Adela Béres, a functional safety expert with over 10 years of experience, leads a webinar focused on functional safety in automotive development, including hazard analysis, risk assessment, and compliance with ISO 26262. The session will cover key topics such as safety goals, automotive safety integrity levels (ASIL), and verification and validation processes. Attendees will have the opportunity to participate in a Q&A session and access a recording of the webinar afterward.

1. 11/13/2018
Hazard Analysis and
Functional Safety Compliance
Adela Béres
Functional Safety Expert, Intland Software

2. 2
Intland Software’s functional safety specialist has an MSc in Electrical
Engineering, embedded systems. She has worked with companies including
Robert Bosch, ThyssenKrupp, and autonomous technology startup AImotive.
Adela brings 10+ years of experience and expert functional safety knowledge
to guarantee the value of these webinar sessions.
Adela Beres

3. 3
1. Functional Safety in Safety-critical & Automotive Development
2. Hazard Analysis and Risk Assessment
3. Safety goals and ASIL
4. Verification and Validation
5. Live demonstration
Agenda

4. 4
• Q&A session at the end
• Webinar recording will be
available at:
www.intland.com/webinars-events/
• Sign up to attend Intland’s
Functional Safety Summer
Academy!
Webinar Info

5. 5
Intland’s Functional Safety Summer Academy
• Automotive development is Intland’s core market
• Recent customer wins: major automotive OEMs & suppliers
• Expert support & preconfigured templates
• Teaching & training customers and prospects
• Share best practices on applying ALM to support ISO 26262 compliance
• The value of ALM from HARA to audit

6. HARA

7. 8
Functional Safety in Automotive Development
• Safety is absence of unreasonable risk (ISO26262-1 1.136) („Unreasonable” is defined by the society)
• Goal: minimisation of hazardous incidents and accidents via preventive systematic approach at justifiable costs
Product
Embedded
software
Embedded
software
Embedded
software
Connectivity Connectivity
Internet
Of Things
Smart product
Smart,
connected product
Product system

8. 9
Hazard Analysis and Risk Assessment
ISO26262:
„HARA – method to
identify and categorize
hazardous events of
items and to specify
safety goals and ASILs
related to the prevention
or mitigation of the
associated hazard in
order to avoid
unreasonable risk.”
• Hazardous event is a combination of a hazard and an
operational situation
• Hazard is a potential source of harm caused by the
malfunctioning behaviour of the item
• Harm is a physical injury or damage to the health of
persons
• Item is a system or array of systems that implement a
function or part of the function on vehicle level
• System is a set of components that relates at least a
sensor, a controller and an actuator with one other
Safety in Automotive

9. 10
Safety in Automotive
Hazard Analysis and Risk Assessment
Item definition
HARA
ASIL
Safety Goals
FTTI, Safe State
Functional
Safety
Requirements
Concept Phase

10. 11
Item definition
• Purpose
• Functional and Non-Functional Requirements
• Known Safety Requirements
• Relevant operating and environmental constraints
• Boundary interface
• HMI
• ...
Safety in Automotive

11. 12
Functional Analysis
• Functional Requirements
• Guidewords
• No
• Early
• Late
• More
• Less
• Inverted
• ...
• Checklists, previous experience,...
Safety in Automotive
• Functional Failures

12. 13
HARA addresses all relevant technologies, not just electronic/electric related ones
E/E malfunctioning
e.g. Brake
System
ISO 26262 – Road Vehicles - Functional Safety
Safety in Automotive

13. 14
Situation Analysis
• Vehicle state/driver actions
o Engine ON/OFF, accelaration/deceleration, braking, steering, ...
• Driving situation
o Overtaking, turning, parking, evasive maneuver, ...
• Environmental conditions
o Direct sunlight, rain, fog, ...
• Road surface
o Low-mu, tunnel, slope, deep water, ...
Safety in Automotive

14. 15
Hazardous Events
• Situation + Hazard: Severity, Exposure and Controllability
• Automotive Safety Integrity Levels (ASIL)
• Fault Tolerant Time Interval (FTTI)
• ...
Safety in Automotive

15. 16
Fault Failure Hazardous situation
Could lead
to injury
FTTI (Fault tolerant time interval)
HARA – Hazards Analysis and Risk Assessment
Safety in Automotive

16. 17
Vehicle state (engine off, rolling, )
Driving situation (city ride, parking,...)
Environmental conditions (dry, wet road)
Hazards – functional failures
• self-steering
• no braking when requested
• ...
Hazards shall be evaluated for each vehicle state,
driving situation, environmental condition based
on the Severity, Exposure and Controllability
tables. Highest ASIL shall be allocated to the
safety goals.
HARA – Hazards Analysis and Risk Assessment
Safety in Automotive

17. 18
Hazard
• Self-steering
• On Highway
• Driving at 130 km/h
• Dry road
Safety Goal
Vehicle validation
FTTI = 10 ms
• Avoid self-steering...
• ASIL D
• FTTI 10ms
• Safe state: ...
• The ASIL shall be inherited to the atomic requirement level
• It describes via provided requirements the necessary actions and measures to be taken
during the development and after start of production
What does ASIL mean?
Safety in Automotive

18. 19
Safety Goals
• Hazard - > Safety Goal
• ASIL
• FTTI
• Safe State, Degraded Mode, etc
• ID
• Status
Safety in Automotive

19. 20
Verification:
Did we build the system right ?
Validation:
Did we build the right system ?
Checking if the
highest level
requirements are
correct and complete
Verification and Validation
Safety in Automotive

20. 21
Thank you for your Attention!
Any questions?
Adela Béres, Safety Expert