Abstract
In contrast to consumer electronics, remotely updating safety critical systems is in its beginnings. Such updates pose the additional challenge of keeping the system safe. Unavailability or degraded performance/functionality can itself be safety critical. Since the update process consumes resources, the installation process of an update can hence endanger system safety. In this paper we argue that contracts assigning responsibilities to the stakeholders as well as assumptions and guarantees regarding timing and resources are necessary to avoid unexpected system degradation. We outline our vision of employing formal methods to check at the back-end whether an update schedule exists and we identify where future research is needed to support this venture.
This work has been funded by the Federal Ministry of Education and Research (BMBF) as part of Step-Up!CPS (reference no. 01IS18080B).
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
ARAMiS II (2019). https://www.aramis2.org
65B, T.S.: IEC 61131 Programmable controllers (2003)
65B, T.S.: IEC 61499 Function Blocks (2012)
Babin, G., Ait-Ameur, Y., Pantel, M.: Correct instantiation of a system reconfiguration pattern: a proof and refinement-based approach. In: 2016 IEEE 17th International Symposium on High Assurance Systems Engineering (HASE), pp. 31–38 (2016). https://doi.org/10.1109/HASE.2016.47
Barnwell, D.: Your guid to the ins and outs of BMW software updates. https://www.bmw.com/en/innovation/bmw-software-update.html. Accessed 15 Mar 2021
Bauer, B., et al.: E3.1 Partitioning of Functionality. ARAMIS II Project
Baumgart, A., et al.: Architecture Modeling. Technical report, OFFIS (2011)
Bebawy, Y., et al.: Incremental contract-based verification of software updates for safety-critical cyber-physical systems. In: 2020 International Conference on Computational Science and Computational Intelligence (CSCI), 2020 (2020)
Benveniste, A., et al.: Contracts for System Design. Foundations and Trends® in Electronic Design Automation 12(2–3), 124–400 (2018)
Future, M.R.: Global Automotive Over-The-Air (OTA) Updates Market Research Report. https://www.marketresearchfuture.com/reports/automotive-over-the-air-updates-market-7606. Accessed 15 Mar 2021
Gupta, D., Jalote, P., Barua, G.: A Formal framework for on-line software version change. IEEE Trans. Softw. Eng. 22(2), 120–131 (1996)
Halder, S., Ghosal, A., Conti, M.: Secure over-the-air software updates in connected vehicles: a survey. Comput. Netw. 178, 107343 (2020)
Hayden, C.M., Magill, S., Hicks, M., Foster, N., Foster, J.S.: Specifying and Verifying the Correctness of Dynamic Software Updates. In: Joshi, R., Müller, P., Podelski, A. (eds.) VSTTE 2012. LNCS, vol. 7152, pp. 278–293. Springer, Heidelberg (2012). https://doi.org/10.1007/978-3-642-27705-4_22
Jain, N., Mali, S.G., Kulkarni, S.: Infield firmware update: challenges and solutions. In: 2016 International Conference on Communication and Signal Processing (ICCSP), pp. 1232–1236 (2016)
Knight, J.: Safety Critical Systems: Challenges and Directions. In: Proceedings of the 24th International Conference on Software Engineering. ICSE 2002. pp. 547–550 (2002)
Koegel, M., Wolf, M.: Auto update – safe and secure over-the-air (SOTA) software update for advanced driving assistance systems. In: Isermann, R. (ed.) Fahrerassistenzsysteme 2016, pp. 119–134. Springer, Wiesbaden (2018). https://doi.org/10.1007/978-3-658-21444-9_9
Kröger, J., Koopmann, B., Stierand, I., Tabassam, N., Fränzle, M.: Handling of operating modes in contract-based timing specifications. In: Nouri, A., et al. (eds.) VECoS 2021. LNCS, vol. 13187, pp. 59–74. Springer, Cham (2022)
Kugele, S., Marmsoler, D., Mata, N., Werther, K.: Verification of component architectures using mode-based contracts. In: 2016 ACM/IEEE International Conference on Formal Methods and Models for System Design (MEMOCODE), pp. 133–142 (2016)
Lounas, R., Mezghiche, M., Lanet, J.: Formal methods in dynamic software updating: a survey. Int. J. Critical Comput. Syst. 9(1–2), 76–114 (2019)
Marshall, A.: Tesla’s Quick Fix for Its Braking System Came From the Ether (2018). https://www.wired.com/story/tesla-model3-braking-software-update-consumer-reports. Accessed 15 Mar 2021
Miedes, E., Muñoz-Escoí, F.: A Survey about Dynamic Software Updating. Instituto Universitario Mixto Tecnologico de Informatica, Universitat Politecnica de Valencia, Campus de Vera s/n 46022 (2012)
Nahabedian, L., Braberman, V., D’Ippolito, N., Honiden, S., Kramer, J., Tei, K., Uchitel, S.: Dynamic update of discrete event controllers. IEEE Trans. Softw. Eng. 46(11), 1220–1240 (2020). https://doi.org/10.1109/TSE.2018.2876843
Network, A.W.: MRO News Briefs, 17–23 January, 2021. https://aviationweek.com/mro/mro-news-briefs-jan-17-23-2021. Accessed 02 Mar 2021
de Pina, L.: Practical Dynamic Software Updating. Ph.D. thesis, University of Lisbon, Portugal (2016)
Reinkemeier, P., Benveniste, A., Damm, W., Stierand, I.: Contracts for Schedulability Analysis. In: Sankaranarayanan, S., Vicario, E. (eds.) FORMATS 2015. LNCS, vol. 9268, pp. 270–287. Springer, Cham (2015). https://doi.org/10.1007/978-3-319-22975-1_18
Rhanoui, M., Asri, B.: A contractual specification of functional and non-functional requirements of domain-specific components. Int. J. Comput. Sci. Issues 11, 172–181 (2014)
Ribeiro, L.B., Baunach, M.: Towards dynamically composed real-time embedded systems. In: Logistik und Echtzeit. I, pp. 11–20. Springer, Heidelberg (2017). https://doi.org/10.1007/978-3-662-55785-3_2
Staron, M.: AUTOSAR (AUTomotive Open System ARchitecture). In: Automotive Software Architectures, pp. 97–136. Springer, Cham (2021). https://doi.org/10.1007/978-3-030-65939-4_5
Stierand, I., Reinkemeier, P., Bhaduri, P.: Virtual integration of real-time systems based on resource segregation abstraction. In: Legay, A., Bozga, M. (eds.) FORMATS 2014. LNCS, vol. 8711, pp. 206–221. Springer, Cham (2014). https://doi.org/10.1007/978-3-319-10512-3_15
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2022 Springer Nature Switzerland AG
About this paper
Cite this paper
Rakow, A., Kröger, J. (2022). Roles and Responsibilities for a Predictable Update Process – A Position Paper. In: Nouri, A., Wu, W., Barkaoui, K., Li, Z. (eds) Verification and Evaluation of Computer and Communication Systems. VECoS 2021. Lecture Notes in Computer Science, vol 13187. Springer, Cham. https://doi.org/10.1007/978-3-030-98850-0_2
Download citation
DOI: https://doi.org/10.1007/978-3-030-98850-0_2
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-98849-4
Online ISBN: 978-3-030-98850-0
eBook Packages: Computer ScienceComputer Science (R0)