Experimental Physics and
| |||||||||||||||
|
Tong, I think about this a lot when working with our ML models -- and the best I can some up with are guidelines similar to those in any safety-critical design: - Don't let your controller even have the ability to output something that might damage anything I am not a fan of relying on access controls as any sort of primary safeguard, as those are outside the purview of the controller itself. If a controller has a capability to damage something (PPS or MPS), then it feels like that is just a huge risk. Seeing PID loops go wrong in RF really highlights that. Now on the flip side, I love access controls for mitigating possible configuration errors -- and having something pop up if you write the wrong PV by mistake is critical. But where that is controlled and who configures that is an interesting question -- I'd rather a pva/ca proxy running on the same machine as the controller and build the access controls right into it. I'd love to hear other people's thoughts -- this would be a great topic at a workshop. Josh EC On Tue, Aug 29, 2023 at 9:52 AM Zhang, Tong via Tech-talk <tech-talk at aps.anl.gov> wrote:
| ||||||||||||||
ANJ, 29 Aug 2023 |
·
Home
·
News
·
About
·
Base
·
Modules
·
Extensions
·
Distributions
·
Download
·
· Search · EPICS V4 · IRMIS · Talk · Bugs · Documents · Links · Licensing · |