1998 - Draper Laboratory

More documents

Recommendations

Info

BiographyJaynarayan LalaJaynarayan Lala is a Principal Member of Technical Staff at Draper. His research interests includedesign, evaluation, and validation of fault-tolerant and dependable architectures for high-integritysystems. Over the past twenty-five years, he has contributed to the design of fault-tolerantcomputer systems for a diverse group of applications, including a nuclear research reactor, the NavySeawolf nuclear attack submarine, the Army's advanced helicopter avionics, NASA/Air ForceAdvanced Launch System and NASA’s X-38 Crew Return Vehicle. The architectures have ranged fromthe Fault Tolerant Multi-Processor (FTMP) designed for commercial aircraft fly-by-wire applicationsto the Advanced Information Processing System (AIPS) for large real-time distributed applications tothe Fault-Tolerant Parallel Processor (FTPP) for high-throughput, high-dependability applications.He has published over 40 papers, contributed to text books on fault-tolerant computing, holdsseveral patents, and has served on the program committees of various conferences dealing withdependable computing. He was the program chair of the 22nd International Symposium onFault-Tolerant Computing held in Boston in July 1992. He is a Fellow of the IEEE and an Associate Fellow of AIAA. Dr. Lala has a BS degree inAeronautical Engineering from the Indian Institute of Technology, Bombay, India and PhD (Instrumentation) and MS (Aeronautics andAstronautics) degrees from the Massachusetts Institute of Technology.e-mail: lala@draper.com.............................................................................Andrew Benjamin has supported the Space Shuttle and International Space Station programs at NASA Johnson Space Center for five years. Heis currently the avionic manager of the Systems Engineering and Technology Assessments Office at NASA Johnson Space Center, where hedevelops technology plans, roadmaps, and demonstrations for Human Mars exploration. Prior to joining the NASA Johnson Space Center, heworked for General Dynamics building F-16 fighters for four years and at Honeywell building MK-50 torpedoes for six years. He has a BS degreefrom Louisiana Tech, an MS degree from Southern Methodist University, and a PhD from Colorado State, all in Electrical Engineering.e-mail: andrew.l.benjamin1@jsc.nasa.govAdvanced Fault-Tolerant Computing for Future Manned Space Missions / Biography1
Advanced Fault-TolerantComputing for FutureManned Space MissionsJaynarayan H. Lala The Charles Stark Draper Laboratory, Inc.Andrew L. Benjamin NASA Johnson Space CenterBased on the paper published in the Proceedings of the AIAA/IEEE Digital Awareness Systems ConferenceAbstractRecently, the planet Mars has been at the focal point ofastronomical attention. As we enter the next millennium, Marswill play a key role in humanity’s successful expansion intoheliocentric space. Future Mars space transportation will requirereliable operations over a life span of years, unlike the SpaceShuttle, which requires dependable operations over months, orthe Space Station, which is close at hand for maintenancelogistics. Also, unlike other long-life deep space missions,human Mars’ operations require real-time masking of criticalfaults. The longevity associated with deep space missionsdemands innovative fault-tolerant technology development andapplications of advanced redundancy techniques to achieve highsustained ultrareliability for long-life missions. To enable humanMars exploration and meet system demands for increased safety,reliability, and autonomy, this paper presents a technology planto foster the development of the next-generation fault-tolerantcomputing technology. This paper discusses Mars’ stringentbaseline requirements and constraints and presents fault-tolerantapproaches, techniques, and design building block strategies thatinclude standby redundancy, reconfigurable voting, backupsparing, and graceful degradation. The contemporary approachand recognized inadequacies of their application to longdurationspace missions will be discussed. Certain problems willbe identified and viable solutions offered. Various aspects offault-tolerant designs and implementations are discussed,including component selection, radiation tolerance, high-densitypackaging technology, computational integrity, and faultcoverage. Architectural solutions that can make systemsaffordable, such as open systems, standardization, and ease ofvalidation will be highlighted. The paper concludes with atechnology demonstration plan to achieve the desired baselinerequirements and goals.IntroductionAt the NASA Johnson Space Center, a 2004 precursor MarsTransit Habitat flight demonstration is planned to validatelong-life redundancy techniques that reduce life-cycle costs andunscheduled maintenance, and increase safety, reliability, andprobability of mission success. There are many elementsof perceived risks that include low gravity and radiationeffects and long-duration, lightweight, integrated microelectronicsperformance and component reliability. This missionopportunity provides early prototyping of basic long-life faulttolerantdesign building blocks and methodologies that includestandby, reconfigurable voting, backup sparing, and gracefuldegradation. Much work has already been accomplished inredundancy management techniques for space systems thatoperate dependably for months without external maintenance.With the constraints of low mass, power, and cost, arevolutionary fault-tolerant computing technology is required tosurvive human Mars long-life operations. The basic approach toachieving long-term ultrareliability requires intelligent allocationand use of redundant assets. On-chip redundancy usingmicro-electronic Very Large Scale Integrated (VLSI) high-densitypackaging has the potential to revolutionize avionics design.Also, integrated micro-electronic technology appears attractive tolong-life space applications. The demand for operationalredundancy, minimum power consumption, compact size,decreased mass, and improved reliability potential are importantrelevant factors. There are numerous trade-offs to be madebetween system reliability and availability with significant impacton the various metrics of system cost. The advent ofradiation-tolerant tools VLSI design makes reliable fault-tolerantdesigns and implementations feasible and cost-effective. Recentadvances in VLSI and packaging technologies offer thepossibility of building complex digital flight control systems thatneed no maintenance. As part of the New Millennium Program,the Jet Propulsion Laboratory (JPL) is currently validating anddemonstrating very high density electronic packagingtechnologies, including Multichip Module (MCM) technology,3-dimensional MCM stacking, and die stacking for memory,which attain many MIPS per cubic inch while minimizing power,weight, and volume.Fault-Tolerant System ConsiderationsMany different fault-tolerant systems have been developed anddemonstrated in the past. Redundancy has been a majorconsideration in flight control systems. In these applications,invalid information could cause a catastrophic failure of thecontrol system and could result in vehicle loss. Traditionally,Advanced Fault-Tolerant Computing for Future Manned Space Missions2
Page 2 and 3:
Letter from thePresident and CEO,Vi
Page 4 and 5:
Information TechnologyMilton AdamsE
Page 6 and 7:
BiographyMilton Adams has been at D
Page 9 and 10:
Figure 1 represents a functional de
Page 11 and 12:
Programs. In effect, these controll
Page 13 and 14:
Although the terminal area traffic
Page 15 and 16:
Table 2. ATFM performance evaluatio
Page 17 and 18:
In the experiments, a nominal capac
Page 19 and 20: [3] Wambsganss, Michael C. “Colla
Page 21 and 22: Guidance, Navigation, and Control A
Page 23 and 24: A Control Lyapunov FunctionApproach
Page 25 and 26: x( 0) ∈ X and w(t) ∈Wfor all t
Page 27 and 28: (b) Select a quadratic RCLF V i (x)
Page 29 and 30: at each grid point. In the case w 1
Page 31 and 32: References[1] Ball, J.A. and A.J. v
Page 35 and 36: Relative and Differential GPSData T
Page 37 and 38: The first term on the right in the
Page 39 and 40: H R# δρ R,GPS -H A# δρ A,GPSThi
Page 41 and 42: selection; and (3) shown that the a
Page 45 and 46: Segmentation of MR ImagesUsing Curv
Page 47 and 48: (3)where ν now represents a contin
Page 49 and 50: Experimental ResultsThe results of
Page 51 and 52: Table 1. A summary of segmentation
Page 53 and 54: Guidance, Navigation,and ControlJim
Page 55 and 56: BiographyGeorge SchmidtGeorge Schmi
Page 57 and 58: clock and ephemeris errors, as well
Page 59 and 60: maintained in a rigid structure, wh
Page 61 and 62: Table 5. “Typical” absolute GPS
Page 63 and 64: performed, then the target location
Page 65 and 66: tightly-coupled system, however, ca
Page 67 and 68: Concluding RemarksRecent progress i
Page 69: As real-time systems evolve into th
Page 73 and 74: The Viking and Voyager were both in
Page 75 and 76: Containment Regions (FCRs). There a
Page 77 and 78: well as reversing the whole process
Page 79 and 80: As real-time systems evolve into th
Page 81 and 82: Automated Station-Keepingfor Satell
Page 83 and 84: Figure 2. Minimum elevation angles
Page 85 and 86: anomaly M and/or the ascending node
Page 87 and 88: However, since optimization and rec
Page 89 and 90: is maintained in the Northern Hemis
Page 91 and 92: autonomy. It must have the ability
Page 93 and 94: [31] Neelon, Joseph G., Jr., Paul J
Page 95 and 96: Draper’s primary goal is to Drape
Page 97 and 98: )Rotordynamic Modelingof an Activel
Page 99 and 100: Eq. (9) becomes:λ[ R ] { Φ } = [
Page 101 and 102: chosen to be 24, for a total of 48
Page 103 and 104: InertialInstruments/MechanicalDesig
Page 105 and 106: BiographyJeffrey Borenstein is curr
Page 107 and 108: process step. Process information i
Page 109 and 110: Figure 4. Control chart for boron d
Page 111 and 112: References[1] Barbour, N., J. Conne
Page 113 and 114: Draper Laboratory continues to engi
Page 115 and 116: Validating the Validating Tool:Defi
Page 117 and 118: calculates miscellaneous terms, suc
Page 119 and 120: Table 1. Suggested specification sh
Page 121 and 122:
User Accuracy as aFunction of Simul
Page 123 and 124:
20-min averaging, this clock lockin
Page 125 and 126:
Table 2. Sample high-level summary
Page 127 and 128:
AcknowledgmentR.L. Greenspan, J.A.
Page 129 and 130:
Systems IntegrationRich MartoranaPe
Page 131 and 132:
BiographyAnthony Kourepenis is an A
Page 133 and 134:
control is employed to maintain the
Page 135 and 136:
Table 1. Summary of automotive yaw
Page 137 and 138:
Resolution (60 Hz) deg/h10000000100
Page 139 and 140:
References[1] Greiff, P., B. Boxenh
Page 141 and 142:
Guidance, Navigation, and Control A
Page 143 and 144:
An Integrated Safety AnalysisMethod
Page 145 and 146:
Infrastructure ModelsSystemRequirem
Page 147 and 148:
Figures 6 and 7 illustrate the bloc
Page 149 and 150:
Notice that each flight track descr
Page 151 and 152:
Table 7. Safety statistics at 1700-
Page 153 and 154:
Guidance, Navigation, and Control A
Page 155 and 156:
An Optimal Guidance Law forPlanetar
Page 157 and 158:
Note that the states in the three d
Page 159 and 160:
Crossrange (Kft)10090807060504030Cl
Page 161 and 162:
The 1997 Charles StarkDraper PrizeT
Page 163 and 164:
The 1997 Charles StarkDraper Prize1
Page 165 and 166:
“Draper encourages its personnel
Page 167 and 168:
Gimballed Vibrating GyroscopeHaving
Page 169 and 170:
Page 171 and 172:
Optical Source Isolator withPolariz
Page 173 and 174:
Page 175 and 176:
Hunting Suppressor forPolyphase Ele
Page 177 and 178:
Page 179 and 180:
Sensor Having an Off-Frequency Driv
Page 181 and 182:
proof mass from transients and enha
Page 183 and 184:
1997 Published PapersThe following
Page 185 and 186:
monitoring of space structures and
Page 187 and 188:
measured by kinematic degrees of fr
Page 189 and 190:
i.e., what percent of the earth’s
Page 191 and 192:
McConley, M. W.; Dahleh, M. A.; Fer
Page 193 and 194:
unaffordable, or even misguided. Bu
Page 195 and 196:
The Draper DistinguishedPerformance
Page 197:
Educational Activitiesat Draper Lab
show all

1998 - Draper Laboratory

Create successful ePaper yourself

Delete template?

Save as template?