Dagstuhl-Seminar 23341
Functionally Safe Multi-Core Systems
( 20. Aug – 25. Aug, 2023 )
Permalink
Organisatoren
- Iain Bate (University of York, GB)
- Thidapat (Tam) Chantem (Virginia Polytechnic Institute & State University - Arlington, US)
- Louise Harney (Leonardo UK Ltd - Edinburgh, GB)
- Claire Maiza (University of Grenoble, FR)
- Georg von der Brüggen (TU Dortmund, DE)
Koordinator
- Ian Gray (University of York, GB)
Kontakt
- Michael Gerke (für wissenschaftliche Fragen)
- Christina Schwarz (für administrative Fragen)
Gemeinsame Dokumente
- Dagstuhl Materials Page (Use personal credentials as created in DOOR to log in)
Programm
The next generation of safety-critical systems will undoubtedly use multicore processors as there is an increasing need for performance and the availability of single-core processors is reducing. At the same time, practitioners are recognizing that the certification needs of systems using multi-core are not clear and the techniques available to meet any needs that are produced are limited. Recently, the civil aviation industry has produced some guidance in the form of CAST-32A, however, this is raising more questions than it is answering.
Safety-critical systems need strong guarantees of their timing behaviors which includes evidence of when the timing requirements are met, and then evidence for the loss of availability of certain functions in the other cases. It is crucially important that both the timing requirement and loss of service are commensurate with the system safety function which comes from the application. The challenge in providing such evidence comes from the platform’s shared resources, e.g., caches and buses, and with the introduction of multicore, this has become more complex due to reduced predictability. The unpredictability can be managed through the middleware where the resource management exists, however with appropriate consideration across the three layers during their design and subsequent composition.
The aim of this Dagstuhl Seminar is to bring together practitioners from three disciplines which represent the three layers relevant to safety-critical systems that use multicore to understand: how the safety of a system using multicores may be argued; the achievable evidence that can be produced; and how said systems might then be developed. The seminar will be organized through three strands which represent the three key layers of systems: application; middleware; and the platform.
First, a common understanding among practitioners should be found, for each of the three layers determining a set of properties (describing, e.g., timing, performance, and predictability requirements) needed to provide functional safety and its verification and/or a set of functionalities that can be provided supporting functional safety and its verification. Afterward, it should be determined which of the necessary properties are already covered by the provided functionality and which others can realistically be achieved, e.g., by reducing performance to increase predictability, and what are the related costs, e.g., how much is the performance reduced. Furthermore, it should be discussed what solutions are possible to achieve properties that cannot be guaranteed by current hardware or middleware, and how functional requirements can be reduced without reducing the predictability too much.
It is envisaged the seminar would have many outputs and benefits beyond the ability to informally network across companies, institutions, and domains. The key outputs we aim forwill be: a report highlighting what the industry needs in terms of tools and techniques; the dependencies across the various layers; the establishment of some key research challenges; identification of suitable benchmarks for collaborative and comparative research; and finally a route map towards the efficient and effective achievement of assurance arguments.

- Sebastian Altmeyer (Universität Augsburg, DE) [dblp]
- Tanya Amert (Carleton College - Northfield, US) [dblp]
- Matteo Andreozzi (Arm - Cambridge, GB) [dblp]
- Sanjoy Baruah (Washington University - St. Louis, US) [dblp]
- Jan Micha Borrmann (Robert Bosch GmbH - Stuttgart, DE) [dblp]
- Timothy Bourke (INRIA & ENS Paris, FR) [dblp]
- Björn B. Brandenburg (MPI-SWS - Kaiserslautern, DE) [dblp]
- Jian-Jia Chen (TU Dortmund, DE) [dblp]
- Christian Ferdinand (AbsInt - Saarbrücken, DE) [dblp]
- Julien Forget (University of Lille, FR) [dblp]
- Anna Friebe (Mälardalen University - Västerås, SE) [dblp]
- Chris Gill (Washington University - St. Louis, US) [dblp]
- Ian Gray (University of York, GB) [dblp]
- Arpan Gujarati (University of British Columbia - Vancouver, CA) [dblp]
- Robin Hapka (TU Braunschweig, DE) [dblp]
- Mathieu Jan (CEA LIST - Gif-sur-Yvette, FR) [dblp]
- Victor Jegu (Airbus S.A.S. - Toulouse, FR) [dblp]
- Eric Jenn (IRT Antoine de Saint Exupéry - Toulouse, FR) [dblp]
- Mitra Nasri (TU Eindhoven, NL) [dblp]
- Geoffrey Nelissen (TU Eindhoven, NL) [dblp]
- Catherine Nemitz (Davidson College, US) [dblp]
- Claire Pagetti (ONERA - Toulouse, FR) [dblp]
- Sri Parameswaran (University of Sydney, AU) [dblp]
- Rodolfo Pellizzoni (University of Waterloo, CA) [dblp]
- Kevin Quinn (General Dynamics - St Leonards on Sea, GB)
- Jan Reineke (Universität des Saarlandes - Saarbrücken, DE) [dblp]
- Benjamin Rouxel (University of Modena, IT) [dblp]
- Selma Saidi (TU Dortmund, DE) [dblp]
- Matheus Schuh (Kalray - Montbonnot-Saint-Martin, FR) [dblp]
- Zoë Stephenson (Rapita Systems Ltd. - York, GB) [dblp]
- Jürgen Teich (Universität Erlangen-Nürnberg, DE) [dblp]
- Georg von der Brüggen (TU Dortmund, DE) [dblp]
- Bryan Ward (Vanderbilt University - Nashville, US) [dblp]
- Reinhard Wilhelm (Universität des Saarlandes - Saarbrücken, DE) [dblp]
- Houssam-Eddine Zahaf (University of Nantes, FR) [dblp]
Klassifikation
- Hardware Architecture
- Other Computer Science
Schlagworte
- EDA and Micro-Architectures
- Safety-Critical Applications
- Middleware
- Multi-core