Method for fault-tolerant communication under strictly real-time conditions
First Claim
Patent Images
1. A method for a reliable and fault-tolerant transmission of information with strictly real-time requirements in a local network, using an active fault detection and notification mechanism on the basis of a double bus architecture with redundant bus systems, which comprises:
- using a controller area network (CAN) transmission protocol on a double bus systems, by;
a) transmitting all process data on a bus of one bus system as a process bus during fault-free operation, and transmitting status information of components and other information on a bus of another bus system during fault-free operation;
b) notifying all network subscribers (network nodes) of faults with each bus serving as a watchdog bus, in the case of a fault in the other bus;
b1) triggering a switch-over of all of the network nodes to the other bus system and continuing the transmission of the process data on the fault-free bus, upon the notification of faults in the case of a process bus fault; and
b1.1) carrying out the switch-over in the case of a process bus fault, by;
b1.1.1) setting fault latencies between the detection of a fault and a possible switch-over in most cases of faults so short that no loss of messages occurs;
b1.1.2) setting a fault coverage value; and
b1.1.3) restoring a consistent system state in the case of possible losses, falsifications or duplications of messages with recovery mechanisms;
b2) triggering no switch-over upon a notification of faults in the case of a fault in the bus which is not the process bus;
c) providing all of the network nodes with two complete bus connections including a communication CPU, a communication controller and a transceiver;
c1) each communication CPU function monitoring another connection of its node and monitoring its connection component as a watchdog processor; and
c2) a communication CPU initiating a transmission of a fault message through its bus, after a detection of a fault in another connection of its node.
3 Assignments
0 Petitions
Accused Products
Abstract
A method for fault-tolerant communication under strictly real-time conditions in a local network uses a double bus architecture for reporting faults and for tolerating global bus faults. An active fault detection and notification mechanism is provided in order to safeguard consistency in the case of a fault and in order to comply with time limits regarding transmission of data. During fault-free operation, all of the process data are transmitted in one of the redundant bus systems and status information is transmitted in the other bus system. In the case of a fault, each bus is used as a watchdog bus in order to notify the network subscribers of faults occurring in the respective other bus system. The method can be used in process-oriented control and automation systems which have stringent requirements regarding reliability and real-time behavior.
-
Citations
4 Claims
-
1. A method for a reliable and fault-tolerant transmission of information with strictly real-time requirements in a local network, using an active fault detection and notification mechanism on the basis of a double bus architecture with redundant bus systems, which comprises:
using a controller area network (CAN) transmission protocol on a double bus systems, by; a) transmitting all process data on a bus of one bus system as a process bus during fault-free operation, and transmitting status information of components and other information on a bus of another bus system during fault-free operation; b) notifying all network subscribers (network nodes) of faults with each bus serving as a watchdog bus, in the case of a fault in the other bus; b1) triggering a switch-over of all of the network nodes to the other bus system and continuing the transmission of the process data on the fault-free bus, upon the notification of faults in the case of a process bus fault; and b1.1) carrying out the switch-over in the case of a process bus fault, by; b1.1.1) setting fault latencies between the detection of a fault and a possible switch-over in most cases of faults so short that no loss of messages occurs; b1.1.2) setting a fault coverage value; and b1.1.3) restoring a consistent system state in the case of possible losses, falsifications or duplications of messages with recovery mechanisms; b2) triggering no switch-over upon a notification of faults in the case of a fault in the bus which is not the process bus; c) providing all of the network nodes with two complete bus connections including a communication CPU, a communication controller and a transceiver; c1) each communication CPU function monitoring another connection of its node and monitoring its connection component as a watchdog processor; and c2) a communication CPU initiating a transmission of a fault message through its bus, after a detection of a fault in another connection of its node. - View Dependent Claims (2, 3, 4)
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeHanger Solutions, LLC (IP Investments Group LLC)
-
Original AssigneeABB Patent GmbH (ABB Limited)
-
InventorsKochs, Hans-Dieter, Hilmer, Holger, Dittmar, Ewald
-
Primary Examiner(s)Decady, Albert
-
Application NumberUS08/617,124Time in Patent Office855 DaysField of Search395/180, 395/181, 395/182.01, 395/182.08, 395/185.01, 395/185.04, 395/185.09, 395/182.02, 395/185.08, 395/183.19, 361/62, 361/67US Class Current714/4.5CPC Class CodesG06F 11/0751 Error or fault detection no...G06F 11/2007 using redundant communicati...G06F 11/22 Detection or location of de...G06F 11/2736 using a dedicated service p...H04L 12/40189 by using a plurality of bus...H04L 2012/40215 Controller Area Network CANH04L 69/40 for recovering from a failu...
