Intelligent fault management
First Claim
1. Electronic control system for controlling the function of a processing system, especially in an automotive vehicle, said electronic control system comprising a plurality of main logical control elements, each of which is especially adapted to perform special tasks, and each of said control elements being able to communicate to each other control element, characterized in that each of said logical control elements comprises additional control means for continuously monitoring the system and performing tests and diagnostics to detect system faults and severity of system faults, whereby said additional control means are interconnected by busses, thus allowing each of said control means to communicate with all other control means,wherein if the severity of a fault exceeds a predefined value, said additional control means identify failing element(s) by determining bit values representing the status of each individual control element, degrade functionality of said processing system in pre-assigned levels depending on the bit values determined, and re-initialize and re-vitalize said processing system in the degraded state.
4 Assignments
0 Petitions
Accused Products
Abstract
A principle for handling system failure situations thereby maintaining minimum fault recovery time and providing high system availability is described, especially for controlling the system behavior in fault situations of Electronic Control Units used in automotive vehicles. This principle is providing unique solutions for fault analysis, fault recovery definition and system re-vitalization. It is a key attribute of the principle keeping the demand for hardware and software overhead at a minimum. The method applies graceful degradation of system functionality, allowing to achieve the implementation of cost effective systems.
59 Citations
23 Claims
-
1. Electronic control system for controlling the function of a processing system, especially in an automotive vehicle, said electronic control system comprising a plurality of main logical control elements, each of which is especially adapted to perform special tasks, and each of said control elements being able to communicate to each other control element, characterized in that each of said logical control elements comprises additional control means for continuously monitoring the system and performing tests and diagnostics to detect system faults and severity of system faults, whereby said additional control means are interconnected by busses, thus allowing each of said control means to communicate with all other control means,
wherein if the severity of a fault exceeds a predefined value, said additional control means identify failing element(s) by determining bit values representing the status of each individual control element, degrade functionality of said processing system in pre-assigned levels depending on the bit values determined, and re-initialize and re-vitalize said processing system in the degraded state.
-
12. Electronic control system for controlling the function of a processing system, especially in an automotive vehicle, said electronic control system comprising a plurality of main logical control elements, each of which is especially adapted to perform special tasks, and each of said control elements being able to communicate to each other control element, characterized in that each of said logical control elements comprises additional control means for continuously monitoring the system and performing tests and diagnostics to detect system faults, wherein said additional control means are represented by hardware and/or software and wherein said additional control means are selected from the group comprising a state machine, a processor and a programmable sequencer, whereby said additional control means are interconnected by busses, thus allowing each of said control means to communicate with all other control means.
-
13. Method for managing system fault situations of an electronic control system, comprising the following steps:
-
a) providing a plurality of main logical control elements, each of said elements being adapted to perform special tasks, b) providing additional control means to each of said control elements, said control means being interconnected by busses, thus allowing each of said control means to communicate with all other control means, c) continuously monitoring said system and performing tests and diagnostics by each of said control means individually, d) in case a failure and/or deviation from a predefined operation of said system is detected, analysing the system'"'"'s present state and evaluating the severity of said failure and/or deviation by each of said control means individually, e1) in case the severity of the failure and/or deviation does not exceed a predefined value, resuming normal operation of said system, e2) in case the severity of the failure and/or deviation exceeds a predefined value, identifying the failing element(s) by determining bit values, representing the status of each individual control element, f) degrading the system functionality in pre-assigned levels depending on the bit values determined; and
g) re-initializing and re-vitalizing said system in said degraded state. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. Electronic control system for controlling the function of a processing system, especially in an automotive vehicle, said electronic control system comprising a plurality of main logical control elements, each of which is especially adapted to perform special task, and each of said control elements being able to communicate to each other control element, characterized in that each of said logical control elements comprises additional control means for continuously monitoring the system and performing tests and diagnostics to detect system faults, wherein said additional control means are represented by hardware and/or software and wherein said additional control means are selected from the group comprising a state machine, a processor and a programmable sequencer, whereby said additional control means are interconnected by busses, thus allowing each of said control means to communicate with all other control means, said electronic control system further comprising arbitration means for judging said tests and diagnostics performed by each of said control means.
Specification
-
- Resources
-
Current AssigneeSlingshot IOT LLC
-
Original AssigneeInternational Business Machines Corporation
-
InventorsEibach, Wolfgang, Staiger, Dieter E.
-
Primary Examiner(s)BADERMAN, SCOTT T
-
Application NumberUS09/611,475Time in Patent Office1,236 DaysField of Search714/37, 714/25, 714/43, 714/44, 714/39, 714/47, 701/29US Class Current714/37CPC Class CodesG05B 19/0428 Safety, monitoring G05B19/0...G05B 2219/24018 Computer assisted repair, d...G05B 2219/24019 Computer assisted maintenanceG05B 2219/24024 Safety, surveillanceG05B 2219/24182 RedundancyG05B 2219/24196 Plausibility check in chann...G06F 11/0739 in a data processing system...G06F 11/0757 by exceeding a time limit, ...G06F 11/0793 Remedial or corrective acti...G06F 11/2035 without idle spare hardware
