Lecture 1

Real-Time Systems,
CPSC-4328/5328,
Lecture 1
Stefan Andrei
09/03/15
CPSC-4328/5328, Lecture 1
Real-time systems
Module homepage: Blackboard

CPSC-5328 is a 3 credit points module
Active participation in class: 10%
Assignments: 20%
(Online) paper presentation and written report: 30%
Written final exam: 40% (open book)
CPSC-4328 is a 3 credit points module
Active participation in class: 10%

Assignments: 40%
Written final exam: 50% (open book)
09/03/15
Course Policies
Code of Conduct Policy:

neither copying nor plagiarism allowed
for details, see LU webpage.
Attendance Policy:
Students are expected to attend every class and are
solely responsible for anything missed in the class.
Poor attendance will ultimately be reflected in the
course grade.
Participation Policy:
You are encouraged to ask questions.
You are encouraged to offer answers.
09/03/15
The team
Associate Professor:
Dr. Stefan Andrei, stefan.andrei@lamar.edu

Office hours:
11:30am-12:30pm
please send an email to make an appointment
Lectures based of the book:
Albert M.K. Cheng: Real-time systems. Scheduling, Analysis, and

Verification, Wiley-Interscience, 2002 (first printing), 2005 (second
printing), ISBN: 0-471-18406-3
Recommended books:
John A. Stankovic, Marco Spuri, Krithi Ramamritham, Giorgio Buttazzo:

Deadline Scheduling for Real-Time Systems: EDF and Related
Algorithms, Springer Verlag, 1998
Herman Kopetz: Real-Time Systems. Design Principles for Distributed
Embedded Applications. Kluwer Academic Publishers, 1997
09/03/15
Pre-requisites:
It is recommended to be already familiar with:
Symbolic logic;
Automata and languages;
Programming language recommended (C, C++,
or Java)
What is this course all about?
09/03/15
Real-time scheduling algorithms and

schedulability analysis.
Formal analysis and verification of real-time
systems.
Overview of this course

1.
2.
3.
4.
5.
Introduction in Real-Time Systems

Real-time scheduling and schedulability
analysis
Real-time logic, graph-theoretic analysis, and
MODECHART
Model checking of finite-state systems
Visual formalism, statecharts, and
STATEMATE
09/03/15
Lecture structure
Reminder of last lecture

Overview
Content (new notions + examples)
Summary
Reading suggestions
Coming up next
09/03/15
Overview of this lecture
What is time?
What is a real-time system?
Simulation
Testing
Verification
Run-time monitoring
09/03/15
What is time?
Time is an essential concept in real-time

systems.
Keeping time using accurate clocks is
required to ensure correct operations.
Master source: Pariss International Atomic
Time (TAI - Temps Atomique International) is
an average of several laboratory atomic
clocks in the world.
09/03/15
What is time?
The earths rotational rate slows by a few

miliseconds each day.
Universal Time Coordination (UTC) is
another master time source that performs
leap corrections to the time provided by TAI,
making the time length of every natural solar
day constant.
09/03/15
10
Clocks synchronization
UTC time signals are sent from National Institute

of Standards and Technology (NIST) radio
station, in Fort Collins, Colorado, and other UTC
radio stations to specialized receivers.
Selected radios, receiver-clocks, some phoneanswering machines, etc, have the ability to
receive these UTC signals to maintain accurate
clocks.
Depending on the location of the receiver, the
clocks synchronization should take into account
the delay in receiving the UTC signal.
09/03/15
11
Wall clock or absolute time
For computers whose time is kept by quartzbased computer clocks, the clocks should be
periodically synchronized such that they
maintain a bounded drift relative to UTC.
In this course, when we want refer to wall
clock or absolute time, we refer to the
standard time provided by a bounded-drift
computer clock on UTC.
So, there is a mapping
clock: RealTime StandardClockTime
09/03/15
12
A system that should produce the result in a

certain time.
Example: Anti-lock braking controller:
When the driver of a car applies the brake, the

anti-lock braking controller analyzes the
environment in which the controller is embedded
(car speed, road surface, direction of travel) and
activates the brake with the appropriate frequency
within fractions of a second.
Both the result (brake activation) and the time at
which the result is produced are important in
ensuring the safety of the car and passengers.
09/03/15
13
Real-time (computer)
systems
Many years ago, there were only non-real
time computer systems (e.g., old cars braking

controller).
Recently, computer hardware and software
are embedded in real-time systems to monitor
and control their operations (these systems
are called real-time computer systems or
embedded systems).
Examples: the computerized version of the cars

braking controller, avionics, multimedia tools, etc.
09/03/15
14
Distinguishing embedded
and real-time systems
Real-time system: meets timing constraints

and respects the functional requirements.
Real-time systems
Embedded systems
(get a *) What is an embedded system?
Answer: It is a part of another system.
09/03/15
15
Correctness of real-time
systems
Satisfaction of logical/functional constraints:
The result (e.g., brake activation) should be

correct.
Satisfaction of timing constraints:
The time at which the result is produced is also

very important (e.g., pressing the brakes should
instruct the computer system to stop the car in a
certain amount of time).
09/03/15
16
A model of a real-time
system
X:
space of sensor input
D: decision map
vectors
x(t) is the value of x at
time t
Y: space of decision
vectors
y(t) is the value of y at
X
time t
S: space of state vectors
T: set of timing
constraints
I: set of integrity
constraints
09/03/15
A
Y
D
SXSY
D(s,x)=(s,y) means
that given s and x at
time t, then D
determines the next
decision y and system
state s at time t+1.
A: relation over X and
Y about the effect of a
control decision on the
external world.
17
A model of a real-time system.

Example
Anti-lock braking controller:
X = the vector consisting of (wheel sensors)

S = the vector consisting of (car speed, direction of
travel)
Y = the vector consisting of (frequency)
A = the environmental constraint as a relation over Y
and X
D = the decision map that based on the S X value,
it gives a value from S Y
T = the timing constraint that requests the braking
mechanism to pump the brakes at a higher frequency
within 100ms.
09/03/15
18
Anti-lock braking controller.

Comments
The frequency (decision Y) depends on S

and X.
Example: if the car is turning (direction

component) and the wheel sensor detects a wet
road, then the frequency is higher (system pumps
the brake more times/sec to avoid skid).
09/03/15
19
Analysis techniques
Simulation
Testing
Verification
Run-time monitoring
09/03/15
20
Simulation
Means constructing a model of an existing system to

be studied or a system to be built and then executing
actions allowed in this model.
The model can be:
a physical entity (e.g., scale clay model) or

a computer representation.
Comparison:
A computer model is usually less costly than a physical

model.
A computer model can represent a non-computer entity (e.g.,
airplane, component) or a computer entity (computer system,
program).
09/03/15
21
Simulation
Both physical and computer models are called

simulators of the actual systems.
A simulator can carry out simulated executions
of the simulated system and can display the
outcomes of these executions.
Examples:
A physical model of an airplane in a wind tunnel

shows the aerodynamics of the simulated plane;
A software model can simulate the behavior of an
automobile crashing into a concrete barrier, showing
the effects on the occupants.
09/03/15
22
Simulation
Is an inexpensive way to study the behavior

of the simulated system and to study different
ways to implement the actual system.
If we detect behavior or events that are
inconsistent with the specification and safety
assertion, we can revise the model and
actual system to be built.
09/03/15
23
Simulation. Target system
Different levels of details of the actual system

(called also target system) can be modeled
and its events simulated by a simulator.
Example: when designing and simulating the
cockpit of an aircraft, we can restrict attention
to that particular component by simulating
only the cockpit with inputs and outputs to the
other aircraft components, without simulating
the behavior of the entire aircraft.
09/03/15
24
Simulation techniques
Real-time-event simulation
Discrete-event simulation
Hybrid simulation
09/03/15
25
Real-time-event simulation
Example: a physical scale model of an

automobile performs its actions in real-time
and the observable events are recorded in
real-time (crash testing simulator needs
instruments of recording events in real-time).
When the physical model is an implemented
target, the simulation is called testing.
09/03/15
26
Discrete-event simulation
Uses a logical clock and is usually software-based.

The variety of systems that can be simulated by
software-based is not limited by the speed at which
the hardware executes the simulator since the
simulated actions and events do not occur in real-time.
Rather, they can take place according to the speed of
the simulator hardware and the instructions in the
simulator program.
Example: simulation of a network of computers in a
single-processor system.
09/03/15
27
Hybrid simulation
The simulator works with a partial

implementation of the target system by acting
as the non-implemented part.
The hybrid simulator makes it possible to
predict the performance and behavior of the
target system once it is completely
implemented.
09/03/15
28
Simulation. Disadvantages
Simulation is not able to model all possible

event-action sequences in the target system
where the domain of possible sequences of
observable events is infinite.
Even if the domain is finite, the number of
possible sequence of events is so large that
the most powerful computer resources or
physical instruments may not be able to trace
through all possible sequences of events in the
simulated target system.
09/03/15
29
Testing
Is a technique for detecting errors or problems

in implemented software, hardware, or noncomputer systems.
It consists of executing or operating the
system to be tested using a finite set of inputs
and then checking to see if the corresponding
outputs or behavior are correct with respect to
the specifications.
To test a real-time system, the values as well
as the timing of the inputs are important.
09/03/15
30
Approaches for testing
Exhaustive testing
Functional testing
Structural testing
Code reading
09/03/15
31
Exhaustive testing
Considering every possible input values to be

checked against the expected answers is not
practical for larger systems.
For systems with infinite number of possible
inputs, this approach is of course not viable.
09/03/15
32
Functional testing
Uses a black-box approach in which the

programmer creates test data from the program
specification using one or a combination of
techniques such as boundary value analysis and
equivalence partitioning.
The program is executed using these test data as
input, and the corresponding behavior and output
are compared with those described in the program
specification.
If the program behavior or output deviates from the
specification, the programmer attempts to identify
the erroneous part of the program and correct it.
09/03/15
33
Structural testing
Is a white-box technique in which the

programmer examines the source code of the
program and then creates test data for
program execution based on the percentage
of the programs statements executed.
09/03/15
34
Code reading
Code reading by stepwise abstraction

requires the programmer to identify major
modules in the program, determine their
functions, and compose these functions to
determine a function for the whole program.
The programmer then compares this derived
function with the intended function as
described by the program specification.
09/03/15
35
Verification
Simulation and testing can reveal errors in

the simulated or actual system, but usually
cannot guarantee that the system satisfies a
set of requirements.
To apply formal verification techniques to a
real-time system, we must first specify the
system requirements and then the system to
be implemented using an unambiguous
specification language.
09/03/15
36
Verification. Personnel
Applications expert:
He/she could be a programmer or a system designer;
Formal methods expert:
A formal methods expert collaborates with the

applications expert to write the requirements and
system specification.
Once these specifications are written, the formal
methods expert can verify whether the system
specification satisfies the specified requirements
using his/her favorite formal verification methods and
tools.
09/03/15
37
Specification of real-time
systems
Structurally and functionally specification (how

the real-time system components work as well
as their functions and operations):
Mechanical components
Electrical components
Electronic components
Behavioral specification
The result of each component in response to an

internal or external sequence of events.
09/03/15
38
Example: real-time anti-lock

braking system in an
automobile
Structural-functional specification refers to:
Braking system components and sensors

How they are interconnected, and
How the actions of each component affect the other
Example: how to connect the wheel sensors to the central
decision-making computer that controls the brake mechanism.
Behavioral specification refers to:
Events and effects

Example: when the wheel sensors detect wet road conditions,
the decision-making computer will instruct the brake
mechanism to pump the brakes at a higher frequency within
100ms.
09/03/15
39
Timing Constraints
Behavioral specification without the

complexity of the structural specification often
suffices.
We restrict the specification language to
handle only timing relations.
09/03/15
40
Specification and safety

assertion
An implementation of a real-time system is

built from the structural-functional
specification.
An implementation is correct (faithful) if
The behavioral specification (denoted as SP)

implies safety assertion (denoted as SA).
In other words, we have to check whether SP
SA is a theorem or not.
09/03/15
41
Verification of timing
properties
In checking SP SA, we may have the cases:

(safe) SA is a theorem derivable from SP;
(inherently unsafe) SA is unsatisfiable with
respect to SP;
(safe if additional constraints are added) the
negation of SA is satisfiable under certain
conditions.
09/03/15
42
Run-time monitoring
Motivation:
Despite simulation, testing, and verification, there

may be a system behavior that was not
anticipated.
This unexpected behavior may be because
events and actions were not modeled by the static
analysis tools or may be the result of making
simplified assumptions about the real-time
systems.
09/03/15
43
Run-time monitoring (cont)
So, there is a need to monitor the execution

of the real-time system and to make the
appropriate adjustments in response to a
monitored behavior that violates the specified
safety and progress constraints.
Even if the real-time system meets the
specified safety and progress constraints at
run-time, monitoring may provide information
that can improve the performance and
reliability of the monitored system.
09/03/15
44
The monitoring system
The monitored real-time system is the target

system and its components, such as
programs, are called target programs.
The monitoring system is the system used to
monitor and record the behavior of the target
system.
It consists of instrumentation programs,
instrumentation hardware, and other
monitoring modules.
It records the behavior of interest of the target
system and produces event traces.
09/03/15
45
Monitoring techniques
Intrusive monitoring
Non-intrusive monitoring
The availability of monitoring systems does not
mean that we can relax on the task of stringent
pre-run-time analysis and verification of the
target system.
Rather, monitoring should serve as an additional
guarantee on the safety and reliability of the
safety-critical target real-time systems.
09/03/15
46
Intrusive monitoring
Uses the resources of the target system to record its

behavior and thus may alter the actual behavior of
the target system.
Examples:
(computer example) Insertion of print() statements in a

target program to display the values of the program
variables.
(computer example) Extra statements inserted in the
programs of computing nodes to record their states and the
exchanges of these state variables.
(non-computer example) Addition of speed and impactforce sensing instruments in an automobile to record its
performance.
09/03/15
47
Non-intrusive monitoring
Does not affect the timing and ordering

events of the monitored target system.
This is important in monitoring of real-time
systems where both timing and ordering of
events are critical to the safety of the realtime systems.
Example: use of additional processor(s) to
run monitoring programs used to record the
target systems behavior in a real-time
environment.
09/03/15
48
Summary

What is time?
Simulation
Testing
Verification
Run-time monitoring
09/03/15
49
Reading suggestions
Chapter 1 of [Cheng; 2002]

Chapter 1 of [Kopetz; 1997]
Chapter 1 of [Stankovic, Spuri, Ramamritham,
Buttazzo; 1998]
09/03/15
50
Coming up next
Real-time scheduling and schedulability

analysis (Chapter 3 of [Cheng; 2002])
09/03/15
51
Thank you for your

attention!
Questions?
09/03/15
52

Lecture 1

Uploaded by

Document Information

Original Description:

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Lecture 1

Uploaded by

Copyright:

Available Formats

Real-Time Systems,

Module homepage: Blackboard

CPSC-4328 is a 3 credit points module

Active participation in class: 10%

Code of Conduct Policy:

Dr. Stefan Andrei, stefan.andrei@lamar.edu

Lectures based of the book:

Albert M.K. Cheng: Real-time systems. Scheduling, Analysis, and

John A. Stankovic, Marco Spuri, Krithi Ramamritham, Giorgio Buttazzo:

It is recommended to be already familiar with:

What is this course all about?

Real-time scheduling algorithms and

Overview of this course

Introduction in Real-Time Systems

Reminder of last lecture

Overview of this lecture

Introduction in Real-Time Systems

Time is an essential concept in real-time

The earths rotational rate slows by a few

UTC time signals are sent from National Institute

Wall clock or absolute time

What is a real-time system?

A system that should produce the result in a

When the driver of a car applies the brake, the

time computer systems (e.g., old cars braking

Examples: the computerized version of the cars

Real-time system: meets timing constraints

(get a *) What is an embedded system?

Answer: It is a part of another system.

Satisfaction of logical/functional constraints:

The result (e.g., brake activation) should be

Satisfaction of timing constraints:

The time at which the result is produced is also

A model of a real-time system.

X = the vector consisting of (wheel sensors)

Anti-lock braking controller.

The frequency (decision Y) depends on S

Example: if the car is turning (direction

Means constructing a model of an existing system to

a physical entity (e.g., scale clay model) or

A computer model is usually less costly than a physical

Both physical and computer models are called

A physical model of an airplane in a wind tunnel

Is an inexpensive way to study the behavior

Simulation. Target system

Different levels of details of the actual system

Example: a physical scale model of an

Uses a logical clock and is usually software-based.

The simulator works with a partial

Simulation is not able to model all possible

Is a technique for detecting errors or problems

Approaches for testing

Considering every possible input values to be

Uses a black-box approach in which the

Is a white-box technique in which the

Code reading by stepwise abstraction

Simulation and testing can reveal errors in

He/she could be a programmer or a system designer;

Formal methods expert:

A formal methods expert collaborates with the

Structurally and functionally specification (how

The result of each component in response to an