• Journal of Software Engineering Society
• /
• v.29 no.1
• /
• pp.7-12
• /
• 2020

As interest in functional safety has recently increased, application of functional safety standards has been required in various industrial fields. A functional safety standard is a document that defines functional safety-related activities required to prevent system malfunctions. All activities defined in this standard are required differentially according to the classification results calculated through the risk analysis and assessment of the system. In the field of domestic weapon systems, there is a manual for the development and management of weapon system software issued by the Defense Acquisition Program Administration (DAPA ). This manual requires static and dynamic analysis of software for functional safety related activities. However, the manual does not specifically address the classification activity through risk analysis and assessment as required for the preceding activities. Therefore, in this study, we analyze the problems of the manual based on the representative functional safety standards, and propose improvement plans.

• Nuclear Engineering and Technology
• /
• v.27 no.3
• /
• pp.385-392
• /
• 1995

A software engineering process has been developed for the design of safety critical software for Wolsong 2/3/4 project to satisfy the requirement of the regulatory body. Among the process, this paper described the detail process of validation testing peformed to ensure that the software with its hardware, developed by the design group, satisfies the requirements of the functional specification prepared by the independent functional group. To perform the test, test facility and test software ore developed and actual safety system computer was connected. Three kinds of test cases, i.e., functional test performance test and self-check test were programmed and run to verify each functional specifications. Test failures ore fedback to the design group to revise the software and test result were analyzed and documented in the report to submit to the regulatory body. The test methodology and procedure were very efficient and satisfactory to perform the systematic and automatic test. The test results were also acceptable and successful to verify the software acts as specified in the program functional specification. This methodology can be applied to the validation of other safety-critical software.

• IEMEK Journal of Embedded Systems and Applications
• /
• v.16 no.6
• /
• pp.267-276
• /
• 2021

The automotive industry and academic research have been continuously conducting research on standardization such as AUTOSAR (AUTomotive Open System ARchitecture) and ISO26262 to solve problems such as safety and efficiency caused by the complexity of electric/electronic architecture of automotive. AUTOSAR is an automotive standard software platform that has a layered structure independent of MCU (Micro Controller Unit) hardware, and improves product reliability through software modularity and reusability. And, ISO26262, an international standard for automotive functional safety and suggests a method to minimize errors in automotive ECU (Electronic Control Unit)s by defining the development process and results for the entire life cycle of automotive electrical/electronic systems. These design methods are variously applied in representative automotive safety-critical systems. However, since the functional and safety requirements are different according to the characteristics of the safety-critical system, it is essential to research the AUTOSAR functional safety design method specialized for each application domain. In this paper, a software functional safety mechanism design method using AUTOSAR is proposed, and a new failure management framework is proposed to ensure the high reliability of the product. The AUTOSAR functional safety mechanism consists of memory partitioning protection, timing monitoring protection, and end-to-end protection. The fault management framework is composed of several safety SWCs to maintain the minimum function and performance even if a fault occurs during the operation of a safety-critical system. Finally, the proposed method is applied to the Shift-by-Wire system design to prove the validity of the proposed method.

• Journal of Digital Contents Society
• /
• v.18 no.2
• /
• pp.393-401
• /
• 2017

As the importance of software in various industry areas has been increased, the number of accidents related to software safety are growing up. The key industries such as railroads, aviation and medicine, recommend IEC 61508 and international safety standards for their own to achieve functional safety and reduce the issues caused by that. For equipment of ship navigation, there are not any particular standards or guidance which Korean users can introduce as considering software functional safety. This article defines the procedure and outcomes of the risk analysis in order to secure software functional safety in marine navigational equipment and applies them to an echo sounder as a case study.

• Journal of Applied Reliability
• /
• v.16 no.3
• /
• pp.216-223
• /
• 2016

Purpose: This paper suggests the procedure to enhance the reliability of the software of the medical device that is to cure, treat, diagnose, and prevent a disease or an abnormal health conditions. Methods: After test requirements are classified by the software requirements specification for safety and backgrounds, reliability assessment methods are suggested. Results: Verification and validation for function and safety can be performed whether the medical device software are implemented as intended. Conclusion: Procedure on the static analysis, unit test, integration test, and system test are provided for the medical device software.

• International Journal of Internet, Broadcasting and Communication
• /
• v.15 no.3
• /
• pp.219-230
• /
• 2023

With the development of autonomous driving technology, as the use of software in vehicles increases, the complexity of the system increases and the difficulty of development increases. Developments that meet ISO 26262 must be carried out to reduce the malfunctions that may occur in vehicles where the system is becoming more complex. ISO 26262 for the functional safety of the vehicle industry proposes to consider functional safety from the design stage to all stages of development. Specifically at the software level, the requirements to be complied with during development and the requirements to be complied with during verification are defined. However, it is not clearly expressed about specific design methods or development methods, and it is necessary to supplement development guidelines. The importance of analysis and verification of requirements is increasing due to the development of technology and the increase of system complexity. The vehicle industry must carry out developments that meet functional safety requirements while carrying out various development activities. We propose a process that reflects the perspective of system engineering to meet the smooth application and developmentrequirements of ISO 26262. In addition, the safety analysis/verification FMEA processforthe safety of the proposed ISO 26262 function was conducted based on the FCAS (Forward Collision Avoidance Assist System) function applied to autonomous vehicles and the results were confirmed. In addition, the safety analysis/verification FMEA process for the safety of the proposed ISO 26262 function was conducted based on the FCAS (Forward Collision Avoidance Assist System) function applied to the advanced driver assistance system and the results were confirmed.

• The Transactions of the Korean Institute of Electrical Engineers P
• /
• v.64 no.3
• /
• pp.138-142
• /
• 2015

Most of the existing studies on functional safety testing for the railway signaling system software have focused on verifying the functional safety through the monitoring of internal memory embedded railway signaling system. However, the railway signaling system is one of the typical embedded control system in the railway sector, and the embedded software has a characteristic of generating an appropriate outputs through the combination of internal processing in consideration of the current internal status and external input. Therefore, the test approach of using the interface communication channel can be effective way for the functional testing for railway signaling system software in consideration of these characteristic. Since a communication interface specification of the railway signal system has a the properties of the sequence input and output signals, test-case for software testing is the most effective methodology by MSC (Message Sequence Chart) language, one of the graphic language. The MSC-based test-case generating methodology for signaling system software was proposed in this paper.

• Journal of Electrical Engineering and Technology
• /
• v.10 no.4
• /
• pp.1915-1920
• /
• 2015

ISO 26262 is an international standard for the functional safety of electric and electronic systems in vehicles, and this standard has become a major issue in the automotive industry. In this paper, a functional safety compliant electronic control unit (ECU) for an electric power steering (EPS) system and a demonstration purposed EPS system are developed, and a software and hardware structure for a safety critical system is presented. EPS is the most recently introduced power steering technology for vehicles, and it can improve driver’s convenience and fuel efficiency. In conformity with the design process specified in ISO 26262, the Automotive Safety Integrity Level (ASIL) of an EPS system is evaluated, and hardware and software are designed based on an asymmetric dual processing unit architecture and an external watchdog. The developed EPS system effectively demonstrates the fault detection and diagnostic functions of a functional safety compliant ECU as well as the basic EPS functions.

• Journal of the Korean Society of Systems Engineering
• /
• v.13 no.1
• /
• pp.57-65
• /
• 2017

Recently, the ratio of electrical part and embedded software has grown in automotive industry. ISO 26262, 'Road Vehicles - Functional Safety', was published to guide development of automotive electrical and electronic part in 2011. This paper describes definition of functional safety and analyzes ISO 26262. The comparison of ISO 26262 and DO-178C is made, then difference between them is identified. DO-178C provides guidance for the production of software for airborne system and equipment. The core of DO-178C is a relatively minor update to the previous DO-178B, however, the big changes are captured in the supplemented documents such as DO-331, 'Model-Based Development and Verification Supplement to DO-178C and DO-278A'. Model-based design is important to develop automotive and aircraft meeting the guidelines of ISO 26262 and DO-178C. In this paper, the sample case of applying MBSE(Model-Based Systems Engineering) to AVCS(Active Vibration Control System) software development is discussed.

• Journal of Convergence Society for SMB
• /
• v.2 no.1
• /
• pp.11-18
• /
• 2012

As scale of software has been expanded and complicated, it is difficult to detect hazards which induce functional failure of software. Functional failure of safety-critical system (nuclear power plant, air traffic control systems, railway operating system) could result in a disaster (personal injury, environmental pollution). Therefore, it is necessary to conduct a safety analysis for preventing functional failure and increasing safety of the software. However, there are some reasons (time and effort problem, low knowledge of various safety analysis techniques, selecting conventional technique in company, organization) which disturb selecting an apposite one. This paper presents some traditional safety analysis techniques, recently presented techniques and combined models. We expect that it helps stakeholders to choice adequate one for target system.