pierre dissaux ellidiss - architecture analysis & design ... · • eurofighter typhoon •...
TRANSCRIPT
Model Editing & Processing
ToolsAADL Committee, San Diego
February 4th, 2015
EllidissTechnologiesw w w . e l l i d i s s . c o m
Pierre Dissaux
UK based companyaka.TNI Europe Ltd
Tools sales office
EllidissSoftwarew w w . e l l i d i s s . c o m
Fr based companyNew tools development
R&D center
Independent Technology Provider:
20 years + support to major industrial projects:• HOOD design tools for Ada and C: CP-Hood and Stood• Eurofighter Typhoon• Airbus A340, A380, A350• Eurocopter Tiger (mission calculator)• Rafale (engine control)• European Space Agency (Frame Contract for the TASTE toolchain)
10 years + investement in MDE technology:• AADL graphical modeling tools: Stood for AADL, Adele, • DSM graphical editors: TASTE, COMPASS,…• AADL analysis framework: AADL Inspector• Generic model processing technologies: GMP, LMP
Ellidisswww.ellidiss.com
STOODgraphical editors
HOOD-AADL-UML
TOPCASEDhttp://www.topcased.org
ADELEgraphical editor
SPICES/QUARTEFT
Your DSMeditor
Ex: metamodels, …
TASTEgraphical editors
ASSERT/ESA
CHEDDARscheduling analysis
MARZHINmodel simulation
AADL Buildergraphical editor
Instance model editorFIACREmodel prover
POLYCHRONYmodel prover
COMPASSsafety analysis
OCARINAcode generation
RAMSEScode generation
AADL Checkerstatic rules analysis
Your modelProcessing tool
One tool: one metamodel
UML Profiles
Our toolsarchitecture
Ellidisswww.ellidiss.com
STOODgraphical editors
HOOD-AADL-UML
LMP
TOPCASEDhttp://www.topcased.org
ADELEgraphical editor
SPICES/QUARTEFT LMP
Your DSMeditor
Ex: metamodels, … LMP
UML Profiles LM
P
TASTEgraphical editors
ASSERT/ESA LMP
CHEDDARscheduling analysisLM
P
MARZHINmodel simulation LM
P
AADL Buildergraphical editor
Instance model editor LMP
FIACREmodel proverLM
PPOLYCHRONYmodel proverLM
P
COMPASSsafety analysisLM
P
OCARINAcode generationLM
P
RAMSEScode generationLM
P
AADL Checkerstatic rules analysisLM
P
Your modelProcessing toolLM
P
OSATE MASIW
LMP
LMP
pivot model
textualAADL
LMPLogic Model Processing
• A single solution for:– Model queries
– Model constraints
– Model transformations
• Is based on a particular use of the prolog language
• Declarative and formal (boolean logic)
• Enforces modularity and low-coupling
• Appropriate for heterogeneous models merge
• Industrial return of experience:– Airbus: have been used for 20 years for the development of DO-178 certified
projects.
– Ellidiss: model adaptors in AADL Inspector and TASTE
Ellidisswww.ellidiss.com
prologengine
Facts base
Rules base
result
AADL InspectorModel Processing Framework
Cloud access
Static rulesanalysis
Cheddar
Marzhin
Ellidisswww.ellidiss.com
Instance hierarchy
MARTE import
Wizards
AADL model
MarzhinExecutable AADL
• Multi-agent real-time simulator:– Based on a pre-existing multi-agent kernel– Specialized agents to represent real-time software constructs:
• Processor and scheduler• Process and partition• Thread and shared data• Ports and connections
– The agents interact together and exhibit a global behavior
• Implementation of the AADL run-time– The run-time semantic of each agent
is defined by the AADL standard– Example: an AADL thread:
• Generates system state changes events– Used to display simulation traces
for software analysis during design phase– Used to animate 3D graphics
Ellidisswww.ellidiss.com
Formal Methods
Marzhinvs. Other Timing Analysis Methods
abstraction
coverage
Feasibility Tests
Schedule Table
AADL Virtual Execution
Ellidisswww.ellidiss.com
Cheddar
Programming Language + AADL middleware
Marzhin
jihpj j
iii C
P
RCR ⋅
+= ∑
∈ )(
THREAD aThreadPROPERTIESDispatch_Protocol => Periodic;Period => 100ms;Deadline => 100ms;
ANNEX Behavior_Specification {**statess : initial complete final state;
transitionst : s -[on dispatch]-> s { computation(1 ms };
**};END aThread;
procedure aThread isbeginloopAADL.Await_Dispatch;aThread_operation;
end loop;end aThread;
3D simulationEllidisswww.ellidiss.com
Multi-agent simulation• Control system: AADL Process• Sensors/Actuators: AADL Devices => connected to 3D objects• Marzhin can send events to both AADL Inspector and the 3D engine
Ellidiss
ww
w.ellid
iss.com
Ro
adm
ap
Q2
Q3
Q4
Q1
20132014
AADL Inspector 1.1
Paris Air Show
AeroTech
AADL Inspector 1.2
AADL Inspector 1.3ERTS2
STOOD 5.4
Q2
Q3
AADL Inspector 1.5STOOD 5.4.1
End of the SMART project
MODELS
Q4
AADL Inspector 1.4
Q1
2015
Q2
Q3
Paris Air ShowAADL Inspector 1.6
AA
DL Inspector 1.5
Now
available for download !
http://ww
w.ellidiss.com
/downloads/
Products:Stood
AADL InspectorTaste
AADL BuilderModel Inspector
Summary:
Technology:frameworks:
GMP: for graphical toolsLMP: for model processing
Projects:ASSERTSPICES
GLASSESQUARTEFT
PARSECCHEDDAR
SMARTRAMSESADOSATE
Services:Tool support and training
Custom Tool development (DSM)
Ellidisswww.ellidiss.com