ISO 26262 ˘ˇ - CAD&Graphics
Transcript of ISO 26262 ˘ˇ - CAD&Graphics
ISO 26262 대응을 위한소프트웨어 형상관리 및 이슈관리 방안
박민영책임현대모비스
Contents1. 현대모비스 소개
3. Integrity 모듈/기능 구분 및 서버 구성도2. 현대모비스 기술정보 관리도구 체계
6. 이슈관리시스템5. 프로세스 및 프로젝트 구조4. ISO 26262 기반 Integrity Qualification
7. 형상관리시스템
� 회사 개요 � 2012년 재무정보
창립일 1977-07-01
자본금 4,911억원(2012년 12월말 기준)
직원수
1. 현대모비스 소개
직원수(전체/R&D)
7,085명 / 1,663명
사업내용
1) 모듈사업: 제동/안전/조향/현가/전장/의장/Chassis/ Cockpit /FEM
2) A/S부품 판매사업: 현대차/기아차 보수용 부품 판매
3) 금융업: 생명보험산업(현대라이프생명보험)
� 2012년 사업부문별 실적
1. 현대모비스소개(계속)� 해외 R&D Centers� 국내 R&D Centers
� Frankfurter R&D Center� Shanghai R&D Center� India R&D Center (@Hyderabad)� Detroit R&D Center
� 의왕 R&D Center� 용인 R&D Center
1. 현대모비스소개(계속)� 3 Major Modules & Core Components
Front End ModuleFront End ModuleCockpit ModuleCockpit ModuleChassis ModuleChassis Module
Brake SystemBrake System MDPSMDPS
Green Car PartsGreen Car Parts
AirbagAirbag LampLamp
1. 현대모비스소개(계속)� Electronics and Multimedia
Low Cost Audio Standard Audio Standard AVNMOST AVNAUDIO AVN / Telematics
High End Audio TelematicsDual Display AVNBody / HEV Safety / Sensors
Battery ManagementLow Voltage Converter
Body ControlClimate Control Smart Key Parking Assist Front/Rear Cameras
Airbag ControllerTire PressureMonitoring
Bristol AudioLane Keeping BatterySensor
2. 현대모비스기술정보관리도구체계Presentation only
(Presentation Only)(Presentation Only)
3. Integrity 모듈/기능구분및서버구성도� Integrity 모듈 구분 및 기능 구분
번호 모듈 기준 구분 기능 기준 구분
Document
Requirements and Design Management (with traceability)
(System and SW) Model Management1 Document
Management(System and SW) Model Management
Test Management (Test Suite/Test Case/Test Session/Test Step)
(Activity, Test Session) Issue Management
2 Configuration Management
SW (Change and) Configuration Management
Document Management (with versioning)
3. Integrity 모듈/기능구분및서버구성도(계속)� 현대모비스 서버 구성도 : Production 서버 + DB 서버 (+ Test Server)
� 서버 구성도 참조 : Production Server + Staging Server(s)
4. ISO 26262 기반 Integrity Qualification� Overview of Classification and Qualification
4. ISO 26262 기반 Integrity Qualification(계속)� Identified Risks (by PTC) : 17개
� Risks for Configuration Management : 12개 (RiskI001 ~ RiskI012)� Risks for Requirements and Test Management : 5개 (RiskI013~RiskI017)
� Recommended Risk Mitigations (by PTC) : 22개� Risk Mitigations for Configuration Management : 16개 (RiskM001 ~ Risk016)� Risk Mitigations for Requirements and Test Management : 6개 (Risk017~Risk022)
4. ISO 26262 기반 Integrity Qualification(계속)� 검토 필요 Policies (by User)
� Company Level Policies vs. Project-Specific Policies
Policy RecommendedValue Reference Comment
Revision Description Required - -
Deferred operations Changes that include multiple files are submitted in one
� RiskI001, 4 - Inconsistent Configuration, Incomplete Changes� RiskI002, 7 – Unreviewed Changes, Conflicting Changes
Deferred operations mandatory True RiskM001 Changes that include multiple files are submitted in one
coherent transaction.
Change Packages Transactional True RiskM004 All changes in a change package can only be submitted in
one coherent transaction. (rolled back)
Change Package Review Enabled True RiskM003 A submitted change package is reviewed before becoming
integrated in the source-project configuration.
Workflow and State Capabilities
In Review<enabled> - Allows SI change packages under review to exist in this
state
4. ISO 26262 기반 Integrity Qualification(계속)� Classification and Qualification
� The Integrity is certified by TUV-SUD and it is fit for purpose for developing safety-related software according to IEC 61508 and ISO 26262.(up to ASIL D and/or SIL3)
� The Integrity is classified at TCL1, and hence does not need re-qualification.
Determination of the TCL
Tool error Detection(TD)
TD1 TD2 TD3
※ Justification of TI: The malfunction of PTC Integrity can lead to wrong selection of the item from the configuration management system.
※ Justification of TD: There is a high degree of confidence that a malfunction as result of this tool can be detected or prevented.
※ TCL : Tool Confidence Level
the TCL TD1 TD2 TD3
Tool Impact(TI)
TI1 TCL1 TCL1 TCL1TI2 TCL1 TCL2 TCL3
5. 프로세스및프로젝트구조� Process Model (Reference)ISO 26262 Road Vehicles – Functional Safety Automotive SPICE PAM v2p5
5. 프로세스및프로젝트구조(계속)� Process Model (Example)
5. 프로세스및프로젝트구조(계속)� Process Asset Library 구조 (Su-bproject vs. Folder)
Project (in Server) Sandbox( (in Client)
5. 프로세스및프로젝트구조(계속)� 프로젝트 구조Module Name Project Name Category
DocumentManagement
<SystemName>_System -
<SystemName>_Software Optional
<SystemName>_SWLogic Optional
ConfigurationManagement
<SystemName>_DevelopmentWP -
<SystemName>_Software -
<SystemName>_SWLogic Optional
※ Global CM : 회사 레벨의 형상관리자
5. 프로세스및프로젝트구조(계속)� 프로젝트 구조(Example)Module Name Image
DocumentManagement
ConfigurationManagement
6. 이슈관리시스템� Master Issue List
Presentation only
(Presentation Only)(Presentation Only)
6. 이슈관리시스템� Issue States & Workflow
StateStateStateState 행위자행위자행위자행위자 DescriptionDescriptionDescriptionDescription
NewPL
또는PE
Issue 등록Issue 미접수 상태
Submitted PLsIssue 접수In_Analysis CCB 미수행
In_Analysis CCB 수행In_Analysis PLs
In_Analysis CCB 수행Issue 분석 및 구분
In_Progress PLsIssue 구분에 따른 문서변경 착수Activities 생성
In_Verification PLsIssue 구분에 따른 문서변경 완료문서변경에 따른 Verification 착수Test Session 생성
Cancelled PLsIssue 진행 불가 판정(Duplicated, Rejected, Obsolete, …)
Closed PLsVerification 완료Issue 종결
※ PL : Project Leader, PE : Project EngineerCR : Change Request, PR : Problem
6. 이슈관리시스템(계속)� Issue States & Workflow(Example)
6. 이슈관리시스템(계속)� Issue States & Workflow(Example)Activity,
Test Session Description
Document Activity
Requirements, Design, Model, Test Suite (with Traceability)
Configuration Activity for SW
CodeSW Source Code
Configuration Activity for Document
Development Work Products(with Versioning)
Test Session Test Suite
6. 이슈관리시스템(계속)� Activity and Test Session(Example)
7. 형상관리시스템� 형상 항목 – Document Management Module
Presentation only
(Presentation Only)(Presentation Only)
7. 형상관리시스템(계속)� 형상 항목 – Configuration Management Module
Presentation only
(Presentation Only)(Presentation Only)
7. 형상관리시스템(계속)� 형상 항목
7. 형상관리시스템(계속)� Attributes
WorkProduct
AttributesHazard SG ASIL Safe State FDT / FRT FTTI Classification Priority Feasibility Verification Criteria LastResultSG ○ ○FSC ○ ○
SyRS ○ ○SyDS ○ ○
(HSIS) ○ ○SRS ○ ○
SADS ○ ○SUDS ○ ○SUTS ○ XSITS ○ XSTS ○ X
산출물별 Attributes Configuration: Customization Project
7. 형상관리시스템(계속)� AttributesWork Product Image
SG
FSC
7. 형상관리시스템(계속)� Traceability 설정 (참조 : Automotive SPICE BPs)Work Product Image
SyRS※ 참조 : Automotive SPICE BPs
7. 형상관리시스템(계속)� Traceability 설정 (PTC Terminology)
validation
validation
validation
input requirement Design spec model source test
Decompose satisfy
modeled
Source trace
modeled Source trace
Source trace
Source trace
※※※※첨부1 : ISO 26262 프로젝트를수행하며간과하기쉬운것들Presentation only
(Presentation Only)(Presentation Only)
※※※※첨부2 : 인증서예제Presentation only
(Presentation Only)(Presentation Only)
감사합니다.감사합니다.