To solve the problem of risk identification and quantitative assessment for human-computer interaction(HCI)in complex avionics systems,an HCI safety analysis framework based on system-theoretical process analysis(STPA...To solve the problem of risk identification and quantitative assessment for human-computer interaction(HCI)in complex avionics systems,an HCI safety analysis framework based on system-theoretical process analysis(STPA)and cognitive reliability and error analysis method(CREAM)is proposed.STPACREAM can identify unsafe control actions and find the causal path during the interaction of avionics systems and pilot with the help of formal verification tools automatically.The common performance conditions(CPC)of avionics systems in the aviation environment is established and a quantitative analysis of human failure is carried out.Taking the head-up display(HUD)system interaction process as an example,a case analysis is carried out,the layered safety control structure and formal model of the HUD interaction process are established.For the interactive behavior“Pilots approaching with HUD”,four unsafe control actions and35 causal scenarios are identified and the impact of common performance conditions at different levels on the pilot decision model are analyzed.The results show that HUD's HCI level gradually improves as the scores of CPC increase,and the quality of crew member cooperation and time sufficiency of the task is the key to its HCI.Through case analysis,it is shown that STPACREAM can quantitatively assess the hazards in HCI and identify the key factors that impact safety.展开更多
Recently the integrated modular avionics (IMA) architecture which introduces the concept of resource partitioning becomes popular as an alternative to the traditional federated architecture. A novel hierarchical app...Recently the integrated modular avionics (IMA) architecture which introduces the concept of resource partitioning becomes popular as an alternative to the traditional federated architecture. A novel hierarchical approach is proposed to solve the resource allocation problem for IMA systems in distributed environments. Firstly, the worst case response time of tasks with arbitrary deadlines is analyzed for the two-level scheduler. Then, the hierarchical resource allocation approach is presented in two levels. At the platform level, a task assignment algorithm based on genetic simulated annealing (GSA) is proposed to assign a set of pre-defined tasks to different processing nodes in the form of task groups, so that resources can be allocated as partitions and mapped to task groups. While yielding to all the resource con- straints, the algorithm tries to find an optimal task assignment with minimized communication costs and balanced work load. At the node level, partition parameters are optimized, so that the computational resource can be allocated further. An example is shown to illustrate the hierarchal resource allocation approach and manifest the validity. Simulation results comparing the performance of the proposed GSA with that of traditional genetic algorithms are presented in the context of task assignment in IMA systems.展开更多
Health management permits the reliability of a system and plays a increasingly important role for achieving efficient system-level maintenance.It has been used for remaining useful life(RUL) prognostics of electroni...Health management permits the reliability of a system and plays a increasingly important role for achieving efficient system-level maintenance.It has been used for remaining useful life(RUL) prognostics of electronics-rich system including avionics.Prognostics and health management(PHM) have become highly desirable to provide avionics with system level health management.This paper presents a health management and fusion prognostic model for avionics system,combining three baseline prognostic approaches that are model-based,data-driven and knowledge-based approaches,and integrates merits as well as eliminates some limitations of each single approach to achieve fusion prognostics and improved prognostic performance of RUL estimation.A fusion model built upon an optimal linear combination forecast model is then utilized to fuse single prognostic algorithm representing the three baseline approaches correspondingly,and the presented case study shows that the fusion prognostics can provide RUL estimation more accurate and more robust than either algorithm alone.展开更多
Aviation electronics (avionics) are sophisticated and distributed systems aboard an airplane. The complexity of these systems is constantly growing as an increasing amount of functionalities is realized in software. T...Aviation electronics (avionics) are sophisticated and distributed systems aboard an airplane. The complexity of these systems is constantly growing as an increasing amount of functionalities is realized in software. Thanks to the performance increase, a hardware unit must no longer be dedicated to a single system function. Multicore processors for example facilitate this trend as they are offering an increased system performance in a small power envelope. In avionics, several system functions could now be integrated on a single hardware unit, if all safety requirements are still satisfied. This approach allows for further optimizations of the system architecture and substantial reductions of the space, weight and power (SWaP) footprint, and thus increases the transportation capacity. However, the complexity found in current safety-critical systems requires an automated software deployment process in order to tap this potential for further SWaP reductions. This article used a realistic flight control system as an example to present a new model-based methodology to automate the software deployment process. This methodology is based on the correctness-by-construction principle and is implemented as part of a systems engineering toolset. Furthermore, metrics and optimization criteria are presented which further help in the automatic assessment and refinement of a generated deployment. A discussion regarding a tighter integration of this approach in the entire avionics systems engineering workflow concludes this article.展开更多
In parametric cost estimating, objections to using statistical Cost Estimating Relationships (CERs) and parametric models include problems of low statistical significance due to limited data points, biases in the un...In parametric cost estimating, objections to using statistical Cost Estimating Relationships (CERs) and parametric models include problems of low statistical significance due to limited data points, biases in the underlying data, and lack of robustness. Soft Computing (SC) technologies are used for building intelligent cost models. The SC models are systemically evaluated based on their training and prediction of the historical cost data of airborne avionics systems. Results indicating the strengths and weakness of each model are presented. In general, the intelligent cost models have higher prediction precision, better data adaptability, and stronger self-learning capability than the regression CERs.展开更多
In this work,a Model-Based Systems Engineering approach based on Sys ML is proposed.This approach is used for the capture and the definition of functional requirements in avionics domain.The motivation of this work is...In this work,a Model-Based Systems Engineering approach based on Sys ML is proposed.This approach is used for the capture and the definition of functional requirements in avionics domain.The motivation of this work is triple:guide the capture of functional requirements,validate these functional requirements through functional simulation,and verify efficiently the consistency of these functional requirements.The proposed approach is decomposed into several steps that are detailed to go from conceptual model of avionics domain to a formal functional model that can be simulated in its operating context.To achieve this work,a subset of Sys ML has been used as an intermediate modelling language to ensure progressive transformation that can be understood and agreed by system stakeholders.Formal concepts are introduced to ensure theoretical consistency of the approach.In addition,transformation rules are defined and the mappings between concepts of ARP4754 A civil aircraft guidelines and Sys ML are formalized through meta-model.The resulting formalization enables engineers to perform functional simulation of the top-level functional architecture extracted from operational scenarios.Finally,the approach has been tested on an industrial avionics system called the Onboard Maintenance System.展开更多
Distributed Integrated Modular Avionics(DIMA)develops from Integrated Modular Avionics(IMA)and realizes distributed integration of multiple sub-function areas.Timetriggered network provides effective support for time ...Distributed Integrated Modular Avionics(DIMA)develops from Integrated Modular Avionics(IMA)and realizes distributed integration of multiple sub-function areas.Timetriggered network provides effective support for time synchronization and information coordination in DIMA systems.However,inconsistency between processing resources and communication network destroys the time determinism benefiting from partitions and time-triggered mechanism.To ensure such time determinism and achieve guaranteed real-time performance,system design should collectively provide a global communication scheme for messages in network domain and a corresponding execution scheme for partitions in processing domain.This paper firstly establishes a general DIMA model which coordinates partitioned processing and time-triggered communication,and then proposes a hybrid scheduling algorithm using Mixed Integer Programming to produce feasible system schemes.Furthermore,incrementally integrating new functions causes upgrades or reconfigurations of DIMA systems and will generate integration cost.To control such cost,this paper further develops an optimization algorithm based on Maximum Satisfiability Problem and guarantees that the scheduling design for upgraded DIMA systems inherit their original schemes as much as possible.Finally,two typical cases,including a simple fully connected DIMA system case and an industrial DIMA system case,are constructed to illustrate our DIMA model and validate the effectiveness of our hybrid scheduling algorithms.展开更多
The integrated modular avionics (IMA) architecture is an open standard in avionics industry, in which the number of functionalities implemented by software is greater than ever before. In the IMA architecture, the r...The integrated modular avionics (IMA) architecture is an open standard in avionics industry, in which the number of functionalities implemented by software is greater than ever before. In the IMA architecture, the reliability of the avionics system is highly affected by the software applications. In order to enhance the fault tolerance feature with regard to software application failures, many industrial standards propose a layered health monitoring/fault management (HM/FM) scheme to periodically check the health status of software application processes and recover the malfunctioning software process whenever an error is located. In this paper, we make an analytical study of the HM/FM system for avionics application software. We use the stochastic Petri nets (SPN) to build a formal model of each component and present a method to combine the components together to form a complete system model with respect to three interlayer query strategies. We further investigate the effectiveness of these strategies in an illustrative system.展开更多
Avionics (aeronautics and aerospace) industries must rely on components and systems of demonstrated high reliability. For this, handbook-based methods have been traditionally used to design for reliability, develop ...Avionics (aeronautics and aerospace) industries must rely on components and systems of demonstrated high reliability. For this, handbook-based methods have been traditionally used to design for reliability, develop test plans, and define maintenance requirements and sustainment logistics, However, these methods have been criticized as flawed and leading to inaccurate and mis- leading results. In its recent report on enhancing defense system reliability, the U.S. National Academy of Sciences has recently discredited these methods, judging the Military Handbook (MIL- HDBK-217) and its progeny as invalid and inaccurate. This paper discusses the issues that arise with the use of handbook-based methods in commercial and military avionics applications. Alter- native approaches to reliability design (and its demonstration) are also discussed, including similarity analysis, testing, physics-of-failure, and data analytics for prognostics and systems health management.展开更多
The thermal failure of airborne avionics equipment is not optimistic.It is very necessary to establish relatively accurate thermal models for predicting thermal response of avionics equipment under different flight co...The thermal failure of airborne avionics equipment is not optimistic.It is very necessary to establish relatively accurate thermal models for predicting thermal response of avionics equipment under different flight conditions.Traditional thermal modeling methods are often difficult to obtain accurate temperature response in complex conditions.This has severely restricted the application of these models.However,the Stochastic Configuration Network(SCN)model based on random algorithm can weaken the heat transfer mechanism and pay attention to the mining of experimental data,so that a more accurate thermal relationship might be obtained.In this paper,the SCN was used to analyze the experimental data of the avionics pod with a Ram Air Turbine(RAT)cooling system.The thermal models based on the SCN were finally built for avionics pod.Compared with the commonly used Random Vector Functional Link Network(RVFLN)thermal models,the SCN thermal models not only inherit the advantages of simple network structure and low computational complexity,but also have some merits,such as the better learning performance and the less human intervention.The presented SCN models provide a way to predict the thermal response of avionics pod cabin under the full flight envelope for a fighter.展开更多
基金supported by the National Key Research and Development Program of China(2021YFB1600601)the Joint Funds of the National Natural Science Foundation of China and the Civil Aviation Administration of China(U1933106)+2 种基金the Scientific Research Project of Tianjin Educational Committee(2019KJ134)the Natural Science Foundation of TianjinIntelligent Civil Aviation Program(21JCQNJ C00900)。
文摘To solve the problem of risk identification and quantitative assessment for human-computer interaction(HCI)in complex avionics systems,an HCI safety analysis framework based on system-theoretical process analysis(STPA)and cognitive reliability and error analysis method(CREAM)is proposed.STPACREAM can identify unsafe control actions and find the causal path during the interaction of avionics systems and pilot with the help of formal verification tools automatically.The common performance conditions(CPC)of avionics systems in the aviation environment is established and a quantitative analysis of human failure is carried out.Taking the head-up display(HUD)system interaction process as an example,a case analysis is carried out,the layered safety control structure and formal model of the HUD interaction process are established.For the interactive behavior“Pilots approaching with HUD”,four unsafe control actions and35 causal scenarios are identified and the impact of common performance conditions at different levels on the pilot decision model are analyzed.The results show that HUD's HCI level gradually improves as the scores of CPC increase,and the quality of crew member cooperation and time sufficiency of the task is the key to its HCI.Through case analysis,it is shown that STPACREAM can quantitatively assess the hazards in HCI and identify the key factors that impact safety.
基金supported by the National Natural Science Foundation of China (60879024)
文摘Recently the integrated modular avionics (IMA) architecture which introduces the concept of resource partitioning becomes popular as an alternative to the traditional federated architecture. A novel hierarchical approach is proposed to solve the resource allocation problem for IMA systems in distributed environments. Firstly, the worst case response time of tasks with arbitrary deadlines is analyzed for the two-level scheduler. Then, the hierarchical resource allocation approach is presented in two levels. At the platform level, a task assignment algorithm based on genetic simulated annealing (GSA) is proposed to assign a set of pre-defined tasks to different processing nodes in the form of task groups, so that resources can be allocated as partitions and mapped to task groups. While yielding to all the resource con- straints, the algorithm tries to find an optimal task assignment with minimized communication costs and balanced work load. At the node level, partition parameters are optimized, so that the computational resource can be allocated further. An example is shown to illustrate the hierarchal resource allocation approach and manifest the validity. Simulation results comparing the performance of the proposed GSA with that of traditional genetic algorithms are presented in the context of task assignment in IMA systems.
文摘Health management permits the reliability of a system and plays a increasingly important role for achieving efficient system-level maintenance.It has been used for remaining useful life(RUL) prognostics of electronics-rich system including avionics.Prognostics and health management(PHM) have become highly desirable to provide avionics with system level health management.This paper presents a health management and fusion prognostic model for avionics system,combining three baseline prognostic approaches that are model-based,data-driven and knowledge-based approaches,and integrates merits as well as eliminates some limitations of each single approach to achieve fusion prognostics and improved prognostic performance of RUL estimation.A fusion model built upon an optimal linear combination forecast model is then utilized to fuse single prognostic algorithm representing the three baseline approaches correspondingly,and the presented case study shows that the fusion prognostics can provide RUL estimation more accurate and more robust than either algorithm alone.
文摘Aviation electronics (avionics) are sophisticated and distributed systems aboard an airplane. The complexity of these systems is constantly growing as an increasing amount of functionalities is realized in software. Thanks to the performance increase, a hardware unit must no longer be dedicated to a single system function. Multicore processors for example facilitate this trend as they are offering an increased system performance in a small power envelope. In avionics, several system functions could now be integrated on a single hardware unit, if all safety requirements are still satisfied. This approach allows for further optimizations of the system architecture and substantial reductions of the space, weight and power (SWaP) footprint, and thus increases the transportation capacity. However, the complexity found in current safety-critical systems requires an automated software deployment process in order to tap this potential for further SWaP reductions. This article used a realistic flight control system as an example to present a new model-based methodology to automate the software deployment process. This methodology is based on the correctness-by-construction principle and is implemented as part of a systems engineering toolset. Furthermore, metrics and optimization criteria are presented which further help in the automatic assessment and refinement of a generated deployment. A discussion regarding a tighter integration of this approach in the entire avionics systems engineering workflow concludes this article.
文摘In parametric cost estimating, objections to using statistical Cost Estimating Relationships (CERs) and parametric models include problems of low statistical significance due to limited data points, biases in the underlying data, and lack of robustness. Soft Computing (SC) technologies are used for building intelligent cost models. The SC models are systemically evaluated based on their training and prediction of the historical cost data of airborne avionics systems. Results indicating the strengths and weakness of each model are presented. In general, the intelligent cost models have higher prediction precision, better data adaptability, and stronger self-learning capability than the regression CERs.
文摘In this work,a Model-Based Systems Engineering approach based on Sys ML is proposed.This approach is used for the capture and the definition of functional requirements in avionics domain.The motivation of this work is triple:guide the capture of functional requirements,validate these functional requirements through functional simulation,and verify efficiently the consistency of these functional requirements.The proposed approach is decomposed into several steps that are detailed to go from conceptual model of avionics domain to a formal functional model that can be simulated in its operating context.To achieve this work,a subset of Sys ML has been used as an intermediate modelling language to ensure progressive transformation that can be understood and agreed by system stakeholders.Formal concepts are introduced to ensure theoretical consistency of the approach.In addition,transformation rules are defined and the mappings between concepts of ARP4754 A civil aircraft guidelines and Sys ML are formalized through meta-model.The resulting formalization enables engineers to perform functional simulation of the top-level functional architecture extracted from operational scenarios.Finally,the approach has been tested on an industrial avionics system called the Onboard Maintenance System.
基金co-supported by the National Natural Science Foundation of China(No.71701020)the Defense Research Field Foundation of China(No.61403120404)the Civil Aircraft Airworthiness and Maintenance Key Laboratory Fund of Civil Aviation University of China(No.2017SW02).
文摘Distributed Integrated Modular Avionics(DIMA)develops from Integrated Modular Avionics(IMA)and realizes distributed integration of multiple sub-function areas.Timetriggered network provides effective support for time synchronization and information coordination in DIMA systems.However,inconsistency between processing resources and communication network destroys the time determinism benefiting from partitions and time-triggered mechanism.To ensure such time determinism and achieve guaranteed real-time performance,system design should collectively provide a global communication scheme for messages in network domain and a corresponding execution scheme for partitions in processing domain.This paper firstly establishes a general DIMA model which coordinates partitioned processing and time-triggered communication,and then proposes a hybrid scheduling algorithm using Mixed Integer Programming to produce feasible system schemes.Furthermore,incrementally integrating new functions causes upgrades or reconfigurations of DIMA systems and will generate integration cost.To control such cost,this paper further develops an optimization algorithm based on Maximum Satisfiability Problem and guarantees that the scheduling design for upgraded DIMA systems inherit their original schemes as much as possible.Finally,two typical cases,including a simple fully connected DIMA system case and an industrial DIMA system case,are constructed to illustrate our DIMA model and validate the effectiveness of our hybrid scheduling algorithms.
基金supported by the National Grand Fundamental Research Program of China (Nos. 2010CB328105, 2009CB320504)the Tsinghua University Initiative Scientific Research Programthe National Natural Science Foundation of China (Nos. 61070182,60973107, 60973144, 61173008, 61070021)
文摘The integrated modular avionics (IMA) architecture is an open standard in avionics industry, in which the number of functionalities implemented by software is greater than ever before. In the IMA architecture, the reliability of the avionics system is highly affected by the software applications. In order to enhance the fault tolerance feature with regard to software application failures, many industrial standards propose a layered health monitoring/fault management (HM/FM) scheme to periodically check the health status of software application processes and recover the malfunctioning software process whenever an error is located. In this paper, we make an analytical study of the HM/FM system for avionics application software. We use the stochastic Petri nets (SPN) to build a formal model of each component and present a method to combine the components together to form a complete system model with respect to three interlayer query strategies. We further investigate the effectiveness of these strategies in an illustrative system.
文摘Avionics (aeronautics and aerospace) industries must rely on components and systems of demonstrated high reliability. For this, handbook-based methods have been traditionally used to design for reliability, develop test plans, and define maintenance requirements and sustainment logistics, However, these methods have been criticized as flawed and leading to inaccurate and mis- leading results. In its recent report on enhancing defense system reliability, the U.S. National Academy of Sciences has recently discredited these methods, judging the Military Handbook (MIL- HDBK-217) and its progeny as invalid and inaccurate. This paper discusses the issues that arise with the use of handbook-based methods in commercial and military avionics applications. Alter- native approaches to reliability design (and its demonstration) are also discussed, including similarity analysis, testing, physics-of-failure, and data analytics for prognostics and systems health management.
基金This work was funded by the National Key R&D Program of China(2017YFB1201100)the Liao Ning Revitalization Talents Program(XLYC1802092).
文摘The thermal failure of airborne avionics equipment is not optimistic.It is very necessary to establish relatively accurate thermal models for predicting thermal response of avionics equipment under different flight conditions.Traditional thermal modeling methods are often difficult to obtain accurate temperature response in complex conditions.This has severely restricted the application of these models.However,the Stochastic Configuration Network(SCN)model based on random algorithm can weaken the heat transfer mechanism and pay attention to the mining of experimental data,so that a more accurate thermal relationship might be obtained.In this paper,the SCN was used to analyze the experimental data of the avionics pod with a Ram Air Turbine(RAT)cooling system.The thermal models based on the SCN were finally built for avionics pod.Compared with the commonly used Random Vector Functional Link Network(RVFLN)thermal models,the SCN thermal models not only inherit the advantages of simple network structure and low computational complexity,but also have some merits,such as the better learning performance and the less human intervention.The presented SCN models provide a way to predict the thermal response of avionics pod cabin under the full flight envelope for a fighter.
