Generative Programming for Functional Safety in Mobile Robots

Marian Sorin Adam

Publikation: Bog/antologi/afhandling/rapportPh.d.-afhandlingForskning

Resumé

Safety is a major challenge in robotics, in particular for mobile robots operating in an open and unpredictable environment. Safety certification is desired for commercial robots, but the existing approaches for addressing safety do not provide a clearly defined and isolated programmatic safety layer, with an easily understandable specification for facilitating safety certification. Moreover, mobile robots are advanced systems often implemented using a distributed
architecture where software components are deployed on heterogeneous hardware modules. Many components are key to the overall reliability and safety of the robot, yet reducing the risk of errors by making the software resilient is both complicated and expensive, notably if functional safety requirements have to be fulfilled. A commercially successful robot has to remain safe while providing as much as possible from the functionality required; even in the presence of partial failures. Research into these challenges has resulted in the design and implementation of a rulebased language for enforcing safety constraints, named Declarative Robot Safety (DeRoS). Using DeRoS, safety-critical concerns regarding the robot software can be explicitly declared
separately from the main program. Rather than addressing the individual functionality of specific components, we address the functionality of the system as a whole in terms of externally observable properties of individual components, their communication, and the state of the surrounding execution environment. The effective usage of DeRoS to specify safetyrelated properties of mobile robots and generation of a runtime verification infrastructure for the different controllers has been experimentally demonstrated on ROS-based systems, safety PLCs and microcontrollers.
The key issue of making safety specifications easily understandable has been investigated by recasting the concept of spreadsheets as DSL programming environments, a concept we refer to as spreadsheet-based DSLs (SDSLs). We have developed a DSL named Spreadsheet Grammar Language (SGL) designed to be a systematic tool for generating SDSLs. We researched the feasibility of such SDSLs, among other use cases, as a visual interface for DeRoS by replacing the standard textual syntax and the Eclipse IDE used by DeRoS with the two-dimensional syntax offered by the spreadsheets. Last, the elaboration of an architectural concept providing a flexible way to improve the reliability of existing robot software has been researched, opening up for a wide range of
strategies for graceful degradation in the presence of partial failures. We use standard virtualization techniques to segregate the safety-critical system parts. An automatically generated runtime monitoring component specified using DeRoS is responsible for fast switching between different implementations of the non-critical parts of the system.
OriginalsprogEngelsk
ForlagSyddansk Universitet. Det Tekniske Fakultet
Antal sider352
StatusUdgivet - 2017

Fingeraftryk

Mobile robots
Spreadsheets
DSL
Robots
Specifications
Programmable logic controllers
Microcontrollers
Security systems
Robotics

Citer dette

Adam, M. S. (2017). Generative Programming for Functional Safety in Mobile Robots. Syddansk Universitet. Det Tekniske Fakultet.
Adam, Marian Sorin. / Generative Programming for Functional Safety in Mobile Robots. Syddansk Universitet. Det Tekniske Fakultet, 2017. 352 s.
@phdthesis{e2dc6a98f89649668a866204198b2094,
title = "Generative Programming for Functional Safety in Mobile Robots",
abstract = "Safety is a major challenge in robotics, in particular for mobile robots operating in an open and unpredictable environment. Safety certification is desired for commercial robots, but the existing approaches for addressing safety do not provide a clearly defined and isolated programmatic safety layer, with an easily understandable specification for facilitating safety certification. Moreover, mobile robots are advanced systems often implemented using a distributedarchitecture where software components are deployed on heterogeneous hardware modules. Many components are key to the overall reliability and safety of the robot, yet reducing the risk of errors by making the software resilient is both complicated and expensive, notably if functional safety requirements have to be fulfilled. A commercially successful robot has to remain safe while providing as much as possible from the functionality required; even in the presence of partial failures. Research into these challenges has resulted in the design and implementation of a rulebased language for enforcing safety constraints, named Declarative Robot Safety (DeRoS). Using DeRoS, safety-critical concerns regarding the robot software can be explicitly declaredseparately from the main program. Rather than addressing the individual functionality of specific components, we address the functionality of the system as a whole in terms of externally observable properties of individual components, their communication, and the state of the surrounding execution environment. The effective usage of DeRoS to specify safetyrelated properties of mobile robots and generation of a runtime verification infrastructure for the different controllers has been experimentally demonstrated on ROS-based systems, safety PLCs and microcontrollers.The key issue of making safety specifications easily understandable has been investigated by recasting the concept of spreadsheets as DSL programming environments, a concept we refer to as spreadsheet-based DSLs (SDSLs). We have developed a DSL named Spreadsheet Grammar Language (SGL) designed to be a systematic tool for generating SDSLs. We researched the feasibility of such SDSLs, among other use cases, as a visual interface for DeRoS by replacing the standard textual syntax and the Eclipse IDE used by DeRoS with the two-dimensional syntax offered by the spreadsheets. Last, the elaboration of an architectural concept providing a flexible way to improve the reliability of existing robot software has been researched, opening up for a wide range ofstrategies for graceful degradation in the presence of partial failures. We use standard virtualization techniques to segregate the safety-critical system parts. An automatically generated runtime monitoring component specified using DeRoS is responsible for fast switching between different implementations of the non-critical parts of the system.",
keywords = "Robotics, functional safety, DSL",
author = "Adam, {Marian Sorin}",
year = "2017",
language = "English",
publisher = "Syddansk Universitet. Det Tekniske Fakultet",
address = "Denmark",

}

Adam, MS 2017, Generative Programming for Functional Safety in Mobile Robots. Syddansk Universitet. Det Tekniske Fakultet.

Generative Programming for Functional Safety in Mobile Robots. / Adam, Marian Sorin.

Syddansk Universitet. Det Tekniske Fakultet, 2017. 352 s.

Publikation: Bog/antologi/afhandling/rapportPh.d.-afhandlingForskning

TY - BOOK

T1 - Generative Programming for Functional Safety in Mobile Robots

AU - Adam, Marian Sorin

PY - 2017

Y1 - 2017

N2 - Safety is a major challenge in robotics, in particular for mobile robots operating in an open and unpredictable environment. Safety certification is desired for commercial robots, but the existing approaches for addressing safety do not provide a clearly defined and isolated programmatic safety layer, with an easily understandable specification for facilitating safety certification. Moreover, mobile robots are advanced systems often implemented using a distributedarchitecture where software components are deployed on heterogeneous hardware modules. Many components are key to the overall reliability and safety of the robot, yet reducing the risk of errors by making the software resilient is both complicated and expensive, notably if functional safety requirements have to be fulfilled. A commercially successful robot has to remain safe while providing as much as possible from the functionality required; even in the presence of partial failures. Research into these challenges has resulted in the design and implementation of a rulebased language for enforcing safety constraints, named Declarative Robot Safety (DeRoS). Using DeRoS, safety-critical concerns regarding the robot software can be explicitly declaredseparately from the main program. Rather than addressing the individual functionality of specific components, we address the functionality of the system as a whole in terms of externally observable properties of individual components, their communication, and the state of the surrounding execution environment. The effective usage of DeRoS to specify safetyrelated properties of mobile robots and generation of a runtime verification infrastructure for the different controllers has been experimentally demonstrated on ROS-based systems, safety PLCs and microcontrollers.The key issue of making safety specifications easily understandable has been investigated by recasting the concept of spreadsheets as DSL programming environments, a concept we refer to as spreadsheet-based DSLs (SDSLs). We have developed a DSL named Spreadsheet Grammar Language (SGL) designed to be a systematic tool for generating SDSLs. We researched the feasibility of such SDSLs, among other use cases, as a visual interface for DeRoS by replacing the standard textual syntax and the Eclipse IDE used by DeRoS with the two-dimensional syntax offered by the spreadsheets. Last, the elaboration of an architectural concept providing a flexible way to improve the reliability of existing robot software has been researched, opening up for a wide range ofstrategies for graceful degradation in the presence of partial failures. We use standard virtualization techniques to segregate the safety-critical system parts. An automatically generated runtime monitoring component specified using DeRoS is responsible for fast switching between different implementations of the non-critical parts of the system.

AB - Safety is a major challenge in robotics, in particular for mobile robots operating in an open and unpredictable environment. Safety certification is desired for commercial robots, but the existing approaches for addressing safety do not provide a clearly defined and isolated programmatic safety layer, with an easily understandable specification for facilitating safety certification. Moreover, mobile robots are advanced systems often implemented using a distributedarchitecture where software components are deployed on heterogeneous hardware modules. Many components are key to the overall reliability and safety of the robot, yet reducing the risk of errors by making the software resilient is both complicated and expensive, notably if functional safety requirements have to be fulfilled. A commercially successful robot has to remain safe while providing as much as possible from the functionality required; even in the presence of partial failures. Research into these challenges has resulted in the design and implementation of a rulebased language for enforcing safety constraints, named Declarative Robot Safety (DeRoS). Using DeRoS, safety-critical concerns regarding the robot software can be explicitly declaredseparately from the main program. Rather than addressing the individual functionality of specific components, we address the functionality of the system as a whole in terms of externally observable properties of individual components, their communication, and the state of the surrounding execution environment. The effective usage of DeRoS to specify safetyrelated properties of mobile robots and generation of a runtime verification infrastructure for the different controllers has been experimentally demonstrated on ROS-based systems, safety PLCs and microcontrollers.The key issue of making safety specifications easily understandable has been investigated by recasting the concept of spreadsheets as DSL programming environments, a concept we refer to as spreadsheet-based DSLs (SDSLs). We have developed a DSL named Spreadsheet Grammar Language (SGL) designed to be a systematic tool for generating SDSLs. We researched the feasibility of such SDSLs, among other use cases, as a visual interface for DeRoS by replacing the standard textual syntax and the Eclipse IDE used by DeRoS with the two-dimensional syntax offered by the spreadsheets. Last, the elaboration of an architectural concept providing a flexible way to improve the reliability of existing robot software has been researched, opening up for a wide range ofstrategies for graceful degradation in the presence of partial failures. We use standard virtualization techniques to segregate the safety-critical system parts. An automatically generated runtime monitoring component specified using DeRoS is responsible for fast switching between different implementations of the non-critical parts of the system.

KW - Robotics, functional safety, DSL

M3 - Ph.D. thesis

BT - Generative Programming for Functional Safety in Mobile Robots

PB - Syddansk Universitet. Det Tekniske Fakultet

ER -

Adam MS. Generative Programming for Functional Safety in Mobile Robots. Syddansk Universitet. Det Tekniske Fakultet, 2017. 352 s.