comparing different functional allocations in automated
play

Comparing Different Functional Allocations in Automated Air Traffic - PowerPoint PPT Presentation

Oct 21, 2022 •274 likes •651 views

Comparing Different Functional Allocations in Automated Air Traffic Control Design FMCAD 2015, September 27-30 Cristian Mattarei 1 , Alessandro Cimatti 1 , Marco Gario 1 , Stefano Tonetta 1 , and Kristin Y. Rozier 2 1 Fondazione Bruno Kessler,

  1. Comparing Different Functional Allocations in Automated Air Traffic Control Design FMCAD 2015, September 27-30 Cristian Mattarei 1 , Alessandro Cimatti 1 , Marco Gario 1 , Stefano Tonetta 1 , and Kristin Y. Rozier 2 1 Fondazione Bruno Kessler, Trento, Italy 2 University of Cincinnati, Ohio, USA

  2. Air Traffic Control: Chicago-region Air Sector www.flightradar24.com 2

  3. Air Traffic Control: Chicago-region Air Sector • In this example: 262 Aircraft (not on a traffic peak) • Expected 4 times current traffic in the next 20 years • Need for a new technology able to manage the traffic increase www.flightradar24.com 3

  4. Air Traffic Control: Current Approach Position AC1 Radio AC1 Intention AC2 Radio Time AC1 & AC2 Positions ATC Radar 4

  5. Air Traffic Control: Current Approach Position AC1 Radio AC1 Intention AC2 Radio Time AC1 & AC2 Positions ATC Radar 5

  6. Air Traffic Control: Current Approach Position AC1 Radio AC1 Intention Loss of Separation AC2 Radio Time AC1 & AC2 Positions ATC Radar 6

  7. Air Traffic Control: Current Approach Position AC1 Radio AC1 Intention AC2 Radio Time AC1 & AC2 Positions ATC Radar 7

  8. Air Traffic Control: Current Approach Position AC1 Radio AC1 Intention AC2 Radio Time AC1 & AC2 Positions ATC Radar 8

  9. Air Traffic Control: Current Approach Position AC1 Radio AC2 Radio Time AC1 & AC2 Positions ATC Radar 9

  10. Air Traffic Control: Current Approach Position AC1 Radio AC2 Radio Time System Function Technology Allocation Collision Avoidance TCAS On-Board Tactical Separation Controller/ATC On-Ground Strategic Separation Controller/ATC On-Ground 10

  11. Air Traffic Control: Functional Allocation Questions Position AC1 Radio AC2 Radio Time System Function Technology Allocation Collision Avoidance TCAS/ACAS-X On-Board Tactical Separation Controller/ATC On-Ground -> Distributed? On-Board? Strategic Separation Controller/ATC On-Ground -> Distributed? On-Board? 11

  12. NASA project: NextGen of the Air Traffic Control • Need for a more robust , reliable , and safe approach • A lot of different perspectives to be taken into account e.g., political and environmental impact, cost analysis, usability, safety, … • Different function allocations , and implementations need to be analyzed 12

  13. NASA NextGen of ATC: The Functional Allocation Project • Provide a partial order over the set of ways to allocate system functions, from a safety point of view • Rely on a Formal Validation, Verification, and Safety Assessment approach, based on symbolic model checking • Define formal model and system requirements from a preliminary design of the system architecture 13

  14. NASA NextGen of ATC: The Functional Allocation Project In this work • Formal modeling of a set of different possible functional allocations • Adaptation of Formal Validation, Verification, and Safety Assessment to compare early system designs • Real-world case study from a tight collaboration with "Flight Dynamics, Trajectory and Controls Branch” of NASA Ames https://es-static.fbk.eu/projects/nasa-aac/ 14

  15. Formal Modeling for Comparative Analysis

  16. Functional Allocation: GSEP and SSEP Current Approach: Only Ground Separated Aircraft (GSEP) Collision Avoidance Tactical Separation Strategic Separation TCAS/ACAS-X ATC With additional distributed Conflict Detection and Resolution (CD&R) on-board: Ground and Self Separated Aircraft (SSEP) Collision Avoidance Tactical Separation Strategic Separation TCAS/ACAS-X ATC Backup CD&R OnBoard Primary 16

  17. Formal Modeling: Conflict Areas Tj 1$ AC 1$ Tj 2$ X$ X$ Tj 3$ Tj 4$ AC 2$ Tj 5$ • Abstract concrete trajectories with Conflict Areas (CA) • Two aircraft are in the same conflict area if their trajectories intersect in a given interval of time • Example: if AC 1 and AC 2 follow T J2 and T j3 they are in the same Conflict Area 17

  18. Formal Modeling: Time Windows Conflict Avoidance Tactical Strategic Time 2 Current Near Mid Far Conflict Avoidance Tactical Strategic Time 1 Current Near Mid Far Conflict Avoidance Tactical Strategic Time 0 Current Near Mid Far CA 1 CA 1 CA 1 CA 1 CA 2 ….. AC 1 CA 2 CA 2 CA 3 CA 1 CA 1 ….. AC 2 Four different time windows: • – Conflict Avoidance: Current – Tactical Separation: Near and Mid – Strategic Separation: Far The passage of a unit of time causes a window shifting • A Loss of Separation (LOS) occurs when two aircraft are in the same • CA in the current time window 18

  19. Formal Modeling: System Components Communica)on*Network* ADS$B& ADS$B& ADS$B& ADS$B& ADS$B& ADS$B& SSEP*1* SSEP*2* SSEP*3* GSEP*1* GSEP*2* GSEP*3* * * * CD&R& CD&R& CD&R& ADS-B ADS-B Out only In and Out ATC* • GSEP: Ground Separated Aircraft • SSEP: Self Separated Aircraft with CD&R (Conflict Detection and Resolution) on-board • ADS-B: Automatic Dependent Surveillance Broadcast 19

  20. Formal Modeling: Scenarios Instantiation Scenario Code GSEPs SSEPs #Bool Vars G 3 0 122 M1 3 1 185 M2 2 2 193 M3 1 3 201 S 0 3 146 ALL 3 3 353 • Non-Mixed (only G/SSEP) and Mixed (both G/SSEP) operations considered • Multiple implementation options (Enabled or Disabled) – GSEP-Far: GSEPs send Far intentions over ADS-B Out – SSEP-Far: SSEPs send Far intentions to ATC. 20

  21. Formal Validation and Verification 21

  22. Formal Validation Controlled System Uncontrolled System Actuates Senses Controller Pure Airspace as Uncontrolled System and • CD&R agents (ATC, and CD&R on-board) as Controllers Separated Validation for Uncontrolled System and Controllers • All 37 properties CTL and LTL properties validated using nuXmv • model checker 22

  23. Formal Verification Controlled System Uncontrolled System Actuates Senses Controller • 93 LTL properties verified, using nuXmv, on all 20 possible configurations (of the controlled system) by varying: – Number of involved GSEPs and SSEPs aircraft – Information sharing implementation • Outcome: table representing pass/fail results 23

  24. Formal Safety Analysis

  25. Formal Validation and Verification It is not possible to M reach a Loss of Separation. ϕ M | = ϕ Yes No + Counterexample 25

  26. Formal Safety Assessment It is not possible to M [ F ] reach a Loss of Separation. ϕ δ ( F ) : M [ F ] 6 | = ϕ All possible assignments to F Fault Tree such that M does not satisfy ϕ 26

  27. Formal Safety Assessment: Fault Tree Analysis Top Level Loss of Separation Minimal Cutset Event (TLE) Basic Fault ¬𝜒 G1.comm_atc_ G1.apply_near G2.apply_near G3.apply_near G1.apply_far partial Fault Tree Analysis as Minimal Cutsets Computation [Bozzano et al. • CAV15] via xSAP CS={f 1 ,…,f n } is a cutset of M, 𝜒 if there exists a counterexample 𝜌 of • M ⊨ 𝜒 that triggers f 1 ,…,f n A Cutset CS is Minimal iff ∀ 𝐷𝑇 * ⊂ 𝐷𝑇, 𝐷𝑇′ is not a cutset of M, 𝜒 • 27

  28. Formal Validation, Verification, and Safety Assessment Process • Formal Requirements and Model Validation – Outcome: positive results for all checks • Formal Model Verification – Outcome: table where the cell i,j expresses whether the configuration i satisfies or not the property j. • Formal Safety Assessment – Outcome: a Fault Tree for each pair of configuration, property… How do we compare them? 28

  29. Formal Safety Assessment: Minimal Cutsets Comparison 3GSEPs-1SSEP (M1) 2GSEPs-2SSEPs (M2) MCS ... Cardinality GFar ¬GFar GFar ¬GFar 0 0 0 0 0 1 5 5 5 5 … 2 12 15 12 16 3 33 24 35 23 … … … … • Impact on the “Loss of Separation” when varying the sharing of GSEPs Far intentions (GFar): – Same number of single point of failure (5) – While double failure increases (¬GFar), triple failures decreases 29

  30. Formal Safety Assessment: Minimal Cutsets Comparison • Analyze set relations between Minimal Cutsets i.e., MCS are set of set of faults • Compare the MCS with TLE as “LoS between SSEP and GSEP” varying GSEP-Far (GF) information sharing: – MCS ¬GF = {<…>, {F ATC }} F ATC = G.F_comm_ATC_tot, S.F_comm_ATC_tot – MCS GF = {<…>, {F ATC, ATC.F_mid_res}, {F ATC , ATC.F_far_res}, {F ATC , G.F_comm_adsb}, {F ATC , S.cdr.F_future_resolve, S.cdr.F_resolve_detection} 30

  31. Formal Safety Assessment: Reliability Function Evaluation • Set relation over Minimal Cutsets might be inconclusive i.e., two sets can be incomparable • From Minimal Cutsets to Reliability Function (P(TLE) : ℝ 𝑜 ↦ ℝ ) [Bozzano et al. ICECCS15], assuming no faults dependency • Analyze under which condition one Reliability Function dominates the others 31

  32. Formal Safety Assessment: Reliability Function Evaluation − 3.69885 10 LOS S − S (F(ADS − B)=10 − 1.5 ) LOS S − S (F(ADS − B)=10 − 1.8 ) − 3.69885 10 LOS S − S (F(ADS − B)=10 − 8 ) LOS G − G − 3.69886 10 P TLE − 3.69886 10 − 3.69886 10 − 3.69886 10 − 4 − 3 − 2 − 1 10 10 10 10 F(ATC) Loss of Separation between SSEPs and GSEPs as TLE, varying • P(failure ATC) and P(failure ADS-B). Other probability of failures are fixed Still conceptual design, thus numerical values are not yet defined • 32

  33. Conclusion and Future Works

Recommend

Automated Verification for Functional and Relational Properties of Voting Rules Bernhard Beckert,

Automated Verification for Functional and Relational Properties of Voting Rules Bernhard Beckert,

Automated Verification for Functional and Relational Properties of Voting Rules Bernhard Beckert, Thorsten Bormer, Michael Kirsten, Till Neuber, Mattias Ulbrich | July 26, 2016 KARLSRUHE INSTITUTE OF TECHNOLOGY INSTITUTE OF THEORETICAL

920 views • 75 slides
Introducing automated functional testing of mobile apps Karl Krukow, CTO, LessPainful GotoAMS,

Introducing automated functional testing of mobile apps Karl Krukow, CTO, LessPainful GotoAMS,

Introducing automated functional testing of mobile apps Karl Krukow, CTO, LessPainful GotoAMS, May, 2012 karl@lesspainful.com, @karlkrukow 1 fredag den 25. maj 12 1 About me PhD Computer Science, University of Aarhus, 2006 Developer

709 views • 24 slides
Comparing Several Samples We are often interested in comparing measurements made under more than

Comparing Several Samples We are often interested in comparing measurements made under more than

ST 380 Probability and Statistics for the Physical Sciences Comparing Several Samples We are often interested in comparing measurements made under more than two different sets of conditions. Examples Strengths of concrete beams manufactured

436 views • 15 slides
Comparing Two Samples We are often interested in comparing measurements made under two different

Comparing Two Samples We are often interested in comparing measurements made under two different

ST 380 Probability and Statistics for the Physical Sciences Comparing Two Samples We are often interested in comparing measurements made under two different sets of conditions. Examples Water quality measurements below an effluent outfall,

384 views • 22 slides
Business Statistics CONTENTS Comparing two samples Comparing two unrelated samples Comparing

Business Statistics CONTENTS Comparing two samples Comparing two unrelated samples Comparing

TWO S OR MEDIANS: COMPARISONS Business Statistics CONTENTS Comparing two samples Comparing two unrelated samples Comparing the means of two unrelated samples Comparing the medians of two unrelated samples Old exam question Further study

397 views • 38 slides
Introducing Calabash automated functional testing for mobile native apps Karl Krukow,

Introducing Calabash automated functional testing for mobile native apps Karl Krukow,

Introducing Calabash automated functional testing for mobile native apps Karl Krukow, karl@lesspainful.com, LessPainful &amp; Trifork QCon London 2012 1 fredag den 9. marts 12 About me 2 fredag den 9. marts 12 About me PhD, Computer

861 views • 60 slides
Business Statistics CONTENTS Comparing two s Comparing more than two s Analysis of

Business Statistics CONTENTS Comparing two s Comparing more than two s Analysis of

SEVERAL S: COMPARISON Business Statistics CONTENTS Comparing two s Comparing more than two s Analysis of variance Testing significance of ANOVA Performing ANOVA The statistical model Equal variances Old exam question Further

532 views • 30 slides
Automated Reasoning: Some Successes and New Challenges Predrag Jani ci c

Automated Reasoning: Some Successes and New Challenges Predrag Jani ci c

What is this talk about? What is automated reasoning? Automated reasoning in propositional logic Automated reasoning in first-order logic Automated reasoning in higher-order logic Automated reasoning in geometry Conclusions Automated

806 views • 52 slides
Climate: What Is It Anyway Comparing Weather and Climate Climate Regions and Biomes Comparing

Climate: What Is It Anyway Comparing Weather and Climate Climate Regions and Biomes Comparing

Climate: What Is It Anyway Comparing Weather and Climate Climate Regions and Biomes Comparing Weather and Climate Directions 1. Watch the National Geographic Video Weather and Climate 2. In your lab book, construct a Venn Diagram comparing

50 views • 3 slides
Tutorial: Functional Testing of Debian Packages Antonio Terceiro terceiro@debian.org history

Tutorial: Functional Testing of Debian Packages Antonio Terceiro terceiro@debian.org history

Tutorial: Functional Testing of Debian Packages Antonio Terceiro terceiro@debian.org history automated tests are great and we need more of it automated tests don't replace all manual testing Topics history specs tools

832 views • 50 slides
IRC Sect. 704(b): Allocations to Partners Navigating Complex Rules on Determining Validity of

IRC Sect. 704(b): Allocations to Partners Navigating Complex Rules on Determining Validity of

Presenting a live 110-minute teleconference with interactive Q&amp;A IRC Sect. 704(b): Allocations to Partners Navigating Complex Rules on Determining Validity of Partnership Allocations WEDNESDAY, DECEMBER 12, 2012 1pm Eastern | 12pm

1k views • 89 slides
IRC Sect. 704(b): Allocations to Partners Navigating Complex Rules on Determining Validity of

IRC Sect. 704(b): Allocations to Partners Navigating Complex Rules on Determining Validity of

Presenting a live 110 minute teleconference with interactive Q&amp;A IRC Sect. 704(b): Allocations to Partners Navigating Complex Rules on Determining Validity of Partnership Allocations TUES DAY, JANUARY 10, 2012 1pm Eastern | 12pm

1.16k views • 100 slides
Functional Safety of the Electronics Systems at the High Level Required in Fully Automated

Functional Safety of the Electronics Systems at the High Level Required in Fully Automated

21st International Forum on Advanced Microsystems for Automotive Applications Berlin, 25-26 September 2017 Smart Features Integrated for Prognostics Health Management Assure the Functional Safety of the Electronics Systems at the High Level

501 views • 10 slides
+ f(x) = Python Functional Programming Python Functional Programming Functional Programming by

+ f(x) = Python Functional Programming Python Functional Programming Functional Programming by

+ f(x) = Python Functional Programming Python Functional Programming Functional Programming by Wikipidia: Functional programming is a programming paradigm that treats computation as the evaluation of mathematical functions and avoids

754 views • 27 slides
Functional Systems Or: Functional Functional Programming Marius Eriksen Twitter Inc. @marius

Functional Systems Or: Functional Functional Programming Marius Eriksen Twitter Inc. @marius

Functional Systems Or: Functional Functional Programming Marius Eriksen Twitter Inc. @marius QCon San Francisco 14 Caveat emptor Where am I coming from? 1k+ engineers working on a large scale Internet service I build systems

872 views • 86 slides
Functional Linear Models 1 66 / 181 Functional Linear Models Statistical Models So far we have

Functional Linear Models 1 66 / 181 Functional Linear Models Statistical Models So far we have

Functional Linear Models Functional Linear Models 1 66 / 181 Functional Linear Models Statistical Models So far we have focussed on exploratory data analysis Smoothing Functional covariance Functional PCA Now we wish to examine predictive

1.04k views • 43 slides
RE-ZONING YOUR LIBRARY THROUGH DATA-DRIVEN SPACE ALLOCATIONS RE-ZONING YOUR LIBRARY THROUGH

RE-ZONING YOUR LIBRARY THROUGH DATA-DRIVEN SPACE ALLOCATIONS RE-ZONING YOUR LIBRARY THROUGH

RE-ZONING YOUR LIBRARY THROUGH DATA-DRIVEN SPACE ALLOCATIONS RE-ZONING YOUR LIBRARY THROUGH DATA-DRIVEN SPACE ALLOCATIONS Southeastern Library Assessment Conference November 2015 Robert E. Fox, Jr. Bruce L. Keisling Dean, University

674 views • 31 slides
Functional Testing Review Chapter 8 Functional Testing We saw three types of functional

Functional Testing Review Chapter 8 Functional Testing We saw three types of functional

Functional Testing Review Chapter 8 Functional Testing We saw three types of functional testing Boundary Value Testing Equivalence Class Testing Decision Table-Based Testing What is the common thread among the above methods?

685 views • 33 slides
Profiling memory allocations Giulio Eulisse Northeaster University, Boston (MA), U.S.A.

Profiling memory allocations Giulio Eulisse Northeaster University, Boston (MA), U.S.A.

Profiling memory allocations Giulio Eulisse Northeaster University, Boston (MA), U.S.A. Profiling memory allocations Anonymous There are three kinds of algorithms: those which are slow those which take a large amount of memory most

296 views • 11 slides
Outline Comparing Infancy Narratives (Matthew &amp; Luke) Comparing the Structure of the

Outline Comparing Infancy Narratives (Matthew &amp; Luke) Comparing the Structure of the

11/13/17 Class 8a The Stories of Jesus in Luke Outline Comparing Infancy Narratives (Matthew &amp; Luke) Comparing the Structure of the Synoptics (Handout) Parables Introduction 3 parables in Luke 15 The Saint

501 views • 5 slides
FFR Guided Functional FFR Guided Functional FFR Guided Functional FFR Guided Functional

FFR Guided Functional FFR Guided Functional FFR Guided Functional FFR Guided Functional

FFR Guided Functional FFR Guided Functional FFR Guided Functional FFR Guided Functional Angioplasty Angioplasty g g p p y y in Complex Anatomy in Complex Anatomy Jung-Min Ahn, MD g , Heart Institute Asan Medical Center Heart

671 views • 27 slides
Automated Connected - Mobile Strategies &amp; Actions towards Automated &amp; Connected

Automated Connected - Mobile Strategies &amp; Actions towards Automated &amp; Connected

Automated Connected - Mobile Strategies &amp; Actions towards Automated &amp; Connected Driving in Austria Action Plan Automated Connected Mobile Framework, Visibility &amp; Evidence Competences Use Cases &amp; Value Creation &amp;

655 views • 17 slides
Allocations and Standards Place: Algiers Date: 1-5 December 2019 Presenter : Jan Verduijn

Allocations and Standards Place: Algiers Date: 1-5 December 2019 Presenter : Jan Verduijn

ITU Regional Training Workshop on &quot;Spectrum Management: Strategic Planning and Policies for Wireless Innovation Understanding Current Use and Limitations International and National Planning for Allocations and Standards Place:

654 views • 28 slides
Overview of Automated Bus Consortium Program Accelerating automated technology for transit

Overview of Automated Bus Consortium Program Accelerating automated technology for transit

Automated Bus Technology Deployment Program Overview of Automated Bus Consortium Program Accelerating automated technology for transit services Automated Bus Technology Deployment Program Summary of Concept Automated small vehicle shuttle

407 views • 24 slides

More recommend