Conceptual Design of Distributed by-Wire Systems 2002-01-0271
A design method for ultra-dependable control-by-wire systems is presented here. With a top-down approach, exploiting the system's intrinsic redundancy combined with a scalable software redundancy, it is possible to meet dependability requirements cost-effectively. The method starts with the system's functions, which are broken down to the basic elements; task, sensor or actuator. A task graph shows the basic elements interrelationships. Sensor and actuator nodes form a non-redundant hardware architecture. The functional task-graph gives input when allocating software on the node architecture. Tasks are allocated to achieve low inter-node communication and transient fault tolerance using scalable software redundancy. Hardware is added to meet the dependability requirements. Finally, the method describes fault handling and bus scheduling. The proposed method has been used in two cases; a fly-by-wire aircraft and a drive-by-wire car.