Professional Documents
Culture Documents
consulting
V1.0 | 2016-10-18
Welcome
Vector Consulting Services
Welcome
Challenges and Concepts
Vector Safety Experiences
Conclusions and Outlook
3/35 © 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Challenges and Concepts
Vector Client Survey on Industry Trends
60% Mid-term
challenges
Distributed
20% Development
10% Governance
Others Current challenges
0%
0% 10% 20% 30% 40% 50% 60% 70%
Vector Client Survey 2016. Details: www.vector.com/trends. Sum > 100% because 3 answers per question were allowed.
Results from all industries overlap and are thus compiled in this report. Validity big with >4% response rate of 1700 recipients.
Source: autoservicepraxis.de
Idea
System System
Req. Analysis Test
System System
Design Integration
Component Component
OEM Req. Analysis Test
Supplier Component Component
Management Activity Design Integration
Engineering Activity Component
Affected by ISO 26262
Implementation
Hazard
Inability to perform
the required function Failure Failure Failure
as specified
4 X
Incorrect state that
may lead to a failure Error Error Error
2 X 3 X
Cause of the error,
e.g. code mistake X
1Fault Fault Fault
System layer
1 Fault prevention 2 Fault detection 3 Fault tolerance 4 Robustness
Guidelines Code analysis Redundant design Redundant shut-off
Processes Review, Test Memory protection Fail-operational
10 Parts
43 Chapters
500 pages
Product Liability
Idea
11/35 © 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Challenges and Concepts
Legal Liability: State of the Practice
Functional Safety
Process Maturity
Application of methodological Frameworks Automotive SPICE® or CMMI
Management
Development
Supporting Processes
ASIL
Automotive Safety Integrity Level
(= required integrity of a function)
Safety functions
Risk level
Source: IEC 61508:2010
14/35 © 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Challenges and Concepts
Development – Example Classification Brake-by-wire-System
Exposure:
E3: 1-10% of average operating time
E4: >10% of average operation time
Controllability (Average Driver):
C2: Hazardous situation is usually controllable
C3: Hazardous situation is usually not controllable
Severity:
S1: Light to moderate injuries
S3: Critical injuries
15/35 © 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Challenges and Concepts
Approaches to Risk Reduction
2a: Failure
Intended
detection and
operation
reaction
1: 2b:
Fail-
Fail-safe
operational
Welcome
Challenges and Concepts
Vector Safety Experiences
Conclusions and Outlook
18/35 © 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Vector Safety Experiences
Vector Experiences – Support Throughout the Life-Cycle
System System
Req. Analysis Test
Component Component
Hazard and Req. Analysis Test
Risk Analysis Validation
Component Component
Design Integration
System Safety Company Project
Concept Processes Manual Verification
Component
Implementation
Project
Qualitative Quantitative
Safety Analyses DIA Schedule Safety Analyses
Often insufficient information shared between OEM and Tier-1 supplier and
Tier-1 and Tier-2 suppliers concerning safety-critical functions and related
hazards
Risk that system and component design is not optimized to balance safety
and costs
Our experience shows that companies which tried more intense supplier-
collaboration, continue to do so for all critical interfaces
Tier-2
OEM
Determination
of Safety Goals
Functional Safety Requirements Safety Goals
FSR 1 SG1 ASIL B Funct. Safety Req. 1 SG1 HZ1, HZ3 ASIL B Safety Goal 1
FSR 2 SG1 ASIL B Funct. Safety Req. 2 SG2 HZ2 ASIL D Safety Goal 2
... ... ... ... Functional Safety ... ... ... ...
23/35 © 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Vector Safety Experiences
Vector Experiences – Systematic Analysis and Design
24/35 © 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Vector Safety Experiences
Vector Experiences – Master Necessary Analysis Methods
25/35 © 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Vector Safety Experiences
Vector Experiences – Thorough Hazard & Risk Analysis
26/35 © 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Vector Safety Experiences
Vector Experiences – Consistent Support for FMEA
27/35 © 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Vector Safety Experiences
Vector Experiences – Security Directly Impacts Safety
Security Safety
Safety Security
Implemen- Implemen-
Verification Verification
tation tation
28/35 © 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Vector Safety Experiences
Safety and Security must be addressed in parallel
Innovative functionality...
Distributed systems
Complex feature interaction
High data volume
External interfaces (V2X; vehicle as IP node)
Welcome
Challenges and Concepts
Vector Safety Experiences
Conclusions and Outlook
30/35 © 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Conclusions and Outlook
Success Factor – Change Towards Safety Culture
Risk analysis is done superficially for Risk analysis and FMEA are developed at
documentation purposes and not the beginning of system development and
maintained are continuously updated
System architecture is not considered in System architecture explicitly covers the
safety goals and requirements safety goals and requirements
Changes are accepted at any time for Changes are analyzed with respect to their
practically all system parts effects on functional safety using a strict
change management
Safety audits are conducted only Safety audits are established as a normal
sporadically and standardized behavior
… …
But…
Many suppliers do not have full ISO26262 compliance because they
develop based on legacy systems
Suppliers and OEMs need to further improve field observation and
abilities to efficiently maintain a safety case
New suppliers, e.g. for electric powertrain or ADAS, struggle with
ramping up a safety process
Security risks increasingly hamper functional safety
Functional safety processes in many cases create overheads
– which could be done at much lower cost
© 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Conclusions and Outlook
Vector Safety Portfolio
Safety Solutions
Consulting
Vector Safety Check, Interim Safety Manager, …
Tools
PLM with PREEvision, Test, Diagnosis, …
Software
AUTOSAR up to ASIL-D…
www.vector.com/safety
34/35 © 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18
Thank you for your attention.
Contact us for further support on functional safety,
cyber security, and product development.
© 2016. Vector Consulting Services GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V1.0 | 2016-10-18