static analysis of embedded systems
play

Static Analysis of Embedded Systems Xavier R IVAL rival@di.ens.fr - PowerPoint PPT Presentation

Apr 02, 2023 •692 likes •825 views

Static Analysis of Embedded Systems Xavier R IVAL rival@di.ens.fr Outline Case study Certification of embedded softwares Demo Static Analysisof Embedded Systems p.2/12 Ariane 5 Flight 501 Ariane 5: sattelite launcher

  1. Static Analysis of Embedded Systems Xavier R IVAL rival@di.ens.fr

  2. Outline √ Case study · Certification of embedded softwares · Demo Static Analysisof Embedded Systems – p.2/12

  3. Ariane 5 — Flight 501 • Ariane 5: sattelite launcher � successor of Ariane 5, much more powerful higher payload capability � first flight, June, 4th, 1996: failure � failure report: http://esamultimedia.esa.int/docs/esa-x-1819eng.pdf • History of the flight: � take-off parameters nominal, normal flight during 36 seconds � T + 36.7s: loss of trajectory � T + 39s: desintegration of the launcher • What is the cause of this trajectory issue ? • Consequences: > $370 000 000... � loss of satellites � launcher out of service (more than a year) Static Analysisof Embedded Systems – p.3/12

  4. Navigation system • Sensors: gyroscopes, inertial units • Computers (hardware + software): � IRS (Inertial Reference System: integrates sensor data � OBC (On Board Computer): computes the action to keep the trajectory correct • Actuators: engines of the launcher • Fault tolerant, redundant systems: two IRS units, but same software Static Analysisof Embedded Systems – p.4/12

  5. Analysis of the failure • Resource problem: registers and memory were expensive... � programming practice: reduce number of bits to be used � e.g., cast 64 bits floating point numbers into signed 16 bits integers • In case of an overflow: � no local interruption catch (expensive) � thus, computer crash + error code returned! • Ariane 501 flight: � arithmetic fault interuption in IRS computer � illegal error code interpreted as regular flight data by OBC � improper actions, thus loss of trajectory Static Analysisof Embedded Systems – p.5/12

  6. Other Considerations • Redundant hardware: useless here � all IRS units crashed in the same time � in avionics: separate development chains (and teams) • Irrelevant computations: � faulty computation was irrelevant after take-off (gyroscopes recalibration; useful in the first few seconds only) � shutting down a task was considered potentially dangerous • Legacy software: � the whole system had been used in Ariane 4 successfully, many times � ... but Ariane 5 was more powerful � thus higher horizontal bias values... � thus overflow Wrong assumptions, due to legacy software Static Analysisof Embedded Systems – p.6/12

  7. Embedded systems software failures • Many cases: www.cs.tau.ac.il/~nachumd/horror.html • Families of bugs: � runtime errors, and other safety problems � functional bugs, e.g.: ◮ violation of liveness properties ◮ unstable control loop � specification issues incorrect specifications, invalid specifications... beyond this lecture: what to do if the spec is wrong ? � user interface issues again, beyond this lecture... Static Analysisof Embedded Systems – p.7/12

  8. Outline · Case study √ Certification of embedded softwares · Demo Static Analysisof Embedded Systems – p.8/12

  9. Development Requirements • Rigorous development requirements defined by norms, such as: � DO-178 b for avionics � ISO 26262, ARP 4754 for automotive industry • High certification cost � techniques to validate/certify software typically represent a huge cost: ◮ unit testing ◮ integration testing ◮ software maintenance: imposes more testing... � Aeronautics, cost of an airplane: ◮ airframe: 1 / 3 ◮ engines: 1 / 3 ◮ softwares, avionics: 1 / 3 ... ... 80 % of which is testing, integration, validation, certification Static Analysisof Embedded Systems – p.9/12

  10. DO-178 B Principle • Software levels, depending on level of criticality, e.g.: � level A: a failure would cause a crash e.g., fly-by-wire software � level C: a failure would cause crew overloading e.g., fly management computer � level E: no effect on the safety of the flight e.g., IFE (entertainment software)... • Software requirement, depending on level of criticality, e.g.: � identification of possible failures, and evidence of correctness � traceability � absence of dead-code � unit testing • No technique imposed to meet those criteria... but choice based on efficiency in terms of cost/reliability Static Analysisof Embedded Systems – p.10/12

  11. Certifying Safety by Analysis Advantages of static analysis: lower cost, better confidence • Safety: the software will not crash / cease to function: � absence of runtime errors no crash, no violation of application specific constraints ⇒ Astrée � synchronous requirement, i.e., time constraint critical sections should take a bounded amount of time i.e., the software must be responsive recursion is forbidden ⇒ Absint WCET analysis (Worst Case Execution Time) � resource usage ◮ no dynamic memory allocation ◮ stack usage ⇒ Absint stack analyzer • Beyond safety, functional correctness: usually only testing... (challenge!) Static Analysisof Embedded Systems – p.11/12

  12. Outline · Case study · Certification of embedded softwares √ Demo Static Analysisof Embedded Systems – p.12/12

Recommend

EECS 388: Embedded Systems 10. Timing Analysis Heechul Yun 1 Agenda Execution time analysis

EECS 388: Embedded Systems 10. Timing Analysis Heechul Yun 1 Agenda Execution time analysis

EECS 388: Embedded Systems 10. Timing Analysis Heechul Yun 1 Agenda Execution time analysis Static timing analysis Measurement based timing analysis 2 Execution Time Analysis Will my brake-by-wire system actuate the brakes

1.31k views • 37 slides
Boosting Job-Level Migration by Static Analysis Workshop on Operating Systems Platforms for

Boosting Job-Level Migration by Static Analysis Workshop on Operating Systems Platforms for

Boosting Job-Level Migration by Static Analysis Workshop on Operating Systems Platforms for Embedded Real-Time Applications July 09, 2019 Tobias Klaus, Peter Ulbrich, Phillip Raffeck, Benjamin Frank, Lisa Wernet , Maxim Ritter von Onciul ,

841 views • 42 slides
Numerical Static Analysis of Embedded Software with Interrupts Liqian Chen National University of

Numerical Static Analysis of Embedded Software with Interrupts Liqian Chen National University of

The 2016 Workshop on Static Analysis of Concurrent Software, Edinburgh, Scotland Numerical Static Analysis of Embedded Software with Interrupts Liqian Chen National University of Defense Technology, Changsha, China 11/09/2016 (Joint work with

604 views • 39 slides
Static Analysis of Embedded DSL-s Aivar Annamaa University of Tartu aivar.annamaa@gmail.com

Static Analysis of Embedded DSL-s Aivar Annamaa University of Tartu aivar.annamaa@gmail.com

Static Analysis of Embedded DSL-s Aivar Annamaa University of Tartu aivar.annamaa@gmail.com February 6th, 2010 Problem DSL-s are often embedded as string literals in a GPL SQL, RegEx, HTML Mistakes pop up at runtime Especially

668 views • 15 slides
Modelling, Specification and Formal Analysis of Complex Software Systems Precise Static Analysis

Modelling, Specification and Formal Analysis of Complex Software Systems Precise Static Analysis

Modelling, Specification and Formal Analysis of Complex Software Systems Precise Static Analysis of Programs with Dynamic Memory Mihaela Sighireanu IRIF, University Paris Diderot & CNRS VTSA 2015 1 / 99 Static Analysis Establish

2.15k views • 186 slides
How the analysis of electrical current consumption of embedded systems could lead to code

How the analysis of electrical current consumption of embedded systems could lead to code

How the analysis of electrical current consumption of embedded systems could lead to code reversing ? Code extraction via Power analysis Focus on Embedded systems Yann ALLAIN / Julien MOINARD AGENDA Who we are Research

979 views • 71 slides
Static Analysis of Haskell Neil Mitchell http://ndmitchell.com Static Analysis is getting

Static Analysis of Haskell Neil Mitchell http://ndmitchell.com Static Analysis is getting

Static Analysis of Haskell Neil Mitchell http://ndmitchell.com Static Analysis is getting insights at compile time Full branch coverage Terminates Doesnt rely on a test suite Types are static analysis. Lets talk about

784 views • 39 slides
Static execution-time analysis CPU speed model Bounds on Static (Sub)program code exec time

Static execution-time analysis CPU speed model Bounds on Static (Sub)program code exec time

Tid rum Static Execution Time Analysis Niklas Holsti Space Systems Finland Ltd (now) Tidorum Ltd(to be) Overview Area of interest Current state Work in progress What to do next 1 bo Akademi, ES lab, 2003-10-03 Tid rum

466 views • 12 slides
Side Channel Analysis and Embedded Systems Impact and Countermeasures Job de Haas Black Hat DC

Side Channel Analysis and Embedded Systems Impact and Countermeasures Job de Haas Black Hat DC

Side Channel Analysis and Embedded Systems Impact and Countermeasures Job de Haas Black Hat DC February 21, 2008 Black Hat USA 2007 Agenda Advances in Embedded Systems Security From USB stick to game console Current

673 views • 42 slides
HW/SW Codesign w/ FPGAs Embedded Systems ECE 495/595 Overview (Slides from Embedded Systems

HW/SW Codesign w/ FPGAs Embedded Systems ECE 495/595 Overview (Slides from Embedded Systems

HW/SW Codesign w/ FPGAs Embedded Systems ECE 495/595 Overview (Slides from Embedded Systems Design, F. Vahid and T. Givargis) Embedded computing systems definition: Computing systems embedded within electronic devices. Hard to define

396 views • 26 slides
SESE Introduction Background Cache Analysis for Diverse Programs Evaluation Conclusion

SESE Introduction Background Cache Analysis for Diverse Programs Evaluation Conclusion

Instruction Caches in Static WCET Analysis of Artificially Diversified Software Joachim Fellmuth, Thomas G othel, Sabine Glesner Technische Universit at Berlin Software and Embedded Systems Engineering ECRTS 2018, Barcelona SESE

667 views • 40 slides
Static Analysis for Secure Development Introduction Static analysis : What , and why ?

Static Analysis for Secure Development Introduction Static analysis : What , and why ?

Static Analysis for Secure Development Introduction Static analysis : What , and why ? Basic analysis ! Example : Flow analysis ! Increasing precision ! Context -, flow -, and path sensitivity Scaling it up !

527 views • 27 slides
Embedded systems and the role of programmable logic devices in embedded systems Embedded system :

Embedded systems and the role of programmable logic devices in embedded systems Embedded system :

Embedded systems and the role of programmable logic devices in embedded systems Embedded system : a combination of computer hardware and software, and perhaps additional mechanical or other parts, designed to perform a dedicated function. In some

414 views • 20 slides
Modelling, Specification and Formal Analysis of Complex Software Systems Precise Static Analysis

Modelling, Specification and Formal Analysis of Complex Software Systems Precise Static Analysis

Modelling, Specification and Formal Analysis of Complex Software Systems Precise Static Analysis of Programs with Dynamic Memory Mihaela Sighireanu IRIF, University Paris Diderot & CNRS VTSA 2015 1 / 149 Outline Introduction 1 Formal

861 views • 68 slides
Notes for State of the Art Report on Type Systems and Static Analysis for Distributed Programming

Notes for State of the Art Report on Type Systems and Static Analysis for Distributed Programming

Notes for State of the Art Report on Type Systems and Static Analysis for Distributed Programming Languages J. Rathke Mikado meeting Lisbon, June 2002 p.1/7 Introduction Why use typed languages? What is typed static analysis?

118 views • 7 slides
1 Analysis Information Where Do Facts Hold? How much information depends on the client

1 Analysis Information Where Do Facts Hold? How much information depends on the client

711? CS711 Advanced Programming Languages Topics in Program Analysis Radu Rugina Fall 2005 CS711 Overview 2 Program Analysis Static vs. Dynamic Static analysis: inspect programs at compile-time Static analysis: Work done at

282 views • 4 slides
A Brief Introduction to Static Analysis Sam Blackshear March 13, 2012 Outline A theoretical

A Brief Introduction to Static Analysis Sam Blackshear March 13, 2012 Outline A theoretical

A Brief Introduction to Static Analysis Sam Blackshear March 13, 2012 Outline A theoretical problem and how to ignore it An example static analysis What is static analysis used for? Commercial successes Free static analysis tools you should

490 views • 37 slides
Static analysis by abstract interpretation of run-time errors in synchronous and multithreaded

Static analysis by abstract interpretation of run-time errors in synchronous and multithreaded

Static analysis by abstract interpretation of run-time errors in synchronous and multithreaded embedded critical C programs Antoine Min e CNRS & Ecole normale sup erieure Paris, France MOVEP CIRM, Marseille 4 December 2012

1.26k views • 90 slides
Static Analysis Static Analysis they are read? Will the current value of a variable ever be

Static Analysis Static Analysis they are read? Will the current value of a variable ever be

Interesting Questions Interesting Questions Is every statement reachable? Does every non- void method return a value? Compilation 2007 Compilation 2007 Will local variables definitely be assigned before Static Analysis Static

169 views • 13 slides
Motivation: Embedded Systems Motivation: Embedded Systems discrete inputs Hybrid Models for

Motivation: Embedded Systems Motivation: Embedded Systems discrete inputs Hybrid Models for

Motivation: Embedded Systems Motivation: Embedded Systems discrete inputs Hybrid Models for Hybrid Models for Analysis and Control Design Analysis and Control Design symbols symbols Consumer electronics Home appliances automaton /

345 views • 12 slides
Side Channel Analysis and Embedded Systems Impact and Countermeasures Job de Haas Black Hat

Side Channel Analysis and Embedded Systems Impact and Countermeasures Job de Haas Black Hat

Side Channel Analysis and Embedded Systems Impact and Countermeasures Job de Haas Black Hat Europe 2008 Black Hat Europe 2008 Agenda Advances in Embedded Systems Security From USB stick to game console Current attacks

653 views • 42 slides
4TU MASTER EMBEDDED SYSTEMS Bert Molenkamp 19/03/2020 Master Embedded Systems 1 Table of

4TU MASTER EMBEDDED SYSTEMS Bert Molenkamp 19/03/2020 Master Embedded Systems 1 Table of

4TU MASTER EMBEDDED SYSTEMS Bert Molenkamp 19/03/2020 Master Embedded Systems 1 Table of contents What is an embedded system Examples of research topics Admission Overview of the programme Success rates Master Embedded

814 views • 31 slides
Systems Biology (2) Networks: Representation & static analysis David Gilbert

Systems Biology (2) Networks: Representation & static analysis David Gilbert

Systems Biology (2) Networks: Representation & static analysis David Gilbert Bioinformatics Research Centre www.brc.dcs.gla.ac.uk Department of Computing Science, University of Glasgow Module outline Putting it all together -

1.07k views • 86 slides
Embedded Systems (ESII) Prof. Dr. J. Henkel, Dr. M. Shafique CES - Chair for Embedded Systems

Embedded Systems (ESII) Prof. Dr. J. Henkel, Dr. M. Shafique CES - Chair for Embedded Systems

1 ESII: ASIPs_ISEs Design and Architectures for Embedded Systems (ESII) Prof. Dr. J. Henkel, Dr. M. Shafique CES - Chair for Embedded Systems Karlsruhe Institute of Technology, Germany Today: Embedded Processor Platforms ASIPs and Extensible

1.5k views • 89 slides

More recommend