Objective / Overview
OEMs and Tier-1 suppliers across Germany and Japan were facing increasing complexity in developing and validating automotive software platforms in compliance with ISO 26262 standards, particularly across ASIL A to C categories. These challenges included managing infrastructure software development, performing dependent failure analysis, qualifying safety tools, and ensuring robust testing and configuration of Battery Management Systems (BMS). To address these needs, AVIN Systems was engaged as an Independent Functional Safety Manager and Consultant. Through its expertise in ISO 26262 compliance, AVIN provided targeted support across the software lifecycle—helping streamline safety processes, ensure regulatory adherence, and enhance functional safety assurance across multiple ECU programs.
Solution & Approach
Requirement Analysis & Configuration
Safety Management & Infrastructure Platform Development
– Conducted gap analysis between current processes and ISO 26262 ASIL C requirements.
– Developed a Software Safety Plan and coordinated its execution with project teams.
– Performed confirmation reviews of key safety artifacts to ensure compliance with ISO 26262 Part 2.
Dependent Failure Analysis (DFA)
– Executed DFA focusing on cascading failure scenarios in newly developed ASIL A modules and modified QM modules.
– Delivered detailed DFA reports and proposed design changes to Tier-1 suppliers for OEM integration.
– Ensured alignment with ISO 26262 Part 9 Safety-Oriented Analysis.
Tool Qualification
– Performed Tool Confidence Level (TCL) analysis for tools used in functional safety activities.
– Identified Tool Impact (TI), Tool Error Detection (TD), and classified tools into TCL 1, 2, or 3.
– Conducted tool qualification for TCL 2 and TCL 3 tools and generated required ISO 26262 artifacts.
Safety Module Testing for BMS Software
– Analyzed BMS architecture and derived safety requirements from design documents.
– Prepared test specifications and developed Python-based test scripts.
– Conducted Special Function Register analysis for startup test categorization.
– Verified MCAL configurations against Aurix Safety Manual and BMS application.
– Performed manual code reviews using a structured checklist.
AUTOSAR Configuration & Functional Safety Support
– Reviewed MCAL safety configurations and EA sequence diagrams.
– Prepared design documentation for application software components.
– Configured AUTOSAR RTE and BSW modules to meet BMS safety requirements.
– Supported application code reviews and functional safety testing across distributed teams.
Security Enhancement
– Ensured secure handling of safety-related artifacts and test data.
– Maintained traceability and integrity of documentation throughout the safety lifecycle.
– Followed OEM cybersecurity guidelines during tool qualification and code review processes.
Testing & Validation
– Developed and executed unit, integration, and regression test cases for safety modules.
– Validated AUTOSAR and ISO 26262 compliance through structured peer reviews.
– Used real-world datasets and controller-specific configurations (e.g., AURIX TC277T).
– Conducted manual and automated reviews using Python scripting and safety checklists.
Impact / Key Outcomes
– Improved Safety Compliance: Achieved ISO 26262 compliance across ASIL A to C projects.
– Design Optimization: Identified failure paths and proposed design improvements for enhanced safety.
– Tool Reliability: Qualified safety tools to reduce risk and improve confidence in FS activities.
– Accelerated Testing: Automated test script generation and validation reduced manual effort.
– Cross-Team Collaboration: Enabled seamless coordination across geographies and time zones.
– OEM Readiness: Delivered validated safety documentation for OEM audits and integration.
Technologies & Tools Used
- IBM Rhapsody
- Rational Gateway
- Configurator
- CANoe
- WinIDEA Debugger
- Enterprise Architect
- DOORS
- AURIX TriCore TC277T
- Python
- Tasking Compiler
