Th International CTI Conference In USA ISO 26262 USA

2y ago
29 Views
4 Downloads
572.36 KB
12 Pages
Last View : 10d ago
Last Download : 2m ago
Upload by : Eli Jorgenson
Transcription

Save up to 50% with group discounts!Early Bird discount: Register before 24 April 2015! SPECIAL OFFER FOR OEMs ! 4th International CTI Conference in USAISO 26262 USAKEY-NOTE22 to 24 June 2015, Royal Park Hotel, Rochester, Detroit area, USANancy LevesonProfessor of Aeronautics,Astronautics and Engineering Systems,Massachusetts Institute of Technology, USANEWT!IVECI N T E R A P DAYOHSdWO R Klysis anA naHazard sessmentsRisk A MORE THAN 35 SPEAKERS Prof Dr Dr h.c. Manfred BroyChair Software & Systems Engineering,Department of Informatics,Technical University of Munich, GermanyBOSCH CONTINENTAL FIAT CHRYSLERAUTOMOBILES FORD GM NHTSA RICARDO TRW VOLKSWAGENADVISORY BOARDCHAIRMANBEST PRACTICES FROM COMPANIES ANDINSTITUTES INCLUDINGBarbara J. Czerny, Ph. D., System Safety Specialist, FCA Group, USA Dave Hartfelder, Senior Manager System Safety and ETC, General Motors Company,USA Joseph D. Miller, Chief Engineer Systems Safety, TRW Automotive, USA Kyle Post, Vehicle Systems Safety Supervisor, Ford Motor Company,USA Padma Sundaram, Principal System Safety Engineer, General Motors Company, USA Dr David Ward, Head of Functional Safety, MIRA Limited,Great Britain Ö. Artagun Yesildere, Global Safety Coordinator & N. America Safety Leader, Powertrain Controls, Robert Bosch LLC, USAwww.car-training-institute.com/iso26262-usa

2ISO 26262THE CONFERENCEAUDIENCEISO 26262 leaves plenty of room for interpretation and the conference willprovide an opportunity for delegates to present and compare their own interpretations and concepts in the company of like-minded experts.Experience the unique opportunity to discuss the upcoming changes for ISO26262 with your peers. The change proposals could have an influence on thenext version of the ISO standard.24 June 2015INTERACTIVE WORKSHOP DAYHazard Analysis and Risk Assessment (H&R) –Practical experiences in the ISO 26262 concept phaseDon t miss the chance to strengthen your knowledge!NE W10 REASONS TO JUSTIFY YOUR CONFERENCE FEE1 Expand your own ISO 26262 knowledge, network, maintain and deepenexisting business contacts with decision-makers from countries from allover the world.2 Gain the tools to improve your job skills, for example, learn how ISO26262 may be implemented into your components.3 Listen to best practices of companies such as GM, Ford, TRW, FCA Group,Bosch, Volkswagen and Conti.This annual conference is directed at a worldwide audience of board members, technicaldirectors, senior managers, project heads andsafety managers from the automobile and automotive parts industries as well as those in theelectrical engineering and electronics setorswho are involved in automobile electronic manufacturing.The audience will have expertise in:Electrics and electronicsMechatronicsResearch and (pre-)developmentEngineering and designTechnologyPurchasing and procurementSales and marketingAfter-market servicesSystem integration and automotive technologyApplication and system developmentFunctional safetyQualityLegal and complianceThe conference will also be of interest to:Development service providersHardware and software providersSystem suppliersEngineering service providersIndustry-oriented research establishmentsTesting and certification bodies4 Take the opportunity to present change requests to the 2nd edition ofthe ISO 26262 and to have implicitly an impact on the next version of thestandard.5 Discuss your own issues with the NHTSA s expert.6 Find out the strengths and weaknesses of your current ISO 26262 policiesby getting to know the models of other producers.7 Reduce your risk by making your own assessment of ISO 26262.8 Plan ahead by joining the presentations and discussing them.9 Prepare for the worst by planning ahead for legal aspects of ISO 26262.10 Increase your Return on Investment by saving your organization s moneyand time – get your ISO 26262 policies and practices right the first time.A good balance oftechnical and non-technicalimplementation guidelines.Tracey Stanyer, ESG Automotive, Inc.

Program22 June 2015ISO 26262LEGAL ASPECTS10.40 – 11.008.30 – 9.00Registration and handout of proceedings,opening of the ISO 26262 Expo9.00 – 9.15Welcome address by the chairman and the organizer,Car Training InstituteProf. Dr Dr h.c. Manfred Broy, Chair Software &Systems Engineering, Department of informatics,Technical University of MunichUS legal issues involving advanced technologies andfunctional safetyDiscussion of product liability and business issuesthat will be presented with the increased incorporation of advanced technologiesRegulatory requirements that will need to be fulfilledJerry L. Johnson, Vice-President & Deputy GeneralCounsel, Robert Bosch LLC11.00 – 11.30BUSINESS CARD SWAPAt the beginning of the conference CTIgives you some time to exchange yourbusiness cards with other participants.Take the opportunity for networking!9.15 – 9.45KEY NOTENancy Leveson, Professor of Aeronautics,Astronautics and Engineering Systems,Massachusetts Institute of Technology9.45 – 10.00Q&ACoffee break11.30 – 11.50US product liability lawClay A. Guise,Trial Attorney, Dykema11.50 – 12.10Functional safety – new questions ariseTransfer of the state of the art achieved in onevehicle segment to other segmentsReliability of components vs. safety conceptTesting products in the view of functional safetyData security vs. vehicle safetyAndreas Reuter,Attorney, Germany10.00 – 10.30NHTSA’s role in electronics reliability and functionalsafetyAn overview of NHTSA’s electronics reliabilityresearch programA summary of public inputs to NHTSA’s requestfor comments on Electronics Safety and ReliabilityCem Hatipoglu, PhD, Division Chief,Electronic Systems Safety Research (NVS-333),National Highway Traffic Safety Administration10.30 – 10.40Q&A12.10 – 12.30DISCUSSIONLegal and regulatory aspects of functional safetyJerry L. JohnsonJohn G. Rahie, Managing Director, Freeh GroupInternational Solutions (previously General Motors)Andreas Reuter12.30 – 1.30Lunch3

4ISO 26262PROGRAMPRACTICE WITH ISO 26262PROCESSES1.30 – 1.503.20 – 3.40ISO 26262 – status and roadmapImplementation and Verification of Technical SafetyRequirements for a Dynamic Torque Vectoring FeatureOverview of an Electronic Brake System (EBS)Introduction of Dynamic Torque Vectoring (DTV) –an Optional Feature for EBSOverview of an Adjustable Parameter DatabaseSupporting Agile Software DevelopmentTranslation of Safety Goals to Safety Requirementsfor the Electronic Brake SystemHardware Safety Requirements and the Brake SystemSafety Unit (BSSU)Software Safety Requirements for the AdjustableParameters of the DTV FeatureA Parameter Confirmation Tool for Verification ofSoftware Safety RequirementsCarsten Gebauer, Bosch Center of Competence“Functional Safety”, Robert Bosch GmbH1.50 – 2.10Item definition – the first challenge in ISO 26262Item definition in ISO 26262 – what is it?Choices in defining the system boundariesConsequences of the item definition: Hardware metrics,ASIL classification of sub systems, taking non-E/E subsystems into accountExamples and possible solutionsCeleste Cauley, Chassis and Driver AssistanceSystems, Bosch Engineering North America Division,Robert Bosch LLC2.10 – 2.30Fault tolerant time interval on different levels ofabstraction throughout a systemSystem model of fault, error, failureTerms and their relationsFault tolerant time in relation to a system modelJames Worden, Manager Systems Engineering Department, Vehicle Dynamics Business Unit, Chassis & SafetyDivision, Continental Automotive Systems, Inc.Michael Schneider, Engineering Supervisor ControlFunctions Software Development Group, VehicleDynamics Business Unit, Chassis & Safety Division,Continental Automotive Systems, Inc.3.40 – 4.00Dr Frank Hänsel,Safety Expert, Volkswagen AG2.30 – 2.40Q&A2.40 – 3.00Fail-operational – Is this the next challenge?Why are fail-operational systems necessary?Basics of fail-operational systems and fault toleranceHow is fail-operational addressed in other standards?Which are the biggest challenges on this regardrelated to the ISO 26262:2011?to be announced3.00 – 3.20Coffee breakCreating Robust Technical Safety RequirementsStructured approach to Technical Safety RequirementsMethodology to arrive at thorough Technical SafetyRequirementsSystematically assigning Technical Safety Requirements to Elements of an ItemRichard Chutorash,Department Functional Safety, FCA Group4.00 – 4.20Vehicle level hazard analysisSummary of SAE J2980A recommended practice for ASIL classificationGuidance and examples of vehicle hazards for motioncontrol systemsHazard identification methodology and ASIL classificationPadma Sundaram, Principal System Safety Engineer,General Motors Company4.20 – 4.50Q&A

PROGRAMISO 2626223 June 20154.50 – 5.10Simulation to Evaluate Controllability for ISO 26262Controllability class determination by usingsimulation dataObjective evaluation of controllability rating forASIL determinationUsing the ISO 26262 norm to guide processdevelopmentControllability determination throughout the SystemsEngineering V-Model for ISO 262628.30 – 9.00Welcome with coffee and tea9.00 – 9.20Short summary of the first day by the chairmanProf. Dr Dr h.c. Manfred BroyCharles Moore,Senior Engineer, Powertrain, Bosch EngineeringOUT OF THE BOXSee the big picture and gather surprising insights5.10 – 5.30Will your safety case pass an ISO 26262 assessment?The purpose of functional safety assessment andits outcomeThe benefits of delivering good safety caseargumentationExamples on good safety case argumentation9.20 – 9.40Hazard analysis of critical cyber-physical systems –an opportunity for cross-domain collaborationSushil Birla, Senior Technical Advisor - Digital Instrumentation and Control, Office of Nuclear RegulatoryResearch, U.S. Nuclear Regulatory CommissionOla Örsmark, Managing Director,Sr Functional Safety Engineer, Comentor AB9.40 – 9.505.30Q&AEnd of first dayAUTOMATED DRIVING6.00Even more networking possibilities:Joint evening event with the participants and speakersof the CTI Conference ISO 26262 USA.Enjoy the relaxed atmosphere and get spoilt with finestfood and drinks at the CTI Networking Night 2015:Rochester Mills Beer Co.Pub with handcrafted Ales & Lagers.9.50 – 10.10Comparison of various hazard analysis techniques forusage in the development of automated vehiclesDriver and Vehicle Interactions without AutomationDriver and Vehicle Interactions with AutomationHuman-Machine Interaction and the Dynamic Driving TaskHazards without Component/System FailuresReview of Key FindingsKyle Post, Vehicle Systems Safety Supervisor, VehicleControls and Systems Engineering, Ford Motor CompanySarra Yako, System Safety Engineer,Vehicle System Safety, Ford Motor Company10.10 – 10.20Q&A5

6ISO 26262PROGRAMSAFETY AND SECURITY10.20 – 10.40Autonomous Driving Impact on (Hardware) SafetyAutomated driving impact on Hazard Analysis,Safety Goals, Functional Safety Concepts,Technical Safety Concept and HW-Safety RequirementsImpact on integration with existing functions andarchitectures and impact on HW metricsJoseph D. Miller,Chief Engineer Systems Safety, TRW Automotive10.40 – 10.5010.50 – 11.20Q&ACoffee break11.20 – 11.40Functional Safety and its Impact on Advanced Communication-Based Safety FeaturesThe influence of ISO 26262 on Vehicle-to-VehicleCommunicationsThe influence of ISO 26262 on ons that must be made when applyingFunctional Safety to V-I and V-V communications andthe corresponding feature contentMichael A. Staszel, Associate Director,Kugler Maag Cie North America Inc.12.10 – 12.30Update of the J3061 document – SAE RecommendedPractice – Cybersecurity Guidebook for Cyber-PhysicalVehicle SystemsBarbara J. Czerny, Ph. D.,System Safety Specialist, FCA Group12.30 – 12.4012.40 – 1.40Q&ALunch1.40 – 2.10Extending the Analysis Activities of ISO 26262 toInclude Non-Malfunctioning Behavior of SafetyRelated SystemsExploring the possibility of extending ISO 26262’smethods beyond malfunctioning behavior into therealm of intended functionIdentifying the activities where ISO 26262 methodscould be reusedRecognizing the activities where ISO 26262 methodswould not applyPossible Informative Section within ISO 262622nd EditionBarbara J. CzernyMichael W. Runyon, Manager,Embedded Systems Quality Engineering, FCA US LLC11.40 – 12.00ISO 26262 as a framework for the development of anew planetary automatic transmission in a commercialvehicleIntroduction to the projectThe approach that Ricardo has takenThe challenges that have been encountered and howthese challenges have been addressedSummary and conclusionAli Maleki, Vice President, Hybrid & Electronic Systems,Connected & Autonomous Vehicles, Ricardo, Inc.12.00 – 12.10Q&A2.10 – 2.30Q&A2.30 – 2.50Surviving ISO 26262 functional safety audits andassessmentsUnderstanding what it means to claim “compliance”with ISO 26262Understanding the objectives of the requirementsin the standardUnderstanding the difference between process-oriented requirements and product-oriented requirementsScoping a functional safety assessmentBest practice for providing process evidence andproduct evidenceHow the functional safety audit supports the functionalsafety assessmentMeasuring and reporting complianceDr David Ward,Head of Functional Safety, MIRA Limited

PROGRAMISO 26262SOFTWARE, TOOLS AND METHODS4.20 – 4.402.50 – 3.10Meeting Real-Time Requirements with Multi-CoreProcessors in Safety-Critical SystemsOverview of timing-related requirementsChallenges of applying multi-cores to safety-criticalsystemsDeveloping timing-predictable configurationsObtaining real-time guaranteesDr Daniel Kästner,CTO, AbsInt GmbHUtilizing Qualified Tools to Save Costs in FlexibleHardware-in-the-Loop Testing on a Global ScaleUnderstand how to qualify hardware-in-the-loop test toolsExplaining the challenge of needing a flexible testingplatformDiscuss how to manage a safety-compliant globaldevelopment processNoah Reding, Senior Product Manager,Systems and Applications, National Instruments4.40 – 5.003.10 – 3.203.20 – 3.40Q&ACoffee break3.40 – 4.00Integration of functional safety into the engineeringworkflowFunctional safety analysis activities need to bedeeply integrated with system developmentactivities for consistency and efficiency reasonsA SysML model can be augmented by safety properties and serve as the single source for safety analysistechniques like FTA, FMEDA and HW metricsThe safety analysis model is automatically updatedin case the SysML design model has been changed –which avoids inconsistencies and immediatelyreflects the safety impact of these changesRe-usability as well as automatic derivation and consistency checks of safety analysis results become possibleTool integration is the key to benefit from the SysMLcentered approachDr Marc Born,CTO - KPIT medini Technologies AGDr Olaf Kath,CEO - KPIT medini Technologies AG4.00 – 4.20Safety Element out of Contect (SEooC)Practical ApplicationDifferences between SEooC and ItemApplications of the SEooC PrinciplesPrinciples of Development of the SEooCDr Bernhard Bauer, Team Leader Functional SafetyAutomotive, SGS-TÜV Saar GmbHISO 26262 for large software models: Challenges & choicesHow to embed ISO 26262 into your model-baseddevelopment processArchitectural complexity and software unit managementGuidelines compliance and efficient assuranceProcess automation and model qualityTest procedures for software modelsOliver Collmann,Director, Model Engineering Solutions GmbH5.00 – 5.20Partitioning vs. protection – What’s “better” formixed-criticality HW/SW architectures?Predictable timing enhances functional safetyPartitioned scheduling vs. Priority scheduling – whatare the tradeoffs in terms of cost and predictability?ASIL-Level and Freedom From Interference (FFI)considerationsProcess implications for design and verificationDr Marek Jersak,CEO, Symtavision GmbH5.20 – 5.40Practical Experiences with Tool Classification andQualification According to ISO 26262The concept of tool qualificationReview of the tool classification and qualificationrequirements for automotive software development(ISO 26262-8, clause 11)Tool classification and qualification in practice:pitfalls and best practicesDr Mirko Conrad,CTO, samoconsult GmbH5.40 – 6.006.00Q&AEnd of second day7

8ISO 26262WORKSHOP PROGRAM24 June 2015ProgramWORKSHOP8.30 – 9.00Welcome with coffee and teaHazard Analysis and Risk Assessment (H&R):Practical experiences in the ISO 26262 concept phase9.00 – 9.30The ISO 26262 concept phase is a key activity in thesafety lifecycle as it defines the “item” under development and performs the hazard analysis and risk assessment (H&R) to begin the process of defining and deriving safety requirements for the “item”.Short summary of the second day by the chairmanPractical experiences have shown that it is important tohave a consistent and well-defined process for conducting the H&R and in particular to ensure consistency inthe allocation of the parameters severity, exposure andcontrollability. This need is evidenced by the emergenceof industry guidelines such as SAE J2980.9.30 – 11.00The workshop will provide examples of how the concept phase activities, particularly the H&R, can be aligned with other engineering activities and how the H&Rparameters can be allocated in a consistent manner.Workshop participants are expected to be familiar withthe requirements of ISO 26262 Part 3 and to have someexperience of its application.Dr David Ward,Head of Functional Safety, MIRA LimitedProf. Dr Dr h.c. Manfred Broy123Workshop Part 1 – Preparing for the H&RBrief recap of the ISO 26262 requirements item definition – a short exercise to relate the item definitionto wider systems engineering activitiesHazard identification – use of techniques such asHAZOP to identify hazards in a systematic and consistent manner11.00 – 11.30Coffee break11.30 – 1.00Workshop Part 2 –Allocation of H&R parameters – controllabilityControllability – what is it and by whom?The role of different methods of assessing controllability – including expert panel, vehicle dynamicsmodels, driving tests (simulator and real vehicles)Subjective versus objective appraisal of vehicleresponse characteristics during a malfunction.1.00 – 2.002.00 – 3.30LunchWorkshop Part 3 – Allocation of H&Rparameters – severity; completing the H&RMethods for assessing severityMethods for ranking and classifying driving situationsand their exposure ratingsSpecification of safety goalsThe role of verification reviews and confirmation reviews3.30End of the CTI Conference ISO 26262and workshop

PROGRAMISO 26262THE FOLLOWING EXHIBITOR HAS ALREADY SIGNED UPPOINTS OF CONTACTCUSTOMER ADVICE AND SALESElisabeth JanikAbsInt provides tools for validation, verification and certification of safety-criticalsoftware. Key products are the aiT Worst-case Execution Time Analyzer for obtaining timing guarantees, StackAnalyzer for proving the absence of stack overflows,and the Astrée analyzer for proving the absence of runtime errors. All of them canbe qualified according to contemporary safety standards. Since 2015 AbsInt offerstwo new product lines: TimingProfiler computes execution time estimates of programs without the need to repeatedly provide test inputs, execute, and measure.CompCert is a formally verified optimizing C compiler. The level of confidence inthe correctness of the compilation process is unprecedented and helps meet thehighest standards of software assurance.AbsInt GmbHScience Park 1, 66123 Saarbruecken, Germanywww.absint.comPhone: 49 (0)2 11.96 86 – 37 58registration@car-training-institute.comCONCEPT AND CONTENTElke SchneiderSenior Conference ManagerPhone: 49 (0)2 11.96 86 – 35 ATIONOlivia EberweinSenior Conference CoordinatorLOGO PRESENTATIONPhone: 49 (0)2 11.96 86 – 34 ING & MEDIA PARTNERSHIPSkVA is the leading source of expert

Summary of SAE J2980 A recommended practice for ASIL classifi cation Guidance and examples of vehicle hazards for motion control systems Hazard identifi cation methodology and ASIL classifi cation Padma Sundaram, Principal System Safe

Related Documents:

CTI OS Agent Desktop User Guide for Cisco ICM/CC Enterprise & Hosted Cisco CTI OS Release 7.2(1) About This Guide Purpose This manual provides instructions for using the CTI Toolkit Agent Desktop. Audience This manual is intended primarily for agents who will use CTI Toolkit Agent Desktop to answer and process calls.File Size: 1MBPage Count: 62

Omni-Channel Open CTI uses browsers as clients. With Open CTI, you can make calls from a softphone directly in Salesforce without installing CTI adapters on your machines. After you develop an Open CTI implementation, you can integrate it with Salesforce using Salesforce Call Center. Example Channel: Open CTI

Table of Contents DAY PAGE 1 Understanding Peer Support . am Overview of CTI Model and CTI-TS Project 34 pm The CTI-TS Intervention, with an Example 36 6 Phase One - Initiation . T re at vy onin hg u pw i sct, en s/e

considered as decision tool. Reputation and trust exists on the CTI outcomes but lacks understanding on how to use it. CTI consumed as part of decision-making, with advice sought on all major decisions. Operational No dissemination. CTI is shared with operational stakeholders but no actions produced.

state of the art in counter flow cooling tower design. The Paharpur Series CF3 is certified for thermal performance by the Cooling Technology Institute (CTI), Houston, USA as per CTI certification standard STD-201. Details are available at www.cti.org. PAHARPUR'S INTEGRATED SYSTEM DESIGN Although Paharpur's original motivation in the design and

CTI 2572-A Installation and Operation Guide V1.8 1 CHAPTER 1. DESCRIPTION 1.1. Introduction The 2572-A Ethernet TCP/IP Module is a high performance version of the CTI 2572 Ethernet module. Because it supports the same PLC logic commands and network protocols, it can be used as a direct replacement for the CTI 2572 modules in most applications. In

Contents iv Cisco Unified Attendant Console Advanced Design Guide OL-27296-01 Cisco TSP Timeouts 2-4 CTI Architecture 2-4 CTI Request Information Flow 2-5 Cisco Unified Attendant Console Advanced CTI Setup 2-6 CTI Resilience 2-7 Call Flow Diagrams 2-8 Centralized Installations and Transcoding 2-12 Example Installation Requiring Transcoding 2-13 Network Bandwidth Consumption 2-17

i G CSE Co u rsew o rk T ask Non fi cti o n ; Co n stru cti n g an Arg u men t Read through the 4 article s you have been gi ven.