Abstract
With the rapid evolution of commercial hardware platforms, in most application domains, the industry has shown a growing interest in integrating and running independently-developed applications of different “criticalities” in the same multi-core platform, with the objective of improving the performance/cost ratio of the system. Such integrated systems are commonly referred to as mixed-criticality systems (MCS). Most of the MCS-related research published in the state-of-the-art cite the safety-related standards associated to each application domain (e.g. aeronautics, space, railway, automotive). However, those standards are not, in most cases, freely available, and do not always clearly and explicitly specify the requirements for mixed-criticality systems. This paper addresses the important challenge of presenting the relevant information available in some of the safety-related standards, such that the mixed-criticality concept is understood from an industrialist’s perspective. In addition, the paper evaluates state-of-the-art mixed-criticality real-time scheduling models and algorithms against the safety-related standards.




Similar content being viewed by others
Notes
Note that in Sect. 2.2 other terminologies used in other domains will be presented.
A detailed description of these 3 parameters are outside the scope of this work. Please refer to ISO26262 (2011) for further details.
In addition to the four ASILs, the class QM (quality management) denotes no requirement to comply with ISO26262 other than the project quality assurance requirements.
ECU: Electronic Control Unit
S3: life-threatening injuries (survival uncertain), fatal injuries;
E4: high probability;
C2: normally controllable;
C3: difficult to control or uncontrollable.
References
Abella J, Hardy D, Puaut I, Quinones E, Cazorla F (2014) On the comparison of deterministic and probabilistic wcet estimation techniques. In: ECRTS, pp 266–275
Abeni L, Buttazzo G (2004) Resource reservation in dynamic real-time systems. Real Time Syst 27(2):123–167
Ahmed M, Fisher N, Grosu D (2012) A parallel algorithm for edf-schedulability analysis of multi-modal real-time systems. In: IEEE 18th international conference on embedded and real-time computing systems and applications (RTCSA), pp 154–163. https://doi.org/10.1109/RTCSA.2012.49
ARINC 700 series: Arinc (2015) http://store.aviation-ia.com/cf/store/catalog.cfm?prod_group_id=1&category_group_id=4
ARP4761 (1996) Guidelines and methods for conducting the safety assessment process on civil airborne systems and equipment. SAE International, Warrendale
ARP4761A (1996) Guidelines for development of civil aircraft and systems. SAE International, Warrendale
Audsley NC, Burns A, Davis RI, Tindell KW, Wellings AJ (1995) Fixed priority pre-emptive scheduling: an historical perspective. Real Time Syst 8(2–3):173–198
AUTOSAR (2011) Technical Overview, V2.2.2 R3.2 Rev 1. AUTOSAR
AUTOSAR (2013) Requirements on operating system, V3.1.1 R4.1 Rev 2. AUTOSAR
AUTOSAR (2015) Complex driver design and integration guideline, R4.2.2. AUTOSAR
Baier C, Katoen JP (2008) Principles of model checking, vol 26202649. MIT Press, Cambridge
Baker TP (1991) Stack-based scheduling of realtime processes. Real Time Syst 3(1):67–99
Barringer H, Havelund K, Rydeheard D, Groce A (2009) Rule systems for runtime verification: a short tutorial. In: Runtime Verification, pp. 1–24. Springer, New York
Baruah SK, Burns A, Davis RI (2011) Response-time analysis for mixed criticality systems. In: IEEE 32nd Real-time systems symposium (RTSS), pp. 34–43
Behnam M, Shin I, Nolte T, Nolin M (2007) Sirap: a synchronization protocol for hierarchical resource sharingin real-time open systems. In: Proceedings of the 7th ACM & IEEE international conference on Embedded software, pp 279–288. ACM
Behnam M, Shin I, Nolte T, Nolin M (2008) Scheduling of semi-independent real-time components: Overrun methods and resource holding times. In: IEEE international conference on emerging technologies and factory automation (ETFA 2008), pp 575–582
Behnam M, Nolte T, Sjödin M, Shin I (2010) Overrun methods and resource holding times for hierarchical scheduling of semi-independent real-time systems. IEEE Trans Ind Inform 6(1):93–104
Bertogna M, Fisher N, Baruah S (2009) Resource-sharing servers for open environments. IEEE Trans Ind Inform 5(3):202–219
Bertot Y, Castéran P (2004) Interactive theorem proving and program development: CoqArt: the calculus of inductive constructions. Springer, New York
Biondi A, Buttazzo G, Bertogna M (2013) Schedulability analysis of hierarchical real-time systems under shared resources. Technical Report TR-13-01
Block A, Leontyev H, Brandenburg BB, Anderson JH (2007) A flexible real-time locking protocol for multiprocessors. In: 13th IEEE international conference on embedded and real-time computing systems and applications (RTCSA 2007), pp 47–56
Brandenburg BB (2014) A synchronous ipc protocol for predictable access to shared resources in mixed-criticality systems. In IEEE real-time systems symposium (RTSS), pp 196–206
Burns A (2014) System mode changes-general and criticality-based. In: Proceedings of 2nd workshop on mixed criticality systems (WMC), pp 3–8
Burns A, Davis R (2013) Mixed criticality systems-a review. Department of Computer Science, University of York, Tech. Rep
Buttazzo GC, Lipari G, Abeni L (1998) Elastic task model for adaptive rate control. In: IEEE proceedings of the 19th real-time systems symposium, pp 286–295
Buttazzo G, Abeni L (2002) Adaptive workload management through elastic scheduling. Real Time Syst 23(1):7–24
Buttazzo GC, Lipari G, Caccamo M, Abeni L (2002) Elastic scheduling for flexible workload management. IEEE Trans Comput 51(3):289–302
Checconi F, Cucinotta T, Faggioli D, Lipari G (2009) Hierarchical multiprocessor cpu reservations for the linux kernel. In: Proceedings of the 5th international workshop on operating systems platforms for embedded real-time applications (OSPERT 2009), Dublin, Ireland, pp 15–22
Chen F, Roşu G (2007) Mop: an efficient and generic runtime verification framework. In: ACM SIGPLAN Notices, vol. 42, pp. 569–588. ACM
Chen CM, Tripathi SK (1994) Multiprocessor priority ceiling based protocols. Tech. rep, College Park, MD, USA
Chisholm M, Ward BC, Kim N, Anderson JH (2015) Cache sharing and isolation tradeoffs in multicore mixed-criticality systems. In: IEEE real-time systems symposium, pp 305–316
Chisholm M, Kim N, Ward BC, Otterness N, Anderson JH, Smith FD (2016) Reconciling the tension between hardware isolation and data sharing in mixed-criticality, multicore systems. In: IEEE real-time systems symposium (RTSS), pp 57–68
Chodrow SE, Jahanian F, Donner M (1991) Run-time monitoring of real-time systems. In: IEEE proceedings of the 12th real-time systems symposium (RTSS 1991), pp 74–83
d’Amorim M, Havelund K (2005) Event-based runtime verification of java programs. In: ACM SIGSOFT software engineering notes, vol. 30, pp. 1–7. ACM
Davis RI, Burns A (2005) Hierarchical fixed priority pre-emptive scheduling. In: 26th IEEE international real-time systems symposium (RTSS), pp 10–pp
Davis RI, Burns A (2006) Resource sharing in hierarchical fixed priority pre-emptive systems. In: 27th IEEE international real-time systems symposium (RTSS’06), pp 257–270
Davis R, Vardanega T, Alexanderson J, Francis V, Mark P, Ian B, Mikel AA, Wartel F, Cucu-Grosjean L, Mathieu P, Glenn F, Cazorla FJ (2014) PROXIMA: a probabilistic approach to the timing behaviour of mixed-criticality systems. Ada User J 2:118–122
Devi UC, Leontyev H, Anderson JH (2006) Efficient synchronization under global EDF scheduling on multiprocessors. In: IEEE 18th Euromicro conference on real-time systems, pp 10
Diniz N, Rufino J (2005) Arinc 653 in space dasia 2005, eurospace, edinburgh, scotland
DO-178C (2011) Software considerations in airborne systems and equipment certification. RTCA, Inc
Easwaran A, Andersson B (2009) Resource sharing in global fixed-priority preemptive multiprocessor scheduling. In: 30th IEEE real-time systems symposium (RTSS 2009), pp 377–386
ECSS-Q-HB-80-03A (2009) Space product assurance—software dependability and safety. European Cooperation for Space Standardization
ECSS-Q-ST-40C (2009) Space product assurance—dependability. European Cooperation for Space Standardization
ECSS-Q-ST-40C (2009) Space product assurance–safety. European Cooperation for Space Standardization
ECSS-Q-ST-80C (2009) Software product assurance. European Cooperation for Space Standardization
EN 50128 (2009) Railway applications communication, signalling and processing systems software for railway control and protection systems. CENELEC
Ernst R, Di Natale M (2016) Mixed criticality systems-a history of misconceptions? IEEE Des Test 33(5):65–74
Faggioli D, Lipari G, Cucinotta T (2010) The multiprocessor bandwidth inheritance protocol. In: IEEE 22nd Euromicro conference on real-time systems (ECRTS), pp. 90–99
Gai P, Lipari G, Di Natale M (2001) Minimizing memory utilization of real-time task sets in single and multi-processor systems-on-a-chip. In: 22nd IEEE proceedings real-time systems symposium (RTSS), pp 73–83
Goossens J, Richard P (2013) Partitioned scheduling of multimode multiprocessor real-time systems with temporal isolation. In: Proceedings of the 21st international conference on real-time networks and systems (RTNS ’13), pp 297–305. ACM, New York. https://doi.org/10.1145/2516821.2516822
Hang Y, Hansson H (2012) Timing analysis for mode switch in component-based multi-mode systems. In: 24th Euromicro conference on real-time systems (ECRTS), pp. 255–264. https://doi.org/10.1109/ECRTS.2012.23
Havelund K (2008) Runtime verification of C programs. Springer, New York
IEC61508 (2010) Functional safety of electrical/electronic/programmable electronic safety-related systems. IEC
Inam R, Mahmud N, Behnam M, Nolte T, Sjödin M (2014) The multi-resource server for predictable execution on multi-core platforms. In: IEEE 20th real-time and embedded technology and applications symposium (RTAS), pp 1–10
ISO26262 (2011) Road vehicles—functional safety. ISO
Kim M, Lee I, Sammapun U, Shin J, Sokolsky O (2002) Monitoring, checking, and steering of real-time systems. Electron Notes Theor Comput Sci 70(4):95–111
Kim J, Lakshmanan K, Rajkumar RR (2012) Rhythmic tasks: a new task model with continually varying periods for cyber-physical systems. In: The 2012 IEEE/ACM third international conference on cyber-physical systems, pp 55–64
Kim N, Ward BC, Chisholm M, Fu CY, Anderson JH, Smith FD (2016) Attacking the one-out-of-m multicore problem by combining hardware management with mixed-criticality provisioning. In: IEEE real-time and embedded technology and applications symposium (RTAS), pp 1–12
Lakshmanan K, de Niz D, Rajkumar R (2009) Coordinated task scheduling, allocation and synchronization on multiprocessors. In: 30th IEEE real-time systems symposium (RTSS 2009), pp 469–478
Lee J, Shin KG (2013) Schedulability analysis for a mode transition in real-time multi-core systems. In: IEEE 34th real-time systems symposium (RTSS), pp 11–20. https://doi.org/10.1109/RTSS.2013.10
Leucker M, Schallhart C (2009) A brief account of runtime verification. J Logic Algebr Program 78(5):293–303
Lipari G, Bini E (2005) A methodology for designing hierarchical scheduling systems. J Embed Comput 1(2):257–269
López JM, Díaz JL, García DF (2004) Utilization bounds for edf scheduling on real-time multiprocessor systems. Real Time Syst 28(1):39–68
Luo Q, Zhang Y, Lee C, Jin D, Meredith PO, Şerbănuţă TF, Roşu G (2014) Rv-monitor: efficient parametric runtime verification with simultaneous properties. In: Runtime verification, pp 285–300. Springer, New York
Nelis V, Andersson B, Marinho J, Petters SM (2011) Global-edf scheduling of multimode real-time systems considering mode independent tasks. In: 23rd Euromicro conference on real-time systems (ECRTS), pp 205–214
Nelissen G, Pereira D, Pinho LM (2015) A novel run-time monitoring architecture for safe and efficient inline monitoring. In: Reliable software technologies–Ada-Europe 2015, pp 66–82. Springer, New York
Phan LTX, Lee I, Sokolsky O (2010) Compositional analysis of multi-mode systems. In: 22nd Euromicro conference on real-time systems (ECRTS), pp 197–206. https://doi.org/10.1109/ECRTS.2010.35
Puffitsch W, Noulard E, Pagetti C (2015) Off-line mapping of multi-rate dependent task sets to many-core platforms. Real Time Syst 51(5):526–565
Rajkumar R (1990) Real-time synchronization protocols for shared memory multiprocessors. In: IEEE 10th international conference on proceedings distributed computing systems, pp 116–123
Rajkumar R, Sha L, Lehoczky JP (1988) Real-time synchronization protocols for multiprocessors. In: RTSS, pp 259–269
Rattanatamrong P, Fortes JAB (2011) Mode transition for online scheduling of adaptive real-time systems on multiprocessors. In: IEEE 17th international conference on embedded and real-time computing systems and applications (RTCSA), vol 1, pp 25–32. https://doi.org/10.1109/RTCSA.2011.71
RIAC-HDBK-217Plus (2006) Handbook of 217Plus reliability prediction models. RIAC
Sammapun U, Lee I, Sokolsky O (2005) Rt-mac: Runtime monitoring and checking of quantitative and probabilistic properties. In: 11th IEEE international conference on embedded and real-time computing systems and applications, pp 147–153
Santy F, Raravi G, Nelissen G, Nelis V, Kumar P, Goossens J, Tovar E (2013) Two protocols to reduce the criticality level of multiprocessor mixed-criticality systems. In: RTNS, pp 183–192. ACM
Sha L, Rajkumar R, Lehoczky JP (1990) Priority inheritance protocols: an approach to real-time synchronization. IEEE Trans Comput 39(9):1175–1185
Vestal S (2007) Preemptive scheduling of multi-criticality systems with varying degrees of execution time assurance. In: IEEE RTSS, pp 239–243
Watkins CB, Walter R (2007) Transitioning from federated avionics architectures to integrated modular avionics. In: IEEE DASC’07, pp 2-A
Acknowledgements
This work was partially supported by National Funds through FCT/MEC (Portuguese Foundation for Science and Technology) and when applicable, co-financed by ERDF (European Regional Development Fund) under the PT2020 Partnership, within Project UID/CEC/04234/2013 (CISTER Research Centre); also by, FCT/MEC and the EU ARTEMIS JU within projects ARTEMIS/0003/2012—JU Grant nr. 333053 (CONCERTO) and ARTEMIS/0001/2013—JU Grant nr. 621429(EMC2); and also by the Portuguese National Innovation Agency (ANI) under the ERDF (European Regional Development Fund) through COMPETE (Operational Programme ’Thematic Factors of Competitiveness’), within project V-SIS, QREN—SI I&DT nr. 38923.
Author information
Authors and Affiliations
Corresponding author
Rights and permissions
About this article
Cite this article
Esper, A., Nelissen, G., Nélis, V. et al. An industrial view on the common academic understanding of mixed-criticality systems. Real-Time Syst 54, 745–795 (2018). https://doi.org/10.1007/s11241-018-9308-9
Published:
Issue Date:
DOI: https://doi.org/10.1007/s11241-018-9308-9