© SYSGO AG · PUBLIC 1

Embedded Goes Autonomous

RTOS Considerations for Unmanned Air Vehicles

Robert.Pickles@SYSGO.com

© SYSGO AG · PUBLIC 2

Agenda

• Introduction

• Understanding Autonomy

• Next Gen Autonomy

• Areas of Concern

• RTOS consideration

• Safe and Secure RTOS

• Questions

© SYSGO AG · PUBLIC 3

Introduction

• Autonomous Systems

• There are many definitions for Autonomy that we hear about, I personally

like:

”Autonomy is the ability of a machine to operate and make decisions

without input from human operators”

Humans must still monitor systems and just in case…

• However, next generation drones will be using Artificial Intelligence, which

is fading into a term called ‘Deep Machine Learning’.

This might be called ‘Adaptive Autonomy’

© SYSGO AG · PUBLIC 4

Understanding Autonomy

• Autonomous Systems are new?

• I was working with EADS in 2004 on

Barracuda, one of the first

Autonomous UAV, which had a

successful first flight…

• Although the second flight crashed and

burned through a small software glitch and effectively stopped the project.

Fast Forward 2018 – Autonomous Systems ‘almost’ here?

© SYSGO AG · PUBLIC 5

Next Gen Autonomy

• Almost here, but not quite?

• Unmanned Air Taxi are in test now

• Autonomous cars are being defined

• Buses, trains, taxis are all in the news

• Self Driving cars

• Self driving trucks

© SYSGO AG · PUBLIC 6

Next Gen Autonomy

• Military Armed Drones

• Military armed drones are more than likely

to already have autonomous functions with the ability for human invention

or control of flight.

• Military Swarming Drones

• New technology where drones may be small or large, where ‘Deep

Machine Learning’ will define the rules of Autonomy with large swarms of

drones sweeping into action.

© SYSGO AG · PUBLIC 7

Next Gen Autonomy

• UTM – Unmanned aircraft planned to be Integrated with

commercial Air Traffic Management (ATM) system.

FAA/NASA and also EASA involved.

The concept has has been in progress

since 2011.

It’s natural progression, although a

little frightening at first.

UAV or UAS have moved on, it’s

more natural progression, but these

changes must be safely

implemented!!!

© SYSGO AG · PUBLIC 8

Areas of Concern

• Integration of UAS into commercial Air Traffic Management

• Safety of all Autonomous Vehicles

• Security of vehicles from cyber tampering, where remote control

or cloud connectivity is allowed.

• Safety standards for Autonomous

Vehicles.

© SYSGO AG · PUBLIC 9

Safety Standards Overview

• RTCA DO-254 Aviation

• Defines the standards for hardware equipment used on safety critical

aircraft, such as passenger jets and now recently UAS.

• RTCA DO-178 Aviation

• Defines the standards or guidelines for software used within safety critical

aircraft.

• EN 50128 Trains

• Trains or Transportation software systems

• ISO 26262 Automotive

• Automotive software safety standard

• IEC 61508 Industrial ( Some military )

• Functional safety standards for Industrial and some military systems

© SYSGO AG · PUBLIC 10

Aviation Safety and UAS

• FAA and EASA

• The organisations provide all safety coverage for aviation safety

including Air Traffic Management

• There are rules and regulations governing any aircraft, even military, that

fly within civil aerospace.

• DO-245 and DO-178C provide a safety framework for next generation

unmanned or autonomous aircraft.

• CAST32A even defines recent multicore concepts for the use of System

On Chip devices as well as RTOS requirements.

© SYSGO AG · PUBLIC 11

RTOS Considerations for Autonomous Systems

• RTOS must be both Safe and Secure

• How to achieve this and also prove this?

• Certification History

• Proven in the field.

• Multicore support

• However, interference from shared resources must be managed!

• Legacy Support

• Security Standard Compliance

• Such as Common Criteria, Airbus SAR.

© SYSGO AG · PUBLIC 12

RTOS Considerations – PikeOS RTOS

• PikeOS Hypervisor

• RTOS with Separation Microkernel (MMU only)

• Multicore Resource Management

• Time and Space Separation

• Robust Partitioning

• Guest OS Support

• Multiple Levels of

Criticality to reduce

cost of certification

• Multiple Independent

Levels of Security

ARINC

653

Auto

SARPOSIX ADA Linux

PikeOS RTOS (System Services)

Hypervisor Separation Microkernel

Hardware Deviceshttp://euromils.eu/index.html

© SYSGO AG · PUBLIC 13

Safe and Secure RTOS - PikeOS

• CODEO Eclipse IDE

• The system is defined

at design time

• PikeOS Implements

at Run Time

• Fixed Communication

channels

• If access is not

defined – non is given

• No Error Propagation

across Partitions

• Partition Management

• Time and Resource

Separation

ARINC

653

Auto

SARPOSIX ADA Linux

PikeOS RTOS (System Services)

Hypervisor Separation Microkernel

Hardware SATACAN Ethernet

No

Access

© SYSGO AG · PUBLIC 14

Multicore Management of PikeOS

• Time Partition Scheduling by Core

• Core Minor Time Partitions are defined at Design time

• Critical processes may separated by Time, Resource and Core.

• Cache clearance is possible with each partition type.

Core 0

Core 1

Core 2

Core 3

Major

Time

Frame

Window

Critical

Partition

Separation

By Core

ARINC

653POSIX

PikeOS

NATIVELinux

PikeOS RTOS (System Services)

Hypervisor Separation Microkernel

Hardware Devices

© SYSGO AG · PUBLIC 15

PikeOS Graphical Demo

• PikeOS is ideal for certifiable Glass Cockpit systems

• Come and see our Avionics demo

• PikeOS

• CoreAVI

• ANSYS

• Curtiss Wright VPX-133

• EW18 Hall 4 Stand 308

© SYSGO AG · PUBLIC 16

Questions?

More information on www.sysgo.com

Visit us at EW18 Hall 4 Stand 308

© SYSGO AG · PUBLIC 17

Image Copyright Information

• https://en.wikipedia.org/wiki/File:Google_driverless_car_at_intersection.gk.jpg

• https://en.wikipedia.org/wiki/Unmanned_ground_vehicle#/media/File:Bus_220916_gnangarra-1003.JPG

• https://www.technologyreview.com/s/603493/10-breakthrough-technologies-2017-self-driving-trucks/

• http://www.buykorea.or.kr/product-details/Tower-Crane--3037003.html

• http://www.theweek.co.uk/driverless-cars/91202/tesla-in-self-driving-mode-crashes-into-fire-engine

• http://www.washingtonpost.com/sf/investigative/2014/06/20/when-drones-fall-from-the-

sky/?utm_term=.d080e483ec9d

• https://upload.wikimedia.org/wikipedia/commons/4/42/S-100-OE-VXX.jpg

• https://www.google.co.uk/imgres?imgurl=https%3A%2F%2Fi.ytimg.com%2Fvi%2Fbgcgke_0FnY%2Fma

xresdefault.jpg&imgrefurl=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3Dbgcgke_0FnY&doci

d=z1znq38ofUYrmM&tbnid=Dar5mQqhj05w3M%3A&vet=10ahUKEwj_9oz4uqLZAhWIJ1AKHYSID3QQMw

jYASgDMAM..i&w=1280&h=720&client=safari&bih=693&biw=1280&q=uav%20crashes&ved=0ahUKEwj_

9oz4uqLZAhWIJ1AKHYSID3QQMwjYASgDMAM&iact=mrc&uact=8

• https://www.routesonline.com/news/29/breaking-news/245780/virgin-atlantic-plan-new-boeing-787-9-

routes-in-winter-2015/