Fault Tolerance

Question 1

What are faults?

Answer 1

Unavoidable events

Question 2

What is fault tolerance?

Answer 2

The aim to design a system in such a way that faults do not result in system failure

Question 3

What is redundancy?

Answer 3

The use of additional elements within a system which would be required if the system was free of faults.

Question 4

What is the triple modular redundancy (TMR) system?

Answer 4

A fault-tolerant system architecture that triplicate the processing elements and associated hardware , running them concurrently and uses voting mechanisms to achieve reliability by tolerating and correcting single faults.

Question 5

What does a TMR system consist of?

Answer 5

3 identical hardware modules and one voting module.

Question 6

What is the output of a TMR’s system voting module?

Answer 6

Output of the majority of the modules.

Question 7

What is temporal redundancy?

Answer 7

Used in order to tolerate or detect transient faults

Question 8

What is the disadvantage of TMR?

Answer 8

• Doesn’t cover design faults in the modules
• If one module fails it is likely that identical modules fail at the same time
• Helps only against random faults not systematic faults
• Doesn’t help against simultaneous failures of multiple modules.

Question 9

What does many fault-tolerance techniques rely on?

Answer 9

Detection of faults

Question 10

What are the three methods for obtaining hardware fault tolerance?

Answer 10

• Static redundancy
• Dynamic redundancy
• Hybrid approaches

Question 11

What is static redundancy?

Answer 11

Static redundancy uses fault masking to hide faults, so that the system continues to work correctly even if a fault occurs.

Question 12

What is dynamic redundancy?

Answer 12

Dynamic redundancy uses fault detection, to detect if a fault occurs and reconfigures the system in order to nullify the effects of faults.

Question 13

What is hybrid approaches for hardware fault tolerance?

Answer 13

Using fault masking to prevent errors from propagating through the system and fault detect to reconfigure the system so that faulty units are removed

Question 14

What may static redundancy use?

Answer 14

Fault masking and voting mechanisms.

Question 15

What are single-point failures?

Answer 15

Vulnerabilities in a system where the malfunction/failure of a component can lead to a complete or partial breakdown of a system.

Question 16

How can we avoid single point failures in the voting elements?

Answer 16

Triplicate the voting and pass the 3 output of the voting elements on to the next modules.

Question 17

What is N-Modular Redundancy (NMR)?

Answer 17

Uses N modules instead of 3 modules and voting among these

Question 18

What is the disadvantage of N-Modular Redundancy (NMR)?

Answer 18

• Additional cost
• Size
• Weight
• Power consumption

Question 19

What is the design of dynamic redundancy systems?

Answer 19

Use one unit as well as one or more standby systems.

Question 20

Which has more units Static or Dynamic redundancy?

Answer 20

Static redundancy has more units as all units have to be at least tripled.

Question 21

What is standby spare arrangement?

Answer 21

A standby spare arrangement has one module which is operated with some fault detection mechanism.

Question 22

What is a cold standy?

Answer 22

When the standby module is default off

Question 23

What is the disadvantage of a standby module in the standby spare agreement?

Answer 23

• In case of a fault disruption is longer
• Fault detection mechanism cannot make use of the data processed by the standby module

Question 24

What is a hot standy?

Answer 24

When the standby module processes the input but the output is ignored

Question 25

What is the disadvantage of hot standy?

Answer 25

• More power consumption
• Standby unit is subject to same operating stress as main module, if the main module can’t handle so can’t the hot standby module.

Question 26

What do self-checking pairs consists of?

Answer 26

• one main module
• one checking module
• a comparator

Question 27

What does a comparator do in self-checking pairs?

Answer 27

Checks whether the output of the main modules coincides with the output of the checking module

Question 28

What is passed on from self-checking pairs?

Answer 28

The output of the main modules and the result of the comparison are passed onwards.

Question 29

Does self-checking pairs provide fault tolerance?

Answer 29

No, it provides error detection. But the output can be used in dynamic fault-tolerant systems

Question 30

What is hybrid redundancy?

Answer 30

Use of a combination of voting, fault detection and module switching.

Question 31

What is N-version programming?

Answer 31

N different versions of the software are written for the same spec and input data.

Question 32

What is the problem of N-version programming?

Answer 32

• Development cost
• Processing power

Question 33

What are N-version programming primarily used for?

Answer 33

Very critical application such as Airbus or space shuttle.

Question 34

What is Recovery block technique?

Answer 34

Based on acceptance tests, which are software versions of fault detection.

Question 35

What do acceptance test check?

Answer 35

The consistency of the output of one software module

Question 36

What are some examples of acceptance tests?

Answer 36

• Check whether output is within boundaries
• Check for run time errors
• Check for excessive execution time

Question 37

What is the process of recovery blocks?

Answer 37

• Execute the main module
• Carry out acceptance test
• If this fails switch to alternative module
• Carry out acceptance test
• if this fails switch again
• etc
• If everything fails raise an error

Question 38

What is the most cost effective way to achieve fault tolerance?

Answer 38

Use Fault-tolerant architectures.

Question 39

What are Fault-tolerant architectures?

Answer 39

For critical parts of the system we use non-computer-based mechanisms as
additional safe guards.

Question 40

What is the general problem for static, dynamic redundancy and hybrid approaches?

Answer 40

We can’t achieve redundancy when the components make the final
decision

Question 41

What is the problem with Static redudancy?

Answer 41

• Have to maintain possible redundant components.
• Lack of adaptability

Question 42

What is the problem with Dynamic redudancy?

Answer 42

• Reconfigurations can cause delays and other issues
• Reliable fault detection is needed

Question 43

What is the problem with hybrid approaches?

Answer 43

• Complex to design
• Have to be adaptable.

Question 44

What are the methods for Hardware Fault Tolerance?

Answer 44

• Static Redundancy
• Dynamic Redundancy
• Hybrid Approaches

Question 45

What are the methods for Software Fault Tolerance?

Answer 45

• N-version Programming
• Recovery Blocks