‘The Engineering of Reliable Embedded Systems’ (Ed. 2) by Michael J. Pont

eres2_front_220
Now in its second edition, ‘The Engineering of Reliable Embedded Systems’ (ERES2), documents an industry-proven approach to the development of software for reliable, real-time embedded systems, based on the use of ‘Time Triggered’ (TT) architectures.

What distinguishes TT approaches is that it is possible to model the expected system behaviour precisely. This means that: [i] during the development process, we can demonstrate that all of the requirements have been met; and [ii] at run time, we can detect problems very quickly.

The end result is that we can have a high level of confidence that a TT system will either: [i] operate precisely as required; or [ii] move into an appropriate state if a problem occurs.

The above characteristics mean that appropriately-implemented TT systems provide a particularly effective means of meeting the requirements of various international safety standards, including IEC 61508, ISO 26262, IEC 62304, IEC 60730 and DO-178C.

Case studies

In order to illustrate how the TT techniques presented in ERES2 can be employed in practical designs, five detailed case studies are included. These studies describe the development of embedded control and monitoring systems for the following devices:

  • an industrial alarm sounder unit (IEC 61508, SIL 2);
  • a domestic washing machine (IEC 60730, Class B);
  • a hospital radiotherapy machine (IEC 60601-1; IEC 62304, Class C);
  • a steering-column lock for a passenger car (ISO 26262, ASIL D);
  • an aircraft jet engine (DO-178C, Level A).

Further information about ERES2 is provided on this page.

[This page was last updated: 2017-08-31] empty_space


empty_space

Publication details

empty_space
Hardback edition
empty_space
Pont, M.J. (2016) “The Engineering of Reliable Embedded Systems: Developing software for ‘SIL 0’ to ‘SIL 3’ designs using Time-Triggered architectures”, (Second Edition) SafeTTy Systems. ISBN: 978-0-9930355-3-1. £85.00.

First printing: November 2016 (‘Edition 2.0’)
Second printing (with corrections): December 2016 (‘Edition 2.1’)
Third printing (with corrections): April 2017 (‘Edition 2.2’)
Fourth printing (with corrections): May 2017 (‘Edition 2.3’).

empty_space
Paperback edition
empty_space
Pont, M.J. (2017) “The Engineering of Reliable Embedded Systems: Developing software for ‘SIL 0’ to ‘SIL 3’ designs using Time-Triggered architectures”, (Second Edition) SafeTTy Systems. ISBN: 978-0-9930355-4-8. £45.00.

First printing: May 2017 (‘Edition 2.3’).

empty_space


empty_space

Who should read this book?

empty_space

‘ERES2’ will be of particular value to people who need to develop software for industrial, automotive, medical or aerospace systems, or safety-related household goods.

The techniques presented in the book are intended to help developers achieve compliance with international standards such as IEC 61508, ISO 26262, ISO 13849, IEC 62304, DO-178C and IEC 60730.

The ‘ERES2’ sample chapters may help you to decide if use of TT techniques is likely to provide benefits to your team or organisation.

empty_space

empty_space

empty_space


empty_space

Microcontroller targets

empty_space

Most of the code examples in ERES2 target microcontrollers (MCUs) from STMicroelectronics (STM32F0, STM32F4), NXP / Freescale (LPC17xx), Infineon (XMC4000), and Texas Instruments (TMS570).

For safety-related projects, we would aim to employ a processor with a ‘Safety Manual’ where this is possible. Such a manual is available for the majority of the processors that are employed in the book.

Where safety is not a direct concern, the techniques presented in ERES2 can be applied with virtually any MCU.

empty_space


empty_space

Download sample chapters

empty_space

We have released the following sample material:

    Full table of contents
    Preface
    CHAPTER 1: Introduction
    CHAPTER 2: A simple TTC scheduler

This material is available as a single PDF file.

[Latest update to the sample chapters: 2017-05-16]

empty_space


empty_space

Download code examples (TTRDs)

empty_space

‘ERES2’ is accompanied by a growing suite of public ‘Time-Triggered Reference Designs’ (TTRDs).

You can download the latest public TTRDs here.

Use of this code in commercial projects requires purchase of a ReliabiliTTy® Technology Licence.

empty_space


empty_space

The Engineering of Reliable Embedded Systems (Second Edition)

Developing software for ‘SIL 0’ to ‘SIL 3’ designs using time-triggered architectures

by Michael J. Pont

[Second Edition]

ISBN: 978-0-9930355-3-1 (Hardback)
ISBN: 978-0-9930355-4-8 (Paperback)

Preface

PART ONE: INTRODUCTION

CHAPTER 1: Introduction
CHAPTER 2: A simple TTC scheduler

PART TWO: FOUNDATIONS OF RELIABLE TT SYSTEMS

CHAPTER 3: Polling and buffering
CHAPTER 4: Data storage and data transfers
CHAPTER 5: Interacting with peripherals
CHAPTER 6: Diverse Tasks
CHAPTER 7: Balanced Tasks
CHAPTER 8: Modes and states
CHAPTER 9: Multi-processor systems
CHAPTER 10: Working with third-party code libaries

PART THREE: MODELLING TTC DESIGNS

CHAPTER 11: Modelling with Tick Lists
CHAPTER 12: Modelling shared-clock systems

PART FOUR: MONITORING TTC DESIGNS

CHAPTER 13: Performing startup tests (POSTs)
CHAPTER 14: Checking the software configuration
CHAPTER 15: Performing periodic system tests (BISTs)
CHAPTER 16: Making effective use of an internal WDT
CHAPTER 17: Adding an eWDC unit
CHAPTER 18: Monitoring task execution times
CHAPTER 19: Monitoring task execution sequences
CHAPTER 20: Adding a WarranTTor unit

PART FIVE: CASE STUDIES

CHAPTER 21: Introduction to the case studies

CHAPTER 22: Industrial alarm system
Related standards: IEC 61508; IEC 61784-3.

CHAPTER 23: Domestic washing machine
Related standards: IEC 60335; IEC 60730.

CHAPTER 24: Radiotherapy machine
Related standards: IEC 60601-1; IEC 60601-2-1; IEC 62304; IEC 61508; EN / ISO 13845.

CHAPTER 25: Steering-column lock
Related standards: ISO 26262.

CHAPTER 26: Aircraft jet engine
Related standard: DO-178C.

PART SIX: CONCLUSIONS

CHAPTER 27: Bending the rules
CHAPTER 28: Conclusions

APPENDICES

APPENDIX 1: Definitions
APPENDIX 2: Foundation platforms
APPENDIX 3: Recommended platforms
APPENDIX 4: Selecting MCUs for your platform
APPENDIX 5: The TT Framework SoRS
APPENDIX 6: Understanding the impact of jitter
APPENDIX 7: Generating timing data
APPENDIX 8: Generating a Tick List
APPENDIX 9: Supporting task pre-emption
APPENDIX 9: Creating deterministic TTH / TTP designs
APPENDIX 11: Unit tests and integration tests
APPENDIX 12: Conducting reviews
APPENDIX 13: Coding guidelines and related matters

Full list of references and related publications

Index

empty_space


empty_space

How to buy your copy of ‘ERES2’

empty_space
Hardback edition
empty_space

The hardback edition of ‘ERES2’ is available from our Lulu store, Amazon.co.uk, Amazon.com and other online and physical bookshops.

The hardback edition of ‘ERES2’ is also available from SafeTTy Systems.
The cost of the hardback is £85.00 per copy (no VAT is charged on book sales in the UK) plus delivery.
Delivery is: free in the UK; £10 to the rest of the EU (outside the UK); £15 to the rest of the world (outside the EU).
Please contact us to place your order.

empty_space
Paperback edition
empty_space

The paperback edition of ‘ERES2’ is currently available (only) from SafeTTy Systems.
The cost of the paperback is £45.00 per copy (no VAT is charged on book sales in the UK) plus delivery.
Delivery is: free in the UK; £10 to the rest of the EU (outside the UK); £15 to the rest of the world (outside the EU).
Please contact us to place your order.

empty_space


empty_space

Related training course


Since 2014, we’ve delivered our popular on-site TTb course to many organisations across the world: so far, we’ve introduced around 150 engineers to the use of TT software architectures in safety-related systems by means of this 3-day course, with a class size of around 6 being typical.

The syllabus for the TTb course follows the contents of the ERES2 book closely.

We appreciate that for individuals and small teams, on-site training can be a little expensive. We also appreciate that it can be difficult for any organisation to have their whole development team attend a training course at the same time.

To address these challenges, we’ve introduced a cost-effective online version of our TTb course.

Learn more – and watch a ‘course trailer’ – on our TTb page.

empty_space


empty_space

Related development board


To support organisations that want to explore the use of modern TT designs – including many of the techniques and architectures presented in the ERES2 book – we have introduced our first DuplicaTTor® Evaluation Board (DEB).

Using a DEB, organisations can evaluate design options up to ‘SIL 3’ / ‘ASIL D’ level (and equivalent).

You’ll find further information on the DEB page.

empty_space


empty_space

ReliabiliTTy® Technology Licences

rtl_logo5_257
The books in the “Engineering of Reliable Embedded Systems” (ERES) series and the related Time-Triggered Reference Designs (TTRDs) describe patented technology and are subject to copyright and other restrictions.

The public TTRDs downloaded from this WWW site and the designs and techniques documented
in the ERES book series may be used without charge: [i] by universities and colleges in courses for which a degree up to and including “MSc” level (or equivalent) is awarded; [ii] for non-commercial projects carried out by individuals and hobbyists.

Use of the techniques and code examples described in the ERES books in any commercial project (including training courses) or in university research projects (including PhD-level programmes and equivalent) requires purchase of a ReliabiliTTy® Technology Licence.

Please contact us if you have any questions about these licence arrangements.
empty_space


empty_space

Further information

empty_space

Please contact us if you require further information about this book.

empty_space