Same in industrial control systems that are used to control machinery where a failure could lead to injury or loss of life (or property). The default is to stop the machine in a state where it is known to be safe, this can lead to some pretty difficult problems if you want to get out of that state to re-start the machinery but the alternative is to continue to move when you really shouldn't be.
Even something as simple as an emergency stop switch and the subsequent re-energizing of the system can be a very hard to solve problem from a control perspective. Especially with Servo systems with incremental rather than absolute encoders.
Even something as simple as an emergency stop switch and the subsequent re-energizing of the system can be a very hard to solve problem from a control perspective. Especially with Servo systems with incremental rather than absolute encoders.