Early safety evaluation of design decisions in E/E architecture according to ISO 26262

Authors:
Vladimir Rupanov;Christian Buckl;Ludger Fiege;Michael Armbruster;Alois Knoll;Gernot Spiegelberg
Affiliations:
Technische Universitaet Muenchen, Muenchen, Germany;ForTISS GmbH, Muenchen, Germany;Siemens AG, Muenchen, Germany;Siemens AG, Muenchen, Germany;Technische Universitaet Muenchen, Muenchen, Germany;Siemens AG, Muenchen, Germany
Venue:
Proceedings of the 3rd international ACM SIGSOFT symposium on Architecting Critical Systems
Year:
2012

Citing 11
Cited 0

Basic Concepts and Taxonomy of Dependable and Secure Computing

IEEE Transactions on Dependable and Secure Computing
A new component concept for fault trees

SCS '03 Proceedings of the 8th Australian workshop on Safety critical systems and software - Volume 33
Efficient High Hamming Distance CRCs for Embedded Networks

DSN '06 Proceedings of the International Conference on Dependable Systems and Networks
Early quality prediction of component-based systems - A generic framework

Journal of Systems and Software
Software components for reliable automotive systems

Proceedings of the conference on Design, automation and test in Europe
Modular Architectural Representation and Analysis of Fault Propagation and Transformation

Electronic Notes in Theoretical Computer Science (ENTCS)
How to "Survive" a safety case according to ISO 26262

SAFECOMP'10 Proceedings of the 29th international conference on Computer safety, reliability, and security
Integrating system modelling with safety activities

SAFECOMP'10 Proceedings of the 29th international conference on Computer safety, reliability, and security
An approach to optimization of fault tolerant architectures using HiP-HOPS

Software—Practice & Experience
Feature models, grammars, and propositional formulas

SPLC'05 Proceedings of the 9th international conference on Software Product Lines
ISO/DIS 26262 in the context of electric and electronic architecture modeling

ISARCS'10 Proceedings of the First international conference on Architecting Critical Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

ISO 26262 addresses development of safe in-vehicle functions by specifying methods potentially used in the design and development lifecycle. It does not indicate what is sufficient and leaves room for interpretation. However, the architects of electric/electronic systems need design boundaries to make decisions during architecture evolution without adding a risk of late architectural changes. Designing and changing a system benefits from correct selection of safety mechanisms at early design stages. This paper presents an iterative architecture design and refinement process that is centered around ISO 26262 requirements. We propose a domain-specific modeling scheme and component repositories to build up a bottom-up analysis framework that allows early quantitative safety evaluation. To guarantee that the target ASIL level can be reached, we complement our design-time component-level analysis with conservative top-down analysis. Given that analysis starts at early design stages, evolution of the architecture is supported by different levels of detail used in the analysis framework.