Search Results

Execution of a software safety program is an accepted best practice to help verify that potential software hazards are identified and their associated risks are mitigated. Successful execution of a software safety program involves selecting and applying effective analysis methods and tasks that are appropriate for the specific needs of the development project and that satisfy software safety program requirements. This paper describes the effective application of a set of software safety methods and tasks that satisfy software safety program requirements for many applications. A key element of this approach is a tightly coupled fault tree analysis and failure modes and effects analysis. The approach has been successfully applied to several automotive embedded control systems with positive results.

In this paper, we review existing software safety standards, guidelines, and other software safety documents. Common software safety elements from these documents are identified. We then describe an adaptable software safety process for automotive safety-critical systems based on these common elements. The process specifies high-level requirements and recommended methods for satisfying the requirements. In addition, we describe how the proposed process may be integrated into a proposed system safety process, and how it may be integrated with an existing software development process.

A new generation of software-controlled vehicle systems promises to help enhance vehicle safety, performance and comfort. As these new, often complex systems are added, system safety programs are followed to help eliminate potential hazards. An important part of planning for a safety program is to understand applicable standards. This paper identifies, reviews, categorizes, and summarizes the importance of several applicable standards for incorporation in a system safety program.

In recent years, the desire for improved vehicle performance, reliability and safety have increased the electrical content and its complexity in vehicles. Advanced automotive systems integrate sensors, controllers, actuators and communication networks. To maintain safety and reliability, a comprehensive system of diagnostics and physical and analytic redundancy are used. In some cases, diagnostic strategies based on analytical redundancy can provide detection, as well as fault-tolerance, and may provide benefits in cost, packaging, flexibility and reusability. This paper discusses a range of diagnostic methods and their applicability to advanced automotive systems such as X-by-Wire. It will also show the reduction to practice of an advanced analytical technique for an automotive application.

Hazard analysis plays an important role in the development of safety-critical systems. Hazard analysis techniques have been used in the development of conventional automotive systems. However, as future automotive systems become more sophisticated in functionality, design, and applied technology, the need for a more comprehensive hazard analysis approach has arisen. In this paper, we describe a comprehensive hazard analysis approach for system safety programs. This comprehensive approach involves applying a number of hazard analysis techniques and then integrating their results. This comprehensive approach attempts to overcome the narrower scope of individual techniques while obtaining the benefits of all of them.

"Smart'' sensor concepts must be considered as the demands of advanced automotive systems increase. These concepts are strongly influenced by the architectural and dependability aspects of future systems. Key features of smart sensors are: communication (two way) with a digital data bus, self- calibration, error source compensation, self-diagnostics, and programmability for "plug and play.'' This paper contains a discussion of the basic future sensor requirements, and it assesses four major sensor technologies with respect to their suitability to meet these requirements. For each technology, the merits and demerits will be reviewed and an example sensing application will be given in order to demonstrate how the technology can be adapted to meet the future requirements.

Today, electrical/electronic systems like ABS/power brakes and electric power steering are all designed to enhance, not replace a mechanical function. If an electrical or electronic fault occurs, the function reverts to the base mechanical capability. Future E/E systems, such as steer-by-wire and brake-by- wire replace mechanical linkages with electrical or optical signals as in computer networks. While these systems offer many potential safety benefits, they will require different strategies for dependability, and as with any vehicle system, they will further require that dependability be an integral part of the overall E/E system design. This paper illustrates how by-wire systems drive different dependability requirements and discusses some key technologies that are emerging to meet these requirements.

Steer-by-wire and other “by-wire” systems (as defined in the paper) offer many passive and active safety advantages. To help ensure these advantages are achieved, a comprehensive system-safety process should be followed. In this paper, we review standard elements of system safety processes that are widely applied in several industries and describe the main elements of our proposed analysis process for by-wire systems. The process steps include: (i) creating a program plan to act as a blueprint for the process, (ii) performing a variety of hazard analysis and risk assessment tasks as specified in the program plan, (iii) designing and verifying a set of hazard controls that help mitigate risk, and (iv) summarizing the findings. Vehicle manufacturers and suppliers need to work together to create and follow such a process. A distinguishing feature of the process is the explicit linking of hazard controls to the hazards they cover, permitting coverage-based risk assessment.