Next: Encoding Site Types
Up: Part 2: Robust Site
Previous: B+ Tree Implementation Requirements
An important consideration when developing life-critical applications is to
include design elements that
mitigate the effects of run time errors.
One way to do this is by using
fault-containment regions, where critical components are isolated from
other parts of the system to prevent errors in one area from propagating to
another, otherwise unfailed portion of the system. Another way is to
include sanity checks on process inputs and outputs, where pre-conditions
and post-conditions are checked and enforced at runtime.
To this end, Part 2 requires you to store the base-related information
of Part 1 in a Friendly site data dictionary, and the
target-related information of Part 1 in an
Enemy site data dictionary.
That way when we are destroying enemy targets, we do not instead
accidentally blow up little Billy's house, much less Dr. Samet's.
Because Dr. Hugue's research area is dependability, you will have the
unenviable pleasure of implementing fault isolation and transformation
strategies that will decrease the probability that user errors can result
unexpected and unwanted civilian and non-combatant casualties.
Subsections
Next: Encoding Site Types
Up: Part 2: Robust Site
Previous: B+ Tree Implementation Requirements
MM Hugue
2004-02-28
Web Accessibility