SlideShare a Scribd company logo

Fault tolearant system

Download as PPT, PDF
A
arvinthsaran

A fault tolerant system is able to continue operating despite failures in hardware or software components. It gracefully degrades performance as more faults occur rather than collapsing suddenly. The goal is to ensure the probability of total system failure remains acceptably small. Redundancy is a key technique, with hardware redundancy using multiple redundant components and voting on outputs to mask faults. Static pairing and N modular redundancy are two hardware redundancy methods.

Technology
1 of 40
Downloaded 88 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
FAULT TOLEARANT SYSTEM
 A fault tolerant system is a system which is a able to continue operating despite the failure of a limited subset of their hardware or software.  They are gracefully degradable i.e. as the size of the faulty set increases, the system wont collapse suddenly but continue executing, part of its workload.  The goal of this design is to ensure that the probability of system failure is acceptably small.
FAULT TYPES Hardware Fault: A hardware fault is some physical defect that can cause a component to malfunction. E.g. A broken wire or the output of a logic gate that is perpetually stuck at some logic value(0 or 1). Software Fault: A software fault is bug that can cause the program to fail for a given set of inputs.
ERROR  Error is a manifestation of a fault. e.g. A broken wire will cause an error if the system tries to propagate a signal through it. A program that has a fault that induces incorrect output for some set of inputs will generate errors, if that set of inputs is applied.
FAULT LATENCY The fault latency is the duration between the onset of a fault and its manifestation as an error. Since the faults themselves are invisible to the outside world, only showing themselves when they cause errors. Such latency will impact the reliability of the overall system.
ERROR RECOVERY It is the process by which the system attempts to recover from the effects of an error. TYPES OF ERROR RECOVERY Forward Error Recovery: In this type the error is masked without any computations having to be redone. Backward Error Recovery: In this type the system is rolled back to moment in the time before the error is believed to be occurred and computation is carried out again. It consumes additional time to mask the effects of failure.
CAUSES FOR FAULTS Errors in the specification or design. Defects in the components Environmental effects.
Errors In The Specification Or Design This error arises due to the communication gap between the person who writes the specification and the system designer. The specification is the link between design process and real world application. If specification is wrong everything that proceeds from it is likely to be wrong.
Defects In Components This fault arise due to defects caused by the wear and tear of use. E.g. A mosfet may fail due to electro migration, which is the drifting away overtime of metal atoms towards the cathode.
Environmental Effects This fault arise due to operating environment .  Devices can be subjected to whole array of stresses, depending on the application. Poor ventilation or excessively high ambient temperatures can melt components or damage them. e.g If a computer is in missile, it can undergo high g-forces and vibrational stress.
FAULT TYPES Faults are classified according to their temporal behavior and output behavior. A fault is said to be active when it is physically capable of generating errors and to be benign when it is not.
TEMPORAL BEHAVIOR CLASSIFICATION  Fault types: Permanent, intermittent, transient. A permanent fault does not die away with time, but remains until it is repaired or the affected unit is replaced. An intermittent fault cycles between the fault- active and fault benign states. A transient fault dies away after some time.
Intermittent faults can be caused by loosely connected components. Transient faults can be caused by environmental effects. e.g. If there is a burst of electromagnetic radiation and the memory is not properly shielded, the contents of the memory can be altered without the memory chips themselves suffering any structural damage. When the memory is rewritten, the fault will go away.
OUTPUT BEHAVIOR CLASSIFICATION Malicious faults • Inconsistent output, harder to neutralize these errors • It behaves arbitrarily Non malicious faults • Consistent output errors • Easier to neutralize these errors
Fail stop Responds to up to a certain maximum number of failures by simply stopping, rather than putting out incorrect outputs. Fail safe Its failure mode is biased so that the application process does not suffer catastrophe upon failure.
INDEPENDENCE AND CORRELATION Component failures may be independent or correlated. Independent:A failure is said to be independent if it does not directly or indirectly cause another failure. Correlated:If the failure is said to be correlated if they are related in some way. e.g. They may be triggered by same cause or one of them might cause the others to occur.
FAULT DETECTION There two ways to determine that a processor is malfunctioning • Online • Offline Online Detection: •This detection goes in parallel with normal system operation •It is done by checking the behavior that is inconsistent with correct operation. • Indication for faulty processor -Branching to an invalid destination. -Fetching an opcode from a location, which is not containing data.
- Writing into a portion of memory to which the process has no write access. - Fetching an illegal opcode. - Inactive for more than a prescribed period. • A monitor is associated with each processor, looking for signs that the processor is faulty. The monitor watches the data and address lines. • Another approach is to have multiple processors, which are supposed to put out the same result , and compare the results.If a discrepancy arise it indicates an fault.
OFFLINE DETECTION It is done by running a diagnostic test. These test are scheduled just like ordinary task.
FAULT AND ERROR CONTAINMENT The process of preventing the error spreading from one part to another part of the system is called containment When a fault or error occurs in one part of a system, it will spread through the system like an infectious disease. e.g. An fault in one part of the system might cause large voltage swings in another.  A fault-free processor can give erroneous results, when getting input from a faulty unit.
FAULT CONTAINMENT IS ACCOMPLISHED BY The system is divided into fault and error containment zones(FCZ,ECZ). An FCZ is a subset of the system that operates correctly despite arbitrary logical or electrical faults outside the subset. i.e. the failure of some part of the computer outside an FCZ cannot cause any element inside the FCZ to fail.
 Hardware inside an fcz must be isolated from hardware outside it.It should withstand either a short- circuit or the aplication of the maximum voltage imposed on the lines connecting on FCZ to the outside world.  Each fcz should have an independent power supply and its own clocks. These clocks are synchronized with the clocks in other FCZ’s ,but a malfunction in the outside clocks wont affect the clocks inside the fcz.  The function of an ECZ is to prevent errors from propagating across zone boundaries. This is achieved by voting redundant outputs.
REDUNDANCY FTS consist of properly managed redundancy, i.e. the system is to kept running despite the failure of some its parts. It must have spare capacity to begin with. TYPES OF REDUNDANCY • Hardware redundancy • Software redundancy • Time redundancy • Information redundancy
Hardware redundancy Hardware redundancy is the use of additional hardware to compensate for failures. This can be accomplished in two ways. •One of them is fault detection, correction, and masking. Fault detection: Multiple hardware units may be assigned to do the same task in parallel and their results are compared. If one are more units are faulty, we can expect this to show up as a disagreement in the result.
Fault Masking: If minority of the units are faulty and a majority of the units produce the same output, the majority result can considered and failure effect is masked. Fault correction: If minority of the units disagree, the fault is detected. So the computation is repeated on other processors to correct that fault. • The second one in hardware redundancy is replacing the malfunctioning unit .It is possible that the system can be designed so that faulty units can be easily replaced with spare ones.
Two methods used in hardware redundancy •Static Pairing •N modular Redundancy (NMR)
STATIC PAIRING
•Hardwire processors in pairs and to discard the entire pair if one of the processors fails, this is very simple scheme •The Pairs runs identical software with identical inputs and should generate identical outputs. If the output is not identical, then the pair is non functional, so the entire pair is discarded •This approach is depicted in the following figure, and it will work only when the interface is working fine and both the processors do not fail identically and around the same time
• The interface is monitored by means of a monitor. If the interface fails, the monitor takes care and if the monitor fails, the interface takes care. If both interface and monitor fails, then the system is down.
N MODULAR REDUNDANCY
•It is a scheme for Forward Error Recovery. •It works with N processors instead of one and voting on their output and N is usually odd. •NMR can be illustrated by means of the following two ways There are N voters and the entire cluster produces N outputs There is just one voter
• NMR clusters are designed to allow the purging of malfunctioning units. That is, when a failure is detected, the failed unit is checked to see whether or not the failure is transient. If it is not, it must be electrically isolated from the rest of the cluster and a replacement unit is switched on. The faster the unit is replaced, the more reliable the cluster.
• Purging can be done either by hardware or by the operating system. • Self purging consists of a monitor at each unit comparing its output against the voted output. If there is a difference, the monitor disconnects the unit from the system. • The monitor can be described as a finite state machine with two states connect and isolate. There are two signals, diff which is set to 1 whenever the module output disagrees with the voter output and reconnect, which is a command from the system to reconnect the module
Fault tolearant system
SOFT WARE REDUNDANCY •Software faults are not like hardware faults i.e. software never wears out , the faults are not generated spontaneously during system operation. •Software faults can be regarded as faults in design. •For software redundancy simply replicating the same software N times will not work, all N copies will fail for the same inputs. •Instead N versions of the software can be implemented. The N versions can be developed by independent teams, with no contact between them.
• Each version is being developed by a team of developers who never communicated with each other • To minimize the common mode failures  The specifications should be written in formal terms and are subject to rigorous process of checking  Multiple software versions should be developed in different programming languages.  Nature of tools that are being used should be selected properly.  Training and quality of the programmers should be maintainded.
There are two approaches for that •N Version Programming •Recovery Block Approach
N Version Programming
Recovery Block Approach
THANK U

More Related Content

PPTX
SPACE DIVISION MULTIPLE ACCESS (SDMA) SATELLITE COMMUNICATION
Soumen Santra
 
PPTX
Fault tolerance techniques tsp
Pradeep Kumar TS
 
PPT
Multiple access techniques for wireless communications
METHODIST COLLEGE OF ENGG & TECH
 
PPTX
cellular concepts in wireless communication
asadkhan1327
 
PPTX
Fault tolerance techniques
RajalakshmiSermadurai
 
PPTX
Basic cellular system
ShubhamMishra485
 
PPTX
Packet radio protocol
Priya Kaushal
 
PPTX
Cellular network
shreb
 
SPACE DIVISION MULTIPLE ACCESS (SDMA) SATELLITE COMMUNICATION
Soumen Santra
 
Fault tolerance techniques tsp
Pradeep Kumar TS
 
Multiple access techniques for wireless communications
METHODIST COLLEGE OF ENGG & TECH
 
cellular concepts in wireless communication
asadkhan1327
 
Fault tolerance techniques
RajalakshmiSermadurai
 
Basic cellular system
ShubhamMishra485
 
Packet radio protocol
Priya Kaushal
 
Cellular network
shreb
 

What's hot (20)

PPTX
Gprs architecture ppt
Arpita Sanghani
 
PDF
Issues in routing protocol
Pradeep Kumar TS
 
PDF
CSMA/CD
sainadh kamatala
 
PPTX
Wsn unit-1-ppt
Swathi Ch
 
PPT
Chapter 7 multiple access techniques
Kaushal Kabra
 
PPTX
Multiplexing and Multiple Access
Muhammad Ridwanul Hoque
 
PPTX
Chapter 3 Charateristics and Quality Attributes of Embedded System
Moe Moe Myint
 
PPT
File replication
Klawal13
 
PDF
Mobile computing : Indirect TCP
Sushant Kushwaha
 
PPTX
Small scale fading and multipath measurements
Vrince Vimal
 
PPSX
Mac protocols of adhoc network
shashi712
 
PPTX
Transmission impairments(presentation)
Vivek Kumar
 
PPT
Csma
myrajendra
 
PPTX
Csma protocols
Manal Shah
 
PPTX
TDMA
Express News
 
PPT
C11 support for-mobility
Rio Nguyen
 
PPTX
Task assignment and scheduling
RajalakshmiSermadurai
 
PPT
Multiple acces techniques
paramsidhu89
 
PDF
Wireless Network Architecture
Pawandeep Singh
 
PDF
Module3 part1
Anuradha Shenoy
 
Gprs architecture ppt
Arpita Sanghani
 
Issues in routing protocol
Pradeep Kumar TS
 
CSMA/CD
sainadh kamatala
 
Wsn unit-1-ppt
Swathi Ch
 
Chapter 7 multiple access techniques
Kaushal Kabra
 
Multiplexing and Multiple Access
Muhammad Ridwanul Hoque
 
Chapter 3 Charateristics and Quality Attributes of Embedded System
Moe Moe Myint
 
File replication
Klawal13
 
Mobile computing : Indirect TCP
Sushant Kushwaha
 
Small scale fading and multipath measurements
Vrince Vimal
 
Mac protocols of adhoc network
shashi712
 
Transmission impairments(presentation)
Vivek Kumar
 
Csma
myrajendra
 
Csma protocols
Manal Shah
 
TDMA
Express News
 
C11 support for-mobility
Rio Nguyen
 
Task assignment and scheduling
RajalakshmiSermadurai
 
Multiple acces techniques
paramsidhu89
 
Wireless Network Architecture
Pawandeep Singh
 
Module3 part1
Anuradha Shenoy
 
Ad

Viewers also liked (20)

PPT
Fault Tolerance System
prakashjjaya
 
PPTX
Fault tolerant presentation
skadyan1
 
PPT
Real time database
arvinthsaran
 
PPT
Main MeMory Data Base
Siva Rushi
 
PPT
Fault tolerance
Lekashri Subramanian
 
PPT
Vxworks
ismaeil nethead
 
PPTX
Fault tolerance
Aman Balutia
 
PPTX
Real time database (MDARTS)
Pradeep Kumar TS
 
PPTX
Fault tolerance techniques for real time operating system
anujos25
 
PPTX
Fault management presentation
ardhita banu adji
 
PDF
Fault Management System (OSS)
Riswan
 
PDF
Be information technology2008course
Anuj Sharma
 
PPT
Chapter 19 - Real Time Systems
Wayne Jones Jnr
 
PPTX
Ch21 real time software engineering
software-engineering-book
 
PPT
Introduction to Real-Time Operating Systems
coolmirza143
 
PPT
Real Time Systems & RTOS
Vishwa Mohan
 
PPTX
In-memory Databases
Robert Friberg
 
PDF
Clock Synchronization in Distributed Systems
Zbigniew Jerzak
 
PPTX
Fault tolerance in distributed systems
sumitjain2013
 
PDF
Real Time Analytics: Algorithms and Systems
Arun Kejariwal
 
Fault Tolerance System
prakashjjaya
 
Fault tolerant presentation
skadyan1
 
Real time database
arvinthsaran
 
Main MeMory Data Base
Siva Rushi
 
Fault tolerance
Lekashri Subramanian
 
Vxworks
ismaeil nethead
 
Fault tolerance
Aman Balutia
 
Real time database (MDARTS)
Pradeep Kumar TS
 
Fault tolerance techniques for real time operating system
anujos25
 
Fault management presentation
ardhita banu adji
 
Fault Management System (OSS)
Riswan
 
Be information technology2008course
Anuj Sharma
 
Chapter 19 - Real Time Systems
Wayne Jones Jnr
 
Ch21 real time software engineering
software-engineering-book
 
Introduction to Real-Time Operating Systems
coolmirza143
 
Real Time Systems & RTOS
Vishwa Mohan
 
In-memory Databases
Robert Friberg
 
Clock Synchronization in Distributed Systems
Zbigniew Jerzak
 
Fault tolerance in distributed systems
sumitjain2013
 
Real Time Analytics: Algorithms and Systems
Arun Kejariwal
 
Ad

Similar to Fault tolearant system (20)

PPTX
Fault Finding.pptx
MUST
 
PDF
SE2_Lec 20_Software Testing
Amr E. Mohamed
 
PPTX
Error detector for the whole thing is the same as the
ABDULRAHMANSANI3
 
PDF
Trouble Shooting PC
Debashish Sen
 
PPT
fault-dectecting oil and gas process safety
Okeke Livinus
 
PPTX
Fault Tolerance System
Ehsan Ilahi
 
PPT
Chapter- Five fault powers poin lecture
borchala1
 
PPTX
Fault tolerance techniques
ECEDepartmentJSREC
 
PPTX
real time systems fault tolerance, Redundancy
4132lenin6497ram
 
PPTX
RTS fault tolerance, Reliability evaluation
4132lenin6497ram
 
PDF
SE2018_Lec 19_ Software Testing
Amr E. Mohamed
 
PDF
Parallel and Distributed Computing Chapter 12
AbdullahMunir32
 
PPTX
Types of Computer System Errors.pptx
ArjunePantallano1
 
PPTX
MICROPROCESSOR_Anurad gor systej ndjksauduiha MAITY.pptx
vapopi5316
 
PDF
Proposed Algorithm for Surveillance Applications
Editor IJCATR
 
PDF
Troubleshooting & Tools
Prabu U
 
PPTX
priority interrupt computer organization
chnrketan
 
PPTX
CS304PC:Computer Organization and Architecture Session 15 program control.pptx
Guru Nanak Technical Institutions
 
PDF
IRJET- FPGA Implementation of an Improved Watchdog Timer for Safety Critical ...
IRJET Journal
 
PDF
RTOS - Real Time Operating Systems
Emertxe Information Technologies Pvt Ltd
 
Fault Finding.pptx
MUST
 
SE2_Lec 20_Software Testing
Amr E. Mohamed
 
Error detector for the whole thing is the same as the
ABDULRAHMANSANI3
 
Trouble Shooting PC
Debashish Sen
 
fault-dectecting oil and gas process safety
Okeke Livinus
 
Fault Tolerance System
Ehsan Ilahi
 
Chapter- Five fault powers poin lecture
borchala1
 
Fault tolerance techniques
ECEDepartmentJSREC
 
real time systems fault tolerance, Redundancy
4132lenin6497ram
 
RTS fault tolerance, Reliability evaluation
4132lenin6497ram
 
SE2018_Lec 19_ Software Testing
Amr E. Mohamed
 
Parallel and Distributed Computing Chapter 12
AbdullahMunir32
 
Types of Computer System Errors.pptx
ArjunePantallano1
 
MICROPROCESSOR_Anurad gor systej ndjksauduiha MAITY.pptx
vapopi5316
 
Proposed Algorithm for Surveillance Applications
Editor IJCATR
 
Troubleshooting & Tools
Prabu U
 
priority interrupt computer organization
chnrketan
 
CS304PC:Computer Organization and Architecture Session 15 program control.pptx
Guru Nanak Technical Institutions
 
IRJET- FPGA Implementation of an Improved Watchdog Timer for Safety Critical ...
IRJET Journal
 
RTOS - Real Time Operating Systems
Emertxe Information Technologies Pvt Ltd
 

Recently uploaded (20)

PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
KodekX | Application Modernization Development
KodekX
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 

Fault tolearant system

  • 2.  A fault tolerant system is a system which is a able to continue operating despite the failure of a limited subset of their hardware or software.  They are gracefully degradable i.e. as the size of the faulty set increases, the system wont collapse suddenly but continue executing, part of its workload.  The goal of this design is to ensure that the probability of system failure is acceptably small.
  • 3. FAULT TYPES Hardware Fault: A hardware fault is some physical defect that can cause a component to malfunction. E.g. A broken wire or the output of a logic gate that is perpetually stuck at some logic value(0 or 1). Software Fault: A software fault is bug that can cause the program to fail for a given set of inputs.
  • 4. ERROR  Error is a manifestation of a fault. e.g. A broken wire will cause an error if the system tries to propagate a signal through it. A program that has a fault that induces incorrect output for some set of inputs will generate errors, if that set of inputs is applied.
  • 5. FAULT LATENCY The fault latency is the duration between the onset of a fault and its manifestation as an error. Since the faults themselves are invisible to the outside world, only showing themselves when they cause errors. Such latency will impact the reliability of the overall system.
  • 6. ERROR RECOVERY It is the process by which the system attempts to recover from the effects of an error. TYPES OF ERROR RECOVERY Forward Error Recovery: In this type the error is masked without any computations having to be redone. Backward Error Recovery: In this type the system is rolled back to moment in the time before the error is believed to be occurred and computation is carried out again. It consumes additional time to mask the effects of failure.
  • 7. CAUSES FOR FAULTS Errors in the specification or design. Defects in the components Environmental effects.
  • 8. Errors In The Specification Or Design This error arises due to the communication gap between the person who writes the specification and the system designer. The specification is the link between design process and real world application. If specification is wrong everything that proceeds from it is likely to be wrong.
  • 9. Defects In Components This fault arise due to defects caused by the wear and tear of use. E.g. A mosfet may fail due to electro migration, which is the drifting away overtime of metal atoms towards the cathode.
  • 10. Environmental Effects This fault arise due to operating environment .  Devices can be subjected to whole array of stresses, depending on the application. Poor ventilation or excessively high ambient temperatures can melt components or damage them. e.g If a computer is in missile, it can undergo high g-forces and vibrational stress.
  • 11. FAULT TYPES Faults are classified according to their temporal behavior and output behavior. A fault is said to be active when it is physically capable of generating errors and to be benign when it is not.
  • 12. TEMPORAL BEHAVIOR CLASSIFICATION  Fault types: Permanent, intermittent, transient. A permanent fault does not die away with time, but remains until it is repaired or the affected unit is replaced. An intermittent fault cycles between the fault- active and fault benign states. A transient fault dies away after some time.
  • 13. Intermittent faults can be caused by loosely connected components. Transient faults can be caused by environmental effects. e.g. If there is a burst of electromagnetic radiation and the memory is not properly shielded, the contents of the memory can be altered without the memory chips themselves suffering any structural damage. When the memory is rewritten, the fault will go away.
  • 14. OUTPUT BEHAVIOR CLASSIFICATION Malicious faults • Inconsistent output, harder to neutralize these errors • It behaves arbitrarily Non malicious faults • Consistent output errors • Easier to neutralize these errors
  • 15. Fail stop Responds to up to a certain maximum number of failures by simply stopping, rather than putting out incorrect outputs. Fail safe Its failure mode is biased so that the application process does not suffer catastrophe upon failure.
  • 16. INDEPENDENCE AND CORRELATION Component failures may be independent or correlated. Independent:A failure is said to be independent if it does not directly or indirectly cause another failure. Correlated:If the failure is said to be correlated if they are related in some way. e.g. They may be triggered by same cause or one of them might cause the others to occur.
  • 17. FAULT DETECTION There two ways to determine that a processor is malfunctioning • Online • Offline Online Detection: •This detection goes in parallel with normal system operation •It is done by checking the behavior that is inconsistent with correct operation. • Indication for faulty processor -Branching to an invalid destination. -Fetching an opcode from a location, which is not containing data.
  • 18. - Writing into a portion of memory to which the process has no write access. - Fetching an illegal opcode. - Inactive for more than a prescribed period. • A monitor is associated with each processor, looking for signs that the processor is faulty. The monitor watches the data and address lines. • Another approach is to have multiple processors, which are supposed to put out the same result , and compare the results.If a discrepancy arise it indicates an fault.
  • 19. OFFLINE DETECTION It is done by running a diagnostic test. These test are scheduled just like ordinary task.
  • 20. FAULT AND ERROR CONTAINMENT The process of preventing the error spreading from one part to another part of the system is called containment When a fault or error occurs in one part of a system, it will spread through the system like an infectious disease. e.g. An fault in one part of the system might cause large voltage swings in another.  A fault-free processor can give erroneous results, when getting input from a faulty unit.
  • 21. FAULT CONTAINMENT IS ACCOMPLISHED BY The system is divided into fault and error containment zones(FCZ,ECZ). An FCZ is a subset of the system that operates correctly despite arbitrary logical or electrical faults outside the subset. i.e. the failure of some part of the computer outside an FCZ cannot cause any element inside the FCZ to fail.
  • 22.  Hardware inside an fcz must be isolated from hardware outside it.It should withstand either a short- circuit or the aplication of the maximum voltage imposed on the lines connecting on FCZ to the outside world.  Each fcz should have an independent power supply and its own clocks. These clocks are synchronized with the clocks in other FCZ’s ,but a malfunction in the outside clocks wont affect the clocks inside the fcz.  The function of an ECZ is to prevent errors from propagating across zone boundaries. This is achieved by voting redundant outputs.
  • 23. REDUNDANCY FTS consist of properly managed redundancy, i.e. the system is to kept running despite the failure of some its parts. It must have spare capacity to begin with. TYPES OF REDUNDANCY • Hardware redundancy • Software redundancy • Time redundancy • Information redundancy
  • 24. Hardware redundancy Hardware redundancy is the use of additional hardware to compensate for failures. This can be accomplished in two ways. •One of them is fault detection, correction, and masking. Fault detection: Multiple hardware units may be assigned to do the same task in parallel and their results are compared. If one are more units are faulty, we can expect this to show up as a disagreement in the result.
  • 25. Fault Masking: If minority of the units are faulty and a majority of the units produce the same output, the majority result can considered and failure effect is masked. Fault correction: If minority of the units disagree, the fault is detected. So the computation is repeated on other processors to correct that fault. • The second one in hardware redundancy is replacing the malfunctioning unit .It is possible that the system can be designed so that faulty units can be easily replaced with spare ones.
  • 26. Two methods used in hardware redundancy •Static Pairing •N modular Redundancy (NMR)
  • 28. •Hardwire processors in pairs and to discard the entire pair if one of the processors fails, this is very simple scheme •The Pairs runs identical software with identical inputs and should generate identical outputs. If the output is not identical, then the pair is non functional, so the entire pair is discarded •This approach is depicted in the following figure, and it will work only when the interface is working fine and both the processors do not fail identically and around the same time
  • 29. • The interface is monitored by means of a monitor. If the interface fails, the monitor takes care and if the monitor fails, the interface takes care. If both interface and monitor fails, then the system is down.
  • 31. •It is a scheme for Forward Error Recovery. •It works with N processors instead of one and voting on their output and N is usually odd. •NMR can be illustrated by means of the following two ways There are N voters and the entire cluster produces N outputs There is just one voter
  • 32. NMR clusters are designed to allow the purging of malfunctioning units. That is, when a failure is detected, the failed unit is checked to see whether or not the failure is transient. If it is not, it must be electrically isolated from the rest of the cluster and a replacement unit is switched on. The faster the unit is replaced, the more reliable the cluster.
  • 33. • Purging can be done either by hardware or by the operating system. • Self purging consists of a monitor at each unit comparing its output against the voted output. If there is a difference, the monitor disconnects the unit from the system. • The monitor can be described as a finite state machine with two states connect and isolate. There are two signals, diff which is set to 1 whenever the module output disagrees with the voter output and reconnect, which is a command from the system to reconnect the module
  • 35. SOFT WARE REDUNDANCY •Software faults are not like hardware faults i.e. software never wears out , the faults are not generated spontaneously during system operation. •Software faults can be regarded as faults in design. •For software redundancy simply replicating the same software N times will not work, all N copies will fail for the same inputs. •Instead N versions of the software can be implemented. The N versions can be developed by independent teams, with no contact between them.
  • 36. Each version is being developed by a team of developers who never communicated with each other • To minimize the common mode failures  The specifications should be written in formal terms and are subject to rigorous process of checking  Multiple software versions should be developed in different programming languages.  Nature of tools that are being used should be selected properly.  Training and quality of the programmers should be maintainded.
  • 37. There are two approaches for that •N Version Programming •Recovery Block Approach
  • 40. THANK U