Integrated safety and architecture modeling for automotive embedded systems* (original) (raw)
Related papers
Modelling Support for Design of Safety-Critical Automotive Embedded Systems
2008
This paper describes and demonstrates an approach that promises to bridge the gap between model-based systems engineering and the safety process of automotive embedded systems. The basis for this is the integration of safety analysis techniques, a method for developing and managing Safety Cases, and a systematic approach to model-based engineering – the EAST-ADL2 architecture description language. Three areas are highlighted: (1) System model development on different levels of abstraction. This enables fulfilling many requirements on software development as specified by ISO-CD-26262; (2) Safety Case development in close connection to the system model; (3) Analysis of mal-functional behaviour that may cause hazards, by modelling of errors and error propagation in a (complex and hierarchical) system model.
Architecture Description Languages for Automotive Systems–A Literature Review
2008
An Architecture Description Language (ADL) can be described as a language designed to model a system at an architectural level with respect to its software, hardware, and communication links. Due to the increasing complexity of software systems in areas like embedded control and web-based information systems, modelling with ADLs have gained attention in the research community and in practical software development projects. The specific aim of this technical report is to provide a literature review on ADLs for automotive software systems. This literature review consequently focuses on aspects that are relevant for automotive systems like safety, reliability and modelling of Electronic Control Units (ECU).
Model-Based Safety Engineering of Interdependent Functions in Automotive Vehicles Using EAST-ADL2
Lecture Notes in Computer Science, 2010
For systems where functions are distributed but share support for computation, communication, environment sensing and actuation, it is essential to understand how such functions can affect each other. Preliminary Hazard Analysis (PHA) is the task through which safety requirements are established. This is usually a document-based process where each system function is analyzed alone, making it difficult to reason about the commonalities of related functional concepts and the distribution of safety mechanisms across a systemof-systems. This paper presents a model-based approach to PHA with the EAST-ADL2 language and in accordance with the ISO/DIS 26262 standard. The language explicitly supports the definition and handling of requirements, functions and technical solutions, and their various relations and constraints as a coherent whole with multiple views. We show in particular the engineering needs for a systematic approach to PHA and the related language features for precise modeling of requirements, user functionalities, system operation contexts, and the derived safety mechanisms.
Integrating System Modelling with Safety Activities
Lecture Notes in Computer Science, 2010
Increasing enforcement of safety standards -such as the new ISO 26262 -requires developers of embedded systems to supplement their development processes with safety-related activities, such as hazard analysis or creation of technical safety concepts. Since these activities are often only loosely coupled with core development tasks, their addition reduces efficiency and causes a lack of consistency and traceability. This paper presents an approach to the integration of architectural modelling, modelling of failure nets, allocation safety mechanisms to architectural elements, and finally traceability to requirements and test coverage. The presented methodology gives clear instructions for the comprehensive usage of existing techniques. The process is demonstrated using a real-world example from the automotive sector. In two industrial projects a significant increase of productivity could be achieved, solely using standard tools such as DOORS and IQ-RM. Nevertheless, the paper concludes with some suggestions for further enhancement of the method through formalization, e.g. using SysML, and tool integration.
Filling the gap between automotive systems, safety, and software engineering
e & i Elektrotechnik und Informationstechnik, 2015
Development of embedded automotive systems has become tremendously complex in recent years. The trend of replacing traditional mechanical systems by modern embedded systems, and the launch of automotive multi-core systems enable deployment of more advanced control strategies. However, these applications require different safety concepts with different levels of criticality; and providing consistency of the safety concept during the entire product lifecycle is a tedious task. Additionally, new automotive safety standards, such as ISO 26262, and the de-facto industry standard AUTOSAR require efficient and consistent product development and tool support. The aim of the presented work is to establish a model-driven system and safety-engineering framework to support the seamless description of safety-critical systems, from requirements at the system level to final component implementation.
Advances in Science, Technology and Engineering Systems Journal, 2017
Safety is becoming more and more important with the ever increasing level of safety related E/E Systems built into the cars. Increasing functionality of vehicle systems through electrification of power train, in future even more by autonomous driving, leads to complexity in designing system, software and safety architecture. ISO 26262 aims to reduce the complexity and to approve the traceability of the different safety activities. This paper presents an approach about model-based development of system, software and safety architecture using Electronics Architecture and Software Technology -Architecture Description Language (EAST-ADL), being in line with the relevant standard ISO 26262. In particular, we briefly discuss how the main safety related activities, such as hazard analysis and risk assessment, developing functional and technical safety concepts and performing safety analysis can be performed model-based and how the activities can be related with system and software development. The state-of-art is also provided and compared with the proposed approach.
Architectural Modeling and Analysis for Safety Engineering
Model-Based Safety and Assessment, 2017
Architecture description languages such as AADL allow systems engineers to specify the structure of system architectures and perform several analyses over them, including schedulability, resource analysis, and information flow. In addition, they permit system-level requirements to be specified and analyzed early in the development process of airborne and ground-based systems. These tools can also be used to perform safety analysis based on the system architecture and initial functional decomposition. Using AADL-based system architecture modeling and analysis tools as an exemplar, we extend existing analysis methods to support system safety objectives of ARP4754A and ARP4761. This includes extensions to existing modeling languages to better describe failure conditions, interactions, and mitigations, and improvements to compositional reasoning approaches focused on the specific needs of system safety analysis. We develop example systems based on the Wheel Braking System in SAE AIR6110 to evaluate the effectiveness and practicality of our approach.
Seamless Model-Based Safety Engineering from Requirement to Implementation
2015
Abstract. Development of embedded automotive systems has become tremendously complex in recent years. The trend of replacing traditional mechanical systems with modern embedded systems enables deployment of more advanced control strategies. This provides new benefits for the customer and environment, but at the same time, the higher degree of integration and safety-criticality raise new challenges. In parallel new automotive safety standards, such as ISO 26262, and the introduction of automotive multi-core systems require efficient and consistent prod-uct development. To tackle the issues of mixed-critical multi-core sys-tems development with hard real-time constraints and provide academi-cal methodologies and approaches the MEMCONS project was launched. Aim of this paper is to provide an overview of the scientific research prob-lem, approaches to solve the problem and ways to evaluate the solution found by the project related PhD thesis. 1 Problem Statement
A Bridge from System to Software Development for Safety-Critical Automotive Embedded Systems
2012 38th Euromicro Conference on Software Engineering and Advanced Applications, 2012
In this paper, we present a tool enhancement that allows an effective transition from the system level development phase to the software level development phase of a tool-supported safety engineering workflow aligned with the automotive functional safety standard ISO 26262. The tool enhancement has capabilities for model generation and code generation. Whereas the generation of Simulink models supports the development of application software, the configuration and generation of safety drivers supports the development of the basic software required for initialization, runtime fault detection and error handling. We describe the safety engineering workflow and its supporting tool chain including the tool enhancement. Moreover we demonstrate that the enhancement supports the transition from the system level development phase to the software level development phase using the case study of a hybrid electric vehicle development.
A multi-domain platform of safety process methods and tools for critical embedded systems
The CESAR project 1 aims at elaborating a Reference Technology Platform usable across several application domains (Aeronautics, Automotive, Industrial Automation, Railway and Space) for the cost effective development and validation of safety related embedded systems. Safety and, more generally, dependability are therefore major topics addressed by the project. This paper focuses on the work performed on safety requirements and approaches to be supported by a common Reference Technology Platform. We analyse and compare the industrial practice, applicable standards and state of the art so as to identify which and how safety views should be supported. This is achieved in particular through the incorporation of the necessary safety concepts in the CESAR Meta Model. We then focus on the major axes investigated by the project, formal model-based techniques for requirements engineering and component-based engineering. Incremental realisations and case studies confirm the interest and provide refined requirements for the final version of the platform.