iso 26262
play

ISO 26262 Functional Safety Management in the Autonomous Car - PowerPoint PPT Presentation

Jan 15, 2023 •270 likes •647 views

ISO 26262 Functional Safety Management in the Autonomous Car industry and the overview of the required safety lifecycle TV SD America PSES San Diego Chapter Meeting Sep. 12, 2017 TV SD AG Slide 1 Functional Safety Expert: Peter

  1. ISO 26262 Functional Safety Management in the Autonomous Car industry and the overview of the required safety lifecycle TÜV SÜD America PSES San Diego Chapter Meeting Sep. 12, 2017 TÜV SÜD AG Slide 1

  2. Functional Safety Expert: Peter Spence Peter Spence “Functional Safety Expert” consultant with TÜV SÜD America since July 2014 Background:  9 years Weapon Eng. Office Nuclear Safety, Royal Navy  6 years Qualcomm/G* Inc, A-GPS, Software Processes, Tools +Config, Python, Perl.  5 years Exxon-Mobil, PLC/ Logic Controls Software, Safety shutdown systems 2 years Samsung Electronics,  PLC/Instrumentation Logic controls/Safety shutdown systems, risk assessment/analysis  5 years Applied Materials, Semi design 300mm Projects  International standardization (ISO 26262, ISO 13849 & IEC 62061, IEC 61800-5-2, IEC 61508, System Test and logic design, IEC 61010). Functional Safety  Bsc from University of London, England

  3. 150 years TÜV SÜD – 150 years of inspiring trust Inspiring trust since 1866 The year 2016 marks the 150th anniversary of TÜV SÜD. Since 1866, the company has been partnering businesses and inspiring people to trust in new technologies. Today, TÜV SÜD has grown into an international service company with global representation in over 800 locations, and with over 50 per cent of its employees working outside Germany. In the decades to come, it will continue to make the world a safer place as a future-oriented company shaping the “next practice” in safety, quality and sustainability.

  4. TÜV SÜD Automotive Functional Safety TÜV SÜD Auto Service GmbH TÜV SÜD Rail GmbH TÜV SÜD Rail GmbH Team Automotive Knowledge Knowledge transfer transfer • National and international • Evaluation of concepts, systems, Head of Functional Safety • Homologation components and processes Evaluation of safety systems for • regarding means of functional safety • Vehicle Emission Testing railway, infrastructure and • Automotive specific safety automation • Analytical Expertise • Trainings regarding functional safety Evaluation of generic safety • systems (µC, SW Tools) • ISO 26262 Audits and Assessments IEC 61508, ISO 25119, EN 50128, • • Electronic Annexes – ISO 26262 … ECE 13 and ECE 79 TÜV SÜD Rail GmbH 25.09.2017 Folie 4 18.01.2017

  5. ISO 26262 Services: CTCT • ISO 26262 Training: • Product Certification Basic – Advanced – Expert • Generic SW Tool • IEC 62443 Training Certification • Functional Safety • Process Certification Certification Program (FSCP) Certification Training Testing Consulting • Assessments • Workshops • Supplier Audits • Development accompanying support • Penetration Tests TÜV SÜD Rail GmbH Folie 5 18.01.2017

  6. Agenda • What is Functional safety? • Principles and Concepts • Principles and Concepts per ISO 26262 • Requirements management and traceability • Tool qualifcation and certification TÜV SÜD Rail GmbH Folie 6 6 18.01.2017

  7. Functional Safety Standard - Overview Medical Process industry International IEC 62304 IEC 61511 Avionics Software for Safety instrumented systems (Generic) medical devices for the process industry sector IEC 61508 ARP 4761 Functional safety of ARP 4754 electrical/electronic/ RTCA/DO 178C programmable electronic Machines Railway RTCA/DO 254 ... safety related systems ISO 13849 EN 50126 IEC 62061 EN 50128 ISO/IEC 15504 Safety of machines EN 50129 SPICE/Automotive SPICE Nuclear Power Gas measure ISO/IEC 12207 Automotive IEC 60880 Software lifecycle process techniques Nuclear power– control technology, Software aspects EN 50271 ISO 26262 EN 50402 Functional safety IEC 61513 Functional safety of gas “road vehicles” warning systems TÜV SÜD AG Slide 7 TÜV SÜD AG Slide 7

  8. What is functional Safety? Probability always risk not acceptable sporadic Functional Safety seldom improbable risk acceptable impossible Severity nothing low medium high extreme TÜV SÜD AG Slide 8

  9. What is functional safety? • Something has to work in critical situations Functional Safety means: • Not visible for the user • Only partly testable for Hardware (wiring plan) Functional Safety is: • For software it has to root in the developing process Functional Safety Goal: • Risk reduction according to ASIL TÜV SÜD AG Slide 9

  10. Definitions ISO 26262 Safety • Absence of unreasonable risk • Combination of the probability of occurrence of Risk harm and the severity of that harm • Physical injury or damage to the health of Harm persons The goal is to reduce the risk to a socially accepted risk. TÜV SÜD AG Slide 10

  11. Legal situation Due to the mostly mechatronic implementation and due to the increasing technological complexity of software and hardware it is necessary that systematic failures and random hardware errors have to be taken into account in the context of functional safety Topics to be investigated Legal requirements Product for homologation Liability (Process for Certification) Legally binding Recommended Application of, e.g., EU directives Application of IEC, ISO, EN or DIN standards and ECE regulations (Europe), FMVSS (USA) (“State of the art”) TÜV SÜD AG Slide 11

  12. Functional Safety Risks caused by malfunctions in a vehicle Unintended Potential Failures acceleration High Voltage Unintended deceleration Non Unintended Functional Functional loss of Fire Failures Failures acceleration Unintended loss of deceleration Risk reduction measures Unintended Explosion vehicle movement • Functional measures • Design measures, e.g., isolation • Monitoring functions • Organizational measures, e.g., (safety functions, e.g., pinch protection) operation procedures • Reliability of target function • Driver instruction TÜV SÜD AG Slide 12

  13. What is Functional Safety? • What does it mean for a product, or subsystem, or component? – Example : Motor drives for electrical vehicles: source: siemens.com - Developed and certified to IEC 61800-5-1 or UL 508C: - You can touch it - It doesn’t start a fire - No dangerous emissions or emanations - => a safe product in terms of risks for fire, shock, and injury. TÜV SÜD Rail GmbH Folie 13 13 18.01.2017

  14. What is Functional Safety ? • Example : Motor drive in powertrain of hybrid electrical vehicle source: wikipedia.com - Still ”safe”? - Unintended acceleration! - Safety beyond the single product: SYSTEM SAFETY! - Depends on correctness of product’s functions , implemented in electronics and software: FUNCTIONAL SAFETY TÜV SÜD Rail GmbH Folie 14 14 18.01.2017

  15. Today: Software-intensive automotive control systems Event Data Active Night Driver Recorder Cabin Noise Cabin Vision Alertness Entertainment Suppression Environment Monitoring System Controls Wiper Control Voice/Data Interior Seat Position Communications Lighting Battery Control Engine Management Accident DSRC Control Recorder Lane Correction Airbag Instrument Control Electronic Toll Cluster Collection Adaptive Front Lighting Digital Turn Signals Navigation System Adaptive Cruise Control Security System Active Exhaust Automatic Noise Suppression Breaking Electric Power Active Suspension Steering Hill-Hold Electronic Transmission Control OBDII Antilock Electronic Throttle Stability Control Idle Braking Regenerative Control Control Stop/Start Active Remote Braking Vibration Keyless Parking Electronic Lane Entry System Control Tire Active Valve Departure Pressure Cylinder Yaw Timing Warning Monitoring Blindspot De-activation Control Detection TÜV SÜD Rail GmbH Folie 15 15 18.01.2017

  16. Immediate future: Connected car, autonomous driving • Functional safety challenges: • Advanced sensing and intelligence • Driver behaviour and responsibility • System of systems, socio-technical system • Cybersecurity as a safety risk 16

  17. Scope of ISO 26262 : 2018, 2nd Ed. ISO 26262 is intended to be applied to safety-related systems that include one or more electrical and/or electronic (E/E) systems and that are installed in series production road vehicles , excluding mopeds. ISO 26262 does not address unique E/E systems in special vehicles such as E/E systems designed for drivers with disabilities. TÜV SÜD AG Slide 17

  18. Scope of ISO 26262 : 2011 / 2018 ISO 26262 addresses possible hazards caused by malfunctioning behavior of safety-related E/E systems, including interaction of these systems. Note: It does not address hazards related to electric shock, fire, smoke, heat, radiation, toxicity, flammability, reactivity, corrosion, release of energy and similar hazards, unless directly caused by malfunctioning behavior of safety- related E/E systems. ISO 26262 does not address the nominal performance of E/E systems, even if functional performance standards exist for these systems (e.g. active and passive safety systems, brake systems, adaptive cruise control). TÜV SÜD AG Slide 18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

gholzmann@acm.org ISO 26262: highly recommended EN 50128: highly recommended IEC 61508: highly

gholzmann@acm.org ISO 26262: highly recommended EN 50128: highly recommended IEC 61508: highly

Gerard Holzmann Nimble Research gholzmann@acm.org ISO 26262: highly recommended EN 50128: highly recommended IEC 61508: highly recommended DO 178C: required as opposed to testing only expected behavior, or randomly poking the code with

635 views • 18 slides
On Bringing Object-Oriented Software Metrics into the Model-Based World Verifying ISO 26262

On Bringing Object-Oriented Software Metrics into the Model-Based World Verifying ISO 26262

On Bringing Object-Oriented Software Metrics into the Model-Based World Verifying ISO 26262 Compliance in Simulink Lukas Murer, Torben Stolte Tanja Hebecker, Michael Lipaczewski Uwe Mhrstdt, Frank Ortmeier Motivation Functional safety

589 views • 21 slides
Properties of Chaos Nathan Aschbacher @gen_nja _ we suspect most users are not

Properties of Chaos Nathan Aschbacher @gen_nja _ we suspect most users are not

Properties of Chaos Nathan Aschbacher @gen_nja _ we suspect most users are not working on these kinds of safety-critical systems. -- Chaos Engineering the Book Must Be at Least this 26262 to Ride Functional Safety in

508 views • 26 slides
SAFETY SAFETY Christian Kaestner With slides from Eunsuk Kang Required Reading Salay, Rick,

SAFETY SAFETY Christian Kaestner With slides from Eunsuk Kang Required Reading Salay, Rick,

SAFETY SAFETY Christian Kaestner With slides from Eunsuk Kang Required Reading Salay, Rick, Rodrigo Queiroz, and Krzysztof Czarnecki. " An analysis of ISO 26262: Using machine learning safely in automotive soware ." arXiv

1.62k views • 105 slides
St Standards for r So Soft ftware Tes esting of f Automotive Systems Stuart Reid PhD, FBCS

St Standards for r So Soft ftware Tes esting of f Automotive Systems Stuart Reid PhD, FBCS

Sa Safer Dri riving St Standards for r So Soft ftware Tes esting of f Automotive Systems Stuart Reid PhD, FBCS STA Consulting Inc. (stuart@sta.co.kr) Scope Automotive Safety Standards ISO 26262 Testing Standards ISO 29119,

597 views • 40 slides
Legislation Namhoon Kim 1 Standards Two international standard applied in industries IEC

Legislation Namhoon Kim 1 Standards Two international standard applied in industries IEC

Standards and Legislation Namhoon Kim 1 Standards Two international standard applied in industries IEC 61508 Functional Safety ISO 26262 Road vehicles -- Functional safety 2 IEC 61508 Title Functional Safety of

571 views • 25 slides
The PHM Societys role as a member of the ANSI-Accredited US TAG to ISO/TC 108/SC 5 Condition

The PHM Societys role as a member of the ANSI-Accredited US TAG to ISO/TC 108/SC 5 Condition

The PHM Societys role as a member of the ANSI-Accredited US TAG to ISO/TC 108/SC 5 Condition monitoring and diagnostics of machine systems Susan B. Blaeser Standards Manager Acoustical Society of America sblaeser@aip.org Plan for this

522 views • 13 slides
ISO 14001 Background and New Requirements Archie Prentice Practically Green Practically Green

ISO 14001 Background and New Requirements Archie Prentice Practically Green Practically Green

ISO 14001 Background and New Requirements Archie Prentice Practically Green Practically Green Ltd Highland based Environmental Sustainability and Low Carbon Consultancy, global reach ISO 9001 (2015), 14001 (2015) and BH OHSAS 18001

393 views • 10 slides
Textile quality management Mr Dale Carroll CSIRO, Textile and Fibre Technology Textile testing

Textile quality management Mr Dale Carroll CSIRO, Textile and Fibre Technology Textile testing

Textile quality management Mr Dale Carroll CSIRO, Textile and Fibre Technology Textile testing Why do you need to test? What does testing involve? Sampling. Selecting the correct test. Selecting the most appropriate test

1.42k views • 42 slides
Energy Imbalance Market Overview for WAPA DSW November 12, 2019 Presenters: Don Fuller,

Energy Imbalance Market Overview for WAPA DSW November 12, 2019 Presenters: Don Fuller,

Energy Imbalance Market Overview for WAPA DSW November 12, 2019 Presenters: Don Fuller, Strategic Alliances Heidi Holmberg Carder, Customer Readiness Jamil Daouk, System Integration ISO PUBLIC - @ 2019 CAISO ISO PUBLIC - @ 2019 CAISO ISO

631 views • 41 slides
2018 American LNG Summit August 7, 2018 Crowley LNG - Leveraging Expertise Across the Company

2018 American LNG Summit August 7, 2018 Crowley LNG - Leveraging Expertise Across the Company

2018 American LNG Summit August 7, 2018 Crowley LNG - Leveraging Expertise Across the Company Liquefied Natural Gas User Two Puerto Rico Liner ConRo Vessels Four LNG Ready Petroleum Tankers Future Terminal and Vessel Strategies Fuel

301 views • 9 slides
Towards development of a toplevel TC/268 maturity model TC268 Working Group 4: Page 1

Towards development of a toplevel TC/268 maturity model TC268 Working Group 4: Page 1

08/03/2018 Towards development of a toplevel TC/268 maturity model TC268 Working Group 4: Page 1 Strategies for smart and sustainable communities Introduction At the Paris meeting of TC/268, the UK suggested that it would be helpful

472 views • 7 slides
Operations update Kylie Sheehan General Manager Operations 8 November 2017 Op Operation ons

Operations update Kylie Sheehan General Manager Operations 8 November 2017 Op Operation ons

Operations update Kylie Sheehan General Manager Operations 8 November 2017 Op Operation ons F Function ons Scheme Endorsement, Development, Maintenance Management Systems Maintenance (including Database, SharePoint, CAB Portals,

417 views • 13 slides
FooD-STA EN ISO/IEC 17025 General requirements for the competence of testing and calibration

FooD-STA EN ISO/IEC 17025 General requirements for the competence of testing and calibration

FooD-STA EN ISO/IEC 17025 General requirements for the competence of testing and calibration laboratories AGENDA Introduction History and development of accreditation General considerations of EN ISO/IEC 17025 Requirements of the

1.06k views • 70 slides
Bienvenue Presentation of the Standards Analysis Smart Secure ICT Luxembourg Mr. Nicolas

Bienvenue Presentation of the Standards Analysis Smart Secure ICT Luxembourg Mr. Nicolas

Bienvenue Presentation of the Standards Analysis Smart Secure ICT Luxembourg Mr. Nicolas Domenjoud Responsable secteur TIC & Normalisation ILNAS/OLN 21 October 2019 CONTENT I - Context and objectives of the Standards Analysis

221 views • 21 slides
I SO Managem ent system standards - An overview - I SO Managem ent system s W hat are they? W

I SO Managem ent system standards - An overview - I SO Managem ent system s W hat are they? W

I SO Managem ent system standards - An overview - I SO Managem ent system s W hat are they? W hy use them ? Complying with ISO management standards: increases confidence in business relationships, broadens opportunities

544 views • 33 slides
OVER ERVIEW IEW OF OF ISO ISO 90 9001 01, , ISO ISO 14 1400 001 1 & & OH OHSA

OVER ERVIEW IEW OF OF ISO ISO 90 9001 01, , ISO ISO 14 1400 001 1 & & OH OHSA

OVER ERVIEW IEW OF OF ISO ISO 90 9001 01, , ISO ISO 14 1400 001 1 & & OH OHSA SAS S 18001 18001 COURSE OBJECTIVES ISO 9001, ISO 14001 & OHSAS 18001 in brief: ISO 9001, ISO 14001 & OHSAS 18001 are among the

177 views • 15 slides
D8.9 Educational Material for University Studies Sustainable Refurbishing of Historic Buildings

D8.9 Educational Material for University Studies Sustainable Refurbishing of Historic Buildings

D8.9 Educational Material for University Studies Sustainable Refurbishing of Historic Buildings and Relevant Building Physical Aspects based on Case Study 5: Secondary School Htting Innsbruck, Austria The research leading to these results

895 views • 72 slides
Presentation Q1(19) Jonas Jarvius, CEO Anders Lundin, CFO STRICTLY PRIVATE AND CONFIDENTIAL

Presentation Q1(19) Jonas Jarvius, CEO Anders Lundin, CFO STRICTLY PRIVATE AND CONFIDENTIAL

Presentation Q1(19) Jonas Jarvius, CEO Anders Lundin, CFO STRICTLY PRIVATE AND CONFIDENTIAL Disclaimer DISCLAIMER THIS PRESENTATION AND ITS CONTENTS ARE CONFIDENTIAL AND ARE NOT FOR RELEASE, PUBLICATION OR DISTRIBUTION, IN WHOLE OR IN PART,

835 views • 12 slides
Docker File System Isolation By Darrin Schmitz David Huff Destiny Velasquez 1 LA-UR-15-25911

Docker File System Isolation By Darrin Schmitz David Huff Destiny Velasquez 1 LA-UR-15-25911

Docker File System Isolation By Darrin Schmitz David Huff Destiny Velasquez 1 LA-UR-15-25911 Specifications HP ProLiant DL380p Gen8 servers Head node has 32 cores and 32 GB RAM 10 child nodes have 24 cores and 24 GB RAM

523 views • 24 slides
One Person, One Lock Control of Hazardous Energy H&S Program Standard 7-45 Course Code

One Person, One Lock Control of Hazardous Energy H&S Program Standard 7-45 Course Code

One Person, One Lock Control of Hazardous Energy H&S Program Standard 7-45 Course Code 600009 TRACCESS Module - 2017 Control of Hazardous Energy Training BU Specific Group BU Competency Lockout Increasing Competency Group

1.07k views • 37 slides
ARMlock: Hardware-based Fault Isolation for ARM Yajin Zhou , Xiaoguang Wang, Yue Chen, and Zhi

ARMlock: Hardware-based Fault Isolation for ARM Yajin Zhou , Xiaoguang Wang, Yue Chen, and Zhi

ARMlock: Hardware-based Fault Isolation for ARM Yajin Zhou , Xiaoguang Wang, Yue Chen, and Zhi Wang North Carolina State University Xian Jiaotong University Florida State University Software is Complicated and Vulnerable Number of CVEs 17

912 views • 28 slides
PRESENTATION FOR TESTING DIRECTIONS The World Health Organization declared COVID-19 a pandemic on

PRESENTATION FOR TESTING DIRECTIONS The World Health Organization declared COVID-19 a pandemic on

EMERGENCY MANAGEMENT ACT 2005 (WA) ( (a) who enters Westero Australia by disembarking from an afgected aircraft onto land anywhere in Western Australia (including any person who entered Westero Australia in this manner on or afuer 29 June 2020);

268 views • 3 slides
Massive Multitenancy with V8 Isolates Kenton Varda - Tech Lead, Cloudflare Workers The Challenge

Massive Multitenancy with V8 Isolates Kenton Varda - Tech Lead, Cloudflare Workers The Challenge

Massive Multitenancy with V8 Isolates Kenton Varda - Tech Lead, Cloudflare Workers The Challenge 165 Locations and growing Scalability can mean... Traffic (requests) Easy: More locations = more capacity. Tenants (apps) Hard: Every tenant in

812 views • 41 slides

More recommend