Road vehicles — Functional safety — Part 11: Guidelines on application of ISO 26262 to semiconductors

This document is intended to be applied to safety-related systems that include one or more electrical and/or electronic (E/E) systems and that are installed in series production road vehicles, excluding mopeds. This document does not address unique E/E systems in special vehicles such as E/E systems designed for drivers with disabilities. NOTE Other dedicated application-specific safety standards exist and can complement the ISO 26262 series of standards or vice versa. Systems and their components released for production, or systems and their components already under development prior to the publication date of this document, are exempted from the scope of this edition. This document addresses alterations to existing systems and their components released for production prior to the publication of this document by tailoring the safety lifecycle depending on the alteration. This document addresses integration of existing systems not developed according to this document and systems developed according to this document by tailoring the safety lifecycle. This document addresses possible hazards caused by malfunctioning behaviour of safety-related E/E systems, including interaction of these systems. It does not address hazards related to electric shock, fire, smoke, heat, radiation, toxicity, flammability, reactivity, corrosion, release of energy and similar hazards, unless directly caused by malfunctioning behaviour of safety-related E/E systems. This document describes a framework for functional safety to assist the development of safety-related E/E systems. This framework is intended to be used to integrate functional safety activities into a company-specific development framework. Some requirements have a clear technical focus to implement functional safety into a product; others address the development process and can therefore be seen as process requirements in order to demonstrate the capability of an organization with respect to functional safety. This document does not address the nominal performance of E/E systems. This document has an informative character only. It contains possible interpretations of other parts of ISO 26262 with respect to semiconductor development. The content is not exhaustive with regard to possible interpretations, i.e., other interpretations can also be possible in order to fulfil the requirements defined in other parts of ISO 26262.

Véhicules routiers — Sécurité fonctionnelle — Partie 11: Lignes directrices sur l'application de l'ISO 26262 aux semi-conducteurs

General Information

Status
Published
Publication Date
16-Dec-2018
Current Stage
9092 - International Standard to be revised
Completion Date
08-Jul-2024
Ref Project

Buy Standard

Standard
ISO 26262-11:2018 - Road vehicles -- Functional safety
English language
179 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)


INTERNATIONAL ISO
STANDARD 26262-11
First edition
2018-12
Road vehicles — Functional safety —
Part 11:
Guidelines on application of ISO
26262 to semiconductors
Véhicules routiers — Sécurité fonctionnelle —
Partie 11: Lignes directrices sur l'application de l'ISO 26262 aux semi-
conducteurs
Reference number
©
ISO 2018
© ISO 2018
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting
on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address
below or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: +41 22 749 01 11
Fax: +41 22 749 09 47
Email: copyright@iso.org
Website: www.iso.org
Published in Switzerland
ii © ISO 2018 – All rights reserved

Contents Page
Foreword .v
Introduction .vi
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
4 A semiconductor component and its partitioning . 2
4.1 How to consider semiconductor components . 2
4.1.1 Semiconductor component development . 2
4.2 Dividing a semiconductor component in parts . 2
4.3 About hardware faults, errors and failure modes . 3
4.3.1 Fault models. 3
4.3.2 Failure modes . 4
4.3.3 The distribution of base failure rate across failure modes . 4
4.4 About adapting a semiconductor component safety analysis to system level . 5
4.5 Intellectual Property (IP) . 6
4.5.1 About IP . 6
4.5.2 Category and safety requirements for IP . 7
4.5.3 IP lifecycle . 9
4.5.4 Work products for IP .11
4.5.5 Integration of black-box IP .14
4.6 Base failure rate for semiconductors .15
4.6.1 General notes on base failure rate estimation .15
4.6.2 Permanent base failure rate calculation methods .20
4.7 Semiconductor dependent failure analysis .41
4.7.1 Introduction to DFA .41
4.7.2 Relationship between DFA and safety analysis .42
4.7.3 Dependent failure scenarios .42
4.7.4 Distinction between cascading failures and common cause failures .45
4.7.5 Dependent failure initiators and mitigation measures.45
4.7.6 DFA workflow .51
4.7.7 Examples of dependent failures analysis .54
4.7.8 Dependent failures between software element and hardware element .55
4.8 Fault injection .55
4.8.1 General.55
4.8.2 Characteristics or variables of fault injection .55
4.8.3 Fault injection results .57
4.9 Production and Operation .57
4.9.1 About Production .57
4.9.2 Production Work Products .58
4.9.3 About service (maintenance and repair), and decommissioning .58
4.10 Interfaces within distributed developments .58
4.11 Confirmation measures .59
4.12 Clarification on hardware integration and verification .59
5 Specific semiconductor technologies and use cases .60
5.1 Digital components and memories.60
5.1.1 About digital components .60
5.1.2 Fault models of non-memory digital components .60
5.1.3 Detailed fault models of memories .61
5.1.4 Failure modes of digital components .62
5.1.5 Example of failure mode definitions for common digital blocks .62
5.1.6 Qualitative and quantitative analysis of digital component .66
5.1.7 Notes on quantitative analysis of digital components .67
5.1.8 Example of quantitative analysis .69
5.1.9 Example of techniques or measures to detect or avoid systematic failures
during design of a digital component .70
5.1.10 Verification using fault injection simulation .74
5.1.11 Example of safety documentation for a digital component .75
5.1.12 Examples of safety mechanisms for digital components and memories .76
5.1.13 Overview of techniques for digital components and memories .77
5.2 Analogue/mixed signal components .80
5.2.1 About analogue and mixed signal components .80
5.2.2 Analogue and mixed signal components and failure modes .82
5.2.3 Notes about safety analysis .91
5.2.4 Examples of safety mechanisms .94
5.2.5 Avoidance of systematic faults during the development phase .97
5.2.6 Example of safety documentation for an analogue/mixed-signal component .100
5.3 Programmable logic devices .101
5.3.1 About programmable logic devices .101
5.3.2 Failure modes of PLD .105
5.3.3 Notes on safety analyses for PLDs .106
5.3.4 Examples of safety mechanisms for PLD .112
5.3.5 Avoidance of systematic faults for PLD .113
5.3.6 Example of safety documentation for a PLD .116
5.3.7 Example of safety analysis for PLD .116
5.4 Multi-core components.116
5.4.1 Types of multi-core components .116
5.4.2 Implications of ISO 26262 series of standards for multi-core components .117
5.5 Sensors and transducers .119
5.5.1 Terminology of sensors and transducers .119
5.5.2 Sensors and transducers failure modes .120
5.5.3 Safety analysis for sensors and transducers .125
5.5.4 Examples of safety measures for sensors and transducers .126
5.5.5 About avoidance of systematic faults for sensors and transducers .130
5.5.6 Example of safety documentation for sensors and transducers.131
Annex A (informative) Example on how to use digital failure modes for diagnostic coverage
evaluation .132
Annex B (informative) Examples of dependent failure analysis .136
Annex C (informative) Examples of quantitative analysis for a digital component .150
Annex D (informative) Examples of quantitative analysis for analogue component .155
Annex E (informative) Examples of quantitative ana
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.