[Back]

M. Schlager, E. Erkinger, W. Elmenreich, T. Losert:
"Benefits and Implications of the DECOS Encapsulation Approach";
Talk: International IEEE Conference on Intelligent Transportation Systems, Vienna, Austria; 2005-09-13 - 2005-09-16; in: "Proceedings of the 8th International IEEE Conference on Intelligent Transportation Systems", IEEE Press, (2005), ISBN: 0-7803-9215-9; 13 - 18.

In contrast to federated architectures, an integrated architecture provides means to support mixed-criticality systems, i.e., systems that consist of distributed application parts (subsystems) with different criticality levels, on top of the same physical hardware. A major prerequisite for the integration of subsystems with different criticality levels, is given by a strong and reliable protection of the subsystems against each other - both in space and time. Within DECOS, an Encapsulated Execution Environment is set-up in order to establish the required level of protection by providing a mixture of hardware (e.g., memory protection) and software mechanisms (e.g., real-time operating system).
The development of an Encapsulated Execution Environment is driven by the enormous advances in the domain of dependable real-time control systems in the past decade and the resulting increase of system size in terms of required hardware components (ECUs). The paper shall give a survey of the resulting benefits of the chosen approach and will investigate on its implications. Thereby, it will examine the need for proper development methods that assist the application developer. For instance, the emulation of a subsystem or its parts within an integrated architecture through a simulation requires new dedicated approaches resulting from the inherently more complex structure of the integrated architecture.