Logo des Repositoriums

P210 - Automotive – Safety & Security 2012

https://dl.gi.de/handle/20.500.12116/21098
Auflistung nach:

Auflistung P210 - Automotive – Safety & Security 2012 nach Erscheinungsdatum

Zu einem Punkt im Index springen:
1 - 10 von 18
  • Konferenzbeitrag
    Constructive requirements modeling - more reliable implementations in a shorter time
    (Automotive - Safety & Security 2012, 2012) Berger, Christian; Siegl, Sebastian
    Requirements engineering is nowadays the broadly accepted method to manage customer's requirements. The result is a specification from which a solution is implemented and which is used to validate the realization in terms of their fulfillment. However, today's tools assist in organizing and tracking the requirements but reliable criteria about their completeness, consistency, and realizability are missing. Furthermore, the resulting artifact is a document, which must be read and understood by humans, which itself is error-prone. It is obvious that errors and ambiguities result in an unwanted solution which is often and in the worst case only discovered in the final stage: Testing. This paper outlines an approach for constructive requirements modeling, which describes completely customer's demands in a formal manner so that already during the requirements' elicitation inconsistencies are eliminated, completeness is assessed, realizability is ensured, and all valid test cases can be derived by using a model-based testing approach. Therefore, we propose adaptions to the traditional V-model to not only save valuable development and testing time but also to achieve better results. The applicability is shown on the example of the software for an auxiliary heating system at a large German OEM.
  • Konferenzbeitrag
    SW-basierte Integration von neuen Fahrzeugfunktionen in zentralisierten Controllern
    (Automotive - Safety & Security 2012, 2012) Becker, Klaus; Buckl, Christian; Camek, Alexander; Falk, Rainer; Fiege, Ludger; Geßner, Jürgen; Sommer, Stephan
    In aktuellen Fahrzeugen wird ein wesentlicher Teil der Fahrzeugfunktionen durch Software realisiert. Die Integration aktiv eingreifender Assistenzsysteme wird diesen Trend noch verstärken und die Komplexität des Bordnetzes wird weiter zunehmen. In diesem Artikel stellen wir einen Ansatz vor, Bordnetz und Software im Fahrzeug über eine datenzentrische Middleware zu entkoppeln. Sie koordiniert die Kommunikation zwischen Funktionen, Sensorik und Aktorik zur Laufzeit. Basierende auf einer Zentralrechnerarchitektur wird eine redundante Datenbasis zur Verfügung gestellt, die eine fail-operational Ausführung auch von sicherheitskritischen Funktionen erlaubt. Wir stellen am Beispiel Plug-and-Play (PnP) eine neue Sekundärfunktion vor, die durch diesen Ansatz ermöglicht wird. Safetyund Security-Aspekte der vorgestellten Architektur werden ebenfalls betrachtet.
  • Konferenzbeitrag
    ISO 26262 - Quo vadis?
    (Automotive - Safety & Security 2012, 2012) Kriso, Stefan
    Die ISO 26262 ist veröffentlicht und trägt damit einerseits zum Stand der Technik bei der Entwicklung sicherer elektrischer/elektronischer Systeme im Automobil bei. Andererseits sind einige Anforderungen der ISO 26262 visionär formuliert, so dass es nicht möglich ist, die Norm zu ihrem Veröffentlichungszeitpunkt umgesetzt zu haben, sondern es ist ein Einführungszeitraum notwendig. In dieser Zeit ist die Branche aufgefordert, praktikable und umsetzbare Interpretation der ISO 26262 zu finden, die der Intention der Norm möglichst nahe kommen sowie die Produktsicherheit nicht gefährden. Der Artikel nennt hierfür Beispiele und mögliche Lösungen.
  • Konferenzbeitrag
    Why current memory management units are not suited for automotive ECUs
    (Automotive - Safety & Security 2012, 2012) Schneider, Jörn
    A major trend in automotive industry is to enrich driver and passenger experience with an increasing amount of consumer electronics and car-2-x functionality. A close interaction between this added functionality and the classical automotive domains allows for innovations that are valuable to the end customer and cannot be outplayed easily by devices with a pure consumer electronic origin. Innovations of this class require a tight coupling, for instance by executing programs from both worlds on the same microprocessor. The latter introduces many challenges, especially regarding reliability, security and safety of such systems. A unified memory management fulfilling the requirements of the consumer electronics and automotive application could help to address these issues and is a challenge by itself. This paper shows that the prevailing implementation scheme for memory management units (MMUs) is not suited for the needs of such systems and points out a solution direction.
  • Konferenzbeitrag
    A systematic approach to a qualified security risk analysis for vehicular IT systems
    (Automotive - Safety & Security 2012, 2012) Wolf, Marko; Scheibel, Michael
    By now, security engineering is an accepted challenge in the development of most vehicular IT systems. However, even though many vehicular security threats and effective protection measures are known in general, automotive engineers have difficulties to realize efficient security solutions such that the costs for certain protection measures are appropriate to the actual security threats in order to avoid “underprotection” as well as “over-protection”, which both are unacceptable particularly in the automotive domain. By applying a thorough security risk analysis, which incorporates the special characteristics of the automotive domain, we would have a qualified taxonomy to make well-founded decisions about the security measures effectively required. We therefor present a methodical approach for conducting a meaningful security risk analysis, which focusses particularly on vehicular IT systems. This approach applies systematic estimations for the two mandatory factors of any risk analysis, the potential damages and the probability of a successful security attack, both based on industry-proven methods and taxonomies carefully adapted to vehicular IT security scenarios.
  • Konferenzbeitrag
    Modelica - modeling and simulation of technical systems
    (Automotive - Safety & Security 2012, 2012) Jähnichen, Stefan
    The talk introduces the simulation language Modelica and its concepts for the modeling and simulation of continuous system behavior. The language is competitive to Matlab/Simulink and in addition, supports an objectoriented style of modeling which leads to a high degree of component reuse. System behavior is expressed in an equation oriented style and algebraic and differential equations are directly encoded in the program text based on its modular structure. The talk gives an overview on the language concepts and on the mathematics as the interface to the solvers needed for experimentation, and introduces the advanced concept of structure dynamics . As a nice and novel feature, simulation results can be presented through a sophisticated graphical backend attached to the simulation system. Emphasis is also put on the concept of acausalty as a comfortable way to describe problems not only for the simulation of technical systems.
  • Konferenzbeitrag
    Static verification of non-functional software requirements in the ISO-26262
    (Automotive - Safety & Security 2012, 2012) Kästner, Daniel; Ferdinand, Christian
    The norm ISO-26262 aims at ascertaining the functional safety of Automotive Electric/Electronic Systems. It is not focused on purely functional system properties, but also demands to exclude nonfunctional safety hazards in case they are critical for a correct functioning of the system. Examples are violations of timing constraints in real-time software and software crashes due to runtime errors or stack overflows. The ISO-26262 ranks the static verification of program properties among the prominent goals of the software design and implementation phase. Static program analyzers are available that can prove the absence of certain non-functional programming errors, including those mentioned above. Static analyzers can be applied at different stages of the development process and can be used to complement or replace dynamic test methods. This article gives an overview of static program analysis techniques focusing on non-functional program properties, investigates the non-functional requirements of the ISO-26262 and discusses the role of static analyzers in the ISO-26262.
  • Konferenzbeitrag
    ISO 26262 - Tool chain analysis reduces tool qualification costs
    (Automotive - Safety & Security 2012, 2012) Slotosch, Oscar; Wildmoser, Martin; Philipps, Jan; Jeschull, Reinhard; Zalman, Rafael
    Software tools in safety related projects are indispensable, but also introduce risks. A tool error may lead to the injection or non-detection of a fault in the product. For this reason the safety norm for road vehicles, ISO 26262, requires determination of a tool confidence level for each software tool. In this paper we present a model-based approach to represent a tool chain, its potential errors and the counter-measures for these. In this model tools are not only error sources, but can also act as error sinks for other tools by providing appropriate checks and restrictions. The tool work flow in a project can be rearranged or extended to make the integrated tool chain safer than its parts and to reduce tool qualification costs greatly. The tool chain model not only identifies the critical tools, but also exposes very specific qualification requirements for these. The paper illustrates and augments this approach with experiences and results from an application to a real industrial automotive tool chain consisting of 37 tools.
  • Editiertes Buch
  • Konferenzbeitrag
    Extraktion von Interthread-Kommunikation in eingebetteten Systemen
    (Automotive - Safety & Security 2012, 2012) Wittiger, Martin; Keul, Steffen
    Mit der zunehmenden Verbreitung von Multicore-Rechnern werden Multicore-Architekturen auch in eingebetteten Systemen mehr und mehr Einzug halten. Zusätzlich zu den Schwierigkeiten der Softwareentwicklung für Singlecore-Plattformen müssen Software-Ingenieure somit die Herausforderungen bewältigen, bestehende Systeme zuverlässig und fehlerfrei auf Multicores zu portieren und dabei dennoch das Parallelisierungspotential möglichst effektiv zu nutzen. Bislang existiert kaum Werkzeugunterstützung, um diese Portierung in der Praxis durchzuführen. Unsere Ar- beit verfolgt das Ziel, Algorithmen und Werkzeuge zu entwickeln, die existierende Steuersoftware im Automotive-Bereich semi-automatisiert auf Multicore-Plattformen portieren können. In diesem Beitrag wird eine statische Analysetechnik vorgestellt, mit der aus dem Quelltext eines eingebetteten Systems Kommunikationsgraphen extrahiert werden können. Diese können verwendet werden, um Modifikationsbedarf in bestehender Software zu identifizieren, und eignen sich als Grundlage für die spä- tere Partitionierung. Die vorgestellten Algorithmen wurden prototypisch in unserer Programmanalyse-Toolsuite Bauhaus implementiert und ihre prinzipielle Tauglichkeit wurde durch Anwendung auf bestehende industrielle Softwaresysteme bestätigt.