eITUS: Experimental Infrastructure Towards Ubiquitously Safe Robotic Systems using RobMoSys


The eITUS project aims at creating a basic experimental infrastructure (models, software and tools) that enables robotic development stakeholders to assure system safety both at design time, using analysis and simulation-based techniques, and at run time, using safety monitoring algorithms.

The main eITUS results (safety view and code generators) have been supported by the European Horizon 2020 project RobMoSys. This contribution is RobMoSys conformant.

eITUS pursues two major objectives:

  • Model-based design for safe-aware compositional robotic systems
  • Extension of the RobMoSys metamodel to include safety concerns and support contract-based design. As a result, a safety view will be provided. The currently implemented solution is based on a Papyrus/SysML profile. However, it can be easily adjusted to work with Papyrus/RobotML or as a separate ecore-based editor.
  • Tools to generate ROS/OROCOS compliant code to run on real demonstration systems.
  • Creation of run-time monitors for safety assessment. By providing formal safety specifications, monitors can be automatically generated and incorporated in the system to ensure the safety of robots. 
  • Safety Validation of Robotics Systems during early design phases
  • A tool enabling an early safety assessment of robotics systems, starting from the Sabotage simulation-based fault injection framework will be developed. Fault injection simulations will be used for testing the architecture´s robustness and to perform an early dependability/safety validation. The area of Fault Injection is mainly concerned with simulation-based analysis of a system’s safety or its dependability properties. Due to its simulative approach, failure characteristics of system components should be modeled as realistically as possible to obtain reliable results. Failure modeling of different components such as sensor failures will be tackled.
  • Sabotage, Gazebo for robot dynamics and environment simulation, and the integration with the RobMoSys design platform will be performed. Furthermore, possible integration to model-based safety analysis tools such as SOPHIA will be further investigated.

The eITUS building blocks integrate existing technologies from RobMoSys, P-RC2 (Platform for Robot Controller Construction) and AMASS (Architecture-driven, Multi-concern and Seamless Assurance and Certification of Cyber-Physical Systems) projects. RobMoSys will provide the core technologies for modeling robotics systems using the different metamodels underlying the RobMoSys views. P-RC2 will provide a framework for the functional design of the robot controller with component development and system configuration views. It will additionally provide tools for code generation from these views. AMASS will provide the metamodeling backbone for safety validation by providing a safety modeling view for both safety analyses and simulation-based fault injection.

  • Skills/Topics:

    • Simulation-based Fault Injection
    • Model-based design
    • Safety Validation of Robotics Systems
    • safety
    • dependability
    • V&V
    • Safety analysis
    • Fault Tolerance
    • Safety mechanisms
    • System Architecture
    • CPS
CEA List (Coach) (France)

eITUS is one of the six Integrated Technical Projects (ITPs) that has been selected from the RobMoSys Horizon 2020 Project first open call for experiments proposals (RobMoSys-1FORC)

Our Role
TECNALIA is the ITP Coordinator and leads the objective O2 (Integrate safety validation tools with RobMoSys tools to validate safety mechanisms of robotic systems at early design phases of the development life cycle).Main role: solution designer of the safety-related tools, adaptation and integration of metamodels, tool developer AND safety validator.TECNALIA’s contributions:TECNALIA will provide the extensions of the RobMoSys metamodel and the corresponding extension of the modelling and code generation tools. TECNALIA will also provide the safety validation framework along with the development of the safety monitor.TECNALIA will contribute by defining a benchmarking plan to evaluate the eITUS solution and by supporting the evaluation phase.TECNALIA will contribute to dissemination activities as well as to coordinate the project.