Program for 2nd Annual IEEE Systems Conference

Competency models are now in common usage in business organizations such as Human Resources (HR), finance, business development and program management. The methods for developing the models are well known and have been applied to practice. These methods include the definition of competency model frameworks. However, to date there have been only a limited number of applications of competency models to engineering and no integrated approach for developing engineering competency models that includes a complete framework has been reported. The generation of competency models has typically been performed using a top down method that starts by defining roles and then associating the competencies with the specific roles. This approach has led to many unique competencies that are not well aligned between organizations and different disciplines, despite the fact that numerous areas of commonality should exist across organizations and disciplines. Engineering is a very diverse and specialized profession. This results in a broad range of capabilities and competency models within a large engineering organization. Designing and building complex engineering systems requires many engineering disciplines such as; electrical, mechanical, and software. Engineers apply these disciplines to a broad range of products and over time become specialized in areas that are peculiar to the products being developed. The knowledge and skills needed to create the electrical systems on a space vehicle, for example, are very different from those required for home electronics. Further the application of a single discipline to a particular product results in specialists that concentrate on a particular aspect of the development, such as requirements definition or product test. These diverse and specialized aspects of the engineering competency require a framework that organizes the competencies and provides consistency across the many shared competencies. This paper presents a multi-dimensional hierarchal engineering competency model framework that can be used to create consistent, role-specific engineering competency models. The framework enables a process that organizes the creation of engineering competency models. The resulting competency models can employed within a Human Resources (HR) talent management system. The framework can also be used by individuals to characterize their capabilities independent of a specific role. The individual can use this characterization to compare their capabilities with many roles. Summing competencies of the individuals within an organization and comparing the result to an organizational competency model provides a means of examining the total capabilities of an organization and a means of identifying organizational capability gaps. The model framework was derived using a bottoms-up approach. All of the applicable knowledge, skills, abilities and attitudes (KSAA) are organized in a multidimensional and hierarchal manner. The multi-dimensional aspect allows organizations to add or subtract dimensions depending on the breadth of activities performed by the particular organization. The model framework is easy to use and to implement in a web based computer database program. The mechanization compliments existing HR systems, provides individuals with a method of self assessment and provides engineering managers with an approach for evaluating the total organization. This model framework adapts the past work and provides a simple framework for the large numbers of KSAA that the superset of engineers, in general, must possess. The framework recognizes that engineers must possess many competencies that are common with other disciplines, such as finance, business development and program management. A layered framework architecture is used to enable this commonality across disciplines and to separate the common competencies from the engineering unique competencies. The paper reviews the general attributes of an engineering competency model, discusses the layers and dimensions of the KSAA and how these are organized into a complete framework. Then the application of the model framework to the individual is presented along with the advantages of using the framework to characterize the individual, compared to role specific evaluations of the individual. This is followed by the methods used to define specific engineering roles and to create role specific competency models. These competency models form a database that an organization can use to characterize each of their existing and future roles. The competency models created can then be used in any one of the commercially available Human Resource talent management software packages.

Introduction. A key challenge for designers is to create systems that stakeholders will perceive as delivering sustained value over the life of the system. It is the creation of value that motivates the design effort, without which, systems face failure and developers face the consequences of that failure. The perceived value of a system by its stakeholders changes over time as a result of many different factors such as experience with use of the system, changes within the regulatory environment or marketplace, availability of new technologies, participation in a system of systems, and other emergent needs. Instead of resisting the inevitable change in stakeholder value expectations, system designers can proactively embrace the possibilities of change by building into the system the ability to provide future value. The concept of attribute classes is introduced as a framework for thinking about actual and potential value perception by stakeholders. Approach. Value can be defined as relative worth, utility, or importance; it is the quality of a thing considered in respect of its power and validity for a specified purpose or effect. The concept of value is at once abstract and yet pervasively accessible. The pursuit of value motivates exchange in markets, both formal and informal, as well as impacting the discipline of system design. Communication, or articulation, of value is a core concept in the design process, often represented as “needs identification” in traditional system development processes. During the concept phase, designers elicit stakeholder needs and desired system attributes though various methods, yet there is often significant unarticulated or latent value that remains uncovered until later in the lifecycle. The use of attribute classes can aid the system designer in understanding perceived value in context of an overall value spectrum. Desired system attributes are characterized using several value classes including: articulated value, free latent value, cheap latent value, accessible value and inaccessible value. The distinguishing characteristic that determines an attribute classification is the cost to “display” or “activate” an attribute when a stakeholder desires to see such an attribute. Unarticulated value, that which is not explicitly communicated, perhaps because it is unrecognized, can be explicitly managed through the attribute classification system by increasing the potential for a system to meet needs as they become expressed. As the cost to redesign a system increases, the importance increases for a designer to be able to anticipate and design in latent value that will increase the likelihood of sustaining system success through continued perception of delivering value to stakeholders. The ultimate goal of design using attribute classes is to be able to match dynamic system characteristics to dynamic value expectations. Contemporary requirements elicitation processes, while sound, frequently do not adequately uncover unarticulated or latent value attributes during concept development. The designer’s challenge is to anticipate the emergent needs of stakeholders. In some cases, the designer will be able to foresee future needs and provide free or cheap latent value as needs change. It will often be the case that the designer will also need to enhance the product or system in order to access new value. Bearing costs of latent value is an issue that the designer will need to consider. Difficult strategic business decisions will need to be made to consider the worth of investing in attributes to deliver future value. The cost of hiding and strategies for hiding presently unnecessary functionality must be considered, along with the costs that will be needed to turn on this functionality at a time when stakeholders articulate the need for this. The cost of designing in future value and the cost of activating, adding, deactivating, and subtracting attributes needs to be considered in trade studies and system architecture strategy. Results. The paper will discuss how the proposed framework is used for identifying attributes classes to uncover latent value. Illustrative case-based examples are presented to demonstrate how this method aids the designer in a deeper exploration of attributes to uncover latent value during the conceptual design phase. Implications for improving the overall design process are discussed, including strategies for bearing costs of latent value, relevance to current systems practices, and future directions toward improving practice.

Complexity science holds great promise for the engineering of complex systems. There are classes of system engineering problems for which our current set of systems engineering techniques are inadequate. These include 1. Situations in which the full set of requirements are unknown or unknowable, or when an ever-changing enterprise environment reacts to reinforce or conflict with design decisions, e.g., systems that are needed to support global business operations and also counter-insurgency warfare. 2. Situations in which local behavior can only be evaluated based on global results, e.g., systems providing services in a service oriented architecture (SOA), network centric operations, and joint and coalition warfare. These are akin to food networks (generalized predator-prey ecologies) and team sports. 3. Systems embedded in a socio-cultural enterprise where people acting on their own behalf take actions that cannot be precisely predicted as in economies and organizations. In particular, when the social network is neither so large and loosely coupled that averaging obtains, nor so small and tightly coupled that individual behavior predominates, variety and feedback can generate and lock in unpredictable novelty. 4. Problems for which an enumeration of the end-to-end performance of candidate designs grows at least exponentially with the number of nodes in the enterprise network and there is no known analytic method to determine the best candidate. These problems arise in software assurance of SOA’s and in the best case may be reducible to the Traveling Salespersons problem. Clearly, there are problems where complexity science does not inform systems engineering, i.e., whenever the design can be reduced into independent parts without nonlinear dynamic behaviors. This paper examines how known elements of complexity theory can apply to systems engineering with a view to informing future applications. The combination of people, processes and technology are cast as autonomous agents in a complex adaptive system, and the critical relationship between design and fitness is discussed. Self-organization, co-evolution, learning and adaptation are defined as core processes in the development of systems. The phenomena of emergence and phase change are presented in the context of the whole enterprise. The relevance of insights from game theory, including the Tragedy of the Commons, The Minority Game and the Iterated Prisoners’ Dilemma, are discussed. The application of complexity science to systems engineering reveals some new research gaps. However, for the most part, there is no impediment to applying what is known now about complexity science to systems engineering, except that developing new tools and methods to engineer complex systems is itself a research topic. In this paper we propose a research agenda to ground applications of complexity theory in systems engineering practice, offering practical solutions to complex problems.

There is a diversity of frameworks and methodologies for enabling architecture developments. Static representation frameworks provide a standardized way to communicate the architecture to stakeholders, but do not provide means to analyze the system states and emergent behavior. Therefore, there is a need to convert static representation frameworks to executable models. The aim of this paper is to present Artificial Life approaches as a methodology for understanding behavior of System of Systems. For this, an Artificial Life based framework for modeling System of Systems is presented. The framework comprises cognitive architectures embedded in multi-agent models. Financial markets are selected as an analysis domain to demonstrate the framework since they are a good example of self-organizing systems that are nonproprietary and exhibit System of Systems characteristics, specifically emergence on a grand scale. From the Artificial Life framework a trader-based architecture is formulated as a model to analyze system level behavior. The Artificial Life based framework developed provides a flexible way of modeling sub-systems of System of Systems and it captures the adaptive and emergent behavior of the system.

This paper presents a way to model systems, and to study their fault-tolerance properties analytically and by simulation. We take an algebraic view of fault tolerance, based on its composition. The basic notion is that every system of any significant size is created by composition from smaller sub-systems or components. Composition of components to create a larger system is considered to happen in two ways: direct sum, denoted \(+\), and direct product, denoted \(\times\). This is then used to describe an arithmetic on systems. Using this as a basis, a partial ordering of systems by fault tolerance is given. The analysis of systems with dependent components allows us to model more realistically and come up with conditions for redundancy to be successfully applied. The final consideration is about simulations of systems with dependent components. Such systems are simulated using a graphical model, in the following way: suppose there is a directed graph \(G = (V, E)\). All vertices are initially colored blue. All edges are directed, and some may be bidirectional. An edge from a vertex $v_1$ to a vertex $v_2$ means that $v_1$ ``depends upon'' $v_2$ in the following sense---if $v_2$ turns red, then so must $v_1$. Each vertex may have edges directed to multiple other vertices, and multiple edges from other vertices. This idea also nicely captures the notion of \emph{coupling} that is described in informal terms by system designers and others.

An enterprise architecture for the Earth Science activities of the National Aeronautics and Space Administration (NASA) was developed to assist in assessing the capacity of scientific instruments in meeting the needs of society. It can also help them develop the right investment strategies and help scientists and engineers in their planning for system development, especially for complex space-based environmental sensors. This architecture model can be easily extended to the Global Earth Observation System of Systems (GEOSS). In fact, it was constructed with GEOSS in mind to ensure that NASA’s observation systems can be readily mapped into the GEOSS structure. The architecture contains about 3000 elements that are involved in earth science research: observation sources, sensors, environmental parameters, data products, mission products, observations, science models, predictions, and decision-support tools. The science models use observations from the space-based instruments to generate predictions about various aspects of the environment. These predictions are used by decision-makers around the world to help minimize property damage and loss of human life due to adverse conditions such as severe weather storms. The architecture is developed using both traditional and non-traditional SE tools and techniques. This paper will describe additional methods needed for the SE toolbox.

The RailCab project envisions autonomous railway vehicles which drive in convoy without mechanical coupling. The RailCabs can dynamically and autonomously build and dissolve convoys. This enables an on-demand use of these vehicles while retaining the cost and ecological advantages of public transport. The development of such system has to be rigorous with respect to safety issues in order to avoid loss of lives and other damages. In this paper we present an overview about the system architecture of the RailCab prototype on the test track as well as the actions to be taken to ensure safe operation.

The FAA's Next Generation Air Transportation System (NextGen) will rely increasingly on automated tools in order to aid air traffic controllers in managing the increased volume of flights expected by 2025. Previous approaches for handling greater traffic are no longer scalable to handle the expected volumes. Roles and responsibilities will need to change for pilots and controllers. New automation tools will need to be invented. Rather than addressing the technology of the system of systems to transform the National Airspace System, this paper concentrates on system engineering specialties that will need to be employed in order to adequately address the safety impacts of radically increasing the reliance on automation. From a human factors perspective, the controller's job will change, requiring not only attention to computer-human interaction but also how attention spans are affected, ability to recover from automation errors or outages - and the ability to be aware that an error or outage has occurred, changed working relationships with other members of the air traffic control and traffic management team, and situational awareness. Would the changes affect the safety culture? Existing trajectory projection algorithms may need to be improved, requiring analysis of new algorithms, modelling, and validation of the algorithms. Software implementing the algorithms will need to be rigorously verified. Depending on the level of traffic and complexity of algorithms, it may be necessary to use multi-core processors, thus requiring multi-threaded algorithms. Safety risk management will need to consider the impacts of the automation on the humans, in addition to the usual identification of hazards in the end-to-end system. Mitigation needs to be identified early in order to be reflected in requirements documents. The paper examines the systems engineering processes that will need to be engaged across this system of systems in order to achieve the desired capacity increased while maintaining the necessary levels of safe operation.

We spend much time these days focusing on the maturity of our engineering processes and heralding process maturity ratings such as those associated with the CMMI and ISO 9000 as indicators of our ability to deliver quality products – products that meet the customer’s expectations and that continue to do so throughout their life cycle. What our customers have found, however, is that often process maturity does not guarantee product quality. This is especially true for the highly software intensive systems we now build, where performance, dependability, and failure modes are less well understood. If we are to be successful in delivering systems that meet customer expectations, we must start as early as possible in the design process to understand the extent to which those expectations might be achieved. As we develop candidate system architectures and perform our architecture trade-offs, it is imperative that we define and use a set of quantifiable systems attributes tied to customer expectations, against which we can measure success. This paper addresses the use of quality attributes as a mechanism for making objective decisions about architectural trade-offs and for providing reasonably accurate predictions about how well candidate architectures will meet customer expectations. Typical quality attributes important to many current systems of interest include: performance, dependability, security, and safety. We begin with an examination of some the seminal work in the area of quality attributes and a survey of the current standards addressing product quality and evaluation. We then explore the implications for both the customer and the system developer, of employing a quality-attribute-based approach to architecture definition and trade-off. Lastly, we discuss the relationship of a architectural quality-attribute-based approach to engineering process and process maturity.

System of Systems Architecture Generation And Evaluation Using Evolutionary Algorithms Joseph Simpson, Missouri University of Science and Technology Dr. Cihan H. Dagli, Missouri University of Science and Technology Evolutionary computation and evolutionary algorithms represent a developing science and technology that can be effectively applied to the generation and evaluation of system of systems architectures. A general technique used by systems engineering professionals is a binary matrix representation of a system or system of systems. The specific meaning and semantics of the binary relationship depends of the type of representation used. Typical representations are, “N squared”, design structure matrix, dependency structure matrix, and implication matrix. A key feature of these typical representations is their direct relationship to the structure required in an evolutionary computational approach. Evolutionary algorithms can be applied to the evaluation and optimization of these matrix structures. A new evolutionary algorithm has been developed that applies specifically to the generation and evaluation of systems and system of systems. This new evolutionary algorithm incorporates a fuzzy inference system in the calculation of the best fit evaluation. The current industrial and social environment is populated with a vast array of existing and developing systems. Any new system must take this context into account. Formal concept analysis has been used to specify each given context and interface as a binary matrix. Evolutionary computation is applied to assist the system architect and engineer in the evaluation of these complex configurations and interface sets. The new evolutionary computing techniques are applied to system of systems architecting tasks using a well defined set of measures of effectiveness (MOE). The systems architecting task is divided into three general areas organized around the roles and responsibilities associated with, the system architect, the system customer and the system engineer. The system architect is responsible for the complete system operation and MOE balance, focused on life-cycle cost and risk. The customer is responsible for the mission profile and mission functions. Operational effectiveness and operational suitability areas are the responsibility of the systems engineers. Affordability, risk, operational effectiveness and operational suitability are the four MOE components used to evaluate the candidate system of systems architectures. A primary concept in this type of design and evaluation is the real world system relationship that is expressed in the binary mathematical relation. Six fundamental relationships have been identified to represent a given system. The complete system description approach is based on six abstract relation types: context, concept, functions, requirements, architecture, and test. Formal concept analysis is a well defined mathematical technique that is used to organize and represent the system of systems components in a manner that translates directly to the mathematical form required by evolutionary computation and evolutionary algorithms. When combined with digraphs and other graphical representations of the matrix form, this technique provides a powerful tool for the communication of complex system interactions to large system design and evaluation teams. The ever increasing availability and cost effectiveness of computing capability adds additional motivation for the exploration and development of evolutionary computation in system of systems architecting, design and evaluation. These techniques will be applied to an example system architecture evaluation in the paper. In summary, evolutionary computation is a technology that has a solid scientific foundation and is well placed to provide the system of systems architect a powerful design and evaluation tool.

We present a novel way of modeling Interactive Image Guided Surgery (IIGS) systems as a process control problem. We introduce a notation and a software architecture for a tool to assist in the modeling and the safety analysis of these IIGS systems. The notation helps to identify the real-time and quality of service segments of the IIGS system which is built as a system of systems. We discuss the results obtained during the modeling and the analysis of IIGS systems currently in use.

The increasing availability of a variety of wireless access technologies provides users with access to critical content and applications. In medical applications, reliability and ubiquity must be guaranteed by new communication technologies in order to favour their adoption. Ensuring a satisfactory quality of service and a high degree of availability requires a reliable delivery system that optimally brings together several wireless access systems and medical-based platforms into an efficient trial product to satisfy operational needs. This paper proposes a novel system architecture to support adaptive real-time medical applications, possibly multimedia-based, over various wireless technologies. The system addresses several issues associated with the successful operation of applications running over heterogeneous networks. First, it defines a layer of abstraction to isolate the applications from the actual transport system. Second, it uses a message-based protocol to improve the reliability and security of the communications over different access systems. Finally, it includes adaptation mechanisms for various system statuses. A real-life healthcare application capable of transmitting voice, video and medical data simultaneously is used for validation. Experimental results are reported that demonstrate the viability of the approach. The paper begins with a brief introduction to the architecture and the communication model that address issues related to integration and selection of access systems and adaptation to support robustness of real-time medical applications. Related work in the area is then presented where possible comparisons and contrasts are drawn from approaches suggested by other researchers. Next, the paper describes the communication model then the system architecture. The communication model consists in a hierarchy of communication abstractions defined to adequately support the needs of real-time applications. It is specifically adapted to an environment where several mobiles can communicate simultaneously with a distant base receiver and where communications are usually exposed to fading and outage. Therefore, a multi-layered communication structure is chosen to manage the connectivity and guarantee the reliability of the system. The first layer is built on top of the physical access systems to build a communication abstraction for all application components (e.g. video, voice, image or life sign exchanges). It is a recurrent process that tries to bring heterogeneous access interfaces up and to monitor their status. The second layer intends to ensure robustness, typically by tracking the existence of an alternate access system in standby, which could be used in case of failure of the active connection. The third layer creates a virtual communication channel that will be used to handle temporary disconnections. It multiplexes all communications over a single connection and integrates reliability features through a message-based protocol. Beyond connectivity and reliability, this level is also used to handle critical issues such as security – more specifically authentication and confidentiality – transparently for applications. State machine diagrams are illustrated and analyzed for different layers. The system architecture is presented showing the functional entities that implement the finite state machines introduced in the communication model. Interfaces are introduced in order to monitor and control physical access systems. Managing entities are responsible for different abstraction levels, to ease control of different layers. The entities can interact with each other by probing their states, or by subscribing to be notified when a change of state occurs in order to enable the whole system to work effectively. System switch-over and recovery are handled by special procedures that enable the resynchronization of both sides and the recovery of lost information after communication failure. This aims to ensure reliability and no loss of information during access system switching and temporary disconnections. The message-based approach is also described for reliable communication handling. Finally, for system verification and validation, the paper presents the validation results of exploiting a medical emergency response application which provides a full range of real-time bidirectional communication services. The application is capable of sending vital signs and also supports the transmission of audio data, high quality traumatic still-images and real-time video streaming. Several operational scenarios and use-cases were identified and tests were carried on commercial third generation systems under real-life conditions. The application performance and adaptation trade-offs were analyzed as well as the system overhead for different scenarios. The results showed the effectiveness of the proposed system making it viable option available to healthcare professionals. Compared with other proposed approaches, our solution does not require the introduction of specific network infrastructures. It also ensures security, robustness and flexible connectivity and, therefore, targets more specifically embedded applications having a medical purpose.

The 21st century is an exciting time for the field of systems engineering. Advances in our understanding of the traditional discipline are being made. At the same time new modes of systems engineering are emerging to address the engineering challenges of systems-of-systems (SoS) and enterprise systems. Even at this early point in their evolution, these new modes are evincing their own principles, processes and practices. Some are different in degree than engineering at the system level while others are different in kind. While it is impossible to predict how the traditional and new forms of systems engineering will evolve, it is clear even now that there is a long and robust future for all three. Increases in technology complexity have led to new challenges in architecture, networks, hardware and software engineering, and human systems integration. At the same time, the scale at which systems are engineered is exceeding levels that could have been imagined only a short time ago. As a consequence, all three forms of systems engineering will be needed to solve the engineering problems of the future, sometimes separately but increasingly in combination. This paper defines three modes of systems engineering, discusses the challenge space each addresses, describes how they differ from and complement each other. It asks and starts to answer the question of how to enable the development of enterprise systems engineering in a defense department.

Douglas O. Norman and Brian E. White The MITRE Corporation In this paper we take some ideas from the realm of complexity theory, the study of complex systems science, etc., and apply this learning to a purported way of improving the practice of systems engineering. We choose one of the very challenging domains that we facethe acquisition of electronic systems that will add significant improvements in military mission capability. We have benefited from the active exploration, presentation, and debate of ideas and methods beyond the boundaries where systems engineering is currently defined, and more importantly, practiced. Most notably, the ideas that seem to offer the most value are being taken from what is sometimes called “complexity science,” and in a language of conception and expression with which many systems engineers are not very familiar. Furthermore, many systems engineers are uncomfortable with adopting a broader perspective of systems engineering and trying to adopt and formalize complementary techniques that may help greatly in practicing systems engineering in the real-life areas within which we are being asked to work. Therein lies the challenge, because at the heart of the matter is the need for ideas, concepts, mechanisms, and processes, in a language that is relevant to systems engineers. Then we are better able to produce useful results at the considerable scales with which we are asked to work. So, we will attempt to explain our suggestions in terms that acquisition professionals will receive with interest. Systems engineers are being asked to apply their engineering acumen in larger and more complex (a term that will be explained in the paper) contexts. As these contexts expand, the (mostly unstated) assumptions of the application of our systems engineering practice are violated more and more. Thus the ideas, methods, and tools, previously unquestioned, have hit some limits, and many complex system failures that have happened can be traced to shortcomings of (traditional or conventional) systems engineering. We offer some principles of a complementary approach, called complex systems engineering, which show considerable promise in helping us cope with what seem to be intractable or even unsolvable problems. The paper focuses on ensuring that our most important system elements are composable (capable of being integrated adaptively) with other such elements to satisfy emergent needs and new operational understandings not previously envisioned. This is quite different from our present acquisition process and, along with complexity principles, usually doesn’t communicate very well with a typical program’s chief engineer, who often asks the key question: “So, what do I go do?” In attempting to answer this question in the paper, we make some observations of what is done today and what we might do differently. From a chief engineer’s point of view, we suggest (and in the paper will explain) four heuristics that can turn our concepts into operational practice to mitigate the insularity issues often found in systems development. 1) Focus on the fundamental unique value (an entity that will be explained in depth in the paper) your system offers to the enterprise. 2) Develop and use “casual” technical composition mechanisms first. 3) Know how you will offer access to your elements of fundamental unique value; and what interaction models will be proffered. 4) Provide a mechanism for reducing the integration barrier such as putting in place a developers’ network, “points-of-presence” with offered functionality exposed as live services. The paper will also address a large unmet challenge. We will have made a case for why and how to accelerate useful progress technically and operationally, and what one might tell a chief engineer. However, we’re not so sanguine to believe these aims will be achieved on a large scale anytime soon since the economic and business structures really don’t support them well. To see what might improve, we will elaborate a little more in the paper on the difficulties within our present acquisition culture, and from where would derive the incentives to change things. We think an answer may lie in presenting collections of composable elements of valuable functionality that create new opportunities for the end users, in particular, and we’ll explain why. We will also discuss possible ways forward that might involve a new way of doing business. There is still a need to develop a system of revenue flow which rewards actual use in addition to or instead of paying only for development.

The US Department of Defense builds and fields large numbers of war fighting systems to support operations across the globe. These systems are employed by regional combatant commanders in different configurations to address military threats. The military Services by statute are responsible for training and equipping the military forces and equipment acquisition is a core Service function. Acquisition has traditionally been based on development of systems to meet identified user needs. In the past five years, there has been a shift in the Department approach to defining user needs to focus on capability needs and gaps as the basis for acquisition. Capabilities require a mix of material and non-material assets, which must work together to meet capability objectives. To a large degree, the acquisition process has retained its focus on system development, and the war fighter has been responsible to integrate the available systems to meet their needs. With the advent of networked systems, and widening ranges of sensors and weapons, it is no longer possible to continue to develop systems independently, hand these over to end users and expect that they will be able to create a cohesive war fighting ensemble to meet their operational needs. This paper will discuss how the Defense enterprise is addressing this situation and the implications for systems engineering. A review of a set of ongoing efforts to engineer ‘systems of systems’ provides the basis for understanding various ways the Defense Department is currently approaching the need to provide coherent end to end support for user capabilities and how systems engineering is being applied. These SoS are overlays on existing systems which were developed and are being used in contexts which differ from the context of the new capability needs. Acquisition management structures are hierarchical within the military services; many DoD SoS cross service lines and any SoS management approach coexists with independent management approaches of the systems which comprise the SoS. Systems engineering approaches have focused on supporting the system lifecycle with structured sequential phases of design, development, implementation, fielding, maintenance and disposal. Incremental approaches to development supported by increments or spirals have adapted this to address need for more agility and changing needs. In the SoS case, while the systems may have lifecycles, the SoS is typically an evolution of the set of existing and new systems which become components of the larger SoS, calling for a new ways to apply systems engineering processes. This paper will provide a review of the ways that SoS efforts have been structured and approached from a systems engineering perspective. In particular the paper will examine core elements of systems engineering in an SoS environment and how the current SE process support these elements. It will address the particular challenges the SoS environment poses for the systems engineer at both the SoS and system levels. Finally, the paper will suggest some areas for further investigation to address key issues as systems engineering takes up the challenge of these changes in the interdependent networked environment of the future battle space.

This paper describes AGSOA, an Agile Governance for Service Oriented Architectures (SOAs) that is intended to address many of the inherent challenges faced by implementing the DoD’s 21st Century agile net-centric warfare systems using SOAs. The complex interdependencies within SOA-based systems, when combined with DoD’s desired agile change capabilities, creates a very complex and open-ended system of systems environment that cannot simply modeled, simulated, verified and/or validated. The AGSOA framework is designed to blend elements of proven agile-style project management methodologies with contemporary SOA governance strategies used in other, less complex industries to yield a more appropriate governance strategy for life- and mission-critical DoD SOA projects.

Very large-scale systems are difficult to analyze let alone engineer. Once the components of such systems become systems themselves the difficulties increase greatly. Often, standard, unimodal, analytic techniques are insufficient to understand these systems of systems. Finally, humans are usually a key component of these systems; thus, further complicating the analysis. Unfortunately, it has become clear that the ability to analyze and engineer these systems is critical. Given this, we now use an integrated modeling framework for analysis and engineering of these systems. This framework includes agent-based models to represent the humans within the system and physics based models to represent key physical characteristics of the system, such as sensor performance. This framework can be coupled with heuristic search techniques to explore optimization problems. This paper will use a case study to explain these tools and explore these techniques. The case study used for our experimental test bed is one of large venue protection. More specifically: what are the most effective sensor placements and what are the most effective tactics to be employed by security personnel to protect a large public venue. An agent-based model is used to represent the environment, crowd movement, “bad actor” behavior, and security personnel. High fidelity models of infrared sensors, passive millimeter wave sensors, active millimeter wave sensors and sensors that detect anomalous behaviors are used for sensor performance within the environment. The scenario is as follows: a very small percentage of bad actors, carrying explosive devices and firearms, seek to move through the venue to either attack good actors moving through the system or transit the entire venue. Security guards attempt to use the sensor information to interdict the bad actors without interfering with the flow of good actors. General measures of effectiveness for the system include, inter alia, crowd throughput, the number of “bad actors” caught, and the number of “bad actors” that get into the venue. We illustrate the methodology above by searching for the optimal combination of security guard behavior in conjunction with sensor placement balanced against a wide variety of bad actor behaviors and overall crowd flow and throughput. This search is performed with a simple genetic algorithm utilizing a nearly orthogonal latin hypercube to sample the vast parameter space associated with the simulations. A genetic algorithm was chosen as it produces a population of solutions. Use of a genetic algorithm necessitates the creation of a fitness function. This function will be created from general measures of effectiveness combined with utility functions and risk profiles of the decision-maker involved with system design and evaluation. We show how the modeling of the preferences for various measures of effectiveness will significantly affect the solution population generated by the genetic algorithm. We further demonstrate how this approach provides a population of solutions that optimize both security personnel tactics and sensor mixes and placements. The paper concludes with a discussion of the implications of this approach. We examine the issue of verisimilitude; specifically how increasing the realism of the sensors affected the results of the simulation. We further expand upon the utility of developing a population of solutions and then testing the solutions against a wide variety of threats. Lastly, we draw conclusions as to the extensibility of this approach to other large scale enterprise systems.

This paper proposes an executable system architecting paradigm for discrete event system modeling and analysis through integration of a set of architecting tools, executable modeling tools, analytical tools, and visualization tools. The essential step is translating SysML-based specifications into Colored Petri Nets (CPNs) which enables rigorous static and dynamic system analysis as well as formal verification of the behavior and functionality of the SysML-based design. A set of tools have been studied and integrated that enable a structured architecture design process. Some basic principles of executable system architecture for discrete event system modeling that guide the process of executable architecture specification and analysis are discussed. This paradigm is aimed at general system design. Its feasibility was demonstrated with a C4-type network centric system as an example. The simulation results was used to check the overall integrity and internal consistency of the architecture models, refine the architecture design, and, finally, verify the behavior and functionality of the system being modeled.

The Automatic Identification System (AIS) is an important component of maritime navigation systems. It is used to improve safety on ship navigation in the sea. In this paper we propose to design and implement the AIS link layer. Specification and Description Language (SDL), with its Real Time extension (SDL-RT) is chosen to design this complex and critical layer.Indeed, SDL-RT allows hierarchical architecture definition, graphical presentation and detailed description of the system which facilitates the management of the system’s complexity and allows the functional testing. Moreover, it introduces several real time concepts, like semaphores and task priority and replaces abstract data types (ADT) language of SDL by the embedded C-language constructs so that the generated code from the system design is optimized.The designed model was then tested in order to verify the overall system operation. Once all tests were successful, we proceeded to the automatic C-code generation. This code was then adapted to the targeted Blackfin 533 digital signal processor (DSP), and tested on its real-time embedded operating system.

Survivability, the ability of a system to minimize the impact of a finite-duration disturbance on end-user value delivery, is increasingly recognized beyond military contexts as an enabler of maintaining system performance in operational environments characterized by dynamic disturbances. Seventeen general design principles are proposed to inform concept generation of survivable system architectures. Six of these design principles focus on a survivability strategy of susceptibility reduction: (1.1) prevention, (1.2) mobility, (1.3) concealment, (1.4) deterrence, (1.5) preemption, and (1.6) avoidance. Eleven of the principles focus on vulnerability reduction: (2.1) hardness, (2.2) redundancy, (2.3) margin, (2.4) heterogeneity, (2.5) distribution, (2.6) failure mode reduction, (2.7) fail-safe, (2.8) evolution, (2.9) containment, (2.10) replacement, and (2.11) repair. In this paper, the completeness, taxonomic precision, and domain-specific applicability of the design principle framework is empirically tested through case applications to survivability features of the F-16C combat aircraft and Iridium satellite system. Integrating results of these two tests with previous tests (e.g., UH-60A Blackhawk helicopter, A-10A aircraft), the validity of the design principle framework for aerospace systems is demonstrated.

The United States Air Force (USAF) is implementing an integrated net-centric system of systems for airborne operations in support of the global war on terror (GWOT). The GWOT demands that a successful architecture framework transforms and delivers net-centric assets to the war-fighter in a timely manner. A critical component of this implementation is the transformation of legacy military air platforms into net-centric air power assets operating within a system of systems. The Enterprise Architectural (EA), Zachman, System Architectural (SA), and the Department of Defense (DoD) Architectural frameworks are ways of managing complexity and organizing information within a system of systems network. Frameworks provide the organization with a common understanding for comparing and integrating architectures; and they also provide a method of achieving a higher level of customer satisfaction while establishing lower cost. This paper will explore and compare several architectural frameworks; show examples used in a system of systems network; and illustrate how the Department of Defense architectural framework (DoDAF) can successfully define the transformation of a legacy military air weapon system into a net-centric asset.

A major component of the system development cycle is the requirements analysis. For complex projects, this involves many stakeholders with different perspectives on the product and with different background and skills. Great effort is spent describing in detail the product and making sure the specification is complete and free of consistency errors. Mistakes and omissions made in requirements documents may lead to wrong interpretation by engineers and, by domino effect, to errors that trickle down in design and implementation. In this paper we describe a methodology for requirements specification that aims to alleviate the above issues and that produces models for functional requirements that can be automatically validated for completeness and consistency. This methodology is part of the Requirements Driven Design Automation framework (RDDA) whose overall architecture is described in [1]. The RDDA framework uses an ontology-based language for semantic description of a) functional product requirements, b) UML/SysML structure diagrams, and c) component constraints and Quality of Service. Our system has the objective to close the current semantic gap between requirements, components, and system architecture that is prone to omission and ambiguous interpretation. The RDDA framework can be integrated with the plugin architecture of leading UML/SysML modelers, such as Rhapsody from Telelogic. This paper is focused on the requirements component of the RDDA architecture. We present the metamodel ontology of the OPP Design Language used for requirements specification, that covers aspects such as of high-level product structure, features, capabilities, system resources, constraints, Quality of Service, as well as authoring and versioning. An ODL requirements document is presented as a set of OWL ontology files, but the front end method for user requirements specification is the SysML editor in Rhapsody. The specification is validated for completeness and consistency with a ruled-based system implemented in Prolog. With our methodology, omission errors and several types of consistency errors present in the requirements specification are detected early on, before the design stage. One of the consistency errors that are detected occurs when a product component is assigned by different requirements statements with incompatible capabilities. Another type of error detected is caused by conflicting numeric constraints from disparate statements referring to the same system performance parameter. These errors are caught in seconds. Otherwise, without a formalized requirements model, these type of errors require a detailed review with cross-referencing, which makes them expensive and difficult to fix. We demonstrate the RDDA methodology for requirements capture and validation with the design of a GPS-based location-based cell-phone application. The proposed system faces several challenges. Building a metamodel for the requirements specification requires up-front effort by domain experts. User-friendly modeling tools will have to be developed for users not familiar with the RDDA ontology-based metamodel. The current SysML front end still requires systems engineering skills. As an alternative to visual requirements modeling we will investigate the possibility to extract the requirements semantic models from requirements described in natural language. Related Work Current commercial products for requirements management for software systems have extensive focus on configuration management. The application domain for most requirements systems is opaque to the tool. In contrast, Ravenflow [2] introduced in their requirements modeling tool, RAVEN, techniques using natural language processing and domain restricted grammars that compile model. RAVEN generates visual models for business flows similar to UML activity diagrams that can be validated for consistency. RAVEN does not derive a product functional model and does not address constraints and QoS. Several academic research projects have looked in the problem of requirements modeling. Kaiya and Saeki [3] have developed an ontology-based specification method for software application requirements and a validation technique for detecting errors. Their work does not extend into verification of QoS and resource constraints. SoftWiki [4] takes a different approach. It adapts the proven Wiki platform for collaborative authoring for the purpose of “collaboratively specify, structure, query and rearrange requirements” in large groups, supporting semantically structured annotations. References [1] I. Cardei, M. Fonoage, R. Shankar, “Framework for Requirements-Driven System Design Automation”, the 1st IEEE Systems Conference, Honolulu, Hawaii, April 2007 [2] Ravenflow, http://www.ravenflow.com/products/index.php [3] Haruhiko Kaiya and Motoshi Saeki. “Ontology based requirements analysis: Lightweight semantic processing approach.” In Fifth International Conference on Quality Software (QSIC 2005), 2005. [4] Soren Auer, Klaus-Peter Fähnrich, and Thomas Riechert. “SoftWiki – Agiles Requirements-Engineering fur Softwareprojekte mit einer großen Anzahl verteilter Stakeholder.” In GeNeMe’ 06 – Gemeinschaft in neuen Medien, 2006.

This paper takes a biologically inspired approach towards the operating systems. It views the DNA through a “system software microscope”. It discusses related issues, examples being file system, program preparation, and it’s parallel and distributed features, including inter-process communication. Our work explores the analogy between the computer operating systems and the molecular biology control systems, concerning the issues of improving the computer operating systems and its parallel and distributed capabilities.

Nowadays, most mechanical engineering products rely on the close interaction of mechanics, electronics, control engineering and software engineering, which is aptly expressed by the term mechatronics. The development of mechatronic systems starts with the domain-spanning conceptual design phase, i.e. the specification of the principle solution of the system. Every technical expert in the development team must be able to understand this jointly developed principle solution, as it forms the basis for the subsequent design concretizations in the participating domains. We developed a set of semiformal specification techniques to describe the principle solution of mechatronic systems. The domain-spanning specification of the principle solution not only leads to the betterment of product design, but also the efficiency of the product development processes and the product development organization. In collaboration with UNITY AG, we investigate the usefulness of the specification technique in enterprises with their core businesses in the development of cutting-edge mechatronic technology. In this context, we attempt to align the product development processes and the organizational structure with the specification technique describing the principle solution of mechatronic systems. Some benefits are, for instance, increased transparency of design modularization during the introduction of new mechatronic products, as well as more effective technical communication between the different departments responsible for developing the system.

The emphasis on sustainability suggests that what is needed is a policy effort aimed at making these developmental achievements last well into the future. Pearce et. al [1] suggest a simple definition of sustainable development as a vector of development of desirable social objectives; that is, it is a list of attributes which society seeks to achieve or maximize. The elements of this vector might include: • Increase in real income per capita; • Improvement in health and nutritional status; • Educational achievements; • Access to resources; • A ‘fairer’ distribution of resources. A minimum conditions for developments to be sustainable, is the requirement that the natural capital stock should not decrease over time. Natural capital stock, in this context, is the stock of all environmental and natural resource assets, from oil in the ground to the quality of soil and groundwater, from the stock of fish in the oceans to the capacity of the globe to recycle and absorb carbon. The conservation of the existing stock of natural assets should be the goal of sustainable development. The presumption that sustainability has something to do with non-depreciation of the natural stock is explicit in the Brundtland report, which says, ‘If needs are to be met on a sustainable basis the Earth’s natural resource base must be conserved and enhanced’ [2]. Existing natural stocks would generally be regarded as being below sustainability level in many developing countries. For some Sahelian countries, for example, they are significantly below ‘sustainability’, in that desertification and deforestation actually threaten livelihoods [3]. Conserving the natural capital stock and even improving it will serve the following goals which would command wide, though maybe not universal, acceptance by achieving the following: • Justice in respect of the socially disadvantaged; • Justice between generations; • Justice to nature; • Aversions to risks (such as droughts, severe weather conditions etc.) which may arise if the environment is left for degradation. It may not be too unfair to suggests that the past models of the development process have tended to assume that the ‘future will look after itself’, whereas, the sustainable development approach acknowledges that the ability of the future to do this can be seriously impaired by actions taken now. It is because of this, the practice of discounting the future, a standard feature of the economic approach to inter-temporal decision-making, is discussed critically in this paper and is most relevant to the system approach. References: [1] Pearce, D., Barbier, E. and Markandya, A. (1994), Sustainable Development: Economics and Environment in the Third World, London: Earthscan Publications Ltd. [2] World Commission on Environment and Development (1987), Our Common Future (The ‘Brundtland Report’), Oxford University Press. [3] Falloux, F. and Mukendi, A. (eds) (1988), Desertification Control and Renewable Resource Management in the Sahelian and Sudanian Zones of West Africa, World Bank Technical Paper No. 70, World Bank, Washington DC.

Within the next several years, integrated systems of systems that had previously been the subject of futuristic speculation will begin to be developed. For example, the U.S. government is considering the development of an intelligence transportation network, with the first elements of that network in place by 2011. Consider one possible scenario for this intelligent network: You are driving down a suburban street, following another car at normally safe distance. Electronic sensors in the car ahead of you recognize a slippery patch of ice not noticeable to the driver. Automatically, computers in the lead car activate the traction control system, and at the same time, alert other neighboring cars, including yours, about the danger. Your car displays a warning light and activates your traction control. When you attempt to change lanes, your car warns you of another vehicle in your blind spot. Finally, when your car detects an imminent collision, it tightens your seat belt, pulls your headrest into a safe position, and inflates the air bags at the moment of impact. After the crash, systems in both cars automatically inform emergency services. This example may seem highly futuristic, but it is based on technology that is either already commercially available or is being readied for deployment in automobiles. For example, Volvo already installs a collision warning systems on some cars. Four million GM cars use its OnStar system to communicate with an operator who can perform functions like unlocking Tiger Wood’s Buick. Motorola has a contract with the Michigan Department of Transportation to test a system that connects cars to the roadside and to each other. A fundamental requirement for enacting this scenario and similar scenarios from healthcare, process control, defense, and other domains is the need to integrate heterogeneous systems created and controlled by different parties in a highly dynamic, interoperating system of systems. These scenarios share several characteristics: • They are highly networked (in our example from car to car and from car to environment) • They operate in real time to make critical, often safety-related decisions • The technical problems for each participant are hard, but solving the complete end to end problem is an even more complex task. • The participants have a purpose of their own; and some part of their functionality is used in system of system threads We believe that the engineering community must begin to think differently in order to build and sustain this new class of system of systems. For such systems of systems, technology will continue to change at all levels; the scale of integrated solutions and the level of sophistication required of the integration itself will continue to grow. This will be coupled with increasing variability of user expectations. Unfortunately, we have extensive evidence that existing system engineering practices cannot provide solutions fast enough to address these rapidly changing expectations, and the problem is getting worse because the rate of change is increasing. What is needed is an engineering process that can: • Build new components that are sufficiently flexible to be reused in multiple systems of systems contexts • Develop infrastructure that supports integration and monitoring • Provide suitable mechanisms to compose components to meet the rapidly changing demands. This engineering process must support: • Single system development cycles that produce components with sufficient granularity to be composable while still satisfying requirements of the single system users. An overall goal of these processes is to populate a pool of reusable components. • Composition cycles that combine components from the pool to address particular user demands. This technical composition is one aspect of a larger orchestration process that can also involve aligning social and cognitive factors such as organization, training, and processes. The cycle must respond to dynamic user demand as rapidly as possible. Ideally, this process would involve “end user computing” where the users are capable of directly composing the capabilities they need in response to demand situations. Practically, this cycle will involve adapting components so that they can be effectively composed to satisfy the particular demand. This paper will present this two-pronged engineering process, characterize where and why it is different from other life cycles, identify practical considerations, and discuss the effect on component and system of system requirements.

This paper explores the problems related to Configuration Management (CM) for systems of systems, and describes several attributes of successful system-of-systems configuration management. The authors show that, just as with other management aspects of systems of systems, you don’t stop performing CM when you leave conventional systems behind; instead, there are additional concerns that must be addressed to achieve effective CM in systems of systems. Presented as a system of systems CM framework, the authors describe several principles and supporting attributes for effective system-of-systems CM. These principles and attributes are applied against a real-life scenario to illustrate how they can be used to increase the probability of success when initiating a system of systems CM strategy.

The increasing complexity and short product cycles drive developers of mobile systems to analyse the performance of systems before hardware prototypes are available. Therefore, it is necessary to predict application runtimes with the help of simulations of system models. Miscellaneous components and factors of mobile devices affect the performance, e.g. caches, buses etc. In order to predict the performance of new system designs already during early stages of development, models of the timing behaviour are necessary. We have developed a modular timing simulator for models of typical mobile systems which can be used to predict the runtime of applications on future systems. Since UML is the de-facto standard for software modelling and widely used, we use UML to specify the hardware of the system. In this way, the gap between hardware and software modelling may be closed and performance analysis of application and system design are tight closer. The UML system model consists of an architecture model and an instruction behaviour description. The architecture model describes the components of the system and the connections between them and the behavioural model specifies the timing of the processor instructions. These models are used to simulate different configurations of an ARM9 system. Traces from one configuration are used to predict the performance of another configuration. Predictions for an ARM11 system with parallel pipeline units are made.

Networks-on-chip (NOC) are expected to play a key role in future embedded systems. A NOC-based system has the potential to support concurrent processing, in both software and hardware. This can however lead to concurrency issues. We present a multiprocessor system modeling and performance evaluation approach that addresses concurrency. We illustrate our methodology by mapping a H.264 decoder onto a 4×3 mesh-based NOC architecture. We show latency, area, and power consumption results for this NOC architecture abstracted from its FPGA implementation.

Complex systems are often developed by independent design teams whose boundaries are defined by interface design documents that can be incomplete and ambiguous without anyone realizing it. Such weaknesses can lead to inadequate testing and can cause system-level design problems and inadequate robustness. An important line of defense against these errors in a safety- or mission-critical system is a software failure mode and effects analysis (SW FMEA).

Agent-based systems consist of a collection of agents that interact with each other in dynamic unpredictable, and unreliable environments. A very basic problem regarding security properties of agent-based systems is that whether a message sent by an agent is reliably received by other agents and whether the message received is regarded as reliable in the view of receivers. The problem generally depends on the trust that agents would put in the security mechanisms of the system. In order to support the analysis of various security mechanisms in agent-based systems, it is necessary to systematically investigate formal representation techniques, and provide more generic tools for the specification, and reasoning about trust theories formalizing security mechanisms in agent-based systems. In this paper, we use a temporalised belief logic to show how to establish dynamic trust theories for communication protocols. Such theories provide a foundation for reasoning about properties of agent-based systems operating in dynamic environments. We also outline a decision procedure based on model checking for verifying security properties for trust theories.

Introduction. The contemporary environment and large-scale systems challenges motivate research in support of a new paradigm: value robustness. By value robustness, we mean the ability of a system to continue to deliver stakeholder value in the face of a changing context. The authors’ research seeks to develop methods for concept exploration, architecting, and design using a dynamic perspective for the purpose of realizing systems, products, and services that deliver sustained value to stakeholders in a changing world. The research is aimed at improving the development of real world systems and systems of systems, and involves deep engagement with government and industry stakeholders in the research conduct and the transition of research outcomes to industry practice. Approach. The concept of value robustness is responsive to the issues cited in a number of reports and studies on the challenges of systems acquisition and development over the past decade. For example, a 2004 workshop explored the topic of engineering for robustness, that is, developing systems capable of adapting to changes in missions and requirements; able to reliably function given changes in threats and environmental be easily modified to leverage new technologies; and scalable and adaptable (Rhodes 2004). The workshop prompted such questions as what this really implies for systems engineering, how this type of robustness can be measured, and who bears the cost. The evolution of a new paradigm, value robustness, requires a new mindset that recognizes the dynamic context, understands the fallacy of static preferences as a basis for design and embraces the ‘inevitability’ of change (Ross 2006). Research seeks to understand how to match changing systems to changing needs as a mechanism to ensure sustainable system success. Conceptual and analytic methods are needed to enhance the ability to design for changeability. The ability to quantitatively assess changeability is a key element for being able to specify and verify system adherence to changeability specifications as an explicit metric for designing systems. Complementary research is likewise underway to develop analytic methods for discovering “clever” system designs that remain successful in spite of changing contexts without the systems having to change themselves. The research is leading to the articulation of principles for design of value robust systems, including designing for specific “ilities”. The paper discusses research on principles for architecting for survivability as one example of this, where survivability is framed by the value robustness concept. Results. The paper will discuss the research progress and several recent research outcomes that are currently be tested in industry and government practice. These include: a dynamic tradespace exploration method; Epoch-Era Analysis method; metrics of system changeability; and a taxonomy of “ilities”. We discuss several ongoing collaborative research projects designed to engage the practitioner community as collaborative research partners, and the associated mechanisms for transitioning academic research to real world practice. Example References Richards, M.G., Ross, A.M., Hastings, D.E., and Rhodes, D.H., “Design Principles for Survivable System Architecture,” 1st Annual IEEE Systems Conference, Honolulu, HI, April 2007. Richards, M.G., Hastings, D.E., Rhodes, D.H., and Weigel, A.L., “Defining Survivability for Engineering Systems,” 5th Conference on Systems Engineering Research, Hoboken, NJ, March 2007 Rhodes, D., Report on the AF/LAI Workshop on Systems Engineering for Robustness, Massachusetts Institute of Technology, July 2004. Ross, A.M., Rhodes, D.H., and Hastings, D.E., “Defining Changeability: Reconciling Flexibility, Adaptability, Scalability and Robustness for Maintaining Lifecycle Value,” INCOSE International Symposium 2007, San Diego, CA, June 2007. Ross, A.M. and Rhodes, D.H., “The System Shell as a Construct for Mitigating the Impact of Changing Contexts by Creating Opportunities for Value Robustness,” 1st Annual IEEE Systems Conference, Honolulu, HI, April 2007. Ross, A.M. and Hastings, D.E., “Assessing Changeability in Aerospace Systems Architecting and Design Using Dynamic Multi-Attribute Tradespace Exploration,” AIAA Space 2006, San Jose, CA, September 2006. Ross, A.M. Managing Unarticulated Value: Changeability in Multi-Attribute Tradespace Exploration, Doctor of Philosophy Dissertation, Engineering Systems Division, MIT, June 2006 Ross, A.M. Multi-Attribute Tradespace Exploration with Concurrent Design as a Value-centric Framework for Space System Architecture and Design, Dual Master of Science Thesis, Aeronautics and Astronautics and Technology and Policy Program, MIT, June 2003

Software design patterns are prescribed solutions to common families of software implementation problems. Though design patterns have proven to be effective and efficient in many applications, many would argue that they have not been used nearly often enough or been effectively implemented. This is particularly true when constructing large-scale systems, where the complexity of the software is exacerbated by the integration with hardware devices. Software design patterns are implemented in order to promote high quality code and reduce debugging and design time. Design patterns accomplish this by acting as a coarse-grained form of code reuse. Whenever a recognized problem is encountered, designers need only to look through the pattern catalogue to determine which pattern addresses the problem and customize the solution for the application in question. Doing this avoids wasting time spent in crafting and debugging a new solution. In addition, design patterns conceptually encapsulate these solutions and allow for a common vocabulary amongst software designers, allowing for better communication of ideas and proposed pattern solutions. The same vocabulary can also be employed in official design documentation for future review, aiding in understanding the overall system architecture. This paper presents a prototype tool called VULCAN that aims to assist with the creation of high quality code through the use of design patterns. This tool comes in the form of a plug-in for integration with the popular Eclipse development environment. VULCAN facilitates high quality code creation through the automatic generation of design pattern code templates, customized with user input and integrated into pre-existing projects. This paper also provides an analysis of the need for design pattern use, past efforts at automated pattern code creation, and the description of the tool VULCAN and its implementation. By automating the design pattern generation process through the application of a practical and easily usable tool, the reluctance to use and difficulty in coding design patterns can be substantially mitigated, resulting in an over-all higher quality body of finished code.

Abstract Pending.

Cognitive maps are cartographic illustrations of a person’s internal representation of the spatial environment in which they live. All of us do form and use cognitive maps, whether in real or virtual space, to deal with and process the information contained in the surrounding environment. Cognitive maps help in visualizing the positional and location details and also the route map for reaching the destination from the current location. Quality of such visualizations directly depends on the quality of the cognitive maps. Thus a human being’s spatial behavior relies upon, and is determined by the individual’s cognitive map of the surrounding environment. One major deprivation in the life of visually impaired and the blind people is the access to information and visualization, as a result of which navigation and orientation ability as well as the ability to perceive surrounding environment reduces. This paper describes a technique and related experiments for acquisition of spatial knowledge (and thereby development of cognitive maps) of a building or a locality by visually impaired and the blind people through training in computer-simulated (virtual) environments. These might be places such as a school, a university campus or a shopping center. Our system allows them to navigate virtually and is able to automatically record navigation path of subjects. An algorithm is also presented for finding optimal path between places using boundary relation heuristic. Special emphasis is placed on online assessment (using various statistical measures) of cognitive maps formed by participants after walking through virtual environments. Preliminary results indicate that 1) bi-dimensional regression analysis is more useful than other methods to assess the configural relations between cognitive and actual maps and 2) most of participants were able to create precise cognitive maps after getting trained in virtual environments.

The practice of systems engineering has evolved significantly over the past decade in response to new challenges, yet at the same time the engineering workforce has declined. Several studies also cite an erosion of engineering competency, particularly in government and aerospace/defense industry. The development of systems competency is critical; yet, we lack the empirical basis for developing a truly informed strategy for addressing this need. This paper describes past and ongoing research on systems thinking and practice within the Engineering Systems Division at the Massachusetts Institute of Technology. The research seeks to impact the effectiveness of systems engineering in modern enterprises, through development of new empirical based knowledge related to systems thinking and practice.

Introduction. As technology continues to advance, systems of increasing complexity are realized. Given resource scarcity, especially financial limitations in fields such as aerospace, new functionality is sought from linking of systems—systems-of-systems. These linkages result in the introduction of even more complexity into the realization and operation of both the constituent systems and the system-of-systems. Research has shown a negative correlation between system complexity and the documentation of design knowledge (Dong, 1999). Systems thinking is a critical skill contributing to the balance of this undocumented design knowledge. Therefore, as complexity increases, the importance of systems thinking also increases. Systems of systems are further complicated by the bringing together of different corporate cultures, varying sets of technical and administrative processes, proprietary information, and a general absence of central authority. Under these situations, teams whose members come from different environments face hurdles towards the formation of a shared understanding of the system-of-systems necessary to effectively integrate the constituent systems. This research has implications for workforce development, process improvement, and effective team composition. Approach. Before the more complex system-of-systems issue can be address, the development of team-level systems thinking must first be explored at the system level of design. This paper describes ongoing research exploring the role of engineering culture, organizational influences, and technical process usage on the emergence of systems thinking within teams of engineers. This construct has been termed “collaborative systems thinking” to emphasize the important of intellectual coordination and interaction in team-level systems thinking. Teams within in the aerospace industry were chosen based on the researcher’s background and because of the high complexity of aerospace products. Building upon past work analyzing the enablers and barriers to systems thinking development in individual engineers (Davidz, 2005), and relying on a wide net of organizational literature, psychology literature, and workforce development research, a framework is developed that combines commonly used measures from past research that address team-level cognition, comprehension, and behaviors and processes linked to system comprehension and effective design. This framework (Lamb and Rhodes, 2007) emphasizes the role of engineering culture, organizational culture and technical process usage in enabling or inhibiting team-level systems thinking. This framework is used to inform a set of exploratory case studies investigating the links between culture, process and team-level systems thinking. A combination of surveys, interviews, observations, and primary documentation are used to explore collaborative systems thinking within teams during conceptual design and the early stages of detail design. A blend of quantitative and qualitative methods allow for a rich description of the ways in which teams engage in collaborative systems thinking and the enablers and barriers extant in their social and technical environment. Results. At this point, field work is just commencing. This paper will summarize initial field results, drawing preliminary conclusions on the ways in which engineering culture and technical process interact. Results will also include a field-tested description of the ways in which teams express systems thinking characteristics, including any modifications to the initial collaborative systems thinking framework. A plan for completing the research, disseminating the results and ideas for future research will also is presented. References. Davidz, H., Nightingale, D., and Rhodes, D, “Enablers and Barriers to Systems Thinking Development: Results of a Qualitative and Quantitative Study,” 3rd Conference on Systems Engineering Research, Hoboken, NJ, March 2005. Dong, Q., “Representing Information Flow and Knowledge Management in Product Design Using Design Structure Matrix,” Master’s thesis, Massachusetts Institute of Technology, Cambridge, MA, 1999. Lamb, C.T., and Rhodes, D.H., “Standardized Process as a Tool for Higher Level Systems Thinking,” INCOSE International Symposium 2007, San Diego, CA, June 2007.

The Department of Defense, like other government agencies and indeed the global business community, faces increasingly complex challenges that cannot be met by stand-alone systems. This has led to growing reliance on increasingly interoperable and interdependent systems that combine multiple organizational and functional capabilities to achieve an overarching mission. This is the motivation for developing systems-of-systems, enterprise systems, and even extended enterprise systems. This paper focuses on the engineering of this class of systems: a process that demands consideration of increasing scale, the rapid pace of change of the underlying technologies, the complexity of system interactions, and, perhaps most important, shared ownership and control. We hypothesize that engineering these systems is inherently different from engineering large-scale but essentially well-bounded monolithic systems. Decisions about the system(s) under development have to consider not only the technical and programmatic dimensions but also the political, operational and economic contexts. This paper discusses a diagnostic tool for profiling complexity and uncertainty in large scale system engineering developments and provides some lessons learned from its application. The profiler highlights four critical contextual dimensions that influence the engineering and acquisition of systems, system of systems and enterprise-wide systems: the strategic context, the implementation context, the stakeholder context, and the system context. It also highlights the various regimes operate, from well-bounded systems, to systems-of-systems, to complex enterprise-wide systems. On the basis of these insights, we propose an approach to tailoring engineering and acquisition strategies and practices to the specific circumstances at hand.

The US Secretary of Health has proposed 2008 prototype “remote patient monitoring use cases” to allow harvesting data from tens of millions of Americans who are treated for expensive and complex chronic diseases at home or in nursing homes. The value of such monitoring is multi-fold, including the desire to help improve timely and proper care by making data readily available to physicians, to reduce the harmful and expensive costs of mistaken, inappropriate, or ineffective care quickly, and to extend and enhance nationwide population health vigilance to detect and address new risks such as avian flue pandemics that would aggressively threaten these vulnerable population members. This initiative is part of a 10-year project that began in 2004 when President Bush authorized the US Department of Health and Human Services to initiate the design and development of a first generation National Healthcare Information Network (NHIN) (www.HHS.gov/healthit/). Of course, the NHIN is by nature a complex System of Systems (SoS) challenge because contemporary healthcare depends on multiple disparate clinical specialists (e.g., radiologist, cardiologist, or rheumatologist) and care-delivery-providers (e.g., hospital, physician office, or home care), each using specialized computer systems for optimal clinical data and practice management. In addition, telemedicine tools are creating an ever-expanding diversity of points-of-care, creating a growing number of smaller healthcare subsystems that extend to personal, consumer-based health care technologies. The NHIN project process employs a series of overlapping iterative, one-year analysis-design-prototype use-case standards-design cycles. Each year, clinicians, providers, and researchers (AHIC - http://www.hhs.gov/healthit/ahic/workgroups.html) specify clinical and operational goals and requirements. Next, a technology team (HITSP – www.ansi.org/hitsp/) identifies appropriate technical frameworks and standards to facilitate effective data interoperability among these providers. All of the tasks that are under way focus on one main goal: to help create a complete, current, and constantly-updated Electronic Health Record (EHR) for every American citizen by 2014 to allow more effective, safe, and economical healthcare. This new remote patient monitoring task will present many new system of systems engineering challenges to consider and overcome. One of the first issues is that the monitoring devices themselves are quite heterogeneous. The devices are manufactured by hundreds of companies, and, because they are provided to patients and nursing homes by thousands of private medical equipment rental companies across the country, the vendor, model number, configuration, and maintenance and calibration history varies widely. In addition, the use and programming of each device may be under the control of multiple parties, including the patient, family members, visiting or staff nurses, or other non-clinical aides. Lastly, many new consumer-product companies claim to be poised to introduce new, low-cost “health monitoring” devices (see www.ContinuaAlliance.org) In a “perfect world,” it would be ideal if the remote patient monitoring data could simply be directly integrated into the patient’s EHR. In reality, however, the NHIN systems will need to be sophisticated enough to segregate, retain, and access related-but-different patient monitoring data that spans hospital, nursing home, and at-home care, or risk life-threatening and inefficient misinterpretation if the data is erroneously pooled for decision making. The system will ALSO have to be designed to handle single- and multiple-component and system fault modes without endangering patients. The emergent behavior challenges and risks will be substantial, including new system-caused errors from incorrect data aggregation, patient or family manipulation of remote monitoring data for a secondary purpose, such as obtaining new or more drugs or permission to re-enter a hospital, or physician-overload-induced errors, burnout, and insensitivity caused by too much disparate data being pushed onto physicians without effective software tools to manage the data properly. Solving these challenges will require controlled simulation, modeling, and deployment management so that the various interdependencies can be foreseen, detected, and accommodated as the system expands. Software tools like Colored Petri Nets (CPN) or Event-driven Process Models can help explore data loading in advance of actual deployment, especially for slow-moving illnesses like certain diabetes or chronic obstructive lung disease (COPD) patients. Furthermore, careful deployment to disaggregated points of care, such as nursing homes can allow system-level verification and validation of software tools while limiting or controlling confounding variables. The NHIN’s remote patient monitoring project is ambitious, and could be very valuable to improve healthcare costs, effectiveness, and safety. It will require careful system of systems thinking and planning in order to succeed, because it is being done in an area where little prior research, experience, or expertise exists.

To meet time-to-market demands, it is crucial that improvement be made to the system design efficiency. By utilizing a reusable design methodology, it is possible to meet project management requirements. Component integrations may often fail due to concurrency concerns. These concurrency problems mainly occur when components access share resources simultaneously and communicate with each other. If these problems are not addressed then a system could lead to sporadic and disastrous failures. In this paper, we propose a methodology for developing concurrency compliant components from a requirements document. We have applied this methodology to develop process management and memory management aspects of a Real Time Operating System (RTOS).

– System modeling has the potential to enhance system design productivity by providing a platform for system performance evaluations. This model must be designed at an abstract level, hiding system details. However, it must represent any subsystem or its components at any level of specification details as needed. In order to model such a system, we will need to combine various models-of-computation (MOC). MOCs provide a framework to model various algorithms and activities, while accounting for and exploiting concurrency and synchronization aspects. Along with supporting various MOCs, a modeling environment should also support a well developed library. In this paper, we have explored and compared various system modeling environments. MLDesigner is one such modeling environment that supports a well developed library and integrates various MOCs. We discuss the process of system modeling with MLDesigner. We further present an abstract model of a Network-on-Chip (NoC) in MLDesigner and show latency results for various customizable parameters for this model.

Safety and Airworthiness of airborne platforms rest heavily on the maintainability and reliability to maximise the availability and reduce logistics down time. Most of the test and maintenance data currently produced is either paper-based or discarded and generally fails to provide preventive analysis. Improvements could be made by creating an expert system using intelligent agents. Data Mining techniques and intelligent agents could be employed to create an expert system within the Integrated Logistics Support (ILS), thereby creating a feedback mechanism. This paper reports the design and development of an agent-based Intelligent Decision Support System (IDSS), which has been developed by taking a Systems approach. By taking this approach, we were able to integrate various sources of information to create an IDSS that can extrapolate forecasts and generate warnings to assist maintainers and engineers in making informed decisions in time and operation critical situations.

- Problem Definition: A successful development of complex large-scale systems has not been easy since a variety of issues to be solved are therein. It is becoming more pronounced that the systems engineering (SE) approach can effectively deal with those issues. To gain increased benefits from adopting the SE approach, standardization activities have long been carried out. Each SE standard has its own scope and attributes. Many systems developments require that a high level of safety be maintained throughout the whole system life cycle. As such, an extra effort is needed to manage safety issues therein. A useful methodology for systems safety can be found in the guide published by FAA. Here we are concerned with the development of complex large-scale systems with safety-critical requirements. Therefore, we have to study how to integrate both the SE and safety management processes. To do so, we have developed a whole lifecycle model for the systems that can follow the SE process standard and safety management requirement. - Methods of Approach: As an SE standard process, ISO/IEC 15288 has been selected since it is international and also covers the whole system lifecycle. The systems safety described by FAA has been referenced in our study whenever its scope is not specific only to air transportation. While studying the integrated life cycle model, we have concentrated on the two points: 1) When and how the SE and systems safety have to be synchronized to achieve concurrent and integrated execution; and 2) How the model and data can be managed efficiently to allow the model to be easily changed according to later changes in requirements and design. Specifically, the life cycle model was constructed through two steps. In the first step, the integrated process model was developed by integrating SE (ISO/IEC 15288) and systems safety in the CORE® (from Vitech Corp.) environment. The model consists of three hierarchical levels: the life-cycle level, the process level, and the activity level. The model of three levels was represented by enhanced functional flow block diagram (EFFBD) using CORE®. The EFFBD functional blocks of each level are decomposed into the ones of the lower levels. The interface between the SE and safety processes is also defined in this step. Here, note that the introduction of leveling in the model can allow the data traceability among each level and can be maintained by CORE®. In the second step, a DB schema was derived from the process model obtained. Although the result is intended for use in CORE®, it can also be used in other CASysE tools such as Cradle®. To obtain a DB schema, the data flows in the process model is first analyzed, then the traceability among data is defined. Based on the results, the DB schema is derived, which becomes the basis of the model management on the CASysE tools. - Results and Discussion: The process model was developed by concentrating only on the technical processes of ISO/IEC 15288 and also on the safety assessment and analysis processes of FAA guide since those can be applied to any generic systems development. The integrated model was realized on CORE®. The model specifies the required SE and safety processes that have to be carried out concurrently. Also, the interaction/interface between them has been realized by the data that has to be exchanged. Each process was further developed by identifying the activities that it should perform. Thus, the safety process can know what kind data is required from the SE process, and vice versa. The results can be used as a reference model in the development of a safety critical system. To verify the model obtained, we carried out the following with the help of CORE®: 1) The timeline analysis was done by simulating the model; and 2) A traceability report was automatically generated to compare SE (ISO/IEC 15288) activities with systems engineering activities in the model. The report can be used to check whether SE (ISO/IEC 15288) activities aren't correctly applied to systems engineering activities in the model. The use of a CASysE tool turned out to be useful in the simulation and verification of the model. It is also possible to maintain the data traceability in the developed model, thereby allowing easy changes later in the underlying model if necessary.

Many of today’s software engineering course projects require student to integrate disparate components across a heterogeneous networked infrastructure. Service-oriented architecture (SOA) is a recent evolution in distributed middleware that can be used to accomplish this task. While SOA holds the promise of supporting business needs by closely aligning information technology support, mastering the design, development, and deployment of SOA-based systems places a considerable pedagogical burden on the faculty and students. Team-based projects are the cornerstone of many software engineering courses. In these projects, the students learn the importance of topics such as project management and issues of scale that separate software engineering from program development. The focus of such projects is not on learning about a particular technology such as SOA, but on using it as a means to an end. However, this cannot be achieved without a sufficient understanding of the underlying technologies. This means the instructor must carefully balance the time and effort needed to learn about SOA, and the time and effort needed to learn about all other aspects of software engineering required to make the course project a success. This may be particularly difficult to achieve considering the relative complexity of SOA: it requires knowledge that is both broad and deep to be leveraged effectively. From an industry perspective, many employers often lament that they must provide extensive (re)training to new employees. One of the reasons given for this situation is that the students haven’t learned in school what the company considers to be important. To be sure, there will always be issues specific to the corporation that the new employee must acquire. But for software engineering, it seems odd that the projects students are given during their final years as an undergraduate are usually not indicative of the type of projects they will likely be working on in an industrial setting. This is particularly acute for SOA, since many companies and consultancies are heavily invested in converting legacy systems into valuable corporate assets in the guise of business services. At the 4th International Symposium on Software Engineering Course Projects (SWECP 2007) that was held at IBM in Toronto on October 25, 2007, the focus was on how educators and industry can work together to develop efficient and rewarding methods for teaching and using SOA in an academic environment. SWECP 2007 was a half-day event with about 20 participants. The symposium was structured around a handful of invited presentations from recognized experts in the field. The idea is to foster the exchange of ideas and information in an informal setting, but with some boundaries placed on topics and time to ensure that the symposium is on schedule. The symposium provided an opportunity for the exchange of information related to areas including (but not limited to): • Course modules for learning SOA principles • Lab exercises for experimenting with SOA technologies • The use of commercial tools in the course project • Constructing and managing teams, particularly matching business needs and IT capability • Differences between undergraduate course projects and graduate SOA-based projects • Interdisciplinary projects and systems engineering concepts regarding SOA This paper provides a summary analysis of the symposium. Lessons learned from teaching and using SOA in a systems context in a university setting is discussed. Comments from industry participants regarding their experience with new graduates attempting to quickly integrate as productive team members working on SOA-based systems are provided.

A generic framework for the development of proactive systems inspired by molecular biology systems is presented in this paper. Proactive systems need to predict future concerns and not only finding solutions to problems as is the case with conventional systems. The framework is also generic enough to represent human behaviour in general. It is also applicable to conventional systems. The main feature of the proposed framework is that allows the incorporation of all possible frameworks and findings about a subject matter into one fused framework.

Abstract- In this paper, an intelligent surveillance system using sensor networks for monitoring active volcanoes has been presented. While wireless sensor networks can generically be used for a wide variety of applications, breakthrough innovations are most often achieved when driven by a genuine need or application, with its specific system-level and science-related requirements and objectives. Hence, our work focuses on the development of a specific surveillance system for active volcanoes. We combine sensor network system engineering with systems-on-chip implementation to develop an integrated surveillance system called Sensor Networks for Active Volcanoes (SNAV). We report SNAV specific science-related requirements and system-level operations for this surveillance system. Development of the SNAV node system-on-chip (SoC) is then presented. A rapid SoC prototyping of the control and computing subsystem was implemented as an exploratory device based on reconfigurable SoC platform architecture. A low-power radio was developed as an embedded wireless communication core for SNAV system-on-chip designs. The success of this work enables low-power, low-cost sensor networks for intelligent surveillance system applications.

The agricultural industry is undergoing significant cultural shifts at present and will continue to do so into the future. These shifts have come about due to the emergence of more 'corporate' style farming, where declines in the labour workforce and increased emphasis on global competition, means a demand for increased efficiency and productivity in farming operations. Such a demand in turn lends itself to so called Precision Autonomous Farming (PAF). This paper presents ongoing work and progress in implementing a Systems Engineering approach to agricultural automation. An overview of the farming system is presented, depicting a system-of-system architecture. Each sub-system is described in more detail, and include the crop layout system, the software system, and the precision autonomous agricultural machinery system. Such autonomous machinery is used for seeding, crop sensing, harvesting, weeding and other follow-up operations. The authors propose the development and ongoing management of a Precision Farming Data Set (PFDS) formed off-line before crop cultivation, and used to achieve optimal performance of the farming system by specifying the spatial precision required for agricultural operations. Preliminary results are shown, highlighting the development and use of a fully instrumented tractor for use in agricultural operations, as well as initial research into developing high level path tracking controller for such machinery.

The proposed research is targeted towards component reuse, specifically towards component selection. One of the main challenges in addressing this problem is the very large size of the search space, which makes finding the optimal solution computationally expensive. Therefore, Greedy approaches are used for approximation. Our main focus is on mapping user requirements onto component attributes, so that we can determine the best order in which components should be considered/evaluated, in order to minimize backtracking and thus the search time.

Experience and analysis tell us that acquisition problems are pervasive, in large part because acquisition organizations themselves are complex dynamic systems. The interactions between the PMO, sponsors, contractor, subcontractors, and users all involve feedback, a mechanism that introduces complexity that defies traditional analysis. The resulting system behavior can seem unpredictable and unmanageable, and often counter-productive, but beneath this chaos there are recurring structures that can be recognized, understood, and managed. Systems thinking is an approach and toolset for qualitatively analyzing the patterns of behavior in complex systems, including organizations. It is based on studying the role that feedback loops play in creating dynamic, complex, nonlinear behaviors in systems. Systems thinking work has identified a set of easily recognized systems archetypes that characterize problematic behavior patterns that occur repeatedly across many types of organizations. These patterns are the result of the archetype’s structure and unforeseen interactions within the system. Using these techniques, systems thinking makes it possible to identify dysfunctional behaviors, gain insights into the root causes of problems, and design interventions that can be used to manage and prevent such issues. When brought to bear on the problems of software acquisition, the systems archetypes can be used to describe specific patterns of counter-productive behavior observed in practice across many acquisition programs. This presentation introduces the use of causal loop diagrams and a set of acquisition-specific archetypes to describe and analyze common patterns of failure in software-intensive acquisitions, and develop interventions to correct and prevent these behaviors.

The simulation of a complete Ballistic Missile Defense (BMD) scenario requires execution of many complex physics based modeling and simulation (M&S) tools. A thorough simulation should include everything in a standard kill chain, from target detection, track, fire control, through kill assessment. These tools however accurate, usually require very long run times, making it difficult to assess the dependence of overall system-of-systems (SoS) performance on lower level system parameters. Researchers from various elements within the Georgia Institute of Technology have been working to develop engineering tools that enable high level systems engineering tradeoffs based on medium-high fidelity analysis tools representing elements of the BMD kill chain simulation. Because of the complexity of high-fidelity BMD effectiveness analysis and limited computational resources, current approaches consist of ad hoc analysis with many fixed variables. Performance from one scenario can not be extrapolated to give insight about other scenarios. Documented efforts to create related systems engineering decision making tools exist, however one aspect lacking in each is the ability to incorporate the benefits of M&S in any real time decision making. Wilkening introduces a simple model for quickly determining required BMD effectiveness by modeling the integrated system as series of Bernoulli trials, requiring a priori values of key parameters, including interceptor single shot probability of kill, and various sensor related issues. Ben-Asher stresses that SoS treatment of the BMD problem is limited to defining responsibility sharing rules and interfaces between system level components. Parnell states that methodologies defining or evaluating BMD architecture should enable interaction between decision makers, operators, and developers, through real-time “what-if” scenarios, which traditionally sacrifices modeling accuracy. This study was developed to create an interactive tool that decision makers can use to accurately evaluate the effectiveness of a BMD architecture through rapid M&S, including target tracking through sensor fusion and interceptor engagement. This includes key battle management issues such as asset location and sensitivity to changing BMD architecture. The primary enabler for rapid manipulation of M&S is through the use of response surface surrogate models, which are equation regression representations of more complex M&S tools with negligible (but measurable) loss in fidelity. Neural network based surrogate models can capture highly multimodal and/or discrete design spaces, which have been shown to benefit SoS analysis by levying constraints anywhere across a rapidly accessed M&S hierarchy a posteriori to literally “filter” the feasible variable space and inter-system interactions. A M&S environment was assembled to integrate various analysis platforms, including a ballistic missile trajectory generator, a medium fidelity radar code which generates measurement covariance, a sensor fusion algorithm that integrates the various sensors’ data into a predicted system track covariance, launch window fire control interceptor analysis, and a battle manager. A notional scenario includes four threats which are near-simultaneously launched from a hostile country with the intent of attacking a friendly country across a narrow sea. To defend the friendly nation, two BMD capable warships are stationed in the sea between the two countries along with a forward deployed ground unit, each with sensors that can detect and track threats and interceptors to engage those threats. A single point analysis is defined by threats trajectories, interceptor inventories and their locations, and various battle management issues including rules of engagement. Through a time stepped simulation, this integrated M&S environment will calculate the expected number and probability of leakers (failed intercepts). Surrogate models are then created around this M&S environment that enable reproducing top-level metrics without the lengthy computation of the sub-level metrics, which allows a user to vary the location of each of the two ships and rapidly determine BMD effectiveness. Once the ability to quickly determine BMD effectiveness of a given asset configuration exists, fixing the location of one ship and varying the location of the second ship through a Monte Carlo simulation (bounded by the acceptable operational areas of the ships) enables the production of many effectiveness calculations as a function of asset location. These effectiveness confidence contours are then displayed on a map. By varying the location of one ship, system level effectiveness can be visualized for the space of all possible second ship locations. By linking the system performance contours with the simulation, any desired point analysis may be ran for further study and visualized through the use of Google Earth. Compared to the other systems engineering methods identified in the introduction, this process enables high level battle management decision making using actual M&S, rather than simple statistical relations found in literature.

Systems of systems that manage health care or enable Albert’s “power to the edge” are expected to provide the flexibility to engage multiple enterprises in innovative, collaborative, ways to solve problems. This paper describes a systems engineering ap-proach to engineer infrastructure that will support the restriction of systems of systems behavior at the time of use rather than at design time. We present a process for describing demands within their context of use, and how organizational variations in collaborative approaches (geometries-of-use) can be related to variations in these demands-in-context (pragmatics), thus giving a way to engineer a systems-of-systems’ agility i.e. its ability to adapt to changing demands.

ABSTRACT The Role of System Behavior in Diagnostic Performance John K. Scully Sr. Systems Engineer Northrop Grumman Corporation Integrated Systems Sector One Hornet Way El Segundo, CA 90245-2804 817/777-9208 E-Mail: john.k.scully@jsfmail2.p.external.lmco.com This paper addresses the mechanisms through which a system’s normal response to external stimulus can affect intra system diagnostic performance. The nature of, and remedial measures for, consequent diagnostic performance deficiencies are identified. Emphasis is on the in-flight behavioral and diagnostic performance aspects of airborne systems, as well as the consequences of in-flight diagnostic deficiencies propagating through various ground maintenance levels. However, the techniques discussed are broadly applicable to vehicle and fixed base systems. Within the context of this paper, the term “system” refers to any definable hardware/software entity or subsystem thereof. The “behavior” of a system under test refers to the panoply of observable effects over time resulting from an environment of continually changing stimuli. These stimuli may assume a variety of forms ranging from inputs provided by other systems (e.g. power, command signals and cooling), to environmental inputs (e.g. ambient pressure, temperature and humidity), to motion dynamics (e.g. acceleration, velocity and attitude). For the most part, such stimuli cannot be controlled,, for diagnostic purposes, under operational (in-flight) conditions. However, many operational stimulus levels, while not subject to direct diagnostic control, can, at least in principle, be measured, along with their corresponding effects on system behavior. For example, the position command to a modulated control effector might be the captured stimulus level. The sensed response of the effector itself, taking into account slew rate limitations, might be the upstream behavioral response; a delayed change in some sensed parameter influenced by effector state, might be the downstream behavioral response. The most significant diagnostic deficiencies are commonly referred to as “false alarms” and “undetected faults”, where the term “fault”, in this context, refers to physical degradation in a system component, as distinct from a “failure” in some diagnostic test. If the system is fault free, the behavioral response of the system, as designed, will be appropriate to the prevailing stimulus. Under these circumstances, if a sensor observation fails, it is because the failing test, intentionally or unintentionally, has not taken into account the (possibly unanticipated) response of the fault free system to prevailing stimulus. That is, under the fault free assumption, there is no maintenance action that can resolve such a failure, because nothing is “broken.” Any attempted maintenance action is therefore counter productive. Conversely, if the system is fault bearing, the same test failure, again depending on prevailing stimulus, may or may not be due to the fault that has occurred. Given the position that the purpose of diagnosis is fault detection and isolation (not design verification), coupled with the use of BIT (built in test) limits that do not always track expected system behavior, false alarm reduction and fault detection enhancement pose a significant problem. BIT maturation is by now a recognized and accepted process. However, when maturation relating to false alarm reduction is largely constrained to loosening measurement limits, the benefits gained can be offset by reduced fault detection. Similarly, when fault detection improvement is largely constrained to tightening measurement limits, the benefits gained can be offset by increased false alarm rate. One approach to the problem of overcoming these difficulties lies in the use of MBD (model based diagnostic) design. Under operational (e.g. in flight) MBD, the system’s prevailing stimulus is continually acquired and processed in real time, to determine its effect on any given sensor measurement. Then, the MBD either predicts the expected value of the measurement or temporarily suppresses the ability of the measurement to indicate an anomaly. The prediction is the expected value under then prevailing stimulus conditions in a fault free system. If the sensor measurement is not used at all, no failure can occur. Thus both outcomes reduce the frequency of false alarms. They also improve fault detection since measurement limits can be tightened without increasing the frequency of false alarms.

Service Oriented Architecture (SOA) is a paradigm that organizes and uses distributed capabilities to bring together a technical solution to a business problem. The central concept of SOA revolves around modularized implementation of business logic known as services. The dictionary definition of a service is “a unit of work performed by one for another.” In SOA, services are business tasks performed by an external component according to a pre-defined specification or contract. Each time a specific functionality is needed, service elements are identified, terms and conditions are negotiated, and the service is executed to provide a solution. SOA is different from traditional systems in that functional requirements are mapped to business process models that are implemented across different networked applications running on varied technologies and platforms. Services do not often have user-accessible interfaces; instead, other programs invoke them in a message-based manner. SOA holds much promise for aligning business needs with information technology capabilities due to its dynamic nature, coarse-grained reuse, and flexible deployment model. However, one large barrier to the widespread adoption of SOA-based systems is testing them. The common misconception for testing SOA-based systems is that it is no different than testing non-SOA systems. Therefore, when migrating existing systems to SOA or creating new SOA based systems, project managers often pay much less attention to the testing process of these systems. The distributed nature of SOA, its lack of user interface, and imprecise information regarding the runtime topology of the software components pose significant challenges in creating a viable testing strategy for SOA-based systems. Even if traditional testing techniques are applied to SOA, they need to be modified. Therefore, along with traditional testing techniques, SOA-based applications require additional testing effort. This paper outlines a possible research agenda for testing SOA-based systems based on these challenges. The research topics are categories according to a number of characteristics, such as testing type, testing level, areas of testing, testing tools, and test management. Types of testing, such as black-box, white-box, and gray-box, require significant changes when applied to SOA-based systems. In particular, white-box and gray-box testing is quite different, since distributed components do not have source code available for analysis. Instead, if Web services are used to implement the SOA-based system, they have XML-based files such as SOAP, WSDL, and UDDI that are somewhat analogous. These areas require novel testing approaches, such as matching contractual obligatins are specificed in the service level agreement (SLA) with the services described in the WSDL (Web Services Description Language) file. There is also a need for increased emphasis on traditionally-used testing techniques for Web-based systems. For example, in most integrated systems, load testing is overlooked. In SOA, one service can be used by several applications at the same time. Therefore it is essential to load test services at all times to ensure acceptable response time of services. In addition, regresssion testing is particularly challenging considering there is no clear notion of releases under centralized control. Testing levels (unit, integration, system) for SOA-based systems is also different. The granularity of a service varies greatly, since a service can be the composite of a number of other services. This makes unit testing different than single-component testing in a tradition system. For each of these levels, traditional testing tools may not be as efficacious when applied to SOA-based systems. Automation is an essential part of traditional systems. Most automation is done using commercial tools that are based on record/playback. Services don’t have interfaces so it is challenging to use commercial tools such as QTP, Loadrunner, and so on to automate testing. Automation of services should be focused on reusability, creating executable libraries, underlying standards and technologies. New federated toolsets with network, security, and database tracking capabilities could be merged with traditional automated testing tools and techniques. Finally, a novel approach to test management is needed to address these challenges in a successful manner. Managing the testing of SOA-based systems requires special skills such as domain knowledge, mastery of new and rapidly-changing technology, and extensive knowledge of testing traditional systems, so that the risks introduced by the deltas between traditional and SOA-based systems can be mitigated.

With increasing diversification and complexities, customers are getting more and more frustrated and anxious because they cannot "see" how the system works. As Donald Norman pointed out in his book "Emotional Design", simple mechanical objects can be trusted, if only because their behavior is so simple that our expectations are apt to be accurate. He also points out that the problem of current objects are that you don't know what to expect. This paper points out that if we introduce continual prototyping into our system development, these issues, if not all but most of them certainly, may be solved. The way of software development changed remarkably since the emergence of knowledge engineering or AI technology. It changed the way of thinking in software technology. Until then, software was developed in the same way as hardware. Hardware is still being developed in the same old style, i.e. with the fixed function. Their philosophy is to deliver good growups to our customers to serve them. Software industries did the same. But it was soon made clear that developing software that way is too much unrealistic and AI technology taught them that prototyping is not just one of the steps before delivery but you can grow your product function while in serve if you introduce continual prototyping. One of the features of software is that you cannot "see" what it is or how it works until you use it. Even if software is 100% completed before delivery, customers would still feel uneasy becasue they cannot "see" how it works. Continual prototyping changed the whole scene. Software industries stopped delivering "grownups" and instead they moved toward growing "babies" together with their customers. Babies are simple so that customers can easily understand them. As they grow older, customers learn together with them. In fact, the growing function curve of software is quite similar to our learning curve. Once customers understand how our babies would behave, then they are ready if some new functions are added on, because they know that their babies would behave as they expect. They "grow" trust as their babies grow. When it comes to hardware, their product development style is still very much traditional. Hardware is being produced with fixed function. Their increasing complexities and diversification drives our customers more and more uneasy. But if we change our way of hardware product development and adopt the same style as the one in software, a great amount of our customers' concern or uneasiness would be removed. In the case of hardware, 20% of our customers used to buy our products as soon as they appeared on the market. 80% others could follow suit if their reputation was good. But nowadays, product life cycle is getting shorter and shorter and before these 20% can establish their product reviews, products are replaced by another model or by a new product. So we don't have any lighthouse now. What we have to provide to our customers is a lighthouse showing their way. Continual prototyping would throw light into the hardware market. In fact, all systems are now combination of hardware and software and it would not be too much to say that there is no system which is composed of hardware alone. Then, it would be quite natural to introduce continual prototyping into our hardware system development. Another advantage of continual product development is to provide our customers with the feeling of involvement. They feel that they are developing their product with us. In other words, they feel they are creating value together with us. The sense of value co-creation would enhance our customers' sense of value and they would not throw our products away to replace for another. Our customers will be a life long friend.

Open standards such as ARINC 653 provide useful interface definitions that have catalyzed the development of open IMA systems capable of hosting various software applications of differing criticality levels on the same computing platform. The IMA approach to avionics is a System-of-Systems (SoS) deployment that optimizes the allocation of computing resources while decreasing power consumption and weight, since it effectively replaces several interconnected stand-alone systems that would otherwise realize the same solution in a federated architecture.

This paper presents a distributed protocol for communication among autonomous underwater vehicles. It is a complementary approach for coordination between the autonomous underwater vehicles. This paper mainly describes different methods for underwater communication. One of the methods is brute force approach in which messages are broadcasted to all the communication nodes, which in turn will broadcast the acknowledgement. Issues relating to this brute force approach are time delay, number of hops, power consumption, message collision and other practical issues. These issues are discussed and solved by proposing a new method to improve efficiency of this proposed approach and its effectiveness in communication among autonomous underwater vehicles.

This paper describes a complete framework for an end-to-end smart home monitoring and control system. The communication with all components of the system is done using a variety of wireless technologies. The system incorporates security features at both ends that prevent unauthorized access as well as assign privileges to the users. The complete prototype smart home system was implemented and it supports three main services: monitoring the status of devices, controlling their settings through configurations that are device dependent, and periodic notification of the status of devices. The prototype system has a modular structure that enables the incorporation of additional components and services.

An architecture for a wireless urban environmental sensor network is presented. With active and passive sensor integration, information gradients are obtained. An escalation sequence is outlined and the merits of a two-tier architecture are proven. Real-world deployments are used to discuss the future role of this urban network.

Saving power is an important problem in portable device. Energy reduction has been performed for individual component for the portable systems. The system –level approach has been proven to be more promising than the individual device-level approach in work focused on other components of embedded system, offering more optimizations. A design of portable radio frequency identification (RFID) reader is presented in this paper, which works in the 433/868/915 MHz ISM frequency. This system uses system –level approach to reduce the power consumption in every part. The system embeds the peripheral driving circuits in a SOC (System on a Chip) to simplify the complex driving circuits of traditional electrical LCD display system. Besides, the system executes the address matching, anti-collision, checking, identification, real time calculation, and data display by means of software tool developed in this paper. The proposed system has advantages such as simple structure, low cost, and low energy electron diffraction. In this RFID active reader system, reader takes the initiative to transmit request signal to active tag. The reader transmits request signal to active tags through its antenna. When a tag comes within the reader’s range, it receives electromagnetic signals from the reader. Address of signals will be checked by the tag. If the address is right, the tag will return modulated signals to the reader. The return signals contain the information stored in the tag. Reader receives the return signals and checks them. If they are right, the tag will be identified. If they are wrong, reader will start the anti-collision algorithm and ask the tag to send the data again. Based on the power saving consideration, this system uses low-power consumption MCUMSP430 that is a system on chip as the controller. The voltage is at 1.8V-3.6V. 3V is chosen by this system. Current of RAM retention is 0.1μA; A real time clock mode current is 0.8μA; Current of active state is 250μA/1MlPS. The MSP430 ultra low-power architecture extends battery life. In this RF Module of active reader system, standby mode is used to minimize average current consumption while maintaining short start up times to ShockBurstTM RX and ShockBurstTM TX. In standby mode part of the crystal oscillator is active, so the current consumption is dependent on crystal frequency. We chose 16MHz frequency, IDD is 32µA. In order to save power, output-clock is in off state in this active reader system. RF.-Module communicating with MCUMSP430. RF.-Module is connected with the interrupt pins. If there are not interrupt signals, MSP430 and RF module are in low-power state. The software frame will be given in the paper. MSP430 has LCD controller, which can directly drive LCD displays. It simplifies the complex circuits of traditional electrical LCD display system and solves the additional error problems. It puts the peripheral circuits into SoC（System on a Chip）. This can reduce the area and power consumption of the portable RFID system. To reduce the size of reader, 20*35mm loop antenna is used in this active reader system. This system is successfully used in 433/868/915 MHz RFID.

An integrated supply chain model with fuzzy demand is built in this paper. The model is converted into a bilevel programming, in which the upper level programming is an uncertain programming with fuzzy demand, and the lower level programming is a certain programming with the specified parameters passed from the upper level. A genetic algorithm combined with fuzzy simulation technology is proposed to find the optimal decisions in the upper level programming. In the lower level, according to each of possible decisions made by the upper level, a simulated annealing algorithm is provided to obtain the optimal values which are then sent back to the upper level. Through the evolutionary processes such as crossover and mutation, the optimal solutions to achieve the minimum system cost can be found. Lastly numerical examples are given to show the validity of the algorithm.

This paper introduces a novel and successful technique for doing system design. The technique is consistent with the recommendations of ISO/IEC 15288 and INCOSE's SEBOK, and follows the practice of deriving functionality from system requirements and structure from the functionality. The result is an intuitive system design that is favoured by customers and developers.

Distributed systems are notoriously difficult to engineer according to prescribed quality standards. Gaining a sufficient understanding of a distributed system in order to perform disciplined maintenance is equally challenging. Complicating factors include the system’s inherent complexity, the heterogeneous nature of its components, and the extensive use of a networked infrastructure. Program redocumentation is one approach to aiding system understanding in order to support maintenance and evolution tasks. It relies on technologies such as reverse engineering to create additional information about the subject system. The new information is then used by the engineers to help them make informed decisions regarding potential changes to the application. There are a number of pressing research challenges in redocumenting distributed systems that could be the focus of attention in the next few years. This paper presents an overview of three of these challenges, categorized according to their scale and scope: in-the-small, in-the-large, and in-the-many (borrowing a classification mechanism from programming language research from a number of years ago). These challenges have been identified based on our 15+ years of research into program redocumentation via reverse engineering. The impact of these challenges on software development methodologies for distributed systems is also discussed. A prime example of an emerging in-the-small problem is the growing use of multi-core processor architectures for embedded and even general-purpose computer systems. In such systems, identification of implicit (and even explicit) parallelism is needed to properly document the original intent of the programmer. However, there is little technology currently available that can process such applications. Indeed, the need to train programmers to develop systems in a forward engineering manner has been identified by several researchers; going backwards via reverse engineering is an even more formidable task. For the in-the-large category, the use of Web services as a control integration mechanism poses new challenges. Such net-centric applications are quite different from traditional, monolithic applications that are implemented in a single programming language. New techniques for data gathering, such as the incorporation of packets sniffers and traffic monitors, are needed to include the dynamic nature of such systems into the common knowledge base. Cross cutting (in-the-many) issues are exemplified by the increasing use of aspects to manage concerns like security. Aspect-oriented programming is an emerging paradigm that builds upon object orientation. But it introduces new concepts that extract functional that is logically spread across (and possibly replicated in) many classes and formalizes them as aspects. The challenge for program redocumentation is identifying the original aspects in code that has been pre-processed by the original development environment. This is similar to maintaining code that has been generated by machine, not by a software engineering, and the original source upon which the translation was based has been lost.

The direct link between energy, environment, and sustainable development entails that environmental implications of future power supply systems must be explicitly built into all future development schemes in order to minimize their adverse impact on the environment, optimize the use of natural resources, and maximize value added. Many options exist such as renewable energies (e.g. wind, solar or biomass energy), advanced power generation technologies such as combined gas and steam cycle, efficient demand side technologies (e.g. efficient light bulbs, the use of frequency converters for electric drives etc.) and reduction in transmission and distribution losses. These options can be effectively used to meet the future power needs of a country in ways which would be more economically viable, environmentally sound, and socially just. The major challenge is the development of appropriate energy policies, a conducive market and an institutional framework that could allow the fair competition between these options by taking into account all the true costs and benefits to the society of each candidate technology which accrue over the life span of its useful service. The objective of the study is to quantify the emissions of major greenhouse gases, SOx, NOx, and Particulates in the main interconnected grid of Oman from the envisaged increase in power generation and build a generation expansion plan that has lesser environmental impacts. More specifically the paper will present the results of a study carried out to estimate the DSM energy saving potential in commercial, and government/institutional sectors of Oman and evaluates its impact on generation capacity, energy savings (Northern Grid area). The study will initially require an estimation of the comparative net contributions to emissions of the target pollutants (greenhouse gases, CO2, SOx, NOx and particulates) from the interconnected power sector of Oman over a selected period (extending up to the year 2025) which would also be attributable to current trends for non-utility power generation (independent power producers) in the country as a direct or indirect consequence of government and utility policies. For this purpose, a rigorous analysis of the power sector and its policy structure will need to be carried out to assess the stream of future fuel consumption over the selected period in the power generating facilities. This will follow policies that will be required to satisfy the projected electricity demand according to some pre-defined technical quality standards and developmental targets by constructing two scenarios, namely a reference case scenario in which the future power supply expansion is made according to the utility Ministry of Electricity, Housing, and Water (MHEW) of Oman) plan, and an alternative case in which an “environmentally-friendly” plan (that has a lesser environmental impact) will be made based on the cleaner supply-side technologies and demand-side options. The latter plan will be “least-cost” electric utility plan for the northern grid with consideration of demand-side management.

A railroad signaling system is being developed in Korea, adopting the communication-based train control (CBTC) technology to control the train operation through radio communication The project is intended to develop the interoperable and interchangeable subsystems as a trial, and will upgrade the existing system by replacing some of subsystems with new ones to be developed. The development activities have been concentrating on the subsystems development without performing sufficient design activities at the system level. This project shall require the integration and test at the system level. To do so, a top-level system specification is needed, which is not available in the current phase of the project. The purpose of this work is to study the problem when design specifications of the subsystems are given instead. A successful test of the integrated system consisting of developed subsystems requires a test and evaluation master plan (TEMP). The TEMP is usually generated during the concept design stage of the system development and addresses test and evaluation activities on a fully integrated basis to see whether the developed system meets the system specification. In this work, we describe how a TEMP can be generated based on the subsystems design specifications instead of the system specification. In doing so we have also utilized the system architecture as well as the system operation concept of the existing system.

In common design flows of System-on-Chip (SoC) designs functional verification requires 70% of the entire design effort. Most of the effort for functional verification is spent on finding and creating adequate testcases to verify that the modeled design corresponds to its specification. This is done manually, since automatic testcase generation from the specification is often not possible due to the informal, non-machine readable structure of the specification document. Formal specification languages would ease the parsing process, however, these formats are difficult to use by system engineers from different domains. A promising trade-off are semi-formal specification formats, which are both easy-to-parse and easy-to-use. The SIMBA project focuses on semi-formal use case-based specification formats, which are used to automatically generate a transaction-based SystemC verification platform. Finally, these SystemC testcases are simulated together with the System-under-Verification (SuV) to verify that it fulfills the given specification. This results in a novel design methodology regarding requirements elicitation and automatic testcase generation. A demonstration is given by applying this methodology to a SystemC RFID controller model. It is shown that the demonstrated approach automates and improves the functional verification of SoCs.

In the paper the problem of sizing and location of capacitor banks in large scale distribution systems is addressed. Shunt capacitors are commonly used in distribution systems to reduce the power losses as well as to improve the voltage profile along the feeders and to increase the maximum flow through cables and transformers. In the paper, first a comparative evaluation of various methods for capacitor allocation will be undertaken. Then, the solution of the sizing and siting problem will be solved by means of a new hybrid method, that is based on a heuristic technique.

By providing a common power supply to both the propulsion and service loads on ships, Integrated Full Electric Propulsion (IFEP) offers benefits of increased design flexibility and reduced running costs. Whilst presenting power system challenges commonly seen in land based grid systems, the prevalence of power electronics, high power density, and the significance of individual loads (such as propulsion drives) creates particular challenges for modelling and simulation tools. Operating challenges also exist, which require the use of multi-disciplinary modelling and simulation to investigate. This paper presents a high fidelity integrated IFEP simulation tool, which contains models from the electrical, mechanical and thermal physical domain. This model enables investigation from a systems level point of view. Some of the key challenges identified in the development of this model are discussed, focusing on aspects such as the existence of different time constants and the difficulties of system validation. The chosen solutions to the challenges listed above are presented and discussed. The effectiveness of the integrated IFEP simulation tool is demonstrated through a case study on the loss of propulsion load.

Mobile Ad Hoc Networks (MANETs) are communication networks built up of a collection of mobile devices which can communicate through wireless connections. Mobile Ad Hoc Networks have many challenges such as routing, which is the task of directing data packets from a source node to a given destination. This task is particularly hard in Mobile Ad Hoc Networks: due to the mobility of the network elements and the lack of central control, robustness and adaptability in routing algorithms and work in a decentralized and self organizing way. Through the principles of systems architecting and engineering, the problem statement in Mobile Ad Hoc Networks could be defined more specifically and accurately. The uncertainties and techniques for mitigating and even taking positive advantages of them an be achieved through a framework of uncertainties. The systems methodology framework called Total Systems Intervention (TSI) described by Flood and Jackson select a systems methodology for Mobile Ad Hoc Networks. The purpose of this paper is to show how TSI when integrated with a framework created to understand the risks and opportunities can help develop strategies to minimize the risks and to exploit (or take advantage) of the opportunities for facing challenges like routing in Mobile Ad Hoc Networks. This paper shows that through the framework of total systems intervention it is possible to identify some systems methodologies that are able to tackle reasoning about systems at this level of complexity as that of the MANETs. Also, when integrated with the framework for uncertainties in MANETs, such as those for routing, we get to look at the system as a whole in determining the risks, mitigate them and more importantly exploit the opportunities.

The PCI Special Interest Group (PCI-SIG), developers of the PCI and PCI Express specifications, released the PCI Express External Cabling 1.0 Specification to extend PCI Express “outside the box.” Cabled PCI Express is a high-performance cabled serial bus to interconnect system components.This paper examines the technology behind cabled PCI Express and how the PCI Express External Cabling specification can be extended to connect devices with independant PCI domains.

The power consumption in wireless sensor networks is one of the main issues when designing sensor nodes. Furthermore the available energy density of batteries for a given battery size and the difficulty of recharging possibilities limits the life cycle of sensor nodes. Multiple access methods will help to expand the operational life cycle of sensor nodes by reducing their power consumption. The focus of this work is to evaluate multiples access methods wake-up solutions for wireless sensor applications. A custom demonstration platform to perform theses evaluations and measurements has been developed. The current measurements have shown that multiple access wake-up methods in conjunction with switching of not needed components will extend the life cycle of sensor nodes immense.

The main purpose of this paper is to develop a prototype of the Vehicle Black Box System VBBS that can be installed into any vehicle all over the world. This prototype can be designed with minimum number of circuits. The VBBS can contribute to constructing safer vehicles, improving the treatment of crash victims, helping insurance companies with their vehicle crash investigations, and enhancing road status in order to decrease the death rate.

Large, complex systems development has always been challenging, even when the “only” things a program manager had to worry about were cost, schedule, and performance within a single program. The emergence of new operational concepts like network-centric operations, greatly expanded use of joint and combined operations, and rampant growth in system complexity has led to the prevalence of interoperable systems of systems as the preferred solution to providing operational capability. Unfortunately, the “programmatics” (i.e., the relationships between—and orchestration of activities across—all lifecycle aspects, including program management, system acquisition, development, transition/ deployment, sustainment, and operational use) are not well understood in systems of systems and, as a result, system-centric approaches are frequently employed, often with disastrous consequences. To better understand the root causes for these problems. and identify potential mitigation strategies, this paper introduces some simple guidelines—in the form of a set of laws, or meta-behavioral descriptions and a corresponding reasoning framework—to assist program managers with systems-of-systems programmatics.

Engineering and acquisition of information technology (IT) systems frequently involve high levels of uncertainty in requirements, design and enabling technologies. Addressing these uncertainties requires an adaptive strategy. The Venture Capital industry has developed a series of techniques to deal with rapidly changing technologies and highly uncertain markets. This paper explores the applicability of Venture Capital derived strategies and practices to the acquisition of IT systems under varying conditions of uncertainty.

Disaster management increasingly depends on various information systems, such as modeling and simulation systems or visualization and geographical information systems, to support decision makers at various stages of a disaster. The conceptual modeling of the domain for such systems is challenging, especially for IT developers new to the field. In this paper we present three ontologies that reflect three different views to a sub domain of disaster management at different levels of granularity. We compare the ontologies and discuss how a high-level model can separate concerns of various stakeholders into logical layers of abstraction, facilitate understanding of the domain, and inform development of various application systems.

This article is about about thermodynamic district heating substation and building simulations. The simulations are made in Mathworks Matlab with the addon Simulink. The model is split in to several interacting blocks like e.g. Heat exchanger, radiators and building. The result shows that we have functional dynamic model.

High speed communications systems using optical media are capable of transporting and delivering data at faster rates than electronic components can economically process them. The result is data overflow in which performance information that is critical for effective enterprise system monitoring and management may be lost, thereby leaving the communications system vulnerable to quality of service degradation and the service provider unable to meet customer service level agreements. Service providers seek a solution to this problem that minimizes the amount of high-speed, high-cost electronics required to comprehensively recognize such information. This paper addresses the challenge of surmounting data overflow problems in the collection of information for high speed communications systems by introducing a new procedure to transform finite state recognizers into new machines that can recognize bit-level information as it passes a monitoring point while operating slower than bit-rate for implementation in reconfigurable hardware, such as RAM and Field Programmable Gate Arrays. This is accomplished by mapping N-bit sets from the input stream into new symbols that can be processed at rate 1/N while also generating N-bit output symbols. The process is illustrated by an implementation example, and a time versus space tradeoff analysis is presented.

Computing technologies have moved beyond the personal computers to everyday devices with embedded technology. Mobile devices, such as cell phones, PDAs, and portable handheld game consoles, have become ubiquitous in almost every sector of life. These computing devices become progressively smaller, more powerful, and are seamlessly integrated into our daily lives. The concept of pervasive computing is the next-generation computing environments with information and communication technology everywhere, for everyone, and at all times from household electronics, handheld devices, cars, and intelligent buildings. The wide available mobile Internet access, third-generation wireless communication, advanced handheld devices, and Bluetooth have made pervasive computing a reality. While there are significant number of application software that are developed for desktop computers for almost every aspects of our computing needs, the application software for mobile devices are limited. The limitation is due to some of the general factors such as device and network heterogeneity issues, memory limitation, power consumption, and connectivity; and some additional constraints that are imposed by specific devices. For example, Nokia N95 cell phone supports Java and C++ development, while Apple iPhone only supports JavaScript and Ajax development. As phones gain improved features, the difficulty in developing software increases as well. Legacy software may have trouble running on newer phones or on all mobile devices. To address the problems mentioned above and to reuse existing applications for mobile devices, this paper proposes a framework of porting pervasive applications to mobile devices. A case study of migrating a simple game called Asteroids to the Apple iPhone is illustrated in the paper. The framework is based on software engineering methodologies, such as Model Driven Engineering (MDE) and reverse engineering. The framework consists of three parts: 1. Evaluating the source application for portability 2. Reverse engineering source application to platform independent model (PIM) 3. Development to target platform by transforming from platform independent model (PIM) to platform specific model (PSM). The first part of the framework, “Evaluating the source application”, determines if the application is suitable or possible to port to targeted platform because the source application’s may have large size, high calculation requirements, low quality implementation, or limited deployment methods. Three metrics will be used to aid the evaluation: (1) size of source application, (2) complexity of the source application, and (3) the quality of source code. The second part we will use reverse engineering techniques, with CASE tools support, to generate PIM from source code. The third part will transform PIM to PSM. This part may involve to modify the generated PSM so that they fit into the requirements of the target application. Once the source code has been created for the target platform, further work is required to ensure that the new application works as closely as possible to the original system. iPhone is used in the case study as the targeted porting platform, and the application being migrated is game Asteroids. iPhone is chosen because its representative additional constraints on an already constrained mobile devices, such as restricted development language (JavaScript and Ajax), and restricted browser (Safari). The case study demonstrated the proposed framework of migrating applications to mobile devices, and also points to some of the lessons learned in our experiments.

Mohammad Ibrahim, Marie Bassford, Helen Ackerley, and Jamil Alio A generic framework for the development of proactive systems inspired by molecular biology systems is presented in this paper. Proactive systems need to predict future concerns and not only finding solutions to problems as is the case with conventional systems. The framework is also generic enough to represent human behaviour in general. It is also applicable to conventional systems. The main feature of the proposed framework is that allows the incorporation of all possible frameworks and findings about a subject matter into one fused framework.

Analyzing systems using functional analysis has been the mainstream for Systems Engineering for five decades. With the advent of object oriented software methods and the Object Management Group’s (OMG) Unified Modeling Language™ (UML), a number of Systems Engineers working on software intensive systems began to apply Use Cases and Object Oriented Analysis and Design (OOAD) methods to large scale, complex systems. While the use of these OO methods is still controversial within the systems engineering community, many systems engineers that apply OO methods effectively have used functional analysis and understand the strengths of both methods. FireSAT is a well known fictitious system of systems space mission to provide a space based approach to wildfire detection, monitor and control. This paper will explore the use of OOAD methods to FireSAT for problem definition, concept development, and system architecture development. Using the OMG’s recently adopted System Modeling Language™ (SysML) and more traditional Systems engineering modeling techniques, this paper will compare and contrast some of the differences between OO and functional methods, showing diagrams from each approach.

An understanding of the value of Systems Engineering (SE) is necessary to justify a project’s investment in SE resources and activities. To identify the value of SE, the Systems Engineering Effectiveness Committee (SEEC) of the National Defense Industrial Association (NDIA) Systems Engineering Division, in collaboration with the Software Engineering Institute (SEI), developed and executed a survey of defense industrial contractors (i.e., suppliers to the government). The survey analyzed the relationships between the SE capabilities (SECs) applied to individual projects, and performance of those projects. Postulating that SE was not the only factor influencing Project Performance, the survey also examined the relationship between Project Performance and other factors such as Project Challenge (PC), Project Environment, and Acquirer Capability. Results of this survey and their interpretation will be presented.