Assessment of Safety Standards for Automotive Electronic ...

DOT HS 812 285

June 2016

Assessment of Safety Standards for Automotive Electronic Control Systems

Disclaimer

This publication is distributed by the U.S. Department of Transportation, National Highway Traffic Safety Administration, in the interest of information exchange. The opinions, findings, and conclusions expressed in this publication are those of the author and not necessarily those of the Department of Transportation or the National Highway Traffic Safety Administration. The United States Government assumes no liability for its content or use thereof. If trade or manufacturers' names or products are mentioned, it is because they are considered essential to the object of the publication and should not be construed as an endorsement. The United States Government does not endorse products or manufacturers.

Suggested APA Format Citation:

Van Eikema Hommes, Q. D. (2016, June). Assessment of safety standards for automotive electronic control systems. (Report No. DOT HS 812 285). Washington, DC: National Highway Traffic Safety Administration.

REPORT DOCUMENTATION PAGE

1. AGENCY USE ONLY (Leave blank)

2. REPORT DATE

June 2016

4. TITLE AND SUBTITLE

Assessment of Safety Standards for Automotive Electronic Control Systems

6. AUTHOR

Qi D. Van Eikema Hommes

7. PERFORMING ORGANIZATION NAME(S) AND ADDRESS(ES)

John A. Volpe National Transportation Systems Center U.S. Department of Transportation Office of the Assistant Secretary for Research and Technology 55 Broadway Cambridge, MA 02142

9. SPONSORING/MONITORING AGENCY NAME AND ADDRESS

National Highway Traffic Safety Administration 1200 New Jersey Avenue SE. Washington, DC 20590

11. SUPPLEMENTARY NOTES

Form Approved OMB No. 0704-0188

3. REPORT TYPE AND DATES COVERED

July 2012 ? April 2015

5. FUNDING NUMBERS

Intra-Agency Agreement HS8AA1 DTNH22-12-V-00086

8. PERFORMING ORGANIZATION REPORT NUMBER

DOT-VNTSC-NHTSA-13-03

10. SPONSORING/MONITORING AGENCY REPORT NUMBER

DOT HS 812 285

12a. DISTRIBUTION/AVAILABILITY STATEMENT

12b. DISTRIBUTION CODE

This document is available to the public through the National Technical Information Service



13. ABSTRACT

This report summarizes the results of a study that assessed and compared six industry and government safety standards relevant to

the safety and reliability of automotive electronic control systems. These standards include ISO 26262 (Road Vehicles - Functional

Safety), MIL-STD-882E (Department of Defense Standard Practice, System Safety), DO-178C (Software Considerations in

Airborne Systems and Equipment Certification), Federal Motor Vehicle Safety Standards, AUTOSAR (Automotive Open System

Architecture), and MISRA C (Guidelines for the Use of the C Language in Critical Systems). The assessment was carried out along

the following 11 dimensions: (1) type of standard, (2) definition of safety and hazard, (3) identification of safety requirements, (4)

hazard and safety analysis methods, (5) management of safety requirements, (6) risk assessment approach, (7) design for safety

approach, (8) software safety, (9) system lifecycle consideration, (10) human factors consideration, and (11) approach for review,

audit, and certification. The observed strengths and limitations of the standards studied in this report could support the future

development of a robust functional safety approach for automotive electronic control systems.

14. SUBJECT TERMS

15. NUMBER OF PAGES

Automotive Electronics, Automotive Electronic Control Systems, Functional Safety, Electronics 49

Reliability, Automotive Electronics Safety Standards

16. PRICE CODE

17. SECURITY CLASSIFICATION OF REPORT

Unclassified

18. SECURITY CLASSIFICATION OF THIS PAGE

Unclassified

19. SECURITY CLASSIFICATION OF ABSTRACT

Unclassified

20. LIMITATION OF ABSTRACT

i

Foreword

NHTSA's Automotive Electronics Reliability Research Program The mission of the National Highway Traffic Safety Administration is to save lives, prevent injuries, and reduce economic costs due to road traffic crashes. As part of this mission, NHTSA researches methods to ensure the safety and reliability of emerging safety-critical electronic control systems in motor vehicles. The electronics reliability research comprises methods and standards within and outside the automotive industry for assessing, identifying and mitigating potential and new hazards that may arise from the increasing use of electronics and electronic control systems in the design of modern automobiles.

Similar to the cybersecurity research program, NHTSA has established five research goals for the electronics reliability research program to ensure the safe operation of motor vehicles equipped with advanced electronic control systems. This program covers various safety-critical applications deployed on current generation vehicles, as well as those envisioned on future vehicles that may feature more advanced forms of automation and connectivity. These goals are:

1. Expand and share the knowledge base to ensure research plans for automotive electronics reliability are appropriate and promote tools for applied research in this area;

2. Strengthen and facilitate the implementation of safety-effective voluntary industry-based standards for automotive electronics reliability;

3. Foster the development of new system solutions for ensuring and improving automotive electronics reliability;

4. Research the feasibility of developing potential minimum vehicle safety requirements pertaining to the safe operation of automotive electronic control systems; and

5. Gather foundational research data and facts to inform future NHTSA policy and regulatory decisions.

This report contains the results of a research study that assessed and compared six industry and government safety standards relevant to the electronics reliability of automotive electronic control systems.

This publication is part of a series of reports that describe NHTSA's initial work in the automotive electronics reliability program. This research specifically supports the first and second goals of NHTSA's program by reviewing current safety standards and documenting their strengths, limitations, and opportunities for enhancement. The observed strengths and limitations of the standards studied in this report could support the future development of a robust functional safety approach for automotive electronic control systems.

ii

TABLE OF CONTENTS

LIST OF ACRONYMS ................................................................................................................. vi EXECUTIVE SUMMARY .......................................................................................................... vii 1 INTRODUCTION ................................................................................................................... 1

1.1 Background ...................................................................................................................... 1 1.2 Research Objectives ......................................................................................................... 2 2 DESCRIPTION OF RELEVANT SAFETY STANDARDS .................................................. 4 2.1 ISO 26262 Road Vehicles ? Functional Safety................................................................ 4 2.2 MIL-STD-882E U.S. Department of Defense Standard Practice - System Safety .......... 5 2.3 DO-178C Software Considerations in Airborne Systems and Equipment Certification . 6 2.4 Federal Motor Vehicle Safety Standards (FMVSS)......................................................... 6 2.5 Automotive Open System Architecture ........................................................................... 7 2.6 Guidelines for the Use of the C Language in Critical Systems (MISRA C).................... 8 3 COMPARATIVE ANALYSIS OF STANDARDS ................................................................ 9 3.1 Type of Standard .............................................................................................................. 9

3.1.1 Process Prescription .................................................................................................. 9 3.1.2 Methods Listing ...................................................................................................... 10 3.1.3 Performance-Based ................................................................................................. 10 3.1.4 Design Prescription ................................................................................................. 10 3.2 Definition of Safety and Hazard..................................................................................... 11 3.3 Identification of Safety Requirements............................................................................ 12 3.4 Hazard and Safety Analysis Methods ............................................................................ 12 3.4.1 Hazard Analysis in MIL-STD-882E....................................................................... 12 3.4.2 Hazard and Safety Analysis in ISO 26262 ............................................................. 13 3.4.3 Hazard Analysis in FMVSS.................................................................................... 14 3.4.4 System Theoretic Process Analysis for Complex Systems..................................... 15 3.5 Management of Safety Requirements ............................................................................ 15 3.6 Risk Assessment Approach ............................................................................................ 16 3.6.1 Hardware Risk Assessment--Exposure and Probability of Mishap Occurrence ... 17 3.6.2 Hardware Risk Assessment--Controllability ......................................................... 17

iii

 ................
................

In order to avoid copyright disputes, this page is only a partial summary.

Google Online Preview   Download