Hardware implemented fault tolerant (hift) clock, Power distribution, Trusted – Rockwell Automation T8110B/T8110 Trusted TMR Processor User Manual

Trusted

TM

TMR Processor T8110B/T8110

Issue 18 Feb 08

PD-T8110B/T8110

9

The functions of the four types of module memory are:

EPROM

-

Holds module bootstrap loader

Flash ROM

-

Stores module firmware and the application program

DRAM

-

Working memory with scaleable capacity

NVRAM

-

Holds data such as event logs and retained program data.

Note: The NVRAM provides data retention for up to 10 years.

The front panel comprises a Fault Containment Region (FCR D) separate from the other FCRs and
contains non-critical simplex functions. These include the diagnostics port and maintenance enable
keyswitch mounted on the front panel of the Processor. Other functions within the front panel FCR are
the serial communications drivers and the IRIG-B interface. These are accessed though the I/O
connector via adaptor units at the rear of the Processor. The Processor and front panel FCR
participate in all module voting operations.

Two IRIG-B input standards are available to the Processor; IRIG-B002 and IRIG-B122. The standard
used by the Processor is controlled by software setting a flag in the memory. The IRIG-B signals are
used to synchronise systems and time-stamp entries in the Sequence of Events (SOE) log.

Three serial communications are available from the 4-channel UART. These are detailed as follows:

1. Channel 0

Front Panel Diagnostic Port (RS232)

2. Channel 1

Not configured

3. Channel 2

Communications Serial Port 2 (RS422/485)

4. Channel 3

Communications Serial port 3 (RS422/485)

The Trusted

TM

OPERATING SYSTEM

(Trusted

TM

OS

)

is used in support of the Motorola Power PC series

processor architecture. The real time kernel is a high speed, high functionality kernel made for fault-
tolerant distributed systems. The distributed communication is made transparent over all processors.

The kernel provides basic services (such as basic memory management), and interference free
software environments which allow software of various integrity levels to reside and co-operate in a
single processing environment.

An Application Program Interface (API) provides a consistent run-time interface for the services
provided by the Trusted

TM

TMR Processor to the application program. The API also performs the

same function to system-specific software executing within the Trusted

TM

TMR Processor.

1.2. Hardware Implemented Fault Tolerant (HIFT) Clock

Each of the Processor and front panel fault containment regions has its own HIFT clock, which are
provided with a synchronisation reference signal from the fault-tolerant reference clocks.

1.3. Power Distribution

Each of the Processor and FCRs derive their internal voltages from dual redundant +24V dc power
supplied via the module connector from the Trusted

TM

Controller chassis backplane.