A probabilistic model checking approach to analysing reliability, availability, and maintainability of a single satellite system

Satellites now form a core component for space based systems such as GPS and GLONAS which provide location and timing information for a variety of uses. Such satellites are designed to operate in-orbit and have lifetimes of 10 years or more. Reliability, availability and maintainability (RAM) analysis of these systems has been indispensable in the design phase of satellites in order to achieve minimum failures or to increase mean time between failures (MTBF) and thus to plan maintainability strategies, optimise reliability and maximise availability. In this paper, we present formal modelling of a single satellite and logical specification of its reliability, availability and maintainability properties. The probabilistic model checker PRISM has been used to perform automated quantitative analyses of these properties

Exploring formal verification methodology for FPGA-based digital systems.

Abstract Not Provide

Telecommunications and data acquisition support for the Pioneer Venus Project: Pioneers 12 and 13, prelaunch through March 1984

The support provided by the Telecommunications and Data Acquisition organization of the Jet Propulsion Laboratory (JPL) to the Pioneer Venus missions is described. The missions were the responsibility of the Ames Research Center (ARC). The Pioneer 13 mission and its spacecraft design presented one of the greatest challenges to the Deep Space Network (DSN) in the implementation and operation of new capabilities. The four probes that were to enter the atmosphere of Venus were turned on shortly before arrival at Venus, and the DSN had to acquire each of these probes in order to recover the telemetry being transmitted. Furthermore, a science experiment involving these probes descending through the atmosphere required a completed new data type to be generated at the ground stations. This new data type is known as the differential very long baseline interferometry. Discussions between ARC and JPL of the implementation requirements involved trade-offs in spacecraft design and led to a very successful return of science data. Specific implementation and operational techniques are discussed, not only for the prime mission, but also for the extended support to the Pioneer 12 spacecraft (in orbit around Venus) with its science instruments including that for radar observations of the planet

The 30/20 GHz flight experiment system, phase 2. Volume 2: Experiment system description

A detailed technical description of the 30/20 GHz flight experiment system is presented. The overall communication system is described with performance analyses, communication operations, and experiment plans. Hardware descriptions of the payload are given with the tradeoff studies that led to the final design. The spacecraft bus which carries the payload is discussed and its interface with the launch vehicle system is described. Finally, the hardwares and the operations of the terrestrial segment are presented

Applying Formal Methods to Networking: Theory, Techniques and Applications

Despite its great importance, modern network infrastructure is remarkable for the lack of rigor in its engineering. The Internet which began as a research experiment was never designed to handle the users and applications it hosts today. The lack of formalization of the Internet architecture meant limited abstractions and modularity, especially for the control and management planes, thus requiring for every new need a new protocol built from scratch. This led to an unwieldy ossified Internet architecture resistant to any attempts at formal verification, and an Internet culture where expediency and pragmatism are favored over formal correctness. Fortunately, recent work in the space of clean slate Internet design---especially, the software defined networking (SDN) paradigm---offers the Internet community another chance to develop the right kind of architecture and abstractions. This has also led to a great resurgence in interest of applying formal methods to specification, verification, and synthesis of networking protocols and applications. In this paper, we present a self-contained tutorial of the formidable amount of work that has been done in formal methods, and present a survey of its applications to networking.Comment: 30 pages, submitted to IEEE Communications Surveys and Tutorial

Formal Methods Based Development of a PCA Infusion Pump Reference Model: Generic Infusion Pump (GIP) Project

As software becomes ever more ubiquitous and complex in medical devices, it becomes increasingly important to assure that it performs safely and effectively. The critical nature of medical devices necessitates that the software used therein be reliable and free of errors. It becomes imperative, therefore, to have a conformance review process in place to ascertain the correctness of the software and to ensure that it meets all requirements and standards. Formal methods have long been suggested as a means to design and develop medical device software. However, most manufacturers shy from using these techniques, citing them as too complex and time consuming. As a result, (potentially life-threatening) errors are often not discovered until a device is already on the market. In this paper we present a safety model based approach to software conformance checking. Safety models enable the application of formal methods to software conformance checking, and provide a framework for rigorous testing. To illustrate the approach, we develop the safety model for a Generic Infusion Pump (GIP), and explain how it can be used to aid software conformance checking in a regulatory environment

A digital computer program for the dynamic interaction simulation of controls and structure (DISCOS), volume 1

A theoretical development and associated digital computer program system for the dynamic simulation and stability analysis of passive and actively controlled spacecraft are presented. The dynamic system (spacecraft) is modeled as an assembly of rigid and/or flexible bodies not necessarily in a topological tree configuration. The computer program system is used to investigate total system dynamic characteristics, including interaction effects between rigid and/or flexible bodies, control systems, and a wide range of environmental loadings. In addition, the program system is used for designing attitude control systems and for evaluating total dynamic system performance, including time domain response and frequency domain stability analyses

The 30/20 GHz flight experiment system, phase 2. Volume 1: Executive summary

Summary information on the final communication system design, communication payload, space vehicle, and development plan for the 30/20 GHz flight experiment will be installed on the LEASAT spacecraft which will be placed into orbit from the space shuttle cargo bay. The communication concept has two parts: a truck service and a customer premise service (CPS). The trucking system serves four spot beams which are interconnected in a satellite switched time division multiple access mode by an IF switch matrix. The CPS covers two large areas of the eastern United States with a pair of scanning beams

Advances in Underactuated Spacecraft Control

This dissertation addresses the control of a spacecraft which either becomes underactuated due to onboard failures or is made underactuated by design. Successfully controlling an underactuated spacecraft can extend spacecraft operational life in orbit and improve the robustness of space missions. The novel contributions of the dissertation include the following. Firstly, switching feedback controllers are developed for the attitude control of an underactuated spacecraft equipped with two pairs of thrusters, or two reaction wheels (RWs), or two control moment gyros (CMGs). The problem is challenging; e.g., even in the zero total angular momentum case, no smooth or even continuous time-invariant feedback law for stabilizing a desired orientation exists. The method exploits the separation of the system into inner-loop base variables and outer-loop fiber variables. The base variables track periodic reference trajectories, the amplitude of which is governed by parameters that are adjusted to induce an appropriate change in the fiber variables towards the desired pointing configuration. Secondly, nonlinear Model Predictive Control (MPC) is applied to the attitude dynamics of an underactuated spacecraft with two RWs and zero angular momentum. MPC has the remarkable ability to generate control laws that are discontinuous in the state. By utilizing nonlinear MPC, the obstruction to stabilizability is overcome and attitude maneuvers can be performed while enforcing constraints. Thirdly, an unconventional pathway is discussed for recovering the linear controllability of an underactuated spacecraft with two RWs by accounting for the effects of solar radiation pressure (SRP) in the spacecraft attitude model. Necessary and sufficient conditions for recovering linear controllability are given, and with linear controllability restored, conventional controllers can be designed for underactuated spacecraft. Lastly, two sets of coupled translational and rotational equations of motion for a spacecraft in a central gravity field are derived. The spacecraft is assumed to have only internal attitude actuators and the equations of motion are relative with respect to an equilibrium orbit. Under reasonable assumptions on the spacecraft configuration and equilibrium orbit, the coupled dynamics are small-time locally controllable (STLC), which opens a path to utilizing conventional control techniques to move translationally in space by employing attitude control only.PhDAerospace EngineeringUniversity of Michigan, Horace H. Rackham School of Graduate Studieshttp://deepblue.lib.umich.edu/bitstream/2027.42/133430/1/cdpete_1.pd

Apollo experience report: Simulation of manned space flight for crew training

Through space-flight experience and the development of simulators to meet the associated training requirements, several factors have been established as fundamental for providing adequate flight simulators for crew training. The development of flight simulators from Project Mercury through the Apollo 15 mission is described. The functional uses, characteristics, and development problems of the various simulators are discussed for the benefit of future programs