This content is not included in your SAE MOBILUS subscription, or you are not logged in.
Distributed Development of Large-Scale Model-Based Designs in Compliance with ISO 26262
ISSN: 0148-7191, e-ISSN: 2688-3627
Published April 01, 2014 by SAE International in United States
Annotation ability available
Embedded software in the car is becoming increasingly complex due to the growing number of software-based controller functions and the increasing complexity of the software itself. Model-based development with Simulink combined with TargetLink for automatic code generation helps significantly to improve the quality of the embedded software. The development of large-scale Simulink models in distributed teams is a challenging task, especially when developing safety-critical software that must fulfill requirements stated in the ISO 26262  safety standard. In practice, many questions on how to avoid the pitfalls of distributed model-based development remain open, such as how to define an appropriate model architecture, handle model complexity, and achieve compliance with ISO 26262.
The intent of this paper is threefold. Firstly, we summarize those requirements of ISO 26262 that are relevant for developing complex software in a distributed environment. Secondly, we provide best practices for distributed development of large-scale controllers with MATLAB, Simulink, and TargetLink in compliance with ISO 26262. We address topics such as functional partitioning of complex units, defining and using interfaces consistently, avoiding long processing times during code generation, as well as aspects of testing and software integration. Finally, we demonstrate how to apply model metrics to deal with Simulink model complexity and show how complexity can be improved.
CitationStuermer, I., Eisemann, U., and Salecker, E., "Distributed Development of Large-Scale Model-Based Designs in Compliance with ISO 26262," SAE Technical Paper 2014-01-0313, 2014, https://doi.org/10.4271/2014-01-0313.
- ISO26262 Road vehicles - Functional safety - Part 6: Product development at the software level ISO26262-6:2011(E) Nov. 2011
- The MathWorks product information http://www.mathworks.com/products 2013
- dSPACE, TargetLink - Production Code Generator http://www.dspace.com 2013
- Mathworks Automotive Advisory Board (MAAB) “Control Algorithm Modeling Guidelines Using MATLAB®, Simulink®, and Stateflow®.” V2.0 The Mathworks, Inc. 2007
- MISRA AC SLSF Modelling design and style guidelines for the application of Simulink and Stateflow MIRA Ltd. May 2009
- MISRA AC TL Modelling style guidelines for the application of TargetLink in the context of automatic code generation MIRA Ltd. Nov 2007
- MES Functional Safety Guidelines Model Engineering Solutions GmbH Oct 2013
- Model Engineering Solutions GmbH Model Examiner V1.7 http://www.model-engineers.com/de/model-examiner.html 2013
- Fang , X. and Wild , J. Large Scale Embedded Control Software Architecture with Model Based Design SAE Technical Paper 2012-01-2034 2012 10.4271/2012-01-2034
- TargetLink. Driving the Future with Autocode Special Edition of dSPACE Magazine 2009
- Model Engineering Solutions GmbH M-XRAY, V1.55 http://www.model-engineers.com/en/m-xray.html 2013
- Stürmer , I. , Pohlheim , H. , Rogier , T. Calculation and Visualization of Model Complexity in Model-based Design of Safety-related Software Keller , B. et. al. Automotive - Safety & Security Shaker 69 82 2010
- Stürmer , I. , Stamatov , S. , and Eisemann , U. Automated Checking of MISRA TargetLink and AUTOSAR Guidelines SAE Int. J. Passeng. Cars - Electron. Electr. Syst. 2 1 68 76 2009 10.4271/2009-01-0267