电动车基础设施-高级装备工程-ITUPS通信电源.doc

Resilience and survivability in communication networks: Strategies, principles, and survey of disciplinesComputer NetworksThe Internet has become essential to all aspects of modern life, and thus the consequences of network disruption have become increasingly severe. It is widely recognised that the Internet is not sufficiently resilient, survivable, and dependable, and that significant research, development, and engineering is necessary to improve the situation. This paper provides an architectural framework for resilience and survivability in communication networks and provides a survey of the disciplines that resilience encompasses, along with significant past failures of the network infrastructure. A resilience strategy is presented to defend against, detect, and remediate challenges, a set of principles for designing resilient networks is presented, and techniques are described to analyse network resilience.Article Outline1. Introduction and motivation2. Resilience disciplines 2.1. Faulterrorfailure chain2.2. Disciplines relating to challenge tolerance 2.2.1. Fault tolerance2.2.2. Survivability2.2.3. Disruption tolerance2.2.4. Traffic tolerance2.3. Disciplines relating to trustworthiness 2.3.1. Dependability2.3.2. Security2.3.3. Performability2.4. Robustness and complexity 2.4.1. Robustness2.4.2. Complexity3. Challenges and past failures 3.1. Unusual but legitimate traffic load3.2. Accidents and human mistakes3.3. Large-scale disasters3.4. Malicious attacks3.5. Environmental challenges3.6. Failures at a lower layer3.7. Summary of challenges and past failures4. ResiliNets framework and strategy 4.1. Previous strategies 4.1.1. ANSA4.1.2. T14.1.3. CMU-CERT4.1.4. SUMOWIN4.2. ResiliNets4.3. ResiliNets axioms4.4. ResiliNets strategy 4.4.1. Introduction4.4.2. D2R2 inner loop4.4.3. DR outer loop5. ResiliNets design principles 5.1. Prerequisites5.2. Design tradeoffs5.3. Enablers5.4. Behaviour needed for resilience6. Resilience analysis 6.1. State transitions and resilience evaluation6.2. Resilience analysis scenario7. Summary and research directionsDevelopment in the application of ICT in condition monitoring and maintenanceComputers in IndustryThis paper reviews the available literature on the application of information and communication technologies (ICT), more specifically, Web and agent technologies in condition monitoring (CM) and the maintenance of mechanical and electrical systems. The rarity of experts led to the application of artificial intelligence and, later, distributed artificial intelligence. The Web and agent technology is the latest development in this area. The literature findings have been analysed and classified in a framework which highlights the baseline technology, the objective of the technology and the industry of application. The OSA-CBM (Open System Architecture Condition-Based Maintenance) layers are also used for the analysis of the reviewed work. The review shows that Web and agent technologies are being used for monitoring and maintenance in manufacturing, power, and chemical industries. It is used to integrate geographically distributed systems, processes and heterogeneous data for asset management. Different architectures, methodologies and tools are proposed by the researchers for the development of agent systems. Few findings report the use of the mobile devices. Finally, the review shows that limited consistent and systematic efforts have been made, in an isolated manner, to apply ICT to CM and maintenance.Article Outline1. Introduction2. The framework3. Prognostics and decision support4. Condition monitoring and diagnostics5. Data manipulation and health assessment6. Data acquisition and condition monitoring7. Health assessment and scheduling8. ICT for data acquisition and data transfer9. ICT for integration10. ICT for conflicting goals11. Other findings12. ConclusionsAcknowledgementsReferencesVitaeSystem integration of a portable direct methanol fuel cell and a battery hybridInternational Journal of Hydrogen EnergyThis paper introduces a complete system-level design and integration of a portable direct methanol fuel cell (DMFC) system. We describe hardware and software design for the balance of plant (BOP) control, including a 32-bit microprocessor and electronics for actuators and sensors, focusing on reliable operation and protection of the DMFC system. Various BOP components are characterized to find the optimal design for better portability, reliability, and energy efficiency, and we suggest effective and robust design of control loops for them. We demonstrate a hybrid operation of the DMFC stack and Li-ion battery to maintain a constant stack output current regardless of the load current to maximize the performance. We emphasize the design of subsystems for power supply, measurement, actuator drive, and protection in detail. We verify the robust operation of BOP control against environmental changes such as orientation and pressure variations with an implemented control board.Article Outline1. Introduction2. Portable DMFC systems3. BOP control subsystem 3.1. Liquid pumps for methanol delivery 3.1.1. Micro gear pumps3.1.2. Diaphragm pumps3.2. Air pumps3.3. BOP control 3.3.1. Fuel and water circulation3.3.2. Air supply and temperature control4. Power hybridization subsystem 4.1. Fuel cell-battery hybrid architectures4.2. Voltage clamping and current limitation4.3. Constant-current operation5. Hardware design and implementation 5.1. DCDC converters and battery charger5.2. Measurement circuit5.3. Actuator driver circuits5.4. Protection circuits6. Software architecture and design 6.1. Microprocessor-based BOP control6.2. Operating system selection6.3. Software design7. Experimental results 7.1. Pump control 7.1.1. Cascaded feedback control7.1.2. Feedforward control7.2. Constant-current operation7.3. Long-term operation8. ConclusionsAcknowledgementsReferencesModeling and analysis of an FC/UC hybrid vehicular power system using a wavelet-fuzzy logic based load sharing and control algorithm燃料电池全面监管系统及其控制算法和模糊逻辑 负载及电能监测建模分析Fuel cell (FC) systems are potentially promising candidates as alternative energy sources for use in vehicular applications. The natural advantages of hybrid power sources may be effectively utilized to improve the efficiency and dynamic response of a vehicular system. Fuel cell (FC) and ultra-capacitor (UC) based hybrid power systems appear to be very promising for satisfying high energy and high power requirements for vehicular applications. In this paper, a FC/UC hybrid vehicular power system using a wavelet based load sharing and fuzzy logic based control algorithm is proposed. While wavelet transforms are suitable for analyzing and evaluating the dynamic load demand profile of a hybrid electric vehicle (HEV), the use of fuzzy logic controller is appropriate for the hybrid system control. The mathematical and electrical models of the hybrid vehicular system are developed in detail and simulated using MATLAB, Simulink and SimPowerSystems environments.Article Outline1. Introduction2. System description and methodology 2.1. Modeling of a PEMFC2.2. Modeling of UC bank2.3. Drive cycle2.4. Wavelet-fuzzy logic based load sharing and control algorithm2.5. Power conditioning unit3. Test and results4. ConclusionsAcknowledgementsReferencesSecurity threats to automotive CAN networksPractical examples and selected short-term countermeasuresReliability Engineering & System SafetyCAN网络总线与IC设备运行安全The IT security of automotive systems is an evolving area of research. To analyse the current situation and the potentially growing tendency of arising threats we performed several practical tests on recent automotive technology. With a focus on automotive systems based on CAN bus technology, this article summarises the results of four selected tests performed on the control systems for the window lift, warning light and airbag control system as well as the central gateway. These results are supplemented in this article by a classification of these four attack scenarios using the established CERT taxonomy and an analysis of underlying security vulnerabilities, and especially, potential safety implications. With respect to the results of these tests, in this article we further discuss two selected countermeasures to address basic weaknesses exploited in our tests. These are adaptations of intrusion detection (discussing three exemplary detection patterns) and IT-forensic measures (proposing proactive measures based on a forensic model). This article discusses both looking at the four attack scenarios introduced before, covering their capabilities and restrictions. While these reactive approaches are short-term measures, which could already be added to todays automotive IT architecture, long-term concepts also are shortly introduced, which are mainly preventive but will require a major redesign. Beneath a short overview on respective research approaches, we discuss their individual requirements, potential and restrictions.Article Outline1. Introduction and motivation2. State-of-the-art 2.1. Exemplary preventive measures2.2. Exemplary reactive measures3. Four exemplary automotive IT security threats to discuss attack potential 3.1. Scenario S1: analyses on the electric window lift 3.1.1. CERT classification3.1.2. Implications to comfort, security and safety3.2. Scenario S2: analyses on the warning lights 3.2.1. CERT classification3.2.2. Implications to comfort, security and safety3.3. Scenario S3: analyses on the airbag control system 3.3.1. CERT classification3.3.2. Implications to comfort, security and safety3.4. Scenario S4: analyses on the gateway ECU 3.4.1. CERT classification3.4.2. Implications to comfort, security and safety3.5. Safety and security implicationssummary and analysis of underlying problems in scenarios S1S4 3.5.1. Confidentiality/privacy3.5.2. Integrity3.5.3. Authenticity3.5.4. Availability3.5.5. Non-repudiation4. Discussion of short-term countermeasures to address the demonstrated threats, their potential and restrictions 4.1. Intrusion detection techniques 4.1.1. Three exemplary detection patterns4.1.2. Exemplary practical implementation of detection Pattern 14.1.3. Restrictions of Patterns 13 and potential for future research4.2. Proactive forensics support 4.2.1. A forensic process model and its automotive application4.2.2. Centralised vs. distributed approaches to proactive measures in support of IT-forensics4.2.3. Proactive forensic measuresexemplary application to the attack scenarios S1S44.2.4. Discussion of restrictions and potential for future research5. Holistic concepts for automotive IT security as long-term solutions, their potential and restrictions 5.1. Exemplary requirements and research trends5.2. The potential for future automotive IT applications5.3. Remaining challenges and restrictions6. Summary and outlookAcknowledgementsReferencesModern development methods and tools for embedded reconfigurable systems: A surveyHeterogeneous reconfigurable systems provide drastically higher performance and lower power consumption than traditional CPU-centric systems. Moreover, they do it at much lower costs and shorter times to market than non-reconfigurable hardware solutions. They also provide the flexibility that is often required for the engineering of modern robust and adaptive systems. Due to their heterogeneity, flexibility and potential for highly optimized application-specific instantiation, reconfigurable systems are adequate for a very broad class of applications across different industry sectors. What prevents the reconfigurable system paradigm from a broad proliferation is the lack of adequate development methodologies and electronics design tools for this kind of systems. The ideal would be a seamless compilation of a high-level computation process specification into an optimized mixture of machine code executed on traditional CPU-centric processors and on the application-specific decentralized parallel data-flow-dominated reconfigurable processors and hardware accelerators. Although much research and development in this direction was recently performed, the adequate methodologies and tools necessary to implement this compilation process as an effective and efficient hardware/software co-synthesis flow are unfortunately not yet in place. This paper focuses on the recent developments and development trends in the design methods and synthesis tools for reconfigurable systems. Reconfigurable system synthesis performs two basic tasks: system structure construction and application process mapping on the structure. It is thus more complex than standard (multi-)processor-based system synthesis for software-programmable systems that only involves application mapping. The system structure construction may involve the macro-architecture synthesis, the micro-architecture synthesis, and the actual hardware synthesis. Also, the application process mapping can be more complicated and dynamic in reconfigurable systems. This paper reviews the recent methods and tools for the macro- and micro-architecture synthesis, and for the application mapping of reconfigurable systems. It puts much attention to the relevant and currently hot topic of (re-)configurable application-specific instruction set processors (ASIP) synthesis, and specifically, ASIP instruction set extension. It also discusses the methods and tools for reconfigurable systems involving CPU-centric processors collaborating with reconfigurable hardware sub-systems, for which the main problem is to decide which computation processes should be implemented in software and which in hardware, but the hardware/software partitioning has to account for the hardware sharing by different computation processes and for the reconfiguration processes. The reconfigurable system area is a very promising, but quite a new field, with many open research and development topics. The paper reviews some of the future trends in the reconfigurable system development methods and tools. Finally, the discussion of the paper is summarized and concluded.Article Outline1. Introduction2. Need of enabling development technology3. Development of embedded RC systems4. Platform-based RC system development5. Platform-based RC system architecture synthesis 5.1. Application analysis and restructuring 5.1.1. Application analysis5.1.2. Role of compilers in application analysis, parallelization and hardware compilation5.1.3. Estimation of hardware and system characteristics5.2. Macro-architecture exploration and synthesis for RC systems 5.2.1. Macro-architecture exploration and synthesis concepts5.2.2. Scheduling and mapping of computation processes on template instance5.3. Specific issues of run-time reconfigurable systems5.4. Micro-architecture exploration and synthesis for RC systems 5.4.1. Micro-architecture exploration and synthesis concepts5.4.2. Hardware accelerator design5.5. Reconfigurable ASIP design 5.5.1. Instruction set customization5.5.2. Custom instruction identification5.5.3. Custom instruction selection5.5.4. Re-targetable compilers6. ConclusionGrid-connected photovoltaic power systems: Technical and potential problemsA reviewTraditional electric power systems are designed in large part to utilize large baseload power plants, with limited ability to rapidly ramp output or reduce output below a certain level. The increase in demand variability created by intermittent sources such as photovoltaic (PV) presents new challenges to increase system flexibility. This paper aims to investigate and emphasize the importance of the grid-connected PV system regarding the intermittent nature of renewable generation, and the characterization of PV generation with regard to grid code compliance. The investigation was conducted to critically review the literature on expected potential problems associated with high penetration levels and islanding prevention methods of grid tied PV. According to the survey, PV grid connection inverters have fairly good performance. They have high conversion efficiency and power factor exceeding 90% for wide operating range, while maintaining current harmonics THD less than 5%. Numerous large-scale projects are currently being commissioned, with more planned for the near future. Prices of both PV and balance of system components (BOS) are decreasing which will lead to further increase in use. The technical requirements from the utility power system side need to be satisfied to ensure the safety of the PV installer and the reliability of the utility grid. Identifying the technical requirements for grid interconnection and solving the interconnect problems such as islanding detection, harmonic distortion requirements and electromagnetic interference are therefore very important issues for widespread application of PV systems. The control circuit also provides sufficient control and protection functions like maximum power tracking, inverter current control and power factor control. Reliability, life span and maintenance needs should be certified through the long-term operation of PV system. Further reduction of cost, size and weight is required for more utilization of PV systems. Using PV inverters with a variable power factor at high penetration levels may increase the number of balanced conditions and subsequently increase the probability of islanding. It is strongly recommended that PV inverters should be operated at unity power factor.Article OutlineNomenclature1. Introduction2. Glossar