基于早期设计阶段验证的汽车高效安全系统设计(英文)
|
摘要
在早期概念设计阶段,考虑安全目标和系统动力学特性,通过系统设计验证确认可以提高系统设计效率,因此提出了一种适用于系统行为模型和安全临界约束的正式安全系统设计准则及相应设计方法,安全关键约束定义为在车辆或系统级状态下可观察到的危险域或容错域。对于系统行为模型,给出了所选的项目验证方法,作为系统行为模型的一部分,数学模型考虑了系统动力学特性,这在ISO 26262中未明确考虑,并阐述了将所提出的方法应用于简单系统的过程。正式安全设计准则有助于防止保守设计和复杂动态系统的安全危害,减少分布式开发的协调工作,但由于可能的系统动态复杂性,需要一些工具来进行自动安全系统验证确认。
Efficiency of the system design approach could be increased through the system design validation,respecting safety objectives and system dynamics during the early concept phases. Therefore, a formal safety system designcriteria applicable to the system behavior models and safety critical constraints is represented. An efficient safety systemdesign approach, which respects formal safety system design criteria, is shown as well. The safety critical constraints aredefined in terms of hazard or fault tolerance domains for observable on the vehicle or system level states. For systembehavioral models selected item validation methods are shown. Mathematical models as part of the system behavior modelsrespect system dynamics, which are not explicitly considered in ISO 26262. In this work, it is also illustrated how to applythe proposed safety system design approach for a simple system. A formal safety design criteria helps to preventconservative design restrictions, surely prevent safety hazards for system with complex dynamics and reduce coordinationefforts by the distributed development but require some tools for automated safety system validation because of the possiblesystem dynamic complexity.
Efficiency of the system design approach could be increased through the system design validation,respecting safety objectives and system dynamics during the early concept phases. Therefore, a formal safety system designcriteria applicable to the system behavior models and safety critical constraints is represented. An efficient safety systemdesign approach, which respects formal safety system design criteria, is shown as well. The safety critical constraints aredefined in terms of hazard or fault tolerance domains for observable on the vehicle or system level states. For systembehavioral models selected item validation methods are shown. Mathematical models as part of the system behavior modelsrespect system dynamics, which are not explicitly considered in ISO 26262. In this work, it is also illustrated how to applythe proposed safety system design approach for a simple system. A formal safety design criteria helps to preventconservative design restrictions, surely prevent safety hazards for system with complex dynamics and reduce coordinationefforts by the distributed development but require some tools for automated safety system validation because of the possiblesystem dynamic complexity.
引文
[1]International Organization for Standardization.Road Vehicles-Functional Safety:ISO 26262[S].ISO,2011.
[2]Mader R,Griessnig G,Leitner A,et al.A Computer-Aided Approach to Preliminary Hazard Analysis for Automotive Embedded Systems[C]//IEEE International Conference&Workshops on Engineering of Computer-based Systems.IEEE Computer Society,2011:169-178.
[3]Zhang H,Li W,Chen W.Model-Based Hazard Analysis Method on Automotive Programmable Electronic System[C]//International Conference on Biomedical Engineering&Informatics.IEEE,2010:2658-2661.
[4]Beckers K,Heisel M,Frese T,et al.A Structured and Model-Based Hazard Analysis and Risk Assessment Method for Automotive Systems[C]//IEEE International Symposium on Software Reliability Engineering.IEEE,2014:238-247.
[5]Baumgarten G,Oertel M,Rettberg A,et al.First Results of Automatic Fault-Injection in an AUTOSAR Tool-Chain[C]//IEEE International Conference on Industrial Informatics.IEEE,2014:170-175.
[2]Mader R,Griessnig G,Leitner A,et al.A Computer-Aided Approach to Preliminary Hazard Analysis for Automotive Embedded Systems[C]//IEEE International Conference&Workshops on Engineering of Computer-based Systems.IEEE Computer Society,2011:169-178.
[3]Zhang H,Li W,Chen W.Model-Based Hazard Analysis Method on Automotive Programmable Electronic System[C]//International Conference on Biomedical Engineering&Informatics.IEEE,2010:2658-2661.
[4]Beckers K,Heisel M,Frese T,et al.A Structured and Model-Based Hazard Analysis and Risk Assessment Method for Automotive Systems[C]//IEEE International Symposium on Software Reliability Engineering.IEEE,2014:238-247.
[5]Baumgarten G,Oertel M,Rettberg A,et al.First Results of Automatic Fault-Injection in an AUTOSAR Tool-Chain[C]//IEEE International Conference on Industrial Informatics.IEEE,2014:170-175.