ASSESSMENT OF THE ISO 26262 STANDARD, “ROAD VEHICLES – FUNCTIONAL SAFETY”
Dr. Qi Van Eikema Hommes
SAE 2012 Government/Industry Meeting
January 25, 2012
Outline ??????
ISO 26262 Overview
Scope of the Assessment Strengths
Considerations for Improvements Industry Feedbacks Summary
ISO 26262 Overview
?Adaptation of IEC 61508 to road vehicles
?Influenced by ISO 16949 Quality Management System
?The first comprehensive standard that addresses safety related
automotive systems comprised of electrical, electronic, and software elements that provide safety-related functions.
?It intends to address the following important challenges in today’s road vehicle technologies:
–The safety of new E/E and Software functionality in vehicles –The trend of increasing complexity, software content, and mechatronics implementation
–The risk from both systematic failure and random hardware failure
General Structure of ISO 26262 1. Vocabulary 2. Management of functional safety ISO 26262 affects all areas 2-5 Overall safety management 2-6 Safety management during item development 2-7 Safety management after release for production 3. Concept phase 3-5 Item definition 3-6 Initiation of the safety lifecycle 3-7 Hazard analysis and risk assessment 4. Product development: system level 4-5 Initiation of product development at the system level 4-6 Specification of the technical safety requirements 4-7 System design 4-11 Release for production 4-10 Functional safety assessment 7. Production & Operation 4-9 Safety validation 4-8 Item integration and testing 3-8 Functional safety concept 5. Product development: hardware level 6. Product development: 6-5 Initiation of product development at the software level 6-6 Specification of software safety requirements 6-7 Software architectural design 6-8 Software unit design and implementation 5-5 Initiation of product development at the hardware level 5-6 Specification of hardware safety requirements 5-7 Hardware design 5-8 Hardware architectural metrics 5-9 Evaluation of violation of the safety goal due to random HW failures 5-10 Hardware integration and testing software level 6-9 Software unit testing 6-10 Software integration and testing 6-11 Software verification 8-5 Interfaces within distributed developments 8-6 Overall management of safety requirements 8-7 Configuration management 8-8 Change management 8-9 Verification 8-10 Documentation 8-11 Qualification of software tools 8-12 Qualification of software components 8-13 Qualification of hardware components 8-14 Proven in use argument 9-5 Requirements decomposition with respect to ASIL tailoring 9-6 Criteria for coexistence of 9. ASIL-oriented and safety-oriented analyses 9-7 Analysis of dependent failures 9-8 Safety analyses 10. (Informative) Guidelines on ISO 26262 Support 8. Supporting processes Core processes 7-6 Operation, service and decommissioning Management 7-5 Production Scope of This Assessment
?Conducted in June-July 2011, based on DSI draft published in 2009.
?Final standard (FDIS) was published in November 2011. ?Future discussions should be based on the FDIS version of the standard.
?Review Focus—How well can the standard provide safety assurance for the complex software-intensive automotive electronics and electrical systems?
ISO26262标准评估之“道路车辆功能安全”英文版重点点评
