Añadir a la recogida (s) Añadir a salvo
  1. Ninguna Categoria

5+5

Anuncio 
Ejercicio 3 del tema 1:
Busque informacion sobre las consecuencias que pueden llegar a tener los defectos del
software. (Busque el termino "Software Disasters")
On June 4, 1996 an unmanned Ariane 5
rocket launched by the European Space
Agency exploded just forty seconds
after its lift-off from Kourou, French
Guiana. The rocket was on its first
voyage, after a decade of development
costing $7 billion. The destroyed rocket
and its cargo were valued at $500 million. A board of inquiry investigated the causes of
the explosion and in two weeks issued a report. It turned out that the cause of the failure
was a software error in the inertial reference system. Specifically a 64 bit floating point
number relating to the horizontal velocity of the rocket with respect to the platform was
converted to a 16 bit signed integer. The number was larger than 32,767, the largest
integer storeable in a 16 bit signed integer, and thus the conversion failed.
The following paragraphs are extracted from the report of the Inquiry Board. An
interesting article on the accident and its implications by James Gleick appeared in The
New York Times Magazine of 1 December 1996. The CNN article reporting the
explosion, from which the above graphics were taken, is also available.
On 4 June 1996, the maiden flight of the Ariane 5 launcher ended in a failure. Only
about 40 seconds after initiation of the flight sequence, at an altitude of about 3700 m,
the launcher veered off its flight path, broke up and exploded.
The failure of the Ariane 501 was caused by the complete loss of guidance and attitude
information 37 seconds after start of the main engine ignition sequence (30 seconds
after lift-off). This loss of information was due to specification and design errors in the
software of the inertial reference system.
The internal SRI* software exception was caused during execution of a data conversion
from 64-bit floating point to 16-bit signed integer value. The floating point number
which was converted had a value greater than what could be represented by a 16-bit
signed integer.
On February 25, 1991, during the Gulf War, an American Patriot Missile battery in
Dharan, Saudi Arabia, failed to track and intercept an incoming Iraqi Scud missile. The
Scud struck an American Army barracks, killing 28
soldiers and injuring around 100 other people. A report of
the General Accounting office, GAO/IMTEC-92-26,
entitled Patriot Missile Defense: Software Problem Led to
System Failure at Dhahran, Saudi Arabia reported on the
cause of the failure. It turns out that the cause was an
inaccurate calculation of the time since boot due to
computer arithmetic errors. Specifically, the time in tenths
of second as measured by the system's internal clock was
multiplied by 1/10 to produce the time in seconds. This calculation was performed using
a 24 bit fixed point register. In particular, the value 1/10, which has a non-terminating
binary expansion, was chopped at 24 bits after the radix point. The small chopping
error, when multiplied by the large number giving the time in tenths of a second, lead to
a significant error. Indeed, the Patriot battery had been up around 100 hours, and an
easy calculation shows that the resulting time error due to the magnified chopping error
was about 0.34 seconds. (The number 1/10 equals 1/24+1/25+1/28+1/29+1/212+1/213+....
In other words, the binary expansion of 1/10 is
0.0001100110011001100110011001100.... Now the 24 bit register in the Patriot stored
instead 0.00011001100110011001100 introducing an error of
0.0000000000000000000000011001100... binary, or about 0.000000095 decimal.
Multiplying by the number of tenths of a second in 100 hours gives
0.000000095×100×60×60×10=0.34.) A Scud travels at about 1,676 meters per second,
and so travels more than half a kilometer in this time. This was far enough that the
incoming Scud was outside the "range gate" that the Patriot tracked. Ironically, the fact
that the bad time calculation had been improved in some parts of the code, but not all,
contributed to the problem, since it meant that the inaccuracies did not cancel.
The following paragraph is excerpted from the GAO report.
The range gate's prediction of where the Scud will next appear is a function of the
Scud's known velocity and the time of the last radar detection. Velocity is a real number
that can be expressed as a whole number and a decimal (e.g., 3750.2563...miles per
hour). Time is kept continuously by the system's internal clock in tenths of seconds but
is expressed as an integer or whole number (e.g., 32, 33, 34...). The longer the system
has been running, the larger the number representing time. To predict where the Scud
will next appear, both time and velocity must be expressed as real numbers. Because of
the way the Patriot computer performs its calculations and the fact that its registers are
only 24 bits long, the conversion of time from an integer to a real number cannot be
any more precise than 24 bits. This conversion results in a loss of precision causing a
less accurate time calculation. The effect of this inaccuracy on the range gate's
calculation is directly proportional to the target's velocity and the length of the the
system has been running. Consequently, performing the conversion after the Patriot has
been running continuously for extended periods causes the range gate to shift away
from the center of the target, making it less likely that the target, in this case a Scud,
will be successfully intercepted.
Traducción aproximada:
El 25 de febrero de 1991, durante la Guerra del Golfo, una batería de Proyectil de
Patriota americana en Dharan, Arabia Saudita, no rastreada y interceptar un proyectil de
Scud Iraquí entrante. El Scud golpeó un cuarteles del Ejército americanos, mata a 28
soldados y daña alrededor de 100 otras personas. Un informe de la oficina de
Contabilidad General, GAO/IMTEC-92-26, Defensa de Proyectil de Patriota titulada,:
El Problema del software Llevó al Fracaso del Sistema a Dahrán, Arabia Saudita
informó en la causa del fracaso. Resulta que la causa era un cálculo inexacto del tiempo
desde la bota debido a los errores de aritmética de computadora. Específicamente, el
tiempo en décimo de segundo como medido por el reloj interior del sistema fue
multiplicado a través de 1/10 para producir el tiempo en segundos. Este cálculo que usó
un 24 pedazo arreglado registro del punto se realizó. En particular, el valor 1/10 que
tiene una expansión binaria no-terminando se cortó a 24 momentos después del punto
del radix. El error de picar pequeño, cuando multiplicado por el número grande que da
el tiempo en décimo de un segundo, lleve a un error significante. De hecho, la batería
del Patriota había sido a alrededor de 100 horas, y un muestras del cálculo fáciles que el
error de tiempo resultante debido al error de picar magnificado era aproximadamente
0.34 segundos. (El número 1/10 iguala 1/24+1/25+1/28+1/29+1/212+1/213+.... En otras
palabras, la expansión binaria de 1/10 es 0.0001100110011001100110011001100....
Ahora el 24 registro del pedazo en el Patriota guardó 0.00011001100110011001100 en
cambio introduciendo un error de 0.0000000000000000000000011001100... binario, o
aproximadamente 0.000000095 decimal. Multiplicando por el número de décimo de un
segundo en 100 horas da 0.000000095×100×60×60×10=0.34.) UN Scud viaja a
aproximadamente 1,676 metros por segundo, y para que viaja más de la mitad un
kilómetro por este tiempo. Esto era lejos bastante que el Scud entrante estaba fuera de la
"verja del rango" que el Patriota rastreó. Irónicamente, el hecho que el cálculo de
tiempo malo se había mejorado en algunas partes del código, pero no todos,
contribuidos al problema, desde que significó que las inexactitudes no cancelaron.
El párrafo siguiente es excerpted del informe de GAO.
La predicción de la verja del rango de donde el Scud aparecerá luego es una función del
la velocidad conocida de Scud y el tiempo del último descubrimiento del radar. La
velocidad es un número real que puede expresarse número y un decimal en conjunto
(ej., 3750.2563 ...miles por hora). Time es guardado continuamente por el reloj interior
del sistema en décimo de segundos pero se expresa como un entero o número del todo
(ej., 32, 33, 34...). El más largo el sistema ha estado corriendo, el más grande el número
que representa tiempo. Para predecir donde el Scud aparecerá luego, los dos que deben
expresarse tiempo y velocidad como números reales. Debido a la manera la
computadora del Patriota realiza sus cálculos y el hecho que sus registros son que sólo
24 pedazos anhelan, la conversión de tiempo de un entero a un número real no puede ser
más precisa que 24 pedazos. Esta conversión produce una pérdida de precisión que
causa un cálculo de tiempo menos exacto. El efecto de esta inexactitud en el cálculo de
la verja del rango es directamente proporcional a la velocidad del blanco y la longitud
del el sistema ha estado corriendo. Por consiguiente, realizando la conversión después
del Patriota ha estado corriendo continuamente para las causas de los periodo
extendidas la verja del rango para cambiar lejos del centro del blanco, haciéndolo
probablemente que el blanco, en este caso un Scud, se interceptará con éxito.
Documentos relacionados
Summary of notifications
Summary of notifications
2015-2016 Identity and Statement of Educational Purpose Verification
2015-2016 Identity and Statement of Educational Purpose Verification
RESUMEN BRIEF
RESUMEN BRIEF
Medical Group St. Joseph Heritage
Medical Group St. Joseph Heritage
M-3 Certificado de Salud - Confederación Sudamericana de Voleibol
M-3 Certificado de Salud - Confederación Sudamericana de Voleibol
¿Quién lo usó por vez primera? Síndrome de West
¿Quién lo usó por vez primera? Síndrome de West
Fall is here! It is a season of many changes. Young children lov
Fall is here! It is a season of many changes. Young children lov
Dos realidades
Dos realidades
Shell for Forms Sheet - Texas Secretary of State
Shell for Forms Sheet - Texas Secretary of State
Descargar
Anuncio
Anuncio