Optimizing Mitigation Strategies for FPGA Critical Applications by Berg, Melanie
' . 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 201 O in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 1 
.---. -·-· ------··--·-----·-- ·· .. .:. . .:; . ____ , _______ -· .. ····-· ........ . 
https://ntrs.nasa.gov/search.jsp?R=20180001196 2019-08-30T12:34:39+00:00Z
Agenda 
Section I: Single Event Effects in Digital Logic 
Section II : FPGA Basics - Architectural 
Differences 
Section Ill: Reducing System Error: Common 
Mitigation Techniques 
! Triple Modular Redundancy 
Block Triple Modular Redundancy (BTMR) 
! Local Triple Modular Redundancy (L TMR) 
! Global Trrple Modular Redundancy (GTMR) 
Section IV: The Automation Process and the 
Mentor Graphics Advantage 
.-' ' ' • I··, \1 I,. . . . . ~. , . , t ,C. t-', t..' - l••.·1,,,: ,. fJ 1,' · • ., ,., •• •I · ,';,·. 
l',1-; 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 2 
.. 
. . 
I 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http:1/radhome.gsfc.nasa.gov and http:1/nepp.nasa.gov/. 3 
I 
LET vs. Error Cross Section 
Graph Ni\SA ' 
LET vs. CJ: 
Frr11r ( ·ro\\ Sec1i1111, ,,,.,. 
utlcula!<'tl fl('!' 11.'J' 1·11/tie 
i11 11rder lo clraracteri~1· 
tire 1111111ha t1/f){)fl.'1tti11/ 
#errors 
(J'seu = jluence 
1.00E,06--- ------ ~ 
fault, 1111d 1·,.,.11r r111i•, i11 
//,(' ,pa1·,• L'lll'il'll/l/1/t'II/ 
Terminology: 
::- 1.00E.Q7 
1 
Flux Particles/( sec-cm') E 
-2. 1.00E.(MI .i...---J- ------l 
Fluence Part1cles/cmi 
Error cross sect1on(CT) 
:::, 
: !--SF8L 1oc1w1zJ 
b 1.00E-<19+---1-- ------
#errors normalized by 
fluence 1.00E-10 -1--------------
Error cross section 1s 0 20 60 80 100 
calculated at several LET 
values (particle spectrum) 
r. 1, , ... , •. 1. 2, ·, 1 '.•- ~: (..' .. ,,.,, , ,, I I•• ~J - .. i ... . ., , 11' ! ,,., I _;•Q I(' 1'.t, 1•· 11 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conferenc·e [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http:1/nepp.nasa.gov/. 4 
Single Event Effects (SEEs) and IC 
System Error 
SEUs or SETs can occur in: 
: Combinatorial Logic (including global routes) 
: Sequential Logic 
: Memory Cells 
Depending on the Device and the design, 
each fau lt type will: 
: Have a probability of occurrence 
: Either have a significant or insignificant 
contribution to system error 
N/\SA 
E,•e1:r De1•ice has df/f'ere11t Error Re.,po11.,·es - II e 
11111st 1111dersta11d the dfff'ereuces and design 
appropriate~r 
f '• r t , I I , •.1. 01 : I 'J.:. >': '.' ;.• 1 ., :1,, I ' • .. t.' ,-,. ' ,, , , , 11 " I ' • .., ' J 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 5 
.. :Y --
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 201 O in 
Albuquerque, NM, and on http:1/radhome.gsfc.nasa.gov and http:1/nepp.nasa.gov/. 6 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 7 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 8 
./ 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 9 
. ---' 'I . ·--------··---···-· --·- .. -- --- -~,-- .... 
ft 
T(fs)pulH 
P(fsJsttceo 
P(/sJsETprop 
PDFFE,, 
P(ftJsET- sro 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 10 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 11 
1 ·· · -- · ·- ·· - - -- . .. 
Mitigation 
Error Correction or Error avoidance 
Mitigation can be: 
! Embedded built into the device library cells 
! User does not verify the m1t1gat1on ~ manufacturer does 
! User inserted part of the actual design process 
: Use: 111~1st verify n~1t1gat1on Complex ity 1s a RISK" " '"' 
Mitigation should reduce error ... 
: Generally through redundancy 
: Incorrect implementation can increase error 
\\'ant to rrducc as many terms as possible: 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Lo'gic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http:1/radhome.gsfc.nasa.gov and http:1/nepp.nasa.gov/. 12 
To be presented by Melanie Berg at the ReSpace/MAPLD 201 O Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque; NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. . 13 
.. ,_ ------
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 201 O in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 14 
To be presented by Mel~nie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 15 
. j" - ---~ --- - - -
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 201 O in 
Albuquerque, NM, and onhttp://radhome.gsfc.na~a.govand http://nepp.nasa.gov/. 16 
' 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 201 O in 
Albuquerque, NM, and on. http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 17 
1" ... 
· - -··--· ·-·· .. ·-
GTMR Proves To be A Great 
Mitigation Strategy ... BUT ... 
Triplicating a design and its globa l routes takes 
up a lot of power and area 
Not part of the provided and well 
tested/characterized library elements 
Generally performed after synthesis by a tool-
not part of RTL 
Difficult to verify 
Additional complications with Clock Skew and 
domain crossings 
Can be implemented in an ASIC ... but is not 
considered as a contemporary methodology 
..... :1 
,_. ;, 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 18 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 19 
--· --------·-----·-· 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 20 
Benefits of Automation 
Difficult to implement mitigation schemes 
manually with VHDL or Verilog 
! Synthesis Optimization 
! Designer error 
! Mitigation Optimization (voter reduction) 
May reduce the probability of insertion design 
error: 
! Coding errors are difficult to detect 
! Utilizes a structured and well defined insertion 
process 
p., ., . . ,1.,\t , , .,,,., l'·•'I \1-'-'~~'. -11 .. ;,, I -' '.·,. I.', , , 
1'11, .: 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 21 
- T ....... ·-
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 22 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 23 
' 
-·· . --- - - - ~ 
Voter Insertion NASA 
Intelligent handling of many special cases 
! Logic Reduction 
! Primary top-level design outputs 
! Clock Enable Handling 
! Control Domain Crossings 
! Multiply-Accumulate Circuits 
! Latct,es 
! Combinatorial Loops 
! Black Boxes 
We don·t have time to discuss all: 
! Primary top-level design outputs 
! Control Domain Crossings 
! Black Boxes 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 24 
To be presented by Melanie Berg at the ReSpace/MAPLD 201 O Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 25 
I - .... : 
Voter Insertion: Outputs 
Most Design guidelines will not allow 
combinatorial logic after a register directly 
feeding an output 
The user has a choice 
Primary top-level design outputs: 
! Mapping register into fabric 
! Tripling top-level 10 (or not1111111) 
! Mapping register into pad cell (path convergence) 
• - -. ; I ' ' . '·' ·, 
f ':- • 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 14, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 26 
To be presented by Melanie Berg at the ReSpace/MAPLD 201 O Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 27 
-·-···-- - - -----. I . . --· . ·- -- - - - - ·-· ·- . - - --· - - --···· . 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Mili~ry 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 28 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http:1/radhome.gsfc.nasa.gov and http:1/nepp.nasa.gov/. 29 
I --·- . - . . .• . .. • - - - ·-··· -· 
To be presented by Melanie Berg at the ReSpace/MAPLD 201 O Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http:1/radhome.gsfc.nasa.gov and http:1/nepp.nasa.gov/. 30 
I . \ .. ~~tion .inserted in black box. 
Path 
Summary N"s" 
SEEs will affect FPGAs in space radiation 
environments 
TMR has been the most effective SEE 
mitigation technique 
There are many types of TMR: 
! BTMR 
! LTMR 
! DTMR 
! GTMR 
The goal is to select the optimal TMR scheme 
regarding : 
! SEE requirements 
! Area , Power, Speed 
;," ... ,.,•. 1'., '.1, .. , .. ,. E·· ! f,,t ,<P L~ M'! ~1,1· · · 1 ,1 1J,- ••• ~. · •• .• , .~-. - .• ,-,,1~. 2,:Ll 
f' t/··. 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerq~e, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 31 
.. ···-- . - f 
Summary (Continued) 
Mentor has integrated different TMR schemes 
into their synthesis package 
The designer must be aware of the target FPGA 
and its SEE sensitivity before using any 
automated approach 
Strategies are robust: 
! Flexible based on FPGA susceptibility 
! Many user options 
! Validated via radiation testing 
After TMR insertion, a rigorous review and 
simulation process must be performed 
.. -- ;,~. ,,·,t , I ..'.:) I i: 
1'1;,·• 
To be presented by Melanie Berg at the ReSpace/MAPLD 2010 Conference [Military 
and Aerospace Programmable Logic Devices (MAPLD)], November 1-4, 2010 in 
Albuquerque, NM, and on http://radhome.gsfc.nasa.gov and http://nepp.nasa.gov/. 32 
