Failsafe Mechanism Design for Autonomous Aerial Refueling using State Tree Structures

Abstract

Autonomous Aerial Refueling (AAR) is vulnerable to various failures and involves cooperation among autonomous receivers, tankers and remote pilots. Dangerous flight maneuvers may be executed when unexpected failures or command conflicts happen. To solve this problem, a failsafe mechanism based on State Tree Structures (STS) is proposed. The failsafe mechanism is a control logic that guides what subsequent actions the autonomous receiver should take, by observing real-time information of internal low-level subsystems such as guidance and drogue&probe and external instructions from tankers and pilots. To generate such a controller using STS, the AAR procedure is decomposed into several modes, and safety issues related with seven low-level subsystems are summarized. Then common functional demands and safety requirements are textually described. On this basis, the AAR plants and specifications are modeled by STS, and a supervisor is synthesized to control the AAR model. To prove its feasibility and correctness, a simulation environment incorporating such a logic supervisor is built and tested. The design procedures presented in this paper can be used in decision-making strategies for similar flight tasks. Supporting materials can be downloaded in Github, [ https://github.com/KevinDong0810/Failsafe-Design-for-AAR-using-STS ] including related software, input documents and output files.