Applying Multi-core and Virtualization to Industrial and Safety-Related Applications



Similar documents
evm Virtualization Platform for Windows

Achieving Real-Time Performance on a Virtualized Industrial Control Platform

A Superior Hardware Platform for Server Virtualization

Reducing Cost and Complexity with Industrial System Consolidation

Intel Virtualization Technology (VT) in Converged Application Platforms

Intel Ethernet and Configuring Single Root I/O Virtualization (SR-IOV) on Microsoft* Windows* Server 2012 Hyper-V. Technical Brief v1.

Solution Recipe: Improve PC Security and Reliability with Intel Virtualization Technology

Cloud based Holdfast Electronic Sports Game Platform

Using Multi-Port Intel Ethernet Server Adapters to Optimize Server Virtualization

Leading Virtualization 2.0

Intel Cloud Builder Guide: Cloud Design and Deployment on Intel Platforms

Different NFV/SDN Solutions for Telecoms and Enterprise Cloud

Comparing Multi-Core Processors for Server Virtualization

NFV Reference Platform in Telefónica: Bringing Lab Experience to Real Deployments

Accelerating High-Speed Networking with Intel I/O Acceleration Technology

print close Building Blocks

Intel Embedded Virtualization Manager

Overcoming Security Challenges to Virtualize Internet-facing Applications

VNF & Performance: A practical approach

Intel Network Builders: Lanner and Intel Building the Best Network Security Platforms

THE RTOS AS THE ENGINE POWERING THE INTERNET OF THINGS

Intel Data Direct I/O Technology (Intel DDIO): A Primer >

Intel Cloud Builders Guide to Cloud Design and Deployment on Intel Platforms

Getting More Performance and Efficiency in the Application Delivery Network

PCI-SIG SR-IOV Primer. An Introduction to SR-IOV Technology Intel LAN Access Division

Intel Media SDK Library Distribution and Dispatching Process

Unisys ClearPath Forward Fabric Based Platform to Power the Weather Enterprise

OPTIMIZING SERVER VIRTUALIZATION

Affordable Building Automation System Enabled by the Internet of Things (IoT)

Memory Sizing for Server Virtualization. White Paper Intel Information Technology Computer Manufacturing Server Virtualization

Developing an Enterprise Client Virtualization Strategy

WHITE PAPER Mainstreaming Server Virtualization: The Intel Approach

Industrial Application of MultiPARTES

Intel Desktop Board DG41WV

Intel Cloud Builder Guide to Cloud Design and Deployment on Intel Xeon Processor-based Platforms

Three Paths to Faster Simulations Using ANSYS Mechanical 16.0 and Intel Architecture

Virtualization for Hard Real-Time Applications Partition where you can Virtualize where you have to

Intel Cloud Builder Guide to Cloud Design and Deployment on Intel Platforms

Intel Desktop Board DG43RK

Network Management Systems Today

WIND RIVER HYPERVISOR

Embedded Virtualization & Cyber Security for Industrial Automation HyperSecured PC-based Control and Operation

Intel Virtualization Technology FlexMigration Application Note

RAID and Storage Options Available on Intel Server Boards and Systems

Hybrid Virtualization The Next Generation of XenLinux

Analyzing the Virtualization Deployment Advantages of Two- and Four-Socket Server Platforms

Creating Overlay Networks Using Intel Ethernet Converged Network Adapters

Intel Network Builders

Intel Processors in Industrial Control and Automation Applications Top-to-bottom processing solutions from the enterprise to the factory floor

10GBASE-T for Broad 10 Gigabit Adoption in the Data Center

Virtualization: Hypervisors for Embedded and Safe Systems. Hanspeter Vogel Triadem Solutions AG

Leveraging Virtualization in Aerospace & Defense Applications

Intel Desktop Board DG41BI

Scaling Networking Solutions for IoT Challenges and Opportunities

Enhanced Virtualization on Intel Architecturebased

The Benefits of POWER7+ and PowerVM over Intel and an x86 Hypervisor

Evaluating Intel Virtualization Technology FlexMigration with Multi-generation Intel Multi-core and Intel Dual-core Xeon Processors.

Intel Desktop Board DQ43AP

Accelerating Business Intelligence with Large-Scale System Memory

Developing software for Autonomous Vehicle Applications; a Look Into the Software Development Process

How to Configure Intel Ethernet Converged Network Adapter-Enabled Virtual Functions on VMware* ESXi* 5.1

TenAsys Real-time Hypervisor

Intel Service Assurance Administrator. Product Overview

Intel Data Center Manager. Data center IT agility and control

Taking Virtualization

How To Get A Client Side Virtualization Solution For Your Financial Services Business

The Case for Rack Scale Architecture

Intel Active Management Technology Embedded Host-based Configuration in Intelligent Systems

新 一 代 軟 體 定 義 的 網 路 架 構 Software Defined Networking (SDN) and Network Function Virtualization (NFV)

Oracle On Demand Infrastructure: Virtualization with Oracle VM. An Oracle White Paper November 2007

ARM* to Intel Atom Microarchitecture - A Migration Study

Intel Desktop Board DG31PR

Solution Recipe: Remote PC Management Made Simple with Intel vpro Technology and Intel Active Management Technology

Cloud Network Function

Intel Core i5 processor 520E CPU Embedded Application Power Guideline Addendum January 2011

Fast, Low-Overhead Encryption for Apache Hadoop*

Brocade Solution for EMC VSPEX Server Virtualization

Intel Desktop Board DG965RY

RAID and Storage Options Available on Intel Server Boards and Systems based on Intel 5500/5520 and 3420 PCH Chipset

Virtualization strategy for mid-sized businesses. IBM and VMware virtualization benefits for mid-sized businesses

Intel Ethernet Switch Load Balancing System Design Using Advanced Features in Intel Ethernet Switch Family

IOS110. Virtualization 5/27/2014 1

10GBASE-T for Broad 10 Gigabit Adoption in the Data Center

Simple, Reliable Performance for iscsi Connectivity

Intel Trusted Platforms Overview

Intel Cloud Builders Guide: Cloud Design and Deployment on Intel Platforms

Intelligent Business Operations

Scaling up to Production

Streaming and Virtual Hosted Desktop Study

ORACLE OPS CENTER: VIRTUALIZATION MANAGEMENT PACK

Upgrading Data Center Network Architecture to 10 Gigabit Ethernet

Introduction to the NI Real-Time Hypervisor

Accelerating Data Compression with Intel Multi-Core Processors

Intel Desktop Board DG41TY

Intel and Qihoo 360 Internet Portal Datacenter - Big Data Storage Optimization Case Study

Best Practices for Installing and Configuring the Hyper-V Role on the LSI CTS2600 Storage System for Windows 2008

Intel SSD 520 Series Specification Update

Introduction to Windows Server 2016 Nested Virtualization

Intel, Cisco, and Red Hat deliver a proven solution that reduces risk. Advance Your Cloud Strategy with OpenStack

Intel RAID RS25 Series Performance

Transcription:

White Paper Wind River Hypervisor and Operating Systems Intel Processors for Embedded Computing Applying Multi-core and Virtualization to Industrial and Safety-Related Applications Multi-core and virtualization provide the opportunity to improve device performance, reduce costs through hardware consolidation and upgrade applications more cost effectively throughout the product lifecycle Disruptive technologies and trends are affecting the embedded market and providing device manufacturers in the industrial sector with a significant opportunity to improve both their devices and their businesses. Taking advantage of the following technical and industry trends represents a significant opportunity for competitive advantage: Multi-core processors Virtualization Increased complexity of safety-related devices The availability of multi-core processors causes both the most significant disruption the embedded market has seen in many years and one of the greatest opportunities. The latest Intel multi-core processors provide increased overall performance and improved performance per watt over single-core processors. Multi-core processor-based systems can also improve application scalability and protect software investment by allowing processors with more cores to be substituted to meet future demand. The trend towards multi-core is well underway, as evidenced by Intel dual-core and quad-core processor shipments exceeding single-core processors.

White Paper Applying Multi-core and Virtualization to Industrial and Safety-Related Applications The second technology trend is virtualization, which provides the ability to run multiple virtual machines on the same physical board by abstracting the underlying processing cores, memory and devices. Virtualization provides the ability to run multiple operating environments, such as one real-time operating system like Wind River VxWorks*, and a general purpose operating system like Wind River Linux*, on the same device, as shown in Figure 1. Performance gains from multi-core processors and virtualization technology enable the consolidation of what were originally independent devices running separate applications onto one device. Consolidation reduces the amount of hardware and increases energy efficiency, which can lower the overall bill of materials and operating costs of the device. Virtualization is enabled by a hypervisor, which has supervisory functions that protect the operating environments from each other and provide a measure of separation that can be leveraged to improve the reliability, security and safety of a system. This allows each application to be evolved independently, reducing the life-cycle costs of the device. Real-Time Application Wind River VxWorks Wind River hypervisor Figure 1. Virtualized System Human Machine Interface Application Wind River Linux Single or Multicore Intel Processor Safety-related architectures are becoming more complex as demand for new features and regulatory compliance requirements increases. One trend driving complexity is the need for industrial devices to interface to more networks and systems like the Internet, top-floor and shop-floor. As a result, devices must support a larger variety of application software (e.g., security, protocol stacks) with different levels of criticality. And as system complexity increases, regulatory bodies are enforcing more formal certification methods and processes to help safeguard systems. The combination of multi-core and virtualization technologies can help device manufacturers in industrial control, process automation, energy and transportation protect their development investments. These technologies enable systems to run more applications simultaneously and safely, so it's possible to upgrade an existing multi-core platform incrementally with respect to performance, security, scalability, certifiability and usability. The enhanced performance of Intel multi-core processors can also be used to consolidate control and acquisition applications, visualization and network security onto a single board with minimal software changes. Furthermore, a virtualization layer can protect software investments by reducing direct hardware dependencies. This enables developers to more easily port and upgrade to new device architectures while managing the migration to COTS (commercial off-the-shelf) technologies more effectively. This white paper describes how Intel and Wind River multi-core and virtualization technologies are changing the way developers approach industrial and safety-related applications against unintended software interactions and outside breaches. Also growing is regulatory influence by means of safety-related application standards (e.g., for IEC 61508, CENELEC 50128, ISO 26262 and IEC60880/62138) and additional industrial subsegment standards in energy, transportation, process automation and control. Scaling Processors for Industrial Solutions VxWorks, Wind River Linux, and the Wind River hypervisor run on a wide range of Intel processors and are supported by an open standard tool chain that brings efficiency to the multi-core and multi-os development processes. These capabilities can be extended to different types of industrial control equipment represented by the different layers of the "Automation Pyramid", as shown in Figure 2. The enterprise layer or top-floor infrastructure supports servers and workstations running a mix of applications, including collaborative production management (CPM), financials and asset management databases. Intel Xeon processors supply the computing horsepower needed to keep the business running smoothly and efficiently. They run a large number of enterprise applications simultaneously by supporting configurations with eight or more processor cores and by speeding up parallel processing with large on-chip caches that reduce context switching. EP Level Cell / Control Level Field / Data Level Figure 2. Automation Pyramid Enterprise Level - Enterprise Solutions Financial and asset management Cell Level - Aggregation platforms; Control + HMI - Aggregation of Field devices (e.g. SoftPLCs, HMIs and Machine gateways) - Safety concepts - Wind River hypervisor VxWorks, VxWorks Cert, Wind River Linux* Field Level - Packaged and customized PLCs - Complex sensors / actors - Wind River hypervisor, VxWorks, VxWorks Cert 2

Applying Multi-core and Virtualization to Industrial and Safety-Related Applications White Paper The cell and control layer contains equipment performing a combination of real-time control and HMI functions that have different levels of criticality. This equipment is an ideal candidate for the Wind River hypervisor and Intel multi-core processors that can deliver the computing performance and software separation and reliability required by safety-related applications. The Intel Core 2 Duo processor, with two processor cores, can run timecritical control functions on a dedicated core and run other functions, like HMI and operator panels, on the second core. This multi-core processor has revolutionary performance per watt, allowing it to be deployed in space constrained systems. The lower field and data layer controls the factory floor, linking sensors and actuators to controllers and ultimately to manufacturing equipment. Typically, this level requires equipment with very low power consumption, which is why the Intel Atom processor Z5xx series (Figure 3) for embedded computing is a good fit. This processor has a thermal design power, as low as 2.0 watts, and delivers the benefits of Intel architecture for small form factor, embedded control devices. Embedded and Communications Alliance, Wind River works closely with Intel to ensure their solutions take advantage of the latest processor features as soon as they come to market. Virtualization with the Wind River Hypervisor The Wind River hypervisor provides the ability to partition a physical board s resources into virtual boards, as shown in Figure 4. Each virtual board can host either an operating system, known as a guest, or a minimal executive. Configuration tools are provided in order to partition the processing cores, memory and devices on the physical board. Processing cores can be allocated exclusively to one virtual board or can be shared by multiple virtual boards using the appropriate scheduling algorithm. Memory is partitioned such that each virtual board has its own unique and enforced memory space and cannot affect any other virtual board. Shared memory buffers can be allocated for high speed communication between virtual boards. Devices such as a serial line or Ethernet can be either dedicated to one virtual board or shared between multiple boards. Virtual Board 1 Real-Time Application Virtual Board 2 HMI Application Virtual Board 3 VxWorks Ethernet Wind River Linux Ethernet Core 0 Memory Serial Core 1 Memory Minimal Application Core 1 Memory Wind River hypervisor Physical Board Ethernet Serial Memory Core 0 Core 1 Dedicated to virtual board Shared between virtual boards Figure 4. Partitioning a System Into Virtual Boards Figure 3. Intel Atom Processor and the Intel System Controller Hub US15W From top-floor to shop-floor, developers can build different platforms with varying performance levels and the same code base using embedded Intel processors with long life cycle support. In addition to these advantages, equipment makers typically find maintaining software code for general purpose processors, like Intel Architecture Processors, is easier than for application specific hardware. This is because Intel processors are supported by a broad ecosystem offering a wide range of mature development tools. For example, as a member of the Intel The virtual board mechanism enables the porting and paravirtualization of an existing proprietary operating system onto the hypervisor, which can be run alongside a commercial operating system. This provides a gradual migration path to COTS technologies as well as the ability to move more easily to new hardware, including advanced Intel multi-core platforms. This allows the reuse of existing legacy applications that may be very robust and do not require changes while providing the ability to create new and innovative functionality on a more fully featured operating system such as Wind River Linux. In many industrial applications, two or more separate computing platforms were required to provide the complete system. The reason for separate hardware could have been due to the different nature of the applications; perhaps a hard real-time application for control was required while an advanced human machine 3

White Paper Applying Multi-core and Virtualization to Industrial and Safety-Related Applications interface was needed for interaction with the operator. In other cases performance limitations may have necessitated separate hardware. The improved processing power of multi-core processors coupled with the separation and protection provided by the virtual board mechanism are a compelling combination that allows for the consolidation of industrial systems. The isolation and protection between virtual boards prevent a fault in one virtual board from affecting another. If a problem occurs in the less critical human machine interface application, it will not affect another virtual board supporting critical system tasks. In addition, the supervisory functions of the Wind River hypervisor will allow for a critical fault to be detected in a virtual board and for that virtual board to be rebooted while other virtual boards continue to run. These capabilities can greatly improve the reliability of industrial applications. The Wind River hypervisor is part of Wind River s multicore software solution, which includes many technologies required for industrial device makers to take advantage of multi-core processors. The multicore software solution is comprised of: Support for multi-core software configurations and virtualization VxWorks for DO-178B or IEC61508-Part 3 safety-related applications - VxWorks, the industry leading RTOS - VxWorks Cert (RTOS that is DO-178B and IEC61508-Part3 certifiable for safety-related applications) - Wind River Linux Wind River Workbench for developing, debugging and optimizing multicore and virtualized systems The Wind River hypervisor used on either Intel single-core or multi-core processors provides a high performance solution for consolidating hardware while keeping applications separate. Taking Virtualization to a New Level with Intel Virtualization Technology (Intel VT) Intel has enhanced the capabilities of virtualization technology with a complementary hardware-assist technology called Intel Virtualization Technology (Intel VT). Intel VT performs various virtualization tasks in hardware, like memory address translation, which reduces the software footprint of the hypervisor and improves its performance. The Wind River hypervisor takes advantage of Intel VT to provide optimal virtualization performance and increased reliability. Without this new technology, the hypervisor would be responsible for handing off more of the platform control to the operating system, which requires complex, compute-intensive calculations. With Intel VT, the hardware takes over this crucial operation, which reduces the computational burden on hypervisor software, thereby increasing its performance. In addition, without hardware assistance, the hypervisor is the sole protector of key processor and operating state information stored in unprotected memory space. Intel VT adds a powerful enforcement layer that prevents any software component, other than the hypervisor, from accessing key system information. Intel offers three classes of virtualization technology: Intel Virtualization Technology (Intel VT) for IA-32, Intel 64 and Intel Architecture (Intel VT-x): provides the basic framework that virtual machine monitors (VMMs) need to operate efficiently. Intel Virtualization Technology (Intel VT) for Directed I/O (Intel VT-d): facilitates the virtualization I/O devices, such as remapping DMA accesses into segment memory locations, filtering and remapping interrupts. Intel Virtualization Technology (Intel VT) for Connectivity (Intel VT-c): runs in conjunction with Intel Ethernet controllers that support filtering and mapping network traffic to specific queues 'owned' by a particular virtual machine (VM). Devices using a hypervisor that leverages Intel VT can benefit from an increase in the performance and security of its virtualized environment. Safety Certification Challenges A major challenge facing device manufacturers is that during the certification process, they must meet the requirements specified for safety-related software and demonstrate that it's separated or protected from other parts of the system. If the system's hardware and software is fully consolidated, the non-safety related applications running on a general purpose operating system must also be deemed safe. This is very challenging and expensive because of the size of the general purpose operating system (GPOS). In addition, it would be advantageous to have the flexibility to revise the non-safety related software frequently in order to improve the human interface or improve connectivity without having to endure the costs and schedule impacts of recertifying the entire system multiple times during a product s life-cycle. Safety-related components require temporal and spatial separation from other system components with different levels of criticality. Today s separation concepts are mostly designed to use completely independent subsystems for each function, but this approach isn't hardware efficient and increases cost. Furthermore, legacy dependencies imposed by proprietary or RYO 4

Applying Multi-core and Virtualization to Industrial and Safety-Related Applications White Paper (roll your own) technologies often present additional challenges when OEMs migrate to commercial-off-the-shelf (COTS) hardware and software technologies. However, developers who designed systems with software migration flexibility in mind are wellpositioned to benefit from new innovative technologies like multi-core processors and virtualization. Reducing Risk Aside from aerospace and defense, where ARINC 653 separation standards are well-defined, most industries lack a unified approach to functional safety. This leaves safety standards open for interpretation and can cause greater unpredictability and uncertainty for device manufacturers. In many cases, device manufacturers face increasing requirements to incorporate different levels of software criticality and address more stringent regulations. As in the ARINC 653 environment, a useful approach is to increase software separation so that software components can be certified as independent modules. Wind River, a market leader in DO-178B-certified ARINC 653 separation concepts, is applying its experience to the industrial market to mitigate risk and help engineers develop safe and deterministic applications. The memory protection provided by the Wind River hypervisor can be leveraged to ensure the spatial separation of the applications in the virtual boards, as shown in Figure 5. This configuration provides applications with dedicated and secure memory contexts, which is a critical aspect of guaranteeing the safety integrity of independent software modules. Spatial separation enables applications to run as independent modules, so OEMs can certify them as smaller, simpler components. Additionally, temporal separation can be provided by dedicating virtual boards to individual cores or by leveraging the appropriate scheduling algorithm in the hypervisor when multiple virtual boards share a core. Safety Related Application Wind River VxWorks (Certifiable) Other Applications Wind River Linux or Windows* Wind River hypervisor (Certifiable) 1 Single or Multicore Intel Processor 1 The above is intended to outline Wind River's general product direction. It is intended for informational purposes only, and may not be incorporated into any contract or relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Wind River products remains at the sole discretion of Wind River. Figure 5. Virtualization System for Safety Related Applications Wind River s performance optimized hypervisor solution running on Intel processors provides: A mechanism to implement temporal and spatial separation between applications. The possibility to separate safety-related functionality (e.g., soft PLC) from other functionality (e.g., graphical user interfaces). An open modular approach that has the potential to enable cost-efficient safety. Addressing Future Safety and Performance Requirements The combination of multi-core and virtualization technologies provides a path for meeting future safety and computing performance requirements of industrial and transportation applications. As such, hardware and software technologies from Intel and Wind River can help developers using a standardized approach to temporal and spatial separation. The exceptional processing performance of Intel multi-core processors with Intel Virtualization Technology enables applications to run safely in a virtualized environment. Wind River supplies a software framework including the VxWorks for DO-178B or IEC61508 operating systems and the Wind River hypervisor. OEMs certifying safety critical applications, according to IEC61508-Part 3 or other vertical standards derived from the IEC61508 specification, can benefit from using Wind River products with Intel Architecture Processors that enhance safety and reliability in a real-time virtualized environment. 5

For more information about Intel processors for embedded computing, please visit: www.intel.com/products/embedded Learn more about Wind River's Multicore Software Solution and hypervisor at: http://www.windriver.com/multicore-software. INFORMATION IN THIS DOCUMENT IS PROVIDED IN CONNECTION WITH INTEL PRODUCTS. NO LICENSE, EXPRESS OR IMPLIED, BY ESTOPPEL OR OTHERWISE, TO ANY INTELLECTUAL PROPERTY RIGHTS IS GRANTED BY THIS DOCUMENT. EXCEPT AS PROVIDED IN INTEL'S TERMS AND CONDITIONS OF SALE FOR SUCH PRODUCTS, INTEL ASSUMES NO LIABILITY WHATSOEVER AND INTEL DISCLAIMS ANY EXPRESS OR IMPLIED WARRANTY, RELATING TO SALE AND/OR USE OF INTEL PRODUCTS INCLUDING LIABILITY OR WARRANTIES RELATING TO FITNESS FOR A PARTICULAR PURPOSE, MERCHANTABILITY, OR INFRINGEMENT OF ANY PATENT, COPYRIGHT OR OTHER INTELLECTUAL PROPERTY RIGHT. UNLESS OTHERWISE AGREED IN WRITING BY INTEL, THE INTEL PRODUCTS ARE NOT DESIGNED NOR INTENDED FOR ANY APPLICATION IN WHICH THE FAILURE OF THE INTEL PRODUCT COULD CREATE A SITUATION WHERE PERSONAL INJURY OR DEATH MAY OCCUR. Intel may make changes to specifications and product descriptions at any time, without notice. Designers must not rely on the absence or characteristics of any features or instructions marked "reserved" or "undefined." Intel reserves these for future definition and shall have no responsibility whatsoever for conflicts or incompatibilities arising from future changes to them. The information here is subject to change without notice. Do not finalize a design with this information. Copyright 2009 Intel Corporation. All rights reserved. Intel, the Intel logo, Intel Atom, Intel Atom Inside, Intel Core, Core Inside, Pentium, Pentium Inside, Xeon and Xeon Inside are trademarks of Intel Corporation in the U.S. and other countries. *Other names and brands may be claimed as the property of others. Printed in USA 0209/SI/S2/PDF Please Recycle 321410-001US

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information