Iso 26262 Safety Cases: Compliance and Assurance
نویسندگان
چکیده
In the automotive domain, there is currently no formal requirement to produce an explicit safety case. Instead the implicit safety case for a vehicle is comprised of compliance with extensive national and international regulation and standards. With the imminent introduction of the automotive functional safety standard ISO 26262, the production of a functional safety case is now a requirement for compliance with the standard. This presents both opportunities and challenges to safety practitioners and researchers within that industry. This paper sets out what form an ISO 26262 safety case might take and how this fits within the existing hierarchy of automotive safety, based on the experiences of the authors who are actively engaged in the development and delivery of real automotive projects. Using the pattern and modular extensions of the Goal Structuring Notation (GSN) a number of reusable safety arguments are proposed covering all parts of ISO 26262 and the issues of compliance and assurance. The patterns proposed are not instantiated for confidentiality reasons but are provided to give guidance and shared learning for others within the automotive functional safety community.
منابع مشابه
Building a Safety Case in Compliance with ISO 26262 for Fuel Level Estimation and Display System
Nowadays, road vehicles, including trucks, are characterized by an increased complexity due to a greater variety of software, and a greater number of sensors and actuators. As a consequence, there is an increased risk in terms of software or hardware failures that could lead to unacceptable hazards. Thus safety, more precisely functional safety, is a crucial property that must be ensured to avo...
متن کاملSafety Cases and Their Role in ISO 26262 Functional Safety Assessment
Compliance with the automotive standard ISO 26262 requires the development of a safety case for electrical and/or electronic (E/E) systems whose malfunction has the potential to lead to an unreasonable level of risk. In order to justify freedom from unreasonable risk, a safety argument should be developed in which the safety requirements are shown to be complete and satisfied by the evidence ge...
متن کاملAssurance of Automotive Safety - A Safety Case Approach
A safety case should provide a clear, comprehensible and defensible argument, supported by evidence, that a system is acceptably safe to operate in a particular environment. This approach is not new. For example, in the nuclear industry, safety cases are approaching their 50 birthday. In stark contrast, the automotive industry has never been required to produce a safety case. Instead, it has re...
متن کاملFormal Contract Logic Based Patterns for Facilitating Compliance Checking against ISO 26262
ISO 26262 demands a confirmation review of the safety plan, which includes the compliance checking of planned processes against safety requirements. Formal Contract Logic (FCL), a logic-based language stemming from business compliance, provides means to formalize normative requirements enabling automatic compliance checking. However, formalizing safety requirements in FCL requires skills, which...
متن کاملEarly Verification and Validation According to ISO 26262 by Combining Fault Injection and Mutation Testing
Today software is core part of modern automobiles. The amount, complexity and importance of software components within Electrical/Electronics (E/E) systems of modern cars is only increasing with time. Several automotive functions carrying software provide or interact with safety critical systems such as systems steering and braking and thus assuring functional safety for such systems is of high...
متن کامل