EAST-ADL Introduction. Support for ISO26262
|
|
- Frank Doyle
- 6 years ago
- Views:
Transcription
1 EAST-ADL Introduction Support for ISO26262
2 Environment Model EAST-ADL Overview SystemModel Vehicle TechnicalFeatureModel Analysis FunctionalAnalysisArchitecture Design FunctionalDesignArchitecture HardwareDesignArchitecture Implementation EAST-ADL defines an Engineering information structure Feature content Functional content Software architecture Requirements Variability Safety information V&V Information Behavior Application SW Basic SW HW Data exchange over ports Allocation 2
3 Environment Model Requirements Variability Timing EAST-ADL+ Representation SystemModel Vehicle TechnicalFeatureModel Analysis FunctionalAnalysisArchitecture Features of the vehicle Abstract functions Chassis Extensions Steer Brake Cruise TechnicalFeatureModel <<AnalysisArchitecture>> DemonstratorAA <<FunctionalAnalysisArchitecture>> DemoFAA <<FunctionalDevice>> BrakePedal VehicleSpeed <<ADLFunction>> <<ADLFunction>> AbstractABSFrontLeft <<FunctionalDevice>> BrakeAlgorithm BrakeFrontLeft <<FunctionalDevice>> WheelSensorFrontLeft Design FunctionalDesignArchitecture HardwareDesignArchitecture Hardware topology, concrete functions, allocation to nodes FunctionalDesignArchitecture <<LocalDeviceManager>> <<BSWFunction>> BrakePedal PedalIO VehicleSpeed <<DesignFunction>> <<DesignFunction>> <<LocalDeviceManager>> <<BSWFunction>> ABSFrontLeft BrakeController BrakeActuatorFL BrakeIO <<LocalDeviceManager>> <<BSWFunction>> WheelSensorFL WSensIO <<Sensor>> <<ECUNode>> Pedal PedalNode HardwareDesignArchitecture <<ECUNoder>> WheelNode <<HWFunction>> BrakePedal <<HWFunction>> BrakeFrontLeft <<HWFunction>> WheelSensorFrontLeft <<Actuator>> Brake Implementation Application SW Basic Software SW Architecture HW as represented Data exchange over ports by Allocation SWComposition <<SensorSWC>> BrakePedal VehicleSpeed <<SWC>> <<SWC>> ABSFrontLeft BaseBrake <<LocalDeviceManager>> WheelSensorFL <<Realize>> <<ActuatorSWC>> Brake 3
4 Environment Model Requirements Variability Timing EAST-ADL Extensions SystemModel Extensions Vehicle TechnicalFeatureModel Analysis FunctionalAnalysisArchitecture Design FunctionalDesignArchitecture HardwareDesignArchitecture Implementation Application SW Basic SW HW Data exchange over ports Allocation 4
5 Environment Model Requirements Variability Timing EAST-ADL Extensions SystemModel Vehicle TechnicalFeatureModel Extensions Analysis FunctionalAnalysisArchitecture Design FunctionalDesignArchitecture HardwareDesignArchitecture Implementation Application SW Basic SW HW Data exchange over ports Allocation 5
6 EAST-ADL vs EAST-ADL For Features, Functional Architecture and Topology For Software Architecture and Execution Platform 6
7 EAST-ADL vs Different Abstraction s: EAST-ADL complements with early phase information Different Engineering Information Scope: EAST-ADL complements Requirements Engineering Variant Management Behaviour (nominal/error) Timing Safety Same Meta-Metamodel Enterprise Architect model used for both Same file exchange ARXML-EAXML Same tool infrastructure possible ARTOP-EATOP Scope in depending on version 7
8 EAST-ADL Related Projects ADAMS EDONA TIMMO2 SAFE CESAR TIMMO EAST-EEA ATESST ATESST2 MAENAD JASPAR EAST-ADL Association EEA AIL UML2 Titus SYSML AADL UML2 SYSML AADL EAST-ADL EAST-ADL EAST-ADL2 EAST-ADL 2.1 EAST-ADL 2.x 8
9 ISO reference life cycle 9
10 Six ISO26262 Concerns 1. Concept Phase Safety Goals Risk assessment 2. Concept Phase Functional Safety Concept Topology-independent Solution 3. Product Development Technical Safety Concept Preliminary System solution 4. Product Development Hardware and Software Detailed hardware and software architecture 5. Safety Element out of Context Matching ASIL with ASIL 6. Supplier-OEM Exchange Matching ASIL with ASIL 10
11 Product development Concept phase 8-6 Specification and management of safety requirements Specification and management of safety requirements ISO What to handle for each phase 3-7 Hazard analysis and risk assessment Hazard analysis and risk assessment 3-7 Hazard analysis and risk assessment Specification of safety goals Focus on functional objectives and not technological solutions 3-8 Functional safety concept Specification of functional safety requirements Realization by high level architectural elements without notion of HW 4-6 Specification of technical safety requirements Specification of technical safety requirements 5-6 Specification of hardware 6-6 Specification of software safety requirements safety requirements Introducing HW & SW in architecture Implementation of SW/HW Hardware safety requirements Software safety requirements 12
12 What to handle on each abstraction level Vehicle Analysis Design Implementation Operational Focus on functional objectives and not technological solutions Realization by high level architectural elements without notion of HW Introducing HW & SW in architecture Implementation of SW/HW 13
13 Environment Model Requirements Variability Timing 1. Safety Goals: Vehicle Part 3.7 artifacts in EAST-ADL Vehicle SystemModel Vehicle TechnicalFeatureModel Analysis Analysis FunctionalAnalysisArchitecture Design Design FunctionalDesignArchitecture HardwareDesignArchitecture Implementation Implementation Application SW Basic SW HW 15
14 Item Definition Vehicle DemoVehicleVL TechnicalFeatureModel VehicleRoot Chassis Requirements Requirement PB force shall be applied when parking brake function is active Satisfy Brakes CruiseControl ActiveSuspension ServiceBrake ParkingBrake Item ItemEPB Basic Advanced Item ItemSB 16
15 Item Definition 17
16 Preliminary Hazard Analysis Vehicle FeatureModel Feature ParkingBrake Item ItemPB Item ItemSB Feature ServiceBrake FeatureFlaw BrakeForceDeviates from request >60% Satisfy NonFulfilledRequirement Requirement Brake force shall be applied when brakes are activated Hazard SuddenLossofBraking HazardousEvent + SuddenLossofBrakinginSlope + Controllability=C3 + Severity=S3 + Exposure=E4 + ASIL= ASIL C DerivedFrom SafetyGoal + EPB_Goal1 + Brake force shall not be below 40% of driver request + ASIL=ASIL C + safestate: none OperatingMode EnvironmentSituation BrakeActivated Slope TrafficSituation OperatingSituationUseCase AdjacentVehicle HighwayDriving 18
17 Environment Model Requirements Variability Timing 2. Functional Safety Concept: Analysis Part 3.8 artifacts in EAST-ADL Vehicle SystemModel Vehicle TechnicalFeatureModel Analysis Analysis FunctionalAnalysisArchitecture Design Design FunctionalDesignArchitecture HardwareDesignArchitecture Implementation Implementation Application SW Basic SW HW 19
18 Safety Modelling Basic Concept SafetyConstraint ASILValue FaultFailure How sure can I be to avoid something unsafe, and where in the architecture does this apply Core Model EAST-ADL ErrorModel EAST-ADL core ErrorModel core 22
19 Functional Safety Concept TechnicalFeatureModel Feature ParkingBrake Feature ItemServiceBrake ItemParkingBrake SafetyGoal EPB_SG1 ASIL=ASILC ServiceBrake Satisfy Requirement Brake force shall not be below 40% of driver request Goal FunctionalAnalysisArchitecture BrakeFunction BrakeRequest Brake Pedal ServiceBrakeCtrl BrakeGovernor BrakeActuator Satisfy Satisfy DeriveReq Requirement Brake command shall not deviate more than 60% from requested braking level DeriveReq DeriveReq RefineReq Requirement Brake request shall not deviate more than 60% from pedal command SafetyConstraint ASIL=C FunctionaSafetyRequirement FunctionaSafetyRequirement FunctionaSafetyRequirement FunctionalSafetyConcept ServiceBrake Satisfy RefineReq Requirement BrakeActuator force shall not deviate more than 60% from requested level RefineReq SafetyConstraint ASIL=C SafetyConstraint ASIL=C 23
20 Functional Safety Requirement Functional Analysis Architecture Requirement BrakeActuator force shall not deviate more than 60% from requested level RefineReq BrakeFunction BrakeErrorModel SafetyConstraint ASIL=C Target ServiceBrakeErrorModel BrakeActuationErrorModel Brake_ActivationFailure FaultFailure BrakeOmission Value=Dev60% Activation_Fault 24
21 Environment Model Requirements Variability Timing 3. Technical Safety Concept: Design Part 4 artifacts in EAST-ADL Vehicle SystemModel Vehicle TechnicalFeatureModel Analysis Analysis FunctionalAnalysisArchitecture Design Design FunctionalDesignArchitecture HardwareDesignArchitecture Implementation Implementation Application SW Basic SW HW Data exchange over ports Allocation 25
22 Technical Safety Concept FunctionalAnalysisArchitecture BrakeFunction Brake Pedal DriverPBRequest ParkBrakeCtrl FunctionalSafetyConcept ServiceBrake BrakeGovernor BrakeActuator FunctionaSafetyRequirement ServiceBrakeCtrl Satisfy Requirement Brake Pedal shall not request deviating braking level Realize FunctionalDesignArchitecture DeriveReq TechnicalSafetyConcept ServiceBrake BrakeFunction PedalSensor PedalSensorLoRes BrakeRequest BrakeRequest 2 PedalCollector Satisfy Requirement BrakePedalSensors shall be indipendent TechnicalSafetyRequirement Satisfy DeriveReq Requirement Fault Tolerant Time Interval shall be at least 100 ms 26
23 Environment Model Requirements Variability Timing 4. HW & SW Requirements: Implementation Part 5 artifacts in (and IP-XACT) Part 6 artifacts in SystemModel Vehicle Vehicle TechnicalFeatureModel Analysis Analysis FunctionalAnalysisArchitecture Design Design FunctionalDesignArchitecture HardwareDesignArchitecture Implementation Implementation Application SW Basic SW HW Data exchange over ports Allocation 27
24 WheelSpeedSenso... D e r i v e R e q T e c h n i c a l S a f e t y R e q u i r e m e n t T e c h n i c a l S a f e t y C o n c e p t Elements FunctionalDesignArchitecture BrakeFunction Brake Pedal BrakeRequest ServiceBrakeCtrl BrakeGovernor BrakeActuator Requirement Brake command shall not deviate more than 60 % from requested braking level RefineReq S e r v i c e B r a k e Realize Satisfy SafetyConstraint ASIL = C DeriveReq BrakePeda... BrakeTorqueCalculation::... Realize GlobalBrakeController::GbBrkCtrl Satisfy Requirement BrakePedalSensors shall be indipendent PedalPosition BrakePedalPosition_P PedalPos_InpoutDIO DriverRequestedBrakeTorque_P DriverRequestedBrakeTorque_P BrakeRef_FL BrakePedalPosition... PedalPosition_Debug ErrorLED VehicleModel::VehModel... BrakeActuato... PedalReading PedalPressedLED PedalCalSwitch WheelSpeed_P RoadCondition VehicleSpeed_P ElectricalMotorFeedback:... ABS_FL::ABS DriverRequestedBrakeTorque_P VehicleSpeed_P BrakeRef_P WheelSpeed_P ElectricalMotorA... ErrorLED BrakeTorqueRequeste... BrakeActuatorPort BrakeOnLED BrakeTorqueRequest BA_Debug Satisfy Requirement PedalCollectorOutput shall not deviate more than 60 % from requested level WheelSpeed_OUT SpeedSensorPeriodTime ErrorLED WheelSpeed_ABS WheelSpinningLED WSS_Debug_Interface WheelSpeed_P Motor_PWM MotorOnLED ElectricMotorPWM ExperimentStartButton RequestedPWM ErrorLED RequestInitialPWM BrakePedalPosition EMA_Debug GlobalDebugRece... BA_Debug EMA_Debug BPS_PedPos WSS_WheelSpeed RefineReq SafetyConstraint ASIL = C 28
25 Environment Model 5. Safety Element out of Context SystemModel Vehicle Architecture Hazard Item SafetyGoal ASIL X Analysis Architecture FaultFailure ErrorModel SafetyConstraint ASIL X Design Architecture FaultFailure ErrorModel SafetyConstraint ASIL Y Implementation Architecture FaultFailure ErrorModel SafetyConstraint ASIL Y E.g. Technical Safety Concept without Functional Safety Concept: Allocated Safety Constraints can play the role of Technical Safety Requirements when Functional Safety Concept is available 29
26 6. Supplier-OEM interaction: A/D/I Supplier A Supplier B SafetyConstraint ASIL Y SafetyConstraint ASIL Y FaultFailure FaultFailure ErrorModel ErrorModel SystemModel Architecture Architecture Nominal aspects: aspects: Interfaces match between subsystems Safety Constraints Match between subsystems 30
27 EAST-ADL vs. Safety Bench Marking Safety is about avoiding Failures that may cause Hazards ISO26262 defines a systematic approach: 1. Identify Safety Goal 2. Create a safe architecture with safety requirements that meet safety Goal ISO26262 element Purpose Safety Goal Avoid Hazard / FeatureFlaw Functional Safety Concept Avoid Failure (of abstract Function) Trace Technical Safety Concept HW and SW requirements Avoid Failure (of Function on HW) Avoid Failure (of SW Component on HW) 31
28 EAST-ADL vs. Safety Bench Marking Safety Benchmarking is about assessing how well a system/subsystem/component/mechanism/ fulfills requirements In-context Out-of-context Assessing Ability to Meet ASIL X Safety Goal Conformance to Functional Safety Requirements Conformance to Technical Safety Requirements Conformance to HW and SW Requirements 32
29 EAST-ADL vs. Safety Bench Marking Benchmarking out-of-context = Conformance to anticipated Functional Safety Requirements Technical Safety Requirements HW and SW Requirements To be able to draw conclusions on safety, the assessment of fault tolerance must Address relevant faults Be represented adequately =the fault tolerance capability can be related to requirements and safety goal 33
30 EAST-ADL vs. Safety Bench Marking SystemModel Vehicle Feature Item Hazard SafetyGoal ASIL x Analysis App ErrorModel ErrorModel FaultFailure ASIL ASIL ASIL Y z Design App HW ErrorModel ErrorModel FaultFailure ASIL ASIL ASIL Y z Implementation App BSW HW ErrorModel ErrorModel FaultFailure ASIL ASIL ASIL Y w ErrorModel capture Failure propagation logic can be identified using fault injection FaultFailure capture faults and failures on ports of ErrorModel ASIL constraint define expected or established probability of the fault or failure 34
31 Activities vs. Abstraction s Vehicle Analysis Design Implementation Define Features and requirements Identify FeatureFlaw and Hazard Identify Scenorios and Hazardous Event Define SafetyGoal Define Functional Architecture Define Functional Safety Requirements and Concept Define ErrorModel and FaultFailure Define SafetyConstraints Define Concrete Functional and Hardware Architecture Define Technical Safety Requirements and Concept Define ErrorModel and FaultFailure Define SafetyConstraints Define Software and detailed Hardware Architecture Define Software and Hardware Requirements Define ErrorModel and FaultFailure Define SafetyConstraints 35
32 Finally EAST-ADL is a language for Automotive EE engineering information Shared ontology/terminology across companies and domains EAXML exchange format to secure tool interoperability Allows joint efforts on methodology, modelling and tools supports cross-cutting aspects through extensions. is aligned with elements and modelling infrastrucure provides means to plan, document and utilize safety benchmarking EATOP Eclipse platform can foster tool prototyping EAST-ADL Association is a structure to coordinate and harmonize language progress Collaborative aspect of EAST-ADL is particularly relevant for ISO26262 W W W. E A S T - A D L. I N F O 36
Support for ISO in the EAST-ADL/AUTOSAR context. Dr. Henrik Lönn Volvo Technology
Support for ISO 26262 in the EAST-ADL/ context Dr. Henrik Lönn Volvo Technology henrik.lonn@volvo.com 1 Evolution of Vehicle Electronics 2 Environment Model EAST-ADL Overview SystemModel Vehicle TechnicalFeatureModel
More informationEAST-ADL Introduction. EAST-ADL Tooling
EAST-ADL Introduction EAST-ADL Tooling Tool Categories Modelling Tools Language Support: core east-adl editing functionalities, sometimes graphical Methodology support: extensions to core editing functionalities
More informationarchitecture (SAFE) Project Presentation SAFE project partners
Safe Automotive software architecture (SAFE) Project Presentation SAFE project partners Content Motivation Project Organization Work Packages Miscellaneous SAFE Motivation Scope and Goals Scope: Automotive
More informationModel-based Analysis & Engineering of Novel Architectures for Dependable Electric Vehicles
Grant Agreement 260057 Model-based Analysis & Engineering of Novel Architectures for Dependable Electric Vehicles Report type Report name Deliverable D2.2.1 Design methodology Methodology description for
More informationModel-based Analysis & Engineering of Novel Architectures for Dependable Electric Vehicles
Grant Agreement 260057 Model-based Analysis & Engineering of Novel Architectures for Dependable Electric Vehicles Report type Report name Deliverable D2.2.1 Design methodology Methodology description for
More informationISO : Rustam Rakhimov (DMS Lab)
ISO 26262 : 2011 Rustam Rakhimov (DMS Lab) Introduction Adaptation of IEC 61508 to road vehicles Influenced by ISO 16949 Quality Management System The first comprehensive standard that addresses safety
More informationFunctional Safety: ISO26262
Functional Safety: ISO26262 Seminar Paper Embedded systems group Aniket Kolhapurkar, University of Kaiserslautern, Germany kolhapur@rhrk.uni kl.de September 8, 2015 1 Abstract Functions in car, such as
More informationAUTOSAR E/E Design Flow Solution. - Optimizing Functional / Logical Architecture Design with EAST-ADL and AUTOSAR
AUTOSAR E/E Design Flow Solution - Optimizing Functional / Logical Architecture Design with EAST-ADL and AUTOSAR GM Soh Sr. Application Engineer Trend E/E architecture trends Description Objective Standardization
More informationAUTOSAR Automotive Open System Architecture
Automotive Open System Architecture Cooperate on standards, compete on implementation. Alessandra Mitidieri C. Agenda History Partnership Structure and Members Main Topics and Benefits Architecture Present
More information2018 Spring Meeting, PLM Center of Excellence, Purdue University Exploring Application Lifecycle Management and Its Role in PLM
ROBERT WIRTHLIN, PHD EMBEDDED SOFTWARE IN PRODUCTS: THE CONVERGENCE OF ALM WITH SYSTEMS ENGINEERING 2018 Spring Meeting, PLM Center of Excellence, Purdue University Exploring Application Lifecycle Management
More informationCompliance driven Integrated circuit development based on ISO26262
Compliance driven Integrated circuit development based on ISO26262 Haridas Vilakathara Manikantan panchapakesan NXP Semiconductors, Bangalore Accellera Systems Initiative 1 Outline Functional safety basic
More informationFunctional Safety with ISO Principles and Practice Dr. Christof Ebert, Dr. Arnulf Braatz Vector Consulting Services
Functional Safety with ISO 26262 Principles and Practice Dr. Christof Ebert, Dr. Arnulf Braatz Vector Consulting Services Content Challenges with Implementing Functional Safety Basic Concepts Vector Experiences
More informationIntegrating Functional Safety with ARM. November, 2015 Lifeng Geng, Embedded Marketing Manager
Integrating Functional Safety with ARM November, 2015 Lifeng Geng, Embedded Marketing Manager 1 ARM: The World s Most Scalable Architecture ARM ecosystem meets needs of vertical markets from sensors to
More informationModel-based system engineering for safety analysis of. complex systems
Model-based system engineering for safety analysis of complex systems MBSAW 12 Nataliya YAKYMETS, Hadi JABER, Agnès LANUSSE CEA, LIST, Laboratory of Model-Driven Engineering for Embedded Systems 11 Septembre
More informationSmart Strategic Approach for Functional Safety Implementation. Chandrashekara N Santosh Kumar Molleti
Smart Strategic Approach for Functional Safety Implementation Chandrashekara N Santosh Kumar Molleti August 2015 1 Table of Contents Abstract... 3 1. Introduction... 3 2. Approach-To-Concept... 4 2.1.
More informationFunctional Safety Implications for Development Infrastructures
Functional Safety Implications for Development Infrastructures Dr. Erwin Petry KUGLER MAAG CIE GmbH Leibnizstraße 11 70806 Kornwestheim Germany Mobile: +49 173 67 87 337 Tel: +49 7154-1796-222 Fax: +49
More informationSafety Management Center. DNV IT Global Services Safety Engineering / Management in the automotive industry. Content
DNV IT Global Services Safety Engineering / Management in the automotive industry Enhancing Trust and Confidence in IT Automotive SPIN Italia 4 Workshop on Automotive Software Torino, 11.12.2009 Dr. Klaus
More information( %)'* + 7# (&)*)')%&&+)*)-.)/##############################################################!
"$%&'% ( %)'* + " $%&'(&)*)')%&&+), " (&)*)')%&&+)(&-( "" (&)*)')%&&+)*)-.)/0 " (&)*)')%&&+)*)-.)/$1 + '%, - "%&&%. 0 /(.(.&%(&)*)'23-(&%2-+()'4 0 &%5&((&)*)'()-(/(&4 / 0$%'% 1 -+'(.-(6.(/(&6&-((26&3&-/*6/(&,
More informationCGEIT Certification Job Practice
CGEIT Certification Job Practice Job Practice A job practice serves as the basis for the exam and the experience requirements to earn the CGEIT certification. This job practice consists of task and knowledge
More information0 Introduction Test strategy A Test Strategy for single high-level test B Combined testing strategy for high-level tests...
TPI Automotive Test Process Improvement Version: 1.01 Author: Sogeti Deutschland GmbH Datum: 29.12.2004 Sogeti Deutschland GmbH. Version 1.01 29.12.04-1 - 0 Introduction... 5 1 Test strategy...10 1.A Test
More informationConnectivity key to efficient, safe, and convenient mobility
Connectivity key to efficient, safe, and convenient mobility Dr. Markus Heyn Member of the board of management, Robert Bosch GmbH 1 Invented for life means connected for life Combining cross-domain know-how
More informationPREEvision Model-Based Electric/Electronic Development
PREEvision Model-Based Electric/Electronic Development From Design to Series Production PREEvision Modeling Layers For modeling the entirety of electric/electronic systems, from requirements to software
More informationAutomotive Safety and Security in a Verification Continuum Context
Automotive Safety and Security in a Verification Continuum Context Accelerating the Development of Automotive Electronic Systems Jean-Marc Forey Automotive Functional Safety Professional Synopsys Inc.
More informationDevelopment of AUTOSAR Software Components with Model-Based Design
Development of AUTOSAR Software Components with Model-Based Design Guido Sandmann Automotive Marketing Manager, EMEA The MathWorks Joachim Schlosser Senior Team Leader Application Engineering The MathWorks
More informationProduct Line Engineering Lecture PL Architectures I
Product Line Engineering Lecture PL Architectures I Dr. Martin Becker martin.becker@iese.fraunhofer.de 0 Schedule - Lectures 1 Schedule - Exercises 2 Product Line Scoping --- Requirements Engineering ---
More informationSafety cannot rely on testing
Standards 1 Computer-based systems (generically referred to as programmable electronic systems) are being used in all application sectors to perform non-safety functions and, increasingly, to perform safety
More informationDesign of Embedded Systems: Methodologies, Tools and Applications. Foundations of Hybrid and Embedded Software Systems. System Design.
Design of Embedded Systems: Methodologies, Tools and Applications Alberto Sangiovanni-Vincentelli Dept. of EECS University of California Berkeley NSF UC Berkeley: Chess Vanderbilt University: ISIS University
More informationAgenda. Why AUTOSAR Introduction Technical Overview Backup References. 26 August 2015 Liu Xue
AUTOSAR Agenda 1 2 3 4 5 Why AUTOSAR Introduction Technical Overview Backup References 2 Background Initial discussions on the common challenge and objectives were held by BMW, Bosch, Continental, DaimlerChrysler
More informationRequirements Engineering
Requirements Engineering Software Engineering Andreas Zeller Saarland University Requirements Engineering The Real World Requirements Engineering A description of what the system should do (but not how)
More informationIEC and ISO A cross reference guide
and A cross reference guide This guide sets out to explain where the details for different safety lifecycle activities can be found in the standards for the Machinery Sector: and. 1 Concept 2 Overall scope
More informationRational and Telelogic
IBM Stware Group Rational Telelogic Solutions for Systems Engineering & Product Lifecycle Brett Hillhouse, WW Rational PLM Executive bretth@us.ibm.com 2007 IBM Corporation Agenda Introduction Telelogic
More informationEvolving Lockheed Martin s Engineering Practices Through the Creation of a Model-centric Digital Tapestry
Evolving Lockheed Martin s Engineering Practices Through the Creation of a Model-centric Digital Tapestry 2011 Frontiers in MBSE Workshop Christopher Oster MBSD Rollout Manager Lockheed Martin Corporation
More informationSafety with Embedded Multicores. Glenn Farrall: Microcontrollers Infineon UK
Safety with Embedded Multicores Glenn Farrall: Microcontrollers Infineon UK 2014-09-23 Agenda Automotive ECUs Automotive Trends AURIX MultiCore Page 2 Automobiles are no longer a composition of mechanical
More informationEnterprise Architecture: an ideal discipline for use in Supply Chain Management
Enterprise Architecture: an ideal discipline for use in Supply Chain Management Richard Freggi Senior Supply Chain Architect (TOGAF 9.1 certified level 2) HP Inc. Content Understanding Supply Chain Management
More informationIEC KHBO, Hobufonds SAFESYS ing. Alexander Dekeyser ing. Kurt Lintermans
IEC 61508 KHBO, Hobufonds SAFESYS ing. Alexander Dekeyser ing. Kurt Lintermans page 2 PART 1 : GENERAL REQUIREMENTS 1 Scope The first objective of this standard is to facilitate the development of application
More informationResearch on software systems dependability at the OECD Halden Reactor Project
Research on software systems dependability at the OECD Halden Reactor Project SIVERTSEN Terje 1, and ØWRE Fridtjov 2 1. Institute for Energy Technology, OECD Halden Reactor Project, Post Box 173, NO-1751
More informationPC-Based Validation of ECU Software
PC-Based Validation of ECU Software Sean Wyatt - ETAS, Inc. Embedded System Workshop Venue: Oakland University School of Engineering and Computer Science, Rochester, MI Date: October 13, 2012 What you
More informationInside! icteam, a confluence of parallels. - Jyothi G Shivashankar (Robert Bosch Engineering and Business Solutions) Eclipsecon 2013
Inside! Eclipsecon 2013 26 Mar 2013 16:15 16:45 Room : Back Bay - Jyothi G Shivashankar (Robert Bosch Engineering and Business Solutions) - Ryan D Brooks (The Boeing Company) 1 Agenda 1 The parallel industries
More informationfor Embedded Multi-Core Systems
EclipseCon Europe 2013 AMALTHEA Harald Mackamul Robert Bosch GmbH Model Based Open Source Development eop e Environment Platform for Embedded Multi-Core Systems ITEA 2-1 of 36 The Project Start 01.07.2011
More informationTechniques and benefits of incorporating Safety and Security analysis into a Model Based System Engineering Environment
Techniques and benefits of incorporating Safety and Security analysis into a Model Based System Engineering Environment Gavin Arthurs P.E Solution Architect Systems Engineering IBM Software, Rational Common
More informationAnalysis of ISO Compliant Techniques for the Automotive Domain
Analysis of ISO 26262 Compliant Techniques for the Automotive Domain S. Manoj Kannan 1, Yanja Dajsuren 2, Yaping Luo 1, and Ion Barosan 1 1 Eindhoven University of Technology, Eindhoven, The Netherlands
More informationSERIES 92/93 SAFETY MANUAL PNEUMATIC ACTUATOR. The High Performance Company
SERIES 92/93 PNEUMATIC ACTUATOR SAFETY MANUAL The High Performance Company Table of Contents 1.0 Introduction...1 1.1 Terms and Abbreviations... 1 1.2 Acronyms... 1 1.3 Product Support... 2 1.4 Related
More information7. Model based software architecture
UNIT - III Model based software architectures: A Management perspective and technical perspective. Work Flows of the process: Software process workflows, Iteration workflows. Check Points of The process
More informationBCS THE CHARTERED INSTITUTE FOR IT. BCS HIGHER EDUCATION QUALIFICATIONS BCS Level 6 Professional Graduate Diploma in IT SOFTWARE ENGINEERING 2
BCS THE CHARTERED INSTITUTE FOR IT BCS HIGHER EDUCATION QUALIFICATIONS BCS Level 6 Professional Graduate Diploma in IT SOFTWARE ENGINEERING 2 Friday 30 th September 2016 - Morning Answer any THREE questions
More informationAUTOSAR and ISO26262 compliant development by use of Libraries
AUTOSAR and ISO26262 compliant development by use of Libraries Vector Conference 2016 V1.0 2016-08-30 Agenda 1. Challenges in Automotive Development Projects 2. AUTOSAR and ISO26262 compliant development
More informationTotally Integrated Automation. Efficiency driving productivity
Totally Integrated Automation Efficiency driving productivity siemens.tld/keyword Introduction What is Totally Integrated Automation? Totally Integrated Automation: efficient interoperability of all automation
More informationROSA a computer based safety model for European railways
Computers in Railways XII 771 ROSA a computer based safety model for European railways J. Schütte 1 & M. Geisler 2 1 Dresden University of Technology, Germany 2 Deutsche Bahn AG, Frankfurt, Germany Abstract
More informationAssessing Quality in SysML Models
Assessing Quality in SysML Models Matthew Hause, Presented by James Hummell 1 Agenda How do I know if my model is of good quality? What is quality? Model-Based Engineering SysML and UML Examples: Requirements
More informationMagillem. X-Spec. For embedded Software and Software-driven verification teams
Magillem X-Spec For embedded Software and Software-driven verification teams Get ready for the lot execute your spec Predict the behavior of your smart device Software that streamline your design and documentation
More informationVOLUME HORST HIENTZ HANS-JÜRGEN KUGLER BONIFAZ MAAG DOMINIK STRUBE
VOLUME 2 2017 HORST HIENTZ HANS-JÜRGEN KUGLER BONIFAZ MAAG DOMINIK STRUBE Kugler Maag Cie People. Performance. Processes Integration of digital capabilities: Management consulting Performance improvement
More informationISO Compliance Using Approved Software Components for Road Vehicles
WHITEPAPER ISO 26262 Compliance Using Approved Software Components for Road Vehicles A Verocel and RTI Whitepaper Joe Wlad, Vice President, Business Development, Verocel, Inc. David Barnett, Vice President,
More informationEnterprise Infrastructure vs. Enterprise Integration Architecture Standards
Enterprise Infrastructure vs. Enterprise Integration Architecture Standards (from Effectively Managing Information Systems Architecture Standards: and Intra-organization perspective, by Boh, Yellin, Dill
More informationMastering Unexpected Situations Safely. Chassis & Safety Vehicle Dynamics
Mastering Unexpected Situations Safely Chassis & Safety Vehicle Dynamics Benefits and Challenges of using SystemC Models for Pre-Silicon Software Development in the Automotive Industry www.continental-corporation.com
More informationKey MBSE Enablers with Examples
Nick s Bio Nick has been a Systems Engineer at Raytheon for 3 years, working in the Patriot BMC4I Requirements Team. Nick joined Raytheon after graduating from the University of Massachusetts Amherst with
More informationRequirements Engineering. Andreas Zeller Saarland University
Requirements Engineering Software Engineering Andreas Zeller Saarland University Communication project initiation requirements gathering Planning estimating scheduling tracking Waterfall Model (1968) Modeling
More informationAerospace Vehicle Systems Institute
System and Software Integration Verification Texas Engineering Experiment Station The idea for this cooperative began in 1997 when Walt Gillette (now the 747X program manager Boeing Commercial Airplanes)
More informationMBA BADM559 Enterprise IT Governance 12/15/2008. Enterprise Architecture is a holistic view of an enterprise s processes, information and
Enterprise Architecture is a holistic view of an enterprise s processes, information and information technology assets as a vehicle for aligning business and IT in a structured, more efficient and sustainable
More informationMBSE Workshop. Agenda and Objectives September 18 th, GPDIS Workshop Mark Williams, Boeing Greg Pollari, Rockwell Collins
MBSE Workshop Agenda and Objectives September 18 th, 2017 2017 GPDIS Workshop Mark Williams, Boeing Greg Pollari, Rockwell Collins GPDIS_2017.ppt 1 What is MBSE? Architecture and analysis defined as integrated
More informationFACILITATING AGRICULTURE AUTOMATION USING STANDARDS
FACILITATING AGRICULTURE AUTOMATION USING STANDARDS Robert K. Benneweis P. Eng Outline Available standards Developing standards Implemented automation Standard based automation implementation Potential
More informationA FRAMEWORK FOR FOOD PROCESSING PLANT MODELLING
A FRAMEWORK FOR FOOD PROCESSING PLANT MODELLING Ion-Dan Mironescu 1 Department of Food Processes Engineering, Faculty of Agricultural Sciences, Food Industry and Environmental Protection, Lucian Blaga
More informationSafe and Secure by Design: Systems Engineering Best Practices for Connected Vehicles
Safe and Secure by Design: Systems Engineering Best Practices for Connected Vehicles Brett Hillhouse WW Engineering Solutions Executive Internet of Things, IBM bretth@us.ibm.com 1 From last Sunday s 60
More informationEngineering systems to avoid disasters
Critical Systems Engineering Engineering systems to avoid disasters Adapted from Ian Sommerville CSE 466-1 Objectives To introduce the notion of critical systems To describe critical system attributes
More informationTOGAF 9.1 in Pictures
TOGAF 9. in Pictures The TOGAF ADM Cycle Stage Set up an EA team and make sure it can do its work The ADM is about understanding existing architectures and working out the best way to change and improve
More informationProfessor Edward F. Crawley ESD.34 - System Architecture IAP 2007
ESD.34 - System Architecture IAP 2007 Professor Edward F. Crawley Ford Professor of Engineering Professor of Aeronautics and Astronautics Professor of Engineering Systems Definitions The structure, arrangements
More informationA View on Tool Interoperability Solutions at Ford Motor Company
A View on Tool Interoperability Solutions at Ford Motor Company r. Ahsan Qamar Vehicle Controls & Systems Engineering Research & Advanced Engineering Ford Motor Company aqamar2@ford.com Contributors Kurt
More informationEnterprise Architecture and COBIT
Enterprise and COBIT The Open Group October 22, 2003 www.realirm.co.za reducing risk, adding value, driving change Agenda 2 Introduction Case Study Enterprise and IT Governance Conclusion Business Orientation
More informationSoftware Architecture
Ingo Arnold Department Computer Science University of Basel Introduction Software «HR System» Case Study HR System Case Study Case Study HR-System 2 (C) by Ingo Arnold IT HR System Case Study HR System
More informationFundamentals of Requirements Engineering
- interfaces system seen as black box inputs functions quantified characteristics outputs restrictions, prerequisites boundaries, exceptions standards, regulations Frogs vei 41 P.O. Box 235, NO-3603 Kongsberg
More informationAdvanced Software Engineering FYI
C870, Advanced Software Engineering, Advanced Software Engineering Dr. Overview of Software Engineering and Development Processes C870 C870: Advanced Software Engineering (): Intro to Software Engineering
More informationSession Nine: Functional Safety Gap Analysis and Filling the Gaps
Session Nine: Functional Safety Gap Analysis and Filling the Gaps Presenter Colin Easton ProSalus Limited Abstract Increasingly regulatory and competent authorities are looking to hazardous Installation
More informationResults of the IEC Functional Safety Assessment. Pressure, Temperature and Vacuum Switches. BETA B.V. Rijswijk The Netherlands
exida Certification S.A. 2 Ch. de Champ-Poury CH-1272 Genolier Switzerland Tel.: +41 22 364 14 34 email: info@exidacert.ch Results of the IEC 61508 Functional Safety Assessment Project: Pressure, Temperature
More information9. Verification, Validation, Testing
9. Verification, Validation, Testing (a) Basic Notions (b) Dynamic testing. (c) Static analysis. (d) Modelling. (e) Environmental Simulation. (f) Test Strategies. (g) Tool support. (h) Independent Verification
More informationFunctional safety Safety instrumented systems for the process industry sector
BRITISH STANDARD BS IEC 61511-1:2003 Functional safety Safety instrumented systems for the process industry sector Part 1: Framework, definitions, system, hardware and software requirements ICS 25.040.01;
More informationSoftware Design Patterns (CPIT 252)
Software Design Patterns (CPIT 252) M. G. Abbas Malik Assistant Professor Faculty of Computing and IT (North Jeddah Branch) King Abdulaziz University, Jeddah, KSA mgmalik@kau.edu.sa www.sanlp.org/malik/cpit252/sdp.html
More informationSelf-adaptive Distributed Software Systems
Self-adaptive Distributed Software Systems INF 5360 spring 2015 lecturer: Amir Taherkordi INF5360/9360 spring 2015: overview self-adaptive software systems 1 Overview Ø Preliminary definitions Ø Motivation
More informationSupplying Value with Innovation
Supplying Value with Innovation Wolfgang Dehen, Group President Reinhard Pinzer, Chief Financial Officer Financial Market Day, February 17, 2004 We are on track with our financial performance Rigorous
More informationSoftware Development Methodologies. CSC 440: Software Engineering Slide #1
Software Development Methodologies CSC 440: Software Engineering Slide #1 Topics 1. The Waterfall Model 2. Agile Software Development 3. The Unified Process 4. Object-Oriented Analysis and Design 5. The
More informationChapter 4 Requirements Elicitation
Object-Oriented Software Engineering Using UML, Patterns, and Java Chapter 4 Requirements Elicitation Outline Today: Motivation: Software Lifecycle Requirements elicitation challenges Problem statement
More informationEB TechPaper. Robot architectures. DNA for automated driving. elek trobit.com
EB TechPaper Robot architectures DNA for aumated driving elek trobit.com 1 Robot architectures DNA for aumated driving Introduction With functions such as lane assist, emergency brake assist and adaptive
More informationADL Automotive. Joubin Adl Zarrabi
ADL Automotive Joubin Adl Zarrabi ADL Automotive 26 Allée de Barcelone 31000 Toulouse - FRANCE Office Phone: +33.562.806.304 E-mail: j.adl@adl-automotive.com Internet: www.adl-automotive.com 9/15/2017
More informationRequirements Elicitation
Requirements Elicitation Software Engineering I Lecture 4 14. November 2006 Bernd Bruegge Applied Software Engineering Technische Universitaet Muenchen 1 Outline Motivation Requirements elicitation challenges
More informationVector is a global company located in Stuttgart, Germany Subsidiaries in USA, Japan, France, Sweden
Modeling with CANoe by Bruce D. Emaus President of Vector CANtech & SAE Embedded Software Standards Committee Chair Automotive Software Workshop San Diego March 2006 This is a Vector commercial Vector
More informationUsing the CESAR Safety Framework for Functional Safety Management in the context of ISO 26262
ERTS² 01 EMBEDDED REAL TIME SOFTWARE AND SYSTEMS 1 Using the CESAR Safety Framework for Functional Safety Management in the context of ISO 66 E. Armengaud 1, Q. Bourrouilh 1, G. Griessnig 1, H. Martin,
More informationAttribute-Driven Design Method
1 Attribute-Driven Design Method April 2014 Ying SHEN SSE, Tongji University 2 Lecture objectives This lecture will enable student to understand ADD steps design the architecture using ADD method 3 Architecture
More informationSystems Engineering Concept
Systems Engineering Concept WHITE PAPER February 2017 The Systems Engineering Concept provides practical hands-on methods and tools, that enable companies to meet today s global business challenges through
More informationReliability Improvement of Electric Power Steering System Based on ISO 26262
2013 International Conference on Quality, Reliability, Risk, Maintenance, and Safety Engineering (QR2MSE) 2013 International Conference on Materials and Reliability (ICMR) 2013 International Conference
More informationHow to use SAP PowerDesigner to model your landscape architecture
How to use SAP PowerDesigner to model your landscape architecture Dirk Anthony, SAP SE Public Legal Disclaimer The information in this presentation is confidential and proprietary to SAP and may not be
More informationWork Plan and IV&V Methodology
Work Plan and IV&V Methodology Technology initiatives and programs should engage with an IV&V process at the project planning phase in order to receive an unbiased, impartial view into the project planning,
More informationAligning TOGAF and NAF Experiences from the Norwegian Armed Forces
Aligning TOGAF and NAF Experiences from the Norwegian Armed Forces Håvard Jørgensen Tore Liland Stein Skogvold havard.jorgensen@commitment.no, tliland@mil.no, stein.skogvold@acando.com Objectives and Background
More informationResults of the IEC Functional Safety Assessment HART transparent repeater. PR electronics
exida Certification S.A. 2 Ch. de Champ-Poury CH-1272 Genolier Switzerland Tel.: +41 22 364 14 34 email: info@exidacert.com Results of the IEC 61508 Functional Safety Assessment Project: 9106 HART transparent
More informationIntegrated Systems and Safety Engineering Towards Meaningful Assurance Cases
Integrated Systems and Safety Engineering Towards Meaningful Assurance Cases Carmen Cârlan Harald Ruess Sebastian Voss Supported by D-MILS (d-mils.org) fortiss GmbH An-Institut Technische Universität München
More informationIntroducing Software Ecosystems for Mass-Produced Embedded Systems
Introducing Software Ecosystems for Mass-Produced Embedded Systems Ulrik Eklund and Jan Bosch Chalmers University of Technology Software Engineering Division, Dept. of Computer Science & Engineering Göteborg,
More informationPOSITION DESCRIPTION
POSITION DESCRIPTION POSITION TITLE: BUSINESS UNIT: TENURE: LOCATION: Database Applications Administrator Corporate Services Permanent Full-Time Townsville CLASSIFICATION: POTL 4 NAME: SIGNATURE: Date:
More informationModel Based Approach for the Integration of ECUs
Model Based Approach for the Integration of ECUs Rajeshwari Hegde, K S Gurumurthy Abstract A modern automotive system is a complex electromechanical system, whose comfort, safety and performance requirements
More informationOn the management of nonfunctional requirements
- modulo B On the management of nonfunctional requirements Dr Tullio Vardanega European Space Research and Technology Centre and University of Padua TU Delft, 12 November 2001 Outline of the talk What
More informationVerification of Safety Critical Systems. Software-Workshop Technologiepark Karlsruhe Dr. Christoph Diesch
Software-Workshop Technologiepark Karlsruhe 24.01.2008 Dr. Christoph Diesch Structure Challenges in Aerospace and Automotive Fields of Activities An Aerospace Example V&V Strategy Theory Requirements Elements
More informationIntegrating MBSE and PLM to enhance System Engineering Processes
Integrating MBSE and PLM to enhance System Engineering Processes Stephane GUIGNAR sguignard@aras.com Agenda 1 Aras at a glance 2 Introduction & Context 3 Integrating MBSE and PLM - Benefits 4 emo 5 Conclusion
More informationEnterprise Architecture
Enterprise Architecture The Guide is definitive. Reality is frequently inaccurate. Douglas Adams - The Restaurant at the End of the Universe Webinar Topic Enterprise Architecture (EA) at UC Overview Domains
More informationMeasurement, simulation, virtualization
Translated article Methoden und Tools für die Entwicklung von Fahrzeugsystemen: Messung, Simulation, Virtualisierung, Elektronik Automotive Sonderausgabe Software 2016 Methods and tools for the development
More informationAutomation framework for converting legacy application to AUTOSAR System using dspace SystemDesk
Automation framework for converting legacy application to AUTOSAR System using dspace SystemDesk ABSTRACT James Joy, Anush G Nair Tata Elxsi, India AUTOSAR systems are getting very popular in the automotive
More information