Safety-critical designs need to ensure reliable operations under hostile conditions with a certain degree of confidence. The continuously higher complexity of these designs makes them more susceptible to the risk of failure. ISO26262 recommends fault injection as the proper technique to verify and measure the dependability of safety-critical designs. To cope with the complexity, a lot of effort and stringent verification flow is needed. Moreover, many fault injection tools offer only a limited degree of controllability. We propose MetaFI, a model-driven simulator-independent fault simulation framework that provides multi-purpose fault injection strategies such as Statistical Fault Injection, Direct Fault Injection, Exhaustive Fault Injection, and at the same time reduces manual efforts. The framework enables injection of Stuck-at faults, Single-Event Transient faults, Single-Event Upset faults as well as Timing faults. The fault simulation is performed at the Register Transfer Level (RTL) of a design, in which parts of the design targeted for fault simulation are represented with Gate-level (GL) granularity. MetaFI is scalable with a full System-on-Chip (SoC) design and to demonstrate the applicability of the framework, fault simulation was applied to various components of two different SoCs. One SoC is running the Dhrystone application and the other one is running a Fingerprint calculation application. A minimal effort of 2 persondays was required to run 38 various fault injection campaigns on both the designs. The framework provided significant data regarding failure rates of the components. Results concluded that Prefetcher, a component of the SoC processor, is more susceptible to failures than the other targeted components on both the SoCs, regardless of the running application.
翻译:安全关键设计需要确保可靠操作在具有一定信任度的敌对条件下的可靠操作。 这些设计的复杂性不断提高, 使得它们更容易发生故障。 ISO2626262建议将错误注入作为核查和测量安全关键设计可靠性的适当技术。 要应对复杂性, 需要付出大量努力和严格的核查流程。 此外, 许多错误注入工具只能提供有限程度的控制性。 我们提议一个模型驱动的模拟器独立故障模拟框架, 提供多用途错误注入策略, 如统计错误喷射、 直接错误喷射、 Exhaustive Faltive 喷射, 并同时减少人工工作。 这个框架可以注入 Stuck-at- 安全关键设计可靠性的错误、 单 Event Translight 错误和 Time 错误。 我们提议在设计中的登记册传输级别( RTL ) 进行错误模拟, 用于错误模拟的部分是门级( GL) 颗粒度、 Exhavitive Firetal Instration, IMFI 可以同时将S train A train a liver liver rudeal rude laft laft laft man laft laft laft laft laft laft laft laft laft laft laft laft laft laft man man mantift ex a ex ex a mantipeut ex man man ex mantipe man man man man man man man man exp man man man man man exp exital exp man man man man man man manx lauts man manx man man man exp exp exp exp exp exp exp exital exp ex exp exp manutdal ex ex ex ex man ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex ex