second International Conference on New Technologies, Mobility and Security, Nov 5-7,2008, Tangier, Morocco..

November 2008

Architectural Concurrency Equivalence with Chaotic Models (pdf, 275kb)

Dionisio de Niz

In this paper we propose a model-based technique to compare the concurrency structures of two architecturalmodels. This exhaustive comparison is based on the semantics of AADL, an architecture description language, and its model in Alloy, a formal verification language. This verification guides the designer to fully define the desired behaviors as well as the side effects that can be tolerated. We demonstrate the use of the modeling with a simple model from the automotive industry. In the Proceedings of the 5th International Workshop on Model-based Methodologies for Pervasive and Embedded Software.

April 2008

AADL Guidelines to Implement and Verify Applications (pdf, 98kb)

Thomas Vergnaud

One of the purposes of the AADL is to enable the production of source code or formal models from architecture descriptions. Therefore, one unique semantics must be defined and associated with AADL constructions, so that descriptions can effectively be turned into executable applications, and formal models exactly correspond to these applications. This document outlines such a semantics, and indicates how the standard annexes could be connected with it.

April 2007

Performance Challenges of Modern Hardware Architectures for Real-Time Systems (pdf, 411kb)

Jorgen Hansson, John Hudak and Peter Feiler, Dio de Niz (SEI)

Describes the SEI study that aims to develop ways to promote the efficient use of advanced processor hardware architectures without sacrificing predictable execution times in embedded systems. In particular, it details the study approach of learning from academic research results, utilizing application architecture knowledge, and assessing the feasibility of develping an analytic framework.

April 2007

Model-Based Embedded System Engineering & Analysis of Performance-Critical Systems (pdf, 200kb)

Peter Feiler (SEI)

Discusses AADL standard in the context of resource consumption and budgeting, real-time performance (concurrency and timing), real-time performance (end-to-end latency), security (confidentiality analysis), data quality (temporal data consistency), and availability and reliability(fault tree analysis)

January 2007

Fault Propagation Modeling in AADL (pdf, 883kb)

Peter Feiler (SEI)

Builds on work from York University; describes fault propagation and error modeling with AADL

January 2007

System Configurations (pdf, 200kb)

Peter Feiler (SEI)

Discusses modeling of system families via properties and component interfaces, variants, and implementations

January 2007

xUML and AADL (pdf, 315kb)

Dionisio de Niz

Examines the translation from xUML to AADL to analyze the runtime characteristics of a model expressed in xUML and improve runtime structure; complements the XUML, AADL, and Beyond presentation

January 2007

NetCentric System Modeling (pdf, 822kb)

S. Das (Eaton)

An outline of issues in netcentric system modeling and the potential role AADL can play in this setting

October 2006

XUML, AADL, and Beyond(pdf, 951kb)

C. Raistrick (Kennedy-Carter)

A presentation on the interplay between XUML and AADL for Model-Driven Architecture work

July 2006

Generating Petrinets from AADL Descriptions (pdf, 189kb)

T. Vergnaud (ENST)

A discussion of a mapping of AADL thread semantics into Petrinets as part of Thomas Vergnaud's PhD thesis

July 2006

Data quality attributes in net-centric systems (pdf, 2.7mb)

J. Hansson (SEI)

An extension to AADL to support the analysis of distributed system from the perspective of security/confidentiality, data confidence, and other data flow related properties. Includes a prototype implementation of the analysis capability.

April 2006

PnP Protocol Behavior (pdf, 4.6mb)

A. Windisch (EADS

A discussion on the use of AADL for modeling weapons store protocols in AADL

January 2006

Investigation of Timing Concerns in Embedded Systems: Tool- Based Analysis of AADL Models (pdf, 885kb)

P. Feiler (SEI)

Scheduling and communication timing analysis for partitioned systems

February 2005

Towards Formalizing AADL in Proof Assistants(pdf, 250kb)

M. Filali, etal. (University Paul Sabatier)

Presents presents first steps towards a formalization of the AADL

2005

System Dependability Evaluation using AADL (pdf, 281kb)

Ana Rugina (LAAS)

Presents a stepwise approach for system dependability modelling and evaluation, using AADL and GSPNs (Generalised Stochastic Petri Nets)

2005

Understanding the Relationship Between AADL and Real-Time Embedded Systems Operating Systems (pdf, 194kb)

J. Tokar (Pyrrhus Software)

From SAE World Aviation Congress, 2004

November 2004

Distributed Reconfigurable Avionics Architectures (pdf, 778kb)

E. Strunk, et al. (University of Virginia)

Outlines an architecture for assured reconfiguration, the principles of reconfiguration assurance, and the accompanying cost and safety arguments

2004