Integrity Design for Networked Control Systems with Actuator Failures and Data Packet Dropouts

The integrity design problem of fault tolerant control for networked control system (NCS) with actuator failures and data packet dropouts is investigated.The data packet dropouts in both sensor-controller (S-C) and controller-actuator (C-A) links are described by two switches, which can be modeled as a discrete event system with known rate. After introducing the matrix of actuator failure, the closed-loop NCS is developed, which can be viewed as asynchronous dynamical systems (ADSs). Then, the sufficiency of exponential stability for the NCS is obtained based on the theory of ADSs. The output feedback controllers that can guarantee system stability are also proposed. Finally, two numerical examples are given to demonstrate the validity of our proposed approach.


Introduction
Along with the rapid development of communication networks, a great amount of effort has been made on faulttolerant control (FTC) problems for networked control systems (NCSs) recently.NCSs are distributed systems, which are comprised of controlled plants actuators, sensors, and controllers.The essential feature of NCSs is that the information is exchanged through some form of communication networks (as in [1][2][3][4][5]).The use of a shared network to connect spatially distributed devices results in flexible architectures and generally reduces installation and maintenance costs.Consequently, NCSs have been widely applied to many complex control systems, for example, unmanned aerial vehicles, avionics industries, remote surgery, and rapid transit trains.
However, the insertion of networks also brings some new issues, such as network-induced delay (as in [1,[6][7][8][9][10][11][12]) and data packet dropout (as in [1,[13][14][15]), which make NCSs more vulnerable to faults than conventional systems.As we know, research on FTC strives to make the system stable and retain acceptable performance under the system faults.An important part of FTC is the one specializing in actuator faults, FTC techniques dealing with actuator faults are relevant for practical application and have already been the subject of many publications (as in [16][17][18][19]).Therefore, a suitable architecture for FTC of NCSs must take the dynamical behavior of network into consideration (as in [8-12, 14, 15, 20-23]).
A wide range of research has recently been reported dealing with problems related to the FTC for NCSs with network-induced delay (as in [8][9][10][11]).As compared to the plentiful works on FTC for NCSs with network-induced delay, only a few attention has been paid to the study of FTC for NCSs with data packet dropout (as in [14,15,23]).As we know, packet dropouts can be modeled either as stochastic or deterministic phenomena, such as packet dropouts in both S-C link and C-A link are characterized by Bernoulli process in [14].Finite-state Markovian process is used to model correlated packet dropouts in [23].Deterministic models for data dropouts have also been proposed, specified in terms of time averages as in [1,15], such as packet dropouts in the S-C link modeled by ADSs, discussed in [15].
From the above description, considering data packet dropout in both S-C and C-A links, the problem of FTC for NCSs with actuator failures is still a challenging problem.Thus, this paper is devoted to study FTC for NCSs with actuator failures and packet dropout in both S-C and C-A links.According to the method in [1], data packet dropouts in both S-C and C-A links are described by two independent switches, which can be modeled as a discrete event system with known rate.After introducing the matrix of actuator failures, the model of closed-loop NCSs with actuator failures is addressed.It should be mentioned that the closed-loop NCSs can be viewed as ADSs.Then, based on the theory of ADSs, the sufficiency of exponential stability for such NCSs is derived and the output feedback controllers that can guarantee system stability are presented.Finally, two numerical examples are provided to show the effectiveness of the present approach.
The rest of the paper is organized as follows.Section 2 gives the formulation of the problem, and the NCSs with data packet dropout is modeled as a discrete event system.The integrity design of FTC for the NCSs is addressed in Section 3. The output-feedback controllers are also presented in Section 3. Two numerical examples to testify the effectiveness of the proposed method are shown in Section 4. Section 5 makes the concluding remarks.

Problem Formulation
The LTI discrete-time system is considered as follows: where   ∈ R  ,   ∈ R  , and   ∈ R  denote the state vector, the measurable output vector, and the control input vector, respectively., , and  are known matrices with appropriate dimensions.Networks can be viewed as unreliable data transmission paths, where packet collision and network node failure occasionally occur.When there is a packet collision, instead of repeated retransmission attempts, it might be advantageous to drop the old packet and transmit a new one.Hence, in this study, we focus on the phenomenon of data packet dropout.Figure 1 shows a typical closed loop of NCSs with data packet dropout.Some assumptions in this paper are as follows.
(1) The controller and the actuator are event-driven.
(2) Data are single-packet transmission, and the dropout packet rate is known.From Figure 2, it can been seen that data packet dropouts in the network can be treated as switches that close at a certain rate.When these switches are closed (position  1 ,  3 ), data packets containing   ,   are transmitted successfully, whereas when they are open (position  2 ,  4 ), the outputs of these switches are held at the previous values  −1 ,  −1 , stored in the buff, and the current data packet is missing.Thus, the dynamic model of this network with data packet dropout is given by where   is a four-state time-homogenous Markov chain which takes values in index set Υ = {1, 2, 3, 4}; the rate at which the event   =  occurs is defined by the following: From the above discussion, data packet dropouts in the network can be viewed as two independent switches; that is, we can obtain the network model ( 2) by analyzing the features of these switches.Meanwhile, it is worth noting that the network model (2) can also be a discrete event system, which contains four events as follows.Actually, sensor failures model can be transformed into actuator failures model by changing format of system with faults.So, in this paper, we only discuss actuator failures model.Usually, when a system is under actuator failures, a matrix  = diag{ 1 ,  2 . . .,   } will be introduced into this system between its coefficient matrix and the feedback control matrix to describe actuator failures.We have the th actuator has fault, ∈ (0, 1) , the th actuator has partial fault, (4) where   = 1 denotes that the jth actuator is in the normal situation,   = 0 denotes that the jth actuator is in the full fault situation, and   ∈ (0, 1) denotes that the jth actuator is in partial fault situation.
Define a new augmented vector   = [   ,   −1 ,   −1 ]  ; then the closed-loop NCS model with actuator failures will be where Up till now, the state space expressions for different discrete events of the closed-loop NCS are acquired.

Integrity Design of FTC for the NCS
In this section, the integrity design of FTC for the NCS ( 5) is discussed.As we know, the integrity design is that system can keep asymptotically stable under some sensors failures or actuators failures and is one of the important means for the FTC.Meanwhile, because system (5) can also be viewed as ADSs, which are systems that incorporate continuous and discrete dynamics, the continuous dynamics are governed by differential or difference equations, whereas the discrete dynamics are governed by finite automata that are driven asynchronously by external discrete events with fixed rates [24,25].Then before studying the problem of integrity design, an important lemma about ADSs should be introduced.
Lemma 1 (as in [24]).Given an ADS as follows: Suppose a Lyapunov function  :   →  + and where  1,2 > 0. The ADS (7) is exponentially stable with the decay rate  if there exist the scalars  1 ,  2 , . . .,   > 0, satisfying where   is the number of events to each discrete state,  is the number of events in total, and   (5), then r1 , r2 , r3 , r4 can be described as Proof.Since the switches in Figure 1 are independent, then  1 ,  2 ,  3 ,  4 are also independent events.According to the probability theory, the probabilities of these four independent events can be obtained as follows: Then, Theorem 3 can be proved.
(28) Similar to the above process, ( 14) and ( 16) can be obtained.Then, the following inequalities hold: At last, form Lemma 1 and Theorem 3, the conclusion that the NCS ( 5) is exponentially stable with the decay rate  is made.
Remark 5. From Theorem 4, it can be found that the NCS (5) is exponentially stable.According to the characteristic of trivial solution of system (5), we can get that the exponential stability of NCS ( 5) is equivalent to asymptotic stability, which corresponds with the requirement of integrity design for FTC.

Numerical Examples
In this section, two numerical examples are given to illustrate the performance of the proposed approach.
Example 1.Consider the following linear model of a helicopter (as in [19]): where  = [ ℎ ,  V , , ]  is system state,  = [  ,   ]  is control input,  ℎ is horizontal velocity,  is vertical velocity,  is pitch rate,  is angle of pitch,   is blade control, and the matrices of model ( 30 Assume that the sampling period is  = 0.1 s and the initial state  0 = [250 50 10 8] Suppose the rate of packet dropout is 30% in the S-C link and the rate of packet dropout is 20% in the C-A link; then, we have  1 = 0.7 and  2 = 0.8.
Denote actuator failure matrix  as follows: From Figure 3, it can be seen that the system is unstable when the data packet dropout and actuator faults happen.Then, using the proposed approach in Theorem 4 and taking  1 = 3.1641,  2 = 0.3461, and  3 = 0.6121,  4 = 0.6188, the controllers can be obtained as follows: Besides, from Figure 4, we can see that controllers can guarantee system stability when the data packet dropout and actuator faults happen.Therefore, the simulation result of Example 1 demonstrates the effectiveness of our presented method.
Example 2. Consider the discrete system as follows (as in [13]   When data packet dropouts occur in the communication channels, a controller presented in [13] can stabilize the closed-loop NCS.But, when the closed-loop NCS with actuator failure matrix  = [1 0], the suitable controller and   cannot be found using method in [13].Comparing with method in [13], for given  1 = 0.6,  2 = 0.7,  1 = 1.574,  2 = 0.913,  3 = 0.705, and  4 = 0.72, the suitable output feedback controllers can be found by the proposed approach in this paper: Figure 5 shows the step responses of NCS (5) in events 1 and 3.The case without data packet dropout and actuator failure is displayed in Figure 5(a) as the solid lines, controllers can switch immediately between two different control loops, and the system is exponentially stable.When an actuator fault occurs, one of the trajectories becomes zero as shown in Figure 5(a) by the star parts.Similarly, Figure 5(b) shows that the proposed controllers can guarantee the stability even though both the data packet dropout and actuator failure happen.From a comparison between Figures 5(a) and 5(b), we can see that system performance in event 3 is not as good as that in event 1 because of the data packet dropout.Hence, the simulation results of Example 2 imply that the desired goal is well achieved.

Conclusion
The problem of FTC for NCSs with actuator failures and data packet dropout in both S-C and C-A links is discussed in this paper.These data packet dropouts are described by two independent switches, which can be modeled as a discrete event system with known rate.Introducing the matrix of actuator failures, the model of NCS with actuator failures is addressed as ADSs.Then, based on the theory of ADSs, the sufficiency of exponential stability for such NCS is derived and the output feedback controllers guaranteed system performance are presented.Finally, two numerical examples are exploited to show the effectiveness of the proposed method.

Figure 1 :
Figure 1: Schematic description of NCSs with random data packet dropouts.

Event 1 :
1  3 , no data packets are lost in the whole loop.Event 2:  2  3 , data packets are lost in the S-C link.Event 3:  1  4 , data packets are lost in the C-A link.Event 4:  2  4 , data packets's loss exist in both the S-C and the C-A link.

Figure 3 :
Figure 3: Output of the system with data packet dropout and actuator fault.

Figure 4 :
Figure 4: Output of the closed-loop NCS with data packet dropout and actuator fault.

Figure 5 :
Figure 5: Step responses under different discrete events.