This content is not included in your SAE MOBILUS subscription, or you are not logged in.
A Method towards the Systematic Architecting of Functionally Safe Automated Driving- Leveraging Diagnostic Specifications for FSC design
Technical Paper
2017-01-0056
ISSN: 0148-7191, e-ISSN: 2688-3627
Annotation ability available
Sector:
Language:
English
Abstract
With the advent of ISO 26262 there is an increased emphasis on top-down design in the automotive industry. While the standard delivers a best practice framework and a reference safety lifecycle, it lacks detailed requirements for its various constituent phases. The lack of guidance becomes especially evident for the reuse of legacy components and subsystems, the most common scenario in the cost-sensitive automotive domain, leaving vehicle architects and safety engineers to rely on experience without methodological support for their decisions. This poses particular challenges in the industry which is currently undergoing many significant changes due to new features like connectivity, servitization, electrification and automation. In this paper we focus on automated driving where multiple subsystems, both new and legacy, need to coordinate to realize a safety-critical function.
This paper introduces a method to support consistent design of a work product required by ISO 26262, the Functional Safety Concept (FSC). The method arises from and addresses a need within the industry for architectural analysis, rationale management and reuse of legacy subsystems. The method makes use of an existing work product, the diagnostic specifications of a subsystem, to assist in performing a systematic assessment of the influence a human driver, in the design of the subsystem. The output of the method is a report with an abstraction level suitable for a vehicle architect, used as a basis for decisions related to the FSC such as generating a Preliminary Architecture (PA) and building up argumentation for verification of the FSC.
The proposed method is tested in a safety-critical braking subsystem at one of the largest heavy vehicle manufacturers in Sweden, Scania C.V. AB. The results demonstrate the benefits of the method including (i) reuse of pre-existing work products, (ii) gathering requirements for automated driving functions while designing the PA and FSC, (iii) the parallelization of work across the organization on the basis of expertise, and (iv) the applicability of the method across all types of subsystems.
Authors
Citation
Mohan, N., Törngren, M., and Behere, S., "A Method towards the Systematic Architecting of Functionally Safe Automated Driving- Leveraging Diagnostic Specifications for FSC design," SAE Technical Paper 2017-01-0056, 2017, https://doi.org/10.4271/2017-01-0056.Also In
References
- International Organization for Standardization, “26262: Road vehicles-Functional safety,” International Standard ISO, vol. 26262, 2011.
- Larses, O. “Architecting and modeling automotive embedded systems,” Doctoral Thesis, KTH Royal Institute of Technology, 2005.
- SAE International Surface Vehicle Recommended Practice, "Taxonomy and Definitions for Terms Related to Driving Automation Systems for On-Road Motor Vehicles," SAE Standard J3016, Rev. Sep. 2016.
- International Organization for Standardization, “ Systems and Software Engineering--Architecture Description,” 2011.
- Estefan, J. “MBSE methodology survey,” Insight, vol. 12
- McCord, K. Automotive Diagnostic Systems, CarTech Inc, ISBN: 9781934709061, 2011.
- Ziegler, J. Bender, P. Schreiber, M. Lategahn, H. ., “Making bertha drive, ”an autonomous journey on a historic route",” Intelligent Transportation Systems Magazine, IEEE, vol. 6
- Hoeger, R. Amditis, A. Kunert, M. Hoess A. ., “Highly automated vehicles for intelligent transport: HAVEit approach,” in ITS World Congress, NY, USA, 2008.
- Montemerlo, M. Becker, J. Bhat, S. Dahlkamp H. ., “Junior: The Stanford entry in the urban challenge,” Journal of field Robotics, vol. 25, pp. 569–597, 2008.
- Chu, K., Kim, J., and Sunwoo, M. "Distributed System Architecture of Autonomous Vehicles and Real-Time Path Planning based on the Curvilinear Coordinate System," SAE Technical Paper 2012-01-0740, 2012, doi:10.4271/2012-01-0740.
- Gordon, T. Howell and M. Brandao, F. “Integrated control methodologies for road vehicles,” Vehicle System Dynamics, vol. 40, pp. 157–190, 2003.
- Behere, S. “Reference Architectures for Highly Automated Driving,” Doctoral Thesis, KTH Royal Institute of Technology, 2016.
- Albus, J. S. McCain and H. G. Lumia, R. NASA/NBS standard reference model for telerobot control system architecture ,National Institute of Standards and Technology, 1989
- Madhavan, R. Intelligent Vehicle Systems: A 4D/RCS Approach, New York, NY, USA, 2007.
- Shladover, S. “An Automated Highway System as the Platform for Defining Fault-Tolerant Automotive Architectures and Design Methods,” in NSF CPS Workshop, 2011.
- Mohan N. , “Challenges in architecting fully automated driving; with an emphasis on heavy commercial vehicles”, in Workshop on Automotive Systems/Software Architectures (WASA), 2016.
- Rupanov et al., “Early safety evaluation of design decisions in e/e architecture according to ISO 26262,” in 3rd Int. ACM SIGSOFT Symp. on Architecting Critical Systems, 2012.
- Sierla, S. Tumer, I. Papakonstantinou, N. Koskinen K. ., “Early integration of safety to the mechatronic system design process by the functional failure identification and propagation framework,” Mechatronics, vol. 22, pp. 137–151, 2012.
- SAE ARP4754AGuidelines for development of civil aircraftand systems,2010.
- ARCHER project, "ATRIUM: ArchiTectural Refinement using Uncertainty Management," KTH, 2016. [Online]. Available: www.kth.se/itm/atrium. [Accessed 2016].
- Taylor et al., “System safety and ISO 26262 compliance for automotive lithium-ion batteries,” in 2012 IEEE Symp. on Product Compliance Engineering, 2012.
- Westman and J. Nyberg, M. “A reference example on the specification of safety requirements using ISO 26262,” in 32nd Int. Conf. on Computer Safety, Reliability and Security, 2013.
- Baumgart, A., "A Contract-Based Installation Methodology for Safety-Related Automotive Systems," SAE Technical Paper 2013-01-0192, 2013, doi:10.4271/2013-01-0192.
- Krithivasan, G., Taylor, W., and Nelson, J., "Developing Functional Safety Requirements using Process Model Variables," SAE Technical Paper 2015-01-0275, 2015, doi:10.4271/2015-01-0275.
- Nilsson, J., Bergenhem, C., Jacobson, J., Johansson, R. et al., "Functional Safety for Cooperative Systems," SAE Technical Paper 2013-01-0197, 2013, doi:10.4271/2013-01-0197.
- Rechtin and E. Maier, M. W. “The art of systems architecting”,CRC Press, ISBN-10: 1420079131, 2010.
- Rieskamp and J. Hoffrage, U. “When do people use simple heuristics, and how can we tell?”,New York: Oxford University Press, 1999.
- Sexton, D., Priore, A., and Botham, J., "Effective Functional Safety Concept Generation in the Context of ISO 26262," SAE Int. J. Passeng. Cars – Electron. Electr. Syst. 7(1):95–102, 2014, doi:10.4271/2014-01-0207.