Automotive Safety Integrity Level - flandersmake.be · Automotive Safety Integrity Level Public...
Transcript of Automotive Safety Integrity Level - flandersmake.be · Automotive Safety Integrity Level Public...
Automotive Safety Integrity LevelPublic Results
Project objectives� To support our partners in their safety-related system development, we create a development methodology based on leading international functional safety standards which can be applied regardless of the type of vehicle or machine: Flanders’ ASIL Methodology (=FLAME)
� Compliancy to the relevant functional safety standards
� Overview of processes and system safety architecture requirements
� Usage of AUTOSAR in safety-related software development
� Competence to evaluate system architectures against required safety integrity
� Close cooperation with FMTC for system safety architectures.
� The specific and measurable goal of this project is to provide each of the Flanders’ DRIVE partners with the capability to execute projects in appliance to safety integrity requirements (SIL).
Confidential - © 2011 Flanders’ DRIVE all rights reserved
Why this project?Motivation statements from the Flemish vehicle industry when starting up the project
� “We are confronted with a lot of standards due to the different markets. Every market has its own standard for safety, EMC, environmental conditions (temperature cycle, vibrations, shocks, …), …. Safety related standards are a part of that. We get lost in that huge amount of requirements, and we have to re-do this exercise several times, so a generic approach is really needed.”
� “If we do not invest in building up this knowledge, we will lose crucial business opportunities to extend our growth or even to maintain our current position as preferred supplier“
� “If the partners in this project don’t join their knowledge and expertise and don’t go together the whole way in this project, none of them will reach their goal within 2 years by themselves. By then, foreign competitor companies will have taken a head start.”
Confidential - © 2011 Flanders’ DRIVE all rights reserved
Safety standards landscape
Confidential - © 2011 Flanders’ DRIVE all rights reserved
Process improvement modelsCMMI + SAFE v1.2ISO 15504 (SPICE)
Quality standardsISO 9001:2008ISO TR 16949
Design instructions
Systemsengineering
INCOSE
AUTOSAR4.0
IEC 62061
Functional safety standardsGeneric
IEC 61508
Road vehiclesISO DIS 26262
AgricultureISO FDIS 25119
MachineryIEC 62061ISO 13849 Earth moving machinery
ISO 15998Nuclear
Avionics
ProcessMedical
Railway
Furnaces
Confidential - © 2011 Flanders’ DRIVE all rights reserved
Earth moving machineryISO 15998 Machine construction
ISO 13849 / IEC 62061
AgricultureISO DIS 25119
Functional SafetyIEC 61508
Road vehiclesISO DIS 26262
Off-HighwayISO 13849 / IEC 62061
Functional safetystandards in scopeof the project
(IST)
Systemarchitecture
Process Tools /Technologies
Systemarchitecture
Process Tools /Technologies
Confidential - © 2011 Flanders’ DRIVE all rights reserved
(SOLL)
Systemarchitecture
Process
Tools /Technologies
Systemarchitecture
Sy
PPPPPPPPrPPPPPPPPPP ocesss
Tools /Technologies
WP6Validationof projectobjectives
GAP
Project workpackages
Project partners
Confidential - © 2011 Flanders’ DRIVE all rights reserved
First step: survey and common best practices from relevant safety standards
Confidential - © 2011 Flanders’ DRIVE all rights reserved
� Creation of a baseline of relevant safety standards
� Creation of a mapping table of safety requiremants according to: � Safety standard� Development lifecycle phase� SIL level� Process vs. system architecture
� Creation of guidelines for evaluating system architectures
� Creation of guidelines for the relation bewteen the OEM and Tiers
� Definition of key documents for benchmarking companies
Process vs. System architecture requirements
Confidential - © 2011 Flanders’ DRIVE all rights reserved
The “process requirements” are dealing with the development process itself and should mainly lead to prevent systematic failures introduced by the development process.
The “system architecture requirements” will directly influence the design of the safety-related system in order to achieve the claimed hardwaresafety integrity.
Second step: inventory of the situation within the consortium and the industry
� Closing the gap between the SIL level envisioned and the processes currently in use.
� Inventory of the processes, practices and tools in use within the project consortium
� Reuse of current best practices will allow for a smooth transition of the Flanders’ ASIL Methodology in the companies.
Confidential - © 2011 Flanders’ DRIVE all rights reserved
Current situation (1/2) Sample from the Flemish vehicle industry
Confidential - © 2011 Flanders’ DRIVE all rights reserved
Current situation (2/2) Sample from the Flemish vehicle industry
Confidential - © 2011 Flanders’ DRIVE all rights reserved
Confidential - © 2011 Flanders’ DRIVE all rights reserved
Details for process area ‘Safety requirements’
Third step: creation of the FLAME methodology
For each phase on the V-model:� Process flow with visibility on requirements per safety standard� Split between process requirements and requirements affecting the system architecture� View on functional safety related work products and roles & responsibilities
Derived from ‘Functional Safety Standards’
IEC 61508ISO CD 26262
IEC 62061ISO 13849
ISO DIS 25119ISO 15998
And cross-checked against ‘Process frameworks’
CMMIINCOSE
Automotive SPICE
AUTOSAR
Derived from ‘Functional Safety Standards’
IEC 61508ISO CD 26262
IEC 62061ISO 13849
ISO DIS 25119ISO 15998
And cross-checked against ‘Process frameworks’
CMMIINCOSE
Automotive SPICE
AUTOSAR
5
Confidential - © 2011 Flanders’ DRIVE all rights reserved
Confidential - © 2011 Flanders’ DRIVE all rights reserved
FLAME PortalHomepage
FLAME PortalRequirements database
Confidential - © 2011 Flanders’ DRIVE all rights reserved
Confidential - © 2011 Flanders’ DRIVE all rights reserved
FLAME PortalRequirements database, text-based search
Confidential - © 2011 Flanders’ DRIVE all rights reserved
FLAME PortalToplevel process overview
Confidential - © 2011 Flanders’ DRIVE all rights reserved
FLAME PortalProcess flows (eg. Configuration mgt.)
Confidential - © 2011 Flanders’ DRIVE all rights reserved
Traceability between the FLAME process step description and the requirements from the safety standards
FLAME PortalProcess step description (eg. Disposal process)
Confidential - © 2011 Flanders’ DRIVE all rights reserved
FLAME PortalOverview of work products
Confidential - © 2011 Flanders’ DRIVE all rights reserved
FLAME PortalOverview of roles and responsibilities
For more information, please contact
Bert DextersProject leader Automotive Safety Integrity Level
tel. +32 11 790 [email protected]
www.flandersdrive.be
Confidential - © 2011 Flanders’ DRIVE all rights reserved