How Much Fault Protection is Enough - A Deep Impact Perspective

Author

Barltrop, K.J. ; Kan, E.P.

Author_Institution

Jet Propulsion Lab., California Inst. of Technol., Pasadena, CA

fYear

2005

fDate

5-12 March 2005

Firstpage

1

Lastpage

14

Abstract

For the deep impact project, a myriad of fault protection (FP) monitors, symptoms, alarms and responses is engineered into the spacecraft FP software, common and yet custom to the flyby and impactor mother-daughter spacecraft. Device faults and functional faults are monitored, which are mapped 1-to-n into FP symptoms, per instance of the fault. Symptoms are then mapped n-to-1 to FP alarms, further down mapped n-to-1 to FP responses. Though the final statistics of 49 monitors, 921 symptoms, 667 alarms, and 39 responses appear to be staggering, it remains debatable whether the amount of on-board autonomous fault protection is sufficient and friendly to operate

Keywords

aircraft computers; fault diagnosis; fault tolerant computing; autonomous fault protection; deep impact project; device faults; fault protection alarms; fault protection monitors; fault protection responses; fault protection symptoms; functional faults; mother-daughter spacecraft; spacecraft FP software; Aerospace engineering; Design engineering; Hardware; Laboratories; Monitoring; Propulsion; Protection; Space vehicles; Statistics; Systems engineering and theory;

fLanguage

English

Publisher

ieee

Conference_Titel

Aerospace Conference, 2005 IEEE

Conference_Location

Big Sky, MT

Print_ISBN

0-7803-8870-4

Type

conf

DOI

10.1109/AERO.2005.1559557

Filename

1559557