• Journal of Advanced Navigation Technology
• /
• v.27 no.2
• /
• pp.228-234
• /
• 2023

As the increasing demand for high-quality software, there is huge requiring for quality certification of international standards, industrial functional safety (IEC 61508), automotive (ISO 26262), embedded software guidelines for weapon systems, etc., in the industry. Software companies are very difficult to systematically acquire the quality certification in terms of cost and manpower of Startup, venture small-sized companies. For their companies one test case automatic generation is considered as a core technique to evaluate or improve software quality. This paper proposes a test case automatic generation method based on the design decision table for system and software design verification. We apply the proposed method with OMG's standard techniques of metamodel and model transformation for automatically generating test cases. To do this, we design the metamodels of design decision table (Model) and test case document (Text) and define model transformation to automatically generate test cases, which will expect to easily work MC/DC coverage.

• The Journal of The Korea Institute of Intelligent Transport Systems
• /
• v.22 no.6
• /
• pp.264-283
• /
• 2023

Unlike conventional vehicle traffic accidents, autonomous vehicles traffic accidents can be caused by various factors, including technical problems, the environment, and driver interaction. With the future advances in autonomous driving technology, new issues are expected to emerge in addition to the existing accident causes, and various scenario-based approaches are needed to respond to them. This study developed autonomous vehicle traffic accident scenarios by collecting autonomous driving accident reports, CA DMV collision reports, autonomous driving mode disengagement reports, and autonomous driving actual accident videos. The scenarios were derived based on the functional safety system failure modes of ISO 26262 and attempted to reflect the various issues of autonomous driving functions. The autonomous vehicle scenarios derived through this study are expected to play an essential role in preventing and preparing for various autonomous vehicle traffic accidents in the future and improving the safety of autonomous driving technology.

• Journal of IKEEE
• /
• v.25 no.3
• /
• pp.578-583
• /
• 2021

This paper describes acceleration tests for reliability of semiconductors. It also describes AEC-Q100, international test standard for reliability of automotive semiconductors. Semiconductors can be used for dozens of years. So acceleration tests are essential to test potential problems over whole period of product where test time is minimized by applying intensive stresses. AEC-Q100 is a typical acceleration test in automotive semiconductors, and it is designed to find various failures in semiconductors and to analyze their causes of occurance. So it finds many problems in design and fabrication as well as it predicts lifetime and reliability of semiconductors. AEC-Q100 consists of 7 test groups such as accelerated environmental stress tests, accelerated lifetime simulation tests, package assembly integrity tests, die fabrication reliability tests, electrical verification tests, defect screening tests, and cavity package integrity tests. It has 4 grades from grade 0 to grade 3 based on operational temperature. AEC-Q101, Q102, Q103, Q104, and Q200 are applied to discrete semiconductors, optoelectronic semiconductors, sensors, multichip modules, and passive components, respectively.

• Journal of the Korea Institute of Military Science and Technology
• /
• v.15 no.5
• /
• pp.543-549
• /
• 2012

Hybrid electric propulsion systems are expected as future primary combat platforms because the systems can supply enough electric power, easily locate components inside vehicles, and maneuver without undesired noise. However, increasing electric/electronic/software usage causes abnormal failure patterns which have not been noticeable in conventional automotive. Recently, the functional safety standard for road vehicles were enacted and vehicle manufacturers request their components which satisfy standardized quality. This research analyzes functional safety standards(IEC 61508 and ISO 26262) and compares the standards for road vehicles with military standards of system safety. Strategies to apply functional safety in the combat hybrid electric vehicle are scrutinized.

• Information and Communications Magazine
• /
• v.34 no.5
• /
• pp.27-35
• /
• 2017

자율 주행 자동차에 있어서 기능 안전을 위해서 필요한 다양한 고려 사항과 필수 센서인 모바일 라이다 센서에 대하여 분석한다. ISO 26262는 인간이 운전할 경우 기능적인 안전을 보장할 수 있는 신뢰를 제공하는 기능 안전 표준으로서, 자율 주행 자동차가 운전자의 개입없이 주변의 상황을 파악하고 인지한 후 스스로 판단하여 동작하는 경우 정확하게 수행되었다는 것을 판단하기가 어렵다. 자율 주행 자동차는 주변 환경 센싱, 처리 및 판단, 동작 수행의 과정을 거쳐서 자율 주행을 수행한다. 이 중에서 주변 환경 센싱과 동작 수행의 경우 기존의 자동차 기능 안전을 개선하여 적용이 가능할 것이다. 본고에서는 자율 주행 자동차에 대한 기능 안전의 상관성과 자율 주행 자동차가 주변 환경 센싱에 필수적으로 사용하는 모바일 라이다가 사용하는 다양한 기술들에 대하여 알아본다.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.18 no.9
• /
• pp.9-17
• /
• 2017

Ensuring the safety of automobiles and trains during system operation is regarded as indispensable due to the progress in unmanned operation. The automotive functional safety standard, ISO 26262, has been proposed to ensure the safe design of vehicles. This standard describes in detail the required risk analysis and evaluation procedure and safety measures, while appropriately reflecting the system design information. Therefore, much research has been done on the risk analysis procedure, wherein the design information is mostly extracted from physical components of similar systems already in operation, the information traced back to obtain constituent functions, and then methods of identifying risk sources are studied. This method allows the sources of risk to be identified quickly and easily, however if the design requirements are changed or systems are newly developed, others may be introduced which are not accounted for, thereby yielding mismatched design information. To resolve this problem, we propose a top-down analysis in order to utilize the system design information appropriately. Specifically, a conceptual system is designed to obtain the functions, which are then analyzed. Then, a function-based fault tree analysis is conducted, followed by a risk source analysis. In this paper, a case study of automotive safety is presented, revealing that the proposed method can analyze the risk sources with reduced possibility of omission by systematically reflecting the system design information.

• The Journal of The Korea Institute of Intelligent Transport Systems
• /
• v.18 no.6
• /
• pp.251-261
• /
• 2019

The importance of autonomous driving systems that utilize V2X services such as V2V(Vehicle to Vehicle) and V2I(Vehicle to Infrastructure) for safer and more comfortable driving is increasing with the recent development of autonomous vehicles. Partly autonomous vehicles based on environmental sensors have limitations for predicting and determining areas beyond the recognition distance of the mounted sensors and in response to atypical objects that are difficult to detect. Therefore, it is important to utilize the V2X service to improve the limit of sensor detection performance and to make driving safer and more comfortable. However, there may be an accident risk of autonomous vehicles due to incorrect information provided by V2X. Thus, the application of technology to prevent this needs to be considered. In this pater, we used the ISO-26262 Part3 Process and performed HARA (Hazard Analysis and Risk Assessment) to derive the risk sources of autonomous vehicles due to V2I malfunctions by using the communication between vehicles and infrastructure among V2X. We also developed ASIL ratings based on the simulations and real vehicle tests of the malfunctions of major cases of usnig V2I.

• Journal of the Korea Academia-Industrial cooperation Society
• /
• v.17 no.4
• /
• pp.382-391
• /
• 2016

For safety-critical systems including railways, there has been a growing need for effective and systematic safety management processes. The outcomes of efforts in this area are international safety standards, such as IEC 61508, 62278, and ISO 26262. One of the principal activities in the safety process is hazard analysis. For this reason, considerable efforts have been directed toward methods of hazard analysis. On the other hand, the hazard analysis methods reported thus far appear to be unclear in terms of their relationship with the system design process. In addition, in some cases, the methods appear to rely heavily on information regarding the hardware and software components, the number of which is increasing. These aspects can become troublesome when design changes are necessary. To improve the situation, in this paper, hazard analysis was carried out using the result of functional analysis early in the concept development stage for a safety-critical system design. Because hazard analysis is carried out at the system level and the result is then used to develop the safety requirements, improvements can be expected in terms of the development time and cost when design changes are required due to changes in the requirements. As a case study, the generation of safety requirements for the development of light rail transit stations is presented.

• KIPS Transactions on Software and Data Engineering
• /
• v.10 no.8
• /
• pp.287-300
• /
• 2021

Collaborative Cyber-Physical Systems (CCPS) are those systems that contain tightly coupled physical and cyber components, massively interconnected subsystems, and collaborate to achieve a common goal. The safety of a single Cyber-Physical System (CPS) can be achieved by following the safety standards such as ISO 26262 and IEC 61508 or by applying hazard analysis techniques. However, due to the complex, highly interconnected, heterogeneous, and collaborative nature of CCPS, a fault in one CPS's components can trigger many other faults in other collaborating CPSs. Therefore, a safety assurance technique based on fault criticality analysis would require to ensure safety in CCPS. This paper presents a Fault Criticality Matrix (FCM) implemented in our tool called CPSTracer, which contains several data such as identified fault, fault criticality, safety guard, etc. The proposed FCM is based on composite hazard analysis and content-based relationships among the hazard analysis artifacts, and ensures that the safety guard controls the identified faults at design time; thus, we can effectively manage and control the fault at the design phase to ensure the safe development of CPSs. To justify our approach, we introduce a case study on the Platooning system (a collaborative CPS). We perform the criticality analysis of the Platooning system using FCM in our developed tool. After the detailed fault criticality analysis, we investigate the results to check the appropriateness and effectiveness with two research questions. Also, by performing simulation for the Platooning, we showed that the rate of collision of the Platooning system without using FCM was quite high as compared to the rate of collisions of the system after analyzing the fault criticality using FCM.

• The Journal of The Korea Institute of Intelligent Transport Systems
• /
• v.19 no.6
• /
• pp.222-234
• /
• 2020

Autonomous vehicles are equipped with a wide rage of sensors such as GPS, RADAR, LIDAR, camera, IMU, etc. and are driven by recognizing and judging various transportation systems at intersections in the city. The accident ratio of the intersection of the autonomous vehicles is 88% of all accidents due to the limitation of prediction and judgment of an area outside the sensing distance. Not only research on non-signalized intersection collision avoidance strategies through V2V and V2I is underway, but also research on safe intersection driving in failure situations is underway, but verification and fragments through simple intersection scenarios Only typical V2V failures are presented. In this paper, we analyzed the architecture of the V2V module, analyzed the causal factors for each V2V module, and defined the failure mode. We presented intersection scenarios for various road conditions and traffic volumes. we used the ISO-26262 Part3 Process and performed HARA (Hazard Analysis and Risk Assessment) to analyze the risk of autonomous vehicle based on the simulation. We presented ASIL, which is the result of risk analysis, proposed a monitoring concept for each component of the V2V module, and presented monitoring coverage.