gnavas.bib

@article{FERREIRA_II_2006,
  author = {Ferreira, J. and Almeida, L. and Fonseca, J. A. and Pedreiras, P. and Martins, E. and Rodriguez-Navas, G. and Rigo, J. and Proenza, J.},
  title = {Combining operational flexibility and dependability in FTT-CAN},
  journal = {IEEE Transactions on Industrial Informatics},
  year = {2006},
  volume = {2},
  number = {2},
  pages = {95--102},
  month = {May},
  doi = {10.1109/TII.2005.875508},
  issn = {1551-3203},
  isbn = {},
  keywords = {CAN, FTT-CAN, distributed safety-critical systems, dynamic online traffic scheduling, dynamic traffic management, fail-silence enforcement, fault tolerance, flexible time-triggered CAN, master replication, operational dependability, operational flexibility},
  note = {},
  key = {},
  abstract = {The traditional approaches to the design of distributed safety-critical systems, due to fault-tolerance reasons, have mostly considered static cyclic table-based traffic scheduling. However, there is a growing demand for operational flexibility and integration, mainly to improve efficiency in the use of system resources, with the network playing a central role to support such properties. This calls for dynamic online traffic scheduling techniques so that dynamic communication requirements are adequately supported. Nevertheless, using dynamic traffic management mechanisms raises additional problems, in terms of fault-tolerance, related with the weaker knowledge of the future system state caused by the higher level of operational flexibility. Such problems have been recently addressed in the scope of using flexible time-triggered CAN (FTT-CAN) in safety-critical applications in order to benefit from the high operational flexibility of this protocol. This paper gathers and reviews the main mechanisms that were developed to provide dependability to the protocol, namely, master replication and fail-silence enforcement}
}

@inproceedings{FERREIRA_SRDS_2003,
  author = {Ferreira, J. and Almeida, L. and Fonseca, J. A. and Rodriguez-Navas, G.},
  title = {Enforcing Consistency of Communication Requirements Updates in FTT-CAN},
  booktitle = {Workshop on Dependable Embedded Systems (SRDS'2003) Proceedings of the 22nd Symposium on Reliable Distributed Systems (DES'2003)},
  year = {2003},
  editor = {},
  volume = {},
  series = {},
  pages = {},
  address = {Florence, Italy},
  month = {October},
  organization = {},
  publisher = {},
  doi = {},
  issn = {},
  isbn = {},
  keywords = {CAN, FTT-CAN, Protocols},
  note = {},
  key = {},
  abstract = {Traditional design approaches to safety-critical distributed systems, due to fault-tolerance reasons, have typically considered static cyclic table-based traffic scheduling. However, there is a growing demand for flexibility and integration, mainly to improve efficiency in the use of system resources, with the network playing a central role to support such properties. This calls for dynamic on-line traffic scheduling techniques so that dynamic communication requirements are adequately supported. The FTT-CAN protocol (Flexible Time-Triggered communication over Controller Area Network) has been developed specifically to deliver that kind of support with timeliness guarantees. It uses a master-slave approach with one or more master replicas for faulttolerance reasons. The communication requirements are held in a table, that is replicated in all masters. This paper considers the problem of updating the communication requirements while maintaining coherency and synchronization between the master and all its replicas. The paper also discusses the generalization of the proposed mechanism which can easily be adapted to other dynamic master-slave protocols}
}