Abstract
Reliable communication among avionic applications is a crucial prerequisite for today’s all-electronic fly-by-wire aircraft technology. The AFDX switched Ethernet has been developed as a scalable, cost-effective network, based upon IEEE 802.3 Ethernet. It uses redundant links to increase the availability. Typical consensus strategies for the redundancy management task are not feasible, as they introduce too heavy delays. In this paper, we formally investigate AFDX redundancy management algorithms, making use of Lamport’s Temporal Logic of Actions (TLA). Furthermore, we present our experiences made with TLA + and the TLA + model checker TLC.KeywordsRedundancy Management AFDX TLA Model CheckingCase Study
Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
