Browse Topic: Safety critical systems
This paper presents the first systematic examination of Large Language Model (LLM) capabilities for automating the development of Failure Mode and Effects Analysis (FMEA) utilizing architectural diagrams as input. Although prior research has examined LLMs for FMEA tasks, our methodology incorporates innovative aspects, such as the direct analysis of architectural diagrams for component extraction, prediction of failure modes, causes, estimation of risk and a human-in-the-loop (Hu-IL) validation framework. We examine the capability of general-purpose LLMs to accurately automate the creation of FMEA by formulating a methodology that extracts components and signals from architectural diagrams, conducts automated component classification, and produces a comprehensive FMEA form sheet encompassing Severity, Occurrence, and Detectability (S/O/D) scoring. Our methodology is grounded in structured prompt engineering theory, utilizing scope bounding techniques to reduce hallucination while
Patching vulnerabilities in safety-critical domains such as automotive and aerospace is costly and complex. A small code modification can trigger a complete rebuild, producing a binary with widespread changes. This inflates patch size, complicates regression testing, and makes over-the-air (OTA) updates inefficient, as traditional binary patches often replace large portions of the executable. We present a binary rewriting–based experiment that shows the feasibility of a patch that updates only the affected bytes by computing the impact of a code change at the binary level. This produces minimal, localized patches rather than regenerated executables. The preliminary experiment shows that a single source change, which leads to thousands of modified bytes after recompilation, can be captured with only a few bytes using our method. For automotive and aerospace systems, this technique reduces patch size, conserves bandwidth, and minimizes disruption to certified software, offering a
Autonomous platforms such as self-driving vehicles, advanced driver-assistance systems (ADAS), and intelligent aerial drones demand real-time video perception systems capable of delivering actionable visual information at ultra-low latency. High-resolution vision pipelines are often hindered by delays introduced at multiple stages—sensor acquisition, video encoding, data transmission, decoding, and display—undermining the responsiveness required for safety-critical decision making. This study introduces a holistic system-level optimization framework that systematically reduces end-to-end video latency while maintaining image fidelity and perception accuracy. The proposed approach integrates hardware-accelerated encoding, zero-copy direct memory access (DMA), lightweight UDP-based RTP transport, and GPU-accelerated decoding into a unified pipeline. By minimizing redundant memory copies and software bottlenecks, the system achieves seamless data flow across hardware and software
Military and aerospace applications have become increasingly complex real-time systems. Multi-core SoCs improve performance but create new challenges in maintaining and verifying deterministic behavior. Connected systems require exceptional security to protect code from external cyberattacks. Evolving functional safety and reliability standards that keep raising the bar mean developers need to begin comprehensive testing sooner if they are going to meet tighter design schedules. Finally, certifying these complex systems has become even more difficult. To help OEMs meet these challenges, the RISC-V architecture has been designed with unique capabilities that support reliability and security in the development of safety-critical applications. With its open instruction set architecture, modularity, and extensibility, RISC-V accelerates the design of functionally safe systems while reducing the complexity, cost, and risk associated with certification to standards like DO-178C and ISO 26262
This SAE Aerospace Recommended Practice (ARP) defines lightning strike zones and provides guidelines for locating them on particular aircraft, together with examples. The zone definitions and location guidelines described herein are applicable to Parts 23, 25, 27, and 29 aircraft. The zone location guidelines and examples are representative of in-flight lightning exposures.
Treat foundational AV safety like seatbelts - make it non-proprietary and universal. An open safety stack, shared scenarios, benchmarks, and core validation tools can speed certification, reduce duplicated V&V and build public trust while preserving vendor differentiation. The bottleneck isn't compute - it's verification. Autonomous features are shipping in more vehicles and markets, but the gating factor is no longer raw compute. It's whether developers and regulators can verify systems against requirements and validate them against real-world operating design domains (ODDs) with confidence and repeatability. Today, many safety-critical components, from scenario libraries to pass/fail criteria, live in proprietary silos. That fragmentation slows regression testing, complicates regulator audits across regions, and duplicates effort across the industry. The result is an expensive, bespoke path to certification for every program and geography.
As vehicles are becoming more complex, maintaining the effectiveness of safety critical systems like adaptive cruise control, lane keep assist, electronic breaking and airbag deployment extends far beyond the initial design and manufacturing. In the automotive industry these safety systems must perform reliably over the years under varying environmental conditions. This paper examines the critical role of periodic maintenance in sustaining the long-term safety and functional integrity of these systems throughout the lifecycle. As per the latest data from the Ministry of Road Transport and Highways (MoRTH), in 2022, India reported a total of 4.61 lakh road accidents, resulting in 1.68 lakh fatalities and 4.43 lakh injuries. The number of fatalities could have been reduced by the intervention of periodic services and monitoring the health of safety critical systems. While periodic maintenance has contributed to long term safety of the vehicles, there are a lot of vehicles on the road
The rapid evolution of modern automotive systems—powered by advancements in autonomous driving and connected vehicle technologies— pose fundamental challenges to design and integration. A specific challenge of these highly interconnected, software-driven systems is in ensuring their safety while avoiding spiralling costs and development times. This challenge calls for a more structured and rigorous approach to safety assurance than traditional methods. Traditional safety cases tend to take a linear, justification-focused approach that mainly focuses on positive assertions —compliance to safety —while giving limited attention to potential weaknesses, or gaps in supporting evidence. This practice may lead to criticism that such arguments are “too positive,” portraying an overly biased or optimistic view of system safety without sufficiently acknowledging areas of unresolved risk. As a result, conventional approaches for developing a safety case may overlook complex interactions
Direct current (DC) systems are increasingly used in small power system applications ranging from combined heat and power plants aided with photovoltaic (PV) installations to powertrains of small electric vehicles. A critical safety issue in these systems is the occurrence of series arc faults, which can lead to fires due to high temperatures. This paper presents a model-based method for detecting such faults in medium- and high-voltage DC circuits. Unlike traditional approaches that rely on high-frequency signal analysis, the proposed method uses a physical circuit model and a high-gain observer to estimate deviations from nominal operation. The detection criterion is based on the variance of a disturbance estimate, allowing fast and reliable fault identification. Experimental validation is conducted using a PV system with an arc generator to simulate faults. The results demonstrate the effectiveness of the method in distinguishing fault events from normal operating variations. The
Known as FOSS (for fiber optic sensing system), NASA’s patented, award-winning technology portfolio combines advanced sensors and innovative algorithms into a robust package that accurately and cost-effectively monitors a host of critical parameters in real time. These include position/deformation (displacement, twist, rotation), stiffness (bending, torsion, vibration), operational loads (bending moments, shear loads, torques), strength/stress (pressure/fatigue, breakage prediction), and magnetic fields (cracks or other flaws in safety-critical metal structures) for structural health monitoring applications. In addition to monitoring the structure of a tank, FOSS is capable of sensing the tank’s inventory, including amounts, temperatures, and stratification.
The development of cyber-physical systems necessarily involves the expertise of an interdisciplinary team – not all of whom have deep embedded software knowledge. Graphical software development environments alleviate many of these challenges but in turn create concerns for their appropriateness in a rigorous software initiative. Their tool suites further enable the creation of physics models which can be coupled in the loop with the corresponding software component’s control law in an integrated test environment. Such a methodology addresses many of the challenges that arise in trying to create suitable test cases for physics-based problems. If the test developer ensures that test development in such a methodology observes software engineering’s design-for-change paradigm, the test harness can be reused from a virtualized environment to one using a hardware-in-the-loop simulator and/or production machinery. Concerns over the lack of model-based software engineering’s rigor can be
Advanced motion control technologies are essential to modern aerospace design, supporting a wide range of safety-critical and comfort-driven applications. In aerospace, motion control components such as gas springs, actuators, and dampers are integral to nearly every commercial aircraft, rocket, satellite, and space vehicle. These critical elements support flight safety and transport functions, from the dependable deployment of landing gear and cargo doors to the smooth, ergonomic operation of seating for pilots and passengers.
ABSTRACT Time-Sensitive Networking (TSN) is an emerging technology that has garnered popularity among the US DoD and others for its deterministic properties while using flexible, ubiquitous Ethernet as its core. However, individual TSN devices will support the TSN features of only some of the vast array of amendments and extensions that make up the full IEEE 802 TSN standards. This functional and modular approach offers great flexibility, but it also increases the complexity of network planning, analysis, verification, etc. as well as potentially leading to unexpected emergent behavior that must be addressed before a TSN network can be truly said to be qualified for use with safety-critical systems. Using industry experience gained certifying other deterministic networks to DO-254 and DO-178C Design Assurance Level A (DAL-A) and applying it to the analysis, testing, and validation of a deterministic TSN Ethernet digital backbone offers a roadmap for overcoming these challenges. Such an
This Handbook is intended to accompany or incorporate AS5643, AS5643/1, AS5657, AS5706, and ARD5708. In addition, full understanding of this Handbook also requires knowledge of IEEE-1394-1995, IEEE-1394a, and IEEE-1394b standards. This Handbook contains detailed explanations and architecture analysis on AS5643, bus timing and scheduling considerations, system redundancy design considerations, suggestions on AS5643-based system configurations, cable selection guidance, and lessons learned on failure modes.
Safety Management Systems (SMSs) have been used in many safety-critical industries and are now being developed and deployed in the automated driving system (ADS)-equipped vehicle (AV) sector. Industries with decades of SMS deployment have established frameworks tailored to their specific context. Several frameworks for an AV industry SMS have been proposed or are currently under development. These frameworks borrow heavily from the aviation industry although the AV and aviation industries differ in many significant ways. In this context, there is a need to review the approach to develop an SMS that is tailored to the AV industry, building on generalized lessons learned from other safety-sensitive industries. A harmonized AV-industry SMS framework would establish a single set of SMS practices to address management of broad safety risks in an integrated manner and advance the establishment of a more mature regulatory framework. This paper outlines a proposed SMS framework for the AV
Automotive chassis components are considered as safety critical components and must meet the durability and strength requirements of customer usage. The cases such as the vehicle driving through a pothole or sliding into a curb make the design (mass efficient chassis components) challenging in terms of the physical testing and virtual simulation. Due to the cost and short vehicle development time requirement, it is impractical to conduct physical tests during the early stages of development. Therefore, virtual simulation plays the critical role in the vehicle development process. This paper focuses on virtual co-simulation of vehicle chassis components. Traditional virtual simulation of the chassis components is performed by applying the loads that are recovered from multi-body simulation (MBD) to the Finite Element (FE) models at some of the attachment locations and then apply constraints at other selected attachment locations. In this approach, the chassis components are assessed
Security flaws in automotive software have significant consequences. Modern automotive engineers must assess software not only for performance and reliability but also for safety and security. This paper presents a tool to verify software for safety and security. The tool was originally developed for the Department of Defense (DoD) to detect cybersecurity vulnerabilities in legacy safety-critical software with tight performance constraints and a small memory footprint. We show how the tool and techniques developed for verifying legacy safety-critical software can be applied to automotive and embedded software using real-world case studies. We also discuss how this tool can be extended for software comprehension.
Items per page:
50
1 – 50 of 526