Evolution of Functional Safety & Security in AUTOSAR

AUTOSAR (AUTomotive Open System Architecture) is an open, international standard for the software architecture of automotive ECUs, which is commonly developed in an international consortium of several OEMs, tier1s, and software tool providers. Today, numerous series vehicles with AUTOSAR technology inside are on the road. Within the AUTOSAR standard, several concepts and mechanisms to support safety & security were developed and included in the design of the AUTOSAR software architecture and in the corresponding functionality of the AUTOSAR basic software modules. Starting with its release 4.0 published in December 2009, AUTOSAR included enhancements with respect to safety-related applications in the automotive domain. The safety-related functionality of AUTOSAR and the functional safety standard ISO 26262 have been developed in parallel with mutual stimulation. In relation to the described activities, an overview of the available safety & security functionality is shown and a brief description of the following concepts and specified mechanisms is provided: • Built-in self-test mechanisms for detecting hardware faults (testing and monitoring) • Run-time mechanisms for detecting software execution faults, e.g. program flow monitoring • Run-time mechanisms for preventing interference between software elements, e.g. memory partitioning for software components and time partitioning for software applications • Run-time mechanisms for protecting communication, e.g. end-to-end (E2E) communication protection • Run-time mechanisms for error handling • Crypto service manager • Crypto abstraction library