automotive safety integrity level - flandersmake.be · automotive safety integrity level public...

Automotive Safety Integrity LevelPublic Results

Project objectives� To support our partners in their safety-related system development, we create a development methodology based on leading international functional safety standards which can be applied regardless of the type of vehicle or machine: Flanders’ ASIL Methodology (=FLAME)

� Compliancy to the relevant functional safety standards

� Overview of processes and system safety architecture requirements

� Usage of AUTOSAR in safety-related software development

� Competence to evaluate system architectures against required safety integrity

� Close cooperation with FMTC for system safety architectures.

� The specific and measurable goal of this project is to provide each of the Flanders’ DRIVE partners with the capability to execute projects in appliance to safety integrity requirements (SIL).

Confidential - © 2011 Flanders’ DRIVE all rights reserved

Why this project?Motivation statements from the Flemish vehicle industry when starting up the project

� “We are confronted with a lot of standards due to the different markets. Every market has its own standard for safety, EMC, environmental conditions (temperature cycle, vibrations, shocks, …), …. Safety related standards are a part of that. We get lost in that huge amount of requirements, and we have to re-do this exercise several times, so a generic approach is really needed.”

� “If we do not invest in building up this knowledge, we will lose crucial business opportunities to extend our growth or even to maintain our current position as preferred supplier“

� “If the partners in this project don’t join their knowledge and expertise and don’t go together the whole way in this project, none of them will reach their goal within 2 years by themselves. By then, foreign competitor companies will have taken a head start.”


Safety standards landscape


Process improvement modelsCMMI + SAFE v1.2ISO 15504 (SPICE)

Quality standardsISO 9001:2008ISO TR 16949

Design instructions

Systemsengineering

INCOSE

AUTOSAR4.0

IEC 62061

Functional safety standardsGeneric

IEC 61508

Road vehiclesISO DIS 26262

AgricultureISO FDIS 25119

MachineryIEC 62061ISO 13849 Earth moving machinery

ISO 15998Nuclear

Avionics

ProcessMedical

Railway

Furnaces


Earth moving machineryISO 15998 Machine construction

ISO 13849 / IEC 62061

AgricultureISO DIS 25119

Functional SafetyIEC 61508

Road vehiclesISO DIS 26262

Off-HighwayISO 13849 / IEC 62061

Functional safetystandards in scopeof the project

(IST)

Systemarchitecture

Process Tools /Technologies

Systemarchitecture

Process Tools /Technologies


(SOLL)

Systemarchitecture

Process

Tools /Technologies

Systemarchitecture

Sy

PPPPPPPPrPPPPPPPPPP ocesss

Tools /Technologies

WP6Validationof projectobjectives

GAP

Project workpackages

Project partners


First step: survey and common best practices from relevant safety standards


� Creation of a baseline of relevant safety standards

� Creation of a mapping table of safety requiremants according to: � Safety standard� Development lifecycle phase� SIL level� Process vs. system architecture

� Creation of guidelines for evaluating system architectures

� Creation of guidelines for the relation bewteen the OEM and Tiers

� Definition of key documents for benchmarking companies

Process vs. System architecture requirements


The “process requirements” are dealing with the development process itself and should mainly lead to prevent systematic failures introduced by the development process.

The “system architecture requirements” will directly influence the design of the safety-related system in order to achieve the claimed hardwaresafety integrity.

Second step: inventory of the situation within the consortium and the industry

� Closing the gap between the SIL level envisioned and the processes currently in use.

� Inventory of the processes, practices and tools in use within the project consortium

� Reuse of current best practices will allow for a smooth transition of the Flanders’ ASIL Methodology in the companies.


Current situation (1/2) Sample from the Flemish vehicle industry


Current situation (2/2) Sample from the Flemish vehicle industry



Details for process area ‘Safety requirements’

Third step: creation of the FLAME methodology

For each phase on the V-model:� Process flow with visibility on requirements per safety standard� Split between process requirements and requirements affecting the system architecture� View on functional safety related work products and roles & responsibilities

Derived from ‘Functional Safety Standards’

IEC 61508ISO CD 26262

IEC 62061ISO 13849

ISO DIS 25119ISO 15998

And cross-checked against ‘Process frameworks’

CMMIINCOSE

Automotive SPICE

AUTOSAR

Derived from ‘Functional Safety Standards’

IEC 61508ISO CD 26262

IEC 62061ISO 13849

ISO DIS 25119ISO 15998

And cross-checked against ‘Process frameworks’

CMMIINCOSE

Automotive SPICE

AUTOSAR

5



FLAME PortalHomepage

FLAME PortalRequirements database



FLAME PortalRequirements database, text-based search


FLAME PortalToplevel process overview


FLAME PortalProcess flows (eg. Configuration mgt.)


Traceability between the FLAME process step description and the requirements from the safety standards

FLAME PortalProcess step description (eg. Disposal process)


FLAME PortalOverview of work products


FLAME PortalOverview of roles and responsibilities

For more information, please contact

Bert DextersProject leader Automotive Safety Integrity Level

tel. +32 11 790 [email protected]

www.flandersdrive.be


automotive safety integrity level - flandersmake.be · automotive safety integrity level public...

Documents