TTEthernet

Last updated July 14, 2024

The Time-Triggered Ethernet (SAE AS6802) (also known as TTEthernet or TTE) standard defines a fault-tolerant synchronization strategy for building and maintaining synchronized time in Ethernet networks, and outlines mechanisms required for synchronous time-triggered packet switching for critical integrated applications and integrated modular avionics (IMA) architectures. SAE International released SAE AS6802 in November 2011.

TTEthernet network devices are standard Ethernet devices with additional capability to configure and establish robust synchronization, synchronous packet switching, traffic scheduling and bandwidth partitioning, as described in SAE AS6802. If no time-triggered traffic capability is configured or used, it operates as full duplex switched Ethernet devices compliant with IEEE802.3 and IEEE802.1 standards.

In addition, such network devices implement other deterministic traffic classes to enable mixed-criticality Ethernet networking. Therefore, TTEthernet networks are designed to host different Ethernet traffic classes without interference.

TTEthernet device implementation expands standard Ethernet with services to meet time-critical, deterministic or safety-relevant requirements in double- and triple-redundant configurations for advanced integrated systems. TTEthernet switching devices are used for integrated systems and safety-related applications primarily in the aerospace, industrial controls and automotive^[1] applications.

TTEthernet has been selected by NASA and ESA as the technology for communications between the Orion MPCV and the European Service Module, and is described by the ESA as being "prime choice for future launchers allowing them to deploy distributed modular avionics concepts".^[2] It has also been selected as the backbone network for NASA's Lunar Gateway ^[3] to which ESA is a key stakeholder.

As an increasingly used network architecture in the space industry, European Cooperation for Space Standardization published ECSS-E-ST-50-16C on September 30, 2021.^[4]

Description

TTEthernet network devices implement OSI Layer 2 services, and therefore it claims to be compatible with IEEE 802.3 standards and coexist with other Ethernet networks and services or traffic classes, such as IEEE 802.1Q, on the same device. Three traffic classes and message types are provided in current TTEthernet switch implementations:^[5]

Synchronization Traffic (Protocol Control Frames - PCF): Time-Triggered Ethernet network uses protocol control frames (PCFs) to establish and maintain synchronization. The PCFs traffic has the highest priority and it is similar to rate-constrained traffic. PCF traffic establishes a well-defined interface for fault-tolerant clock synchronization algorithms.
Time-triggered traffic: Ethernet packets are sent over the network at predefined (scheduled) times and take precedence over all other traffic types. The occurrence, temporal delay and precision of time-triggered messages are predefined and guaranteed. Also, "synchronized local clocks are the fundamental prerequisite for time-triggered communication".^[6]^{[note 1]}
Rate-constrained traffic: Ethernet packets are configured so that they can keep maximum latency and jitter in a closed system. They are used for applications with less stringent determinism and real-time requirements. This traffic class guarantees that bandwidth is predefined for each application and delays and temporal deviations have defined upper bounds.
Best-effort traffic (incl. VLAN traffic): Packets are sent via FIFO queues to egress ports. There is no absolute guarantee whether and when these messages can be transmitted, what delays occur and if messages arrive at the recipient. Best-effort messages use the remaining bandwidth of the network and have lower priority than the other two types.

Three traffic classes cover different types of determinism - from soft-time best-effort traffic to "more deterministic" to "very deterministic" (max.latency defined per VL) to "strictly deterministic" (fixed latency, μs-jitter), thus creating a deterministic unified Ethernet networking technology. While standard full duplex switched Ethernet is typically best effort or more deterministic, time-triggered traffic is bound only to the system time progression and traffic scheduling, and not to priorities. It can be considered the highest priority traffic, above the highest priority 802.1Q VLAN traffic.

Fault-tolerance

TTEthernet (i.e. Ethernet switch with SAE AS6802) integrates a model of fault-tolerance and failure management ^{[ citation needed ]}. TTEthernet switch can implement a reliable redundancy management and dataflow (datastream) integration to assure message transmission even in case of a switch failure. The SAE AS6802 implemented on an Ethernet switch supports the design of synchronous system architectures with defined fault-hypothesis.

The single-failure hypothesis, dual-failure hypothesis, and tolerance against arbitrary synchronization disturbances define the basic fault-tolerance concept in a Time-Triggered Ethernet (SAE AS6802-based) network.

Under the single-failure hypothesis, Time-Triggered Ethernet (SAE AS6802) is intended to tolerate either the fail-arbitrary failure of an end system or the fail-inconsistent-omission failure of a switch. The switches in Time-Triggered Ethernet network can be configured to execute a central bus guardian function. The central bus guardian function ensures that even if a set of end systems becomes arbitrarily faulty, it masks the system-wide impact of these faulty end systems by transforming the fail-arbitrary failure mode into an inconsistent-omission failure mode. The arbitrarily faulty failure mode also includes so called "babbling-idiot" behavior. Time-Triggered Ethernet switches therefore establish fault-containment boundaries.

Under the dual-failure hypothesis, Time-Triggered Ethernet networks are intended to tolerate two fail-inconsistent-omission faulty devices. These devices may be two end systems, two switches, or an end system and a switch. The last failure scenario (i.e., end system and switch failure) means that Time-Triggered Ethernet network tolerates an inconsistent communication path between end systems. This failure mode is one of the most difficult to overcome.

Time-Triggered Ethernet networks are intended to tolerate transient synchronization disturbances, even in the presence of permanent failures. Under both single- and dual-failure hypothesis, Time-Triggered Ethernet provides self-stabilization properties. Self-stabilization means that synchronization can reestablish itself, even after a transient upset in a multitude of devices in the distributed computer network.

Performance

Time-triggered traffic

Time-triggered traffic is scheduled periodically, and depending on the architecture, line speed (e.g. 1GbE), topology and computing model with control loops operating at 0.1–5(+) kHz, using a time-triggered architecture (TTA) model of computation and communication. Hard real-time is possible at application level due to strict determinism, jitter control and alignment/synchronization between tasks and scheduled network messaging.

In L-TTA (Loosely TTA) architectures with synchronous TTEthernet network, but with local computer clocks decoupled from system/network time the performance of control loops may be limited. In this case, time-triggered transmissions are necessarily cyclically scheduled and thus delays between processes in the application layer can be large, e.g. with plesiochronous processes operating on their own local clock and execution cycle, as is observed in systems using cyclic MIL-STD-1553B buses, up to twice the transmission interval due to released packets waiting for scheduled transmission at the source and for the receiving process to run at the destination.

Rate-constrained traffic

Rate-constrained traffic is another periodic time-sensitive traffic class, and it shall be modeled to align with time-triggered traffic (and vice versa) in order to fulfill maximum latency and jitter requirements. However, even where the sum of the allocated bandwidths is less than the capacity provided at every point in the network, delivery is still not guaranteed due, e.g., to potential buffer overflows at switch queues, etc., which simple limitation of bandwidths does not guarantee are avoided.

Best effort traffic

Best effort traffic will utilize network bandwidth not used by rate-constrained and time-triggered traffic.

In TTEthernet devices, this traffic class cannot interfere with deterministic traffic, as it resides in its own separate buffer memory. Moreover, it implements internal architecture which isolates best effort traffic on partitioned ports, from the traffic assigned to other ports. This mechanism can be associated with fine-grained IP traffic policing, to enable traffic control which is much more robust than VLANs with FIFO buffering.

History

In 2008, it was announced Honeywell would apply the technology to applications in the aerospace and automation industry.^[7] In 2010 a switch-based implementation was shown to perform better than shared bus systems such as FlexRay for use in automobiles.^[8] Since then, Time-Triggered Ethernet has been implemented in different industrial, space and automotive programs and components.

Notes

↑ The quality of the synchronization determines the limit on the efficiency with which the physical link between a data source and a switch may be used for time-triggered transfers, and thus the overall efficiency of the network: The individual data frames must be transmitted so that they arrive within the time slot expected by the switch. Hence the maximum error in synchronization between the source and the switch must be included in the duration of the time slot that the switch must allow. Otherwise frames of the time-triggered transfer, which are correctly timed from the perspective of the source, will be dropped by the switch for being mistimed. Hence, the larger the errors in the synchronization, the fewer such frames can be transmitted in any given period. This is a particular problem in the use of standard IEEE 802.3 Ethernet network interfaces with software support for IEEE1588 for the transmission of time-triggered transfers, e.g. for provably reliable data transport. This is, partly, why the use of specific TTEthernet network interfaces with hardware support for synchronization, etc., is recommended in implementations of TTEthernet.

Related Research Articles

Quality of service (QoS) is the description or measurement of the overall performance of a service, such as a telephony or computer network, or a cloud computing service, particularly the performance seen by the users of the network. To quantitatively measure quality of service, several related aspects of the network service are often considered, such as packet loss, bit rate, throughput, transmission delay, availability, jitter, etc.

100BaseVG is a 100 Mbit/s Ethernet standard specified to run over four pairs of Category 3 cable. It is also called 100VG-AnyLAN because it was defined to carry both Ethernet and Token Ring frame types.

Synchronous Optical Networking (SONET) and Synchronous Digital Hierarchy (SDH) are standardized protocols that transfer multiple digital bit streams synchronously over optical fiber using lasers or highly coherent light from light-emitting diodes (LEDs). At low transmission rates data can also be transferred via an electrical interface. The method was developed to replace the plesiochronous digital hierarchy (PDH) system for transporting large amounts of telephone calls and data traffic over the same fiber without the problems of synchronization.

A network switch is networking hardware that connects devices on a computer network by using packet switching to receive and forward data to the destination device.

In electronics and telecommunications, jitter is the deviation from true periodicity of a presumably periodic signal, often in relation to a reference clock signal. In clock recovery applications it is called timing jitter. Jitter is a significant, and usually undesired, factor in the design of almost all communications links.

The RapidIO architecture is a high-performance packet-switched electrical connection technology. It supports messaging, read/write and cache coherency semantics. Based on industry-standard electrical specifications such as those for Ethernet, RapidIO can be used as a chip-to-chip, board-to-board, and chassis-to-chassis interconnect.

Network performance refers to measures of service quality of a network as seen by the customer.

In computer networking, link aggregation is the combining of multiple network connections in parallel by any of several methods. Link aggregation increases total throughput beyond what a single connection could sustain, and provides redundancy where all but one of the physical links may fail without losing connectivity. A link aggregation group (LAG) is the combined collection of physical ports.

The Time-Triggered Protocol (TTP) is an open computer network protocol for control systems. It was designed as a time-triggered fieldbus for vehicles and industrial applications. and standardized in 2011 as SAE AS6003. TTP controllers have accumulated over 500 million flight hours in commercial DAL A aviation application, in power generation, environmental and flight controls. TTP is used in FADEC and modular aerospace controls, and flight computers. In addition, TTP devices have accumulated over 1 billion operational hours in SIL4 railway signalling applications.

In computer networking, a reliable protocol is a communication protocol that notifies the sender whether or not the delivery of data to intended recipients was successful. Reliability is a synonym for assurance, which is the term used by the ITU and ATM Forum.

Profinet is an industry technical standard for data communication over Industrial Ethernet, designed for collecting data from, and controlling equipment in industrial systems, with a particular strength in delivering data under tight time constraints. The standard is maintained and supported by Profibus and Profinet International, an umbrella organization headquartered in Karlsruhe, Germany.

Avionics Full-Duplex Switched Ethernet (AFDX), also ARINC 664, is a data network, patented by international aircraft manufacturer Airbus, for safety-critical applications that utilizes dedicated bandwidth while providing deterministic quality of service (QoS). AFDX is a worldwide registered trademark by Airbus. The AFDX data network is based on Ethernet technology using commercial off-the-shelf (COTS) components. The AFDX data network is a specific implementation of ARINC Specification 664 Part 7, a profiled version of an IEEE 802.3 network per parts 1 & 2, which defines how commercial off-the-shelf networking components will be used for future generation Aircraft Data Networks (ADN). The six primary aspects of an AFDX data network include full duplex, redundancy, determinism, high speed performance, switched and profiled network.

In computer networking, TUN and TAP are kernel virtual network devices. Being network devices supported entirely in software, they differ from ordinary network devices which are backed by physical network adapters.

Sercos III is the third generation of the Sercos interface, a standardized open digital interface for the communication between industrial controls, motion devices, input/output devices (I/O), and Ethernet nodes, such as PCs. Sercos III applies the hard real-time features of the Sercos interface to Ethernet. It is based upon the Ethernet standard. Work began on Sercos III in 2003, with vendors releasing first products supporting it in 2005.

High-availability Seamless Redundancy (HSR) is a network protocol for Ethernet that provides seamless failover against failure of any single network component. PRP and HSR are independent of the application-protocol and can be used by most Industrial Ethernet protocols in the IEC 61784 suite. HSR does not cover the failure of end nodes, but redundant nodes can be connected via HSR.

ITU-T Y.156sam Ethernet Service Activation Test Methodology is a draft recommendation under study by the ITU-T describing a new testing methodology adapted to the multiservice reality of packet-based networks.

ITU-T Y.1564 is an Ethernet service activation test methodology, which is the new ITU-T standard for turning up, installing and troubleshooting Ethernet-based services. It is the only standard test methodology that allows for complete validation of Ethernet service-level agreements (SLAs) in a single test.

Time-Sensitive Networking (TSN) is a set of standards under development by the Time-Sensitive Networking task group of the IEEE 802.1 working group. The TSN task group was formed in November 2012 by renaming the existing Audio Video Bridging Task Group and continuing its work. The name changed as a result of the extension of the working area of the standardization group. The standards define mechanisms for the time-sensitive transmission of data over deterministic Ethernet networks.

Deterministic Networking (DetNet) is an effort by the IETF DetNet Working Group to study implementation of deterministic data paths for real-time applications with extremely low data loss rates, packet delay variation (jitter), and bounded latency, such as audio and video streaming, industrial automation, and vehicle control.

Audio Video Bridging (AVB) is a common name for a set of technical standards that provide improved synchronization, low latency, and reliability for switched Ethernet networks. AVB embodies the following technologies and standards:

References

↑ "Time-Triggered Ethernet". www.tttech.com. Retrieved 13 July 2014.
↑ "Time-Triggered Ethernet". European Space Agency. Retrieved 2020-04-10.
↑ Loveless, Andrew (July 30, 2020). "On Time-Triggered Ethernet in NASA's Lunar Gateway" (PDF). NASA Technical Reports Server. Retrieved May 4, 2022.
↑ "ECSS-E-ST-50-16C – Space engineering – Time-Triggered Ethernet (30 September 2021) | European Cooperation for Space Standardization". ecss.nl. Retrieved 2022-05-04.
↑ "TTEthernet – A Powerful Network Solution for All Purposes" (PDF). Marketing whitepaper. TTTech Computertechnik AG. 2009. Archived from the original (PDF) on March 28, 2014. Retrieved March 28, 2014.
↑ Wilfried Steiner and Bruno Dutertre, SMT-Based Formal Verification of a TTEthernet Synchronization Function, S. Kowalewski and M. Roveri (Eds.), FMICS 2010, LNCS 6371, pp. 148–163, 2010.
↑ "New Products: Ethernet Platform". News release in Avionics magazine. April 1, 2008. Retrieved June 9, 2011.
↑ T. Steinbach; F. Korf; T. C. Schmidt (May 18, 2010). "Comparing time-triggered Ethernet with FlexRay: An evaluation of competing approaches to real-time for in-vehicle networks". 2010 IEEE International Workshop on Factory Communication Systems Proceedings. pp. 199–202. doi:10.1109/WFCS.2010.5548606. ISBN 978-1-4244-5460-0. S2CID 16739946.

External links

AS6802: Time-Triggered Ethernet
www.tttech.com/ttethernet - TTTech Computertechnik AG
realtime-ethernet.de - Comparison of realtime-ethernet solutions Explanations partly German, partly English
Michael Cooney (April 14, 2009). "NASA takes Ethernet deeper into space". Network World. Retrieved June 9, 2011.
NASA and TTTech partner on space network standards for network centric space operations Military & Aerospace Electronics magazine on TTEthernet
"TTEthernet Overview". Industry group web site. TTA-Group. Retrieved June 9, 2011.
"What is SAE AS6802 "Time-Triggered Ethernet"?". Deterministic Ethernet & Unified Networking. 11 November 2011. Retrieved 31 March 2014.

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.

[sync_efficiency-7] The quality of the synchronization determines the limit on the efficiency with which the physical link between a data source and a switch may be used for time-triggered transfers, and thus the overall efficiency of the network: The individual data frames must be transmitted so that they arrive within the time slot expected by the switch. Hence the maximum error in synchronization between the source and the switch must be included in the duration of the time slot that the switch must allow. Otherwise frames of the time-triggered transfer, which are correctly timed from the perspective of the source, will be dropped by the switch for being mistimed. Hence, the larger the errors in the synchronization, the fewer such frames can be transmitted in any given period. This is a particular problem in the use of standard IEEE 802.3 Ethernet network interfaces with software support for IEEE1588 for the transmission of time-triggered transfers, e.g. for provably reliable data transport. This is, partly, why the use of specific TTEthernet network interfaces with hardware support for synchronization, etc., is recommended in implementations of TTEthernet.

[tttech-1] "Time-Triggered Ethernet". www.tttech.com. Retrieved 13 July 2014.

[2] "Time-Triggered Ethernet". European Space Agency. Retrieved 2020-04-10.

[3] Loveless, Andrew (July 30, 2020). "On Time-Triggered Ethernet in NASA's Lunar Gateway" (PDF). NASA Technical Reports Server. Retrieved May 4, 2022.

[4] "ECSS-E-ST-50-16C – Space engineering – Time-Triggered Ethernet (30 September 2021) | European Cooperation for Space Standardization". ecss.nl. Retrieved 2022-05-04.

[white-5] "TTEthernet – A Powerful Network Solution for All Purposes" (PDF). Marketing whitepaper. TTTech Computertechnik AG. 2009. Archived from the original (PDF) on March 28, 2014. Retrieved March 28, 2014.

[6] Wilfried Steiner and Bruno Dutertre, SMT-Based Formal Verification of a TTEthernet Synchronization Function, S. Kowalewski and M. Roveri (Eds.), FMICS 2010, LNCS 6371, pp. 148–163, 2010.

[:0-8] "New Products: Ethernet Platform". News release in Avionics magazine. April 1, 2008. Retrieved June 9, 2011.

[:1-9] T. Steinbach; F. Korf; T. C. Schmidt (May 18, 2010). "Comparing time-triggered Ethernet with FlexRay: An evaluation of competing approaches to real-time for in-vehicle networks". 2010 IEEE International Workshop on Factory Communication Systems Proceedings. pp. 199–202. doi:10.1109/WFCS.2010.5548606. ISBN 978-1-4244-5460-0. S2CID 16739946.

[1]

[2]

[3]

[4]

[5]

[6]

[note 1]

[7]

[8]

v t e Automation protocols
Process automation	AS-i BSAP CC-Link Industrial Networks CIP CAN bus CANopen DeviceNet ControlNet DF-1 DirectNET EtherCAT Ethernet Global Data (EGD) Ethernet Powerlink EtherNet/IP Factory Instrumentation Protocol FINS FOUNDATION fieldbus H1 HSE GE SRTP HART Protocol Honeywell SDS HostLink INTERBUS IO-Link MECHATROLINK MelsecNet Modbus Optomux PieP PROFIBUS PROFINET RAPIEnet SERCOS interface SERCOS III Sinec H1 SynqNet TTEthernet
Industrial control system	MTConnect OPC DA OPC HDA OPC UA
Building automation	1-Wire BACnet BatiBUS C-Bus CEBus DALI DSI DyNet EnOcean EHS EIB FIP KNX LonTalk Modbus OpenTherm oBIX VSCP X10 xAP xPL Z-Wave Zigbee
Power-system automation	IEC 60870 IEC 60870-5 IEC 60870-6 DNP3 Factory Instrumentation Protocol IEC 61850 IEC 62351 Modbus PROFIBUS
Automatic meter reading	ANSI C12.18 IEC 61107 DLMS/IEC 62056 M-Bus Modbus Zigbee
Automobile / Vehicle	AFDX ARINC 429 CAN bus ARINC 825 SAE J1939 NMEA 2000 FMS Factory Instrumentation Protocol FlexRay IEBus J1587 J1708 Keyword Protocol 2000 Unified Diagnostic Services LIN MOST SENT (SAE J2716) VAN Cyphal

v t e Ethernet family of local area network technologies
Speeds	10 Mbit/s 100 Mbit/s 1 Gbit/s 2.5 and 5 Gbit/s 10 Gbit/s 25 and 50 Gbit/s 40 and 100 Gbit/s 200, 400, 800 and 1600 Gbit/s
General	Physical layer Autonegotiation EtherType Flow control Frames Jumbos
Organizations	IEEE 802.3 Ethernet Alliance
Media	Fiber Twisted pair Coaxial First mile 10G-EPON
Historic	CSMA/CD StarLAN 10BROAD36 10BASE-FB 10BASE-FL 10BASE5 10BASE2 MAU FOIRL 100BaseVG LattisNet Long Reach
Applications	Audio Automotive Carrier Data center Energy Efficiency Industrial Metro Power Synchronous
Transceivers	GBIC SFP/SFP+/QSFP/QSFP+/OSFP XENPAK/X2 XFP CFP
Interfaces	AUI EAD MDI MII GMII XGMII XAUI
Category Commons