1. Slide 1 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 Software Engineering of Safety-Critical Adaptive Embedded Systems Rasmus Adler rasmus.adler@iese.fhg.de Tel.: 0631 - 6800 2172

2. Slide 2 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 Overview Classification Constructive Modeling Methodology Software Engineering of Adaptive Systems Motivation for Dynamic Adaptation

3. Slide 3 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 Classification dynamic adaptation dynamic reconfiguration dynamic behavior adaptation hardware-based reconfiguration (e.g.FPGA) software-based reconfiguration predetermined reconfiguration (static decision) on-line determined reconfiguration (dynamic decision) dynamic configuration of collaboration dynamic configuration of behavior dynamic configuration of parameters dynamic configuration of HW/SW binding

4. Slide 4 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 Motivation for Dynamic Adaptation Quality level Runtime adaptation Driving situation HW-Fault SW-Fault Safety Survivability Adaptation to driving situation MARS Adaptation: dynamic configuration of collaboration dynamic configuration of behavior dynamic configuration of parameters

5. Slide 5 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 Modeling of Adaptation Behavior stAngle vCar vYaw Module vYaw config. measured config. vCar_stAngle vYaw

6. Slide 6 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 data type semantics vYaw is the angular speed of a vehicle around its z-axis. Quality-Extended Datatypes for Adaptive Systems: Dative = Modes: classes of variants that have the same semantics quality type Mode Mode-Attributes: provide mode-specific description of the signal-quality Mode-Attribute Modeling of Adaptation Behavior

7. Slide 7 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 configuration 2 Module M1 configuration 1 configuration 2 configuration n......  dataquality signal parameter 1 … parameter n quality data Modeling of Adaptation Behavior

8. Slide 8 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 Code Behavior (Simulink) Behavior (Simulink) Behavior (Simulink) Architecure model (UML) Architecure model (UML) Architecture model (UML) Behavior (e.g. Simulink) Code Function Adaptation -Adaptation is indistinguishable part of functionality -adaptation although developers do not know -influence of adaptation on quality of provided services not considered Software Engineering of Adaptive ES

9. Slide 9 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 Framework Behavior (Simulink) Behavior (Simulink) Behavior (e.g. Simulink) Function Adaptation Adaptation Behavior Specification -d. a. is explicitly considered in development -dedicated runtime adaptation framework -SOP, SOA Complexity becomes visible => How to find adaptation behavior specification Software Engineering of Adaptive ES

10. Slide 10 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 Framework Function Adaptation Adaptation Behavior Specification Architecture model (MARS / UML) Architecture model (MARS / UML) Adaptation Behavior (e.g. Simulink) Behavior (e.g. Simulink) Behavior (e.g. Simulink) Software Engineering of Adaptive ES

11. Slide 11 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 Testing executable Model Module Simulation- Step Active Configuration Exchanged Signal- Quality Adaptive Parameter In 38% of all testcases at simulation step 5 Config. On was active Software Engineering of Adaptive ES

12. Slide 12 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 Simulation/ Co-Simulation Simulink executable Model Testing Model-transformation Quarz Model-Checking hybrid-CFT Probabilistic Analyses SAS State transition system Property preserving model red. Software Engineering of Adaptive ES

13. Slide 13 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 Framework Behavior (Simulink) Behavior (Simulink) Behavior (e.g. Simulink) Function Adaptation Adaptation Behavior Specification SE includes: Architecture model (MARS / UML) Architecture model (MARS / UML) Adaptation Software Engineering of Adaptive ES - constructive modeling methodology - Analysis and Verification of adaptation behavior -Quality prediction → control development

14. Slide 14 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 Demonstrator

15. Slide 15 Software Engineering of Safety-Critical Adaptive Embedded Systems Copyright © Fraunhofer IESE 2007 Questions Rasmus Adler rasmus.adler@iese.fhg.de +49 (0) 631 / 6800 2172 Now or later: