Descripción
|
|
---|---|
A common approach is to provide a number of logical partitions on each computer platform, in such a way that each partition is allocated a share of processor time, memory space, and other resources. Partitions are thus isolated from each other both in the temporal and spatial domains. Temporal isolation implies that a partition does not use more processor time than allocated, and spatial isolation means that software running in a partition does not read or write into memory space allocated to other partitions. Partitioning has been successfully implemented in the aeronautics domain by the so-called Integrated Modular Avionics (IMA) concept [15]. The IMA architecture requires a specialized operating system layer that provides temporal and spatial isolation between partitions. The ARINC 653 standard [3] defines an architecture and an applications program interface (API) for such an operating system or application executive (APEX), in ARINC terms. Temporal isolation is achieved by using a two-level scheduling scheme. A global partition scheduler allocates processor time to partitions according to a static cyclic schedule, where partitions run in turn for the duration of a fixed slice of time (see figure 1). The global scheduler is a variant of a static cyclic executive, while the local schedulers are priority-based. Spatial isolation between partitions is provided by implementing a separate address space for each partition, in a similar way as process address spaces are protected from each other in conventional operating systems. | |
Internacional
|
Si |
DOI
|
10.1007/978-3-642-21338-0_12 |
Edición del Libro
|
|
Editorial del Libro
|
Springer-Verlag |
ISBN
|
978-3-642-21337-3 |
Serie
|
|
Título del Libro
|
Reliable Software Technologies ? Ada-Europe 2011, |
Desde página
|
161 |
Hasta página
|
173 |