ISO 26262 ˘ˇ - CAD&Graphics

ISO 26262 대응을 위한소프트웨어 형상관리 및 이슈관리 방안

박민영책임현대모비스

Contents1. 현대모비스 소개

3. Integrity 모듈/기능 구분 및 서버 구성도2. 현대모비스 기술정보 관리도구 체계

6. 이슈관리시스템5. 프로세스 및 프로젝트 구조4. ISO 26262 기반 Integrity Qualification

7. 형상관리시스템

� 회사 개요 � 2012년 재무정보

창립일 1977-07-01

자본금 4,911억원(2012년 12월말 기준)

직원수

1. 현대모비스 소개

직원수(전체/R&D)

7,085명 / 1,663명

사업내용

1) 모듈사업: 제동/안전/조향/현가/전장/의장/Chassis/ Cockpit /FEM

2) A/S부품 판매사업: 현대차/기아차 보수용 부품 판매

3) 금융업: 생명보험산업(현대라이프생명보험)

� 2012년 사업부문별 실적

1. 현대모비스소개(계속)� 해외 R&D Centers� 국내 R&D Centers

� Frankfurter R&D Center� Shanghai R&D Center� India R&D Center (@Hyderabad)� Detroit R&D Center

� 의왕 R&D Center� 용인 R&D Center

1. 현대모비스소개(계속)� 3 Major Modules & Core Components

Front End ModuleFront End ModuleCockpit ModuleCockpit ModuleChassis ModuleChassis Module

Brake SystemBrake System MDPSMDPS

Green Car PartsGreen Car Parts

AirbagAirbag LampLamp

1. 현대모비스소개(계속)� Electronics and Multimedia

Low Cost Audio Standard Audio Standard AVNMOST AVNAUDIO AVN / Telematics

High End Audio TelematicsDual Display AVNBody / HEV Safety / Sensors

Battery ManagementLow Voltage Converter

Body ControlClimate Control Smart Key Parking Assist Front/Rear Cameras

Airbag ControllerTire PressureMonitoring

Bristol AudioLane Keeping BatterySensor

2. 현대모비스기술정보관리도구체계Presentation only

(Presentation Only)(Presentation Only)

3. Integrity 모듈/기능구분및서버구성도� Integrity 모듈 구분 및 기능 구분

번호 모듈 기준 구분 기능 기준 구분

Document

Requirements and Design Management (with traceability)

(System and SW) Model Management1 Document

Management(System and SW) Model Management

Test Management (Test Suite/Test Case/Test Session/Test Step)

(Activity, Test Session) Issue Management

2 Configuration Management

SW (Change and) Configuration Management

Document Management (with versioning)

3. Integrity 모듈/기능구분및서버구성도(계속)� 현대모비스 서버 구성도 : Production 서버 + DB 서버 (+ Test Server)

� 서버 구성도 참조 : Production Server + Staging Server(s)

4. ISO 26262 기반 Integrity Qualification� Overview of Classification and Qualification

4. ISO 26262 기반 Integrity Qualification(계속)� Identified Risks (by PTC) : 17개

� Risks for Configuration Management : 12개 (RiskI001 ~ RiskI012)� Risks for Requirements and Test Management : 5개 (RiskI013~RiskI017)

� Recommended Risk Mitigations (by PTC) : 22개� Risk Mitigations for Configuration Management : 16개 (RiskM001 ~ Risk016)� Risk Mitigations for Requirements and Test Management : 6개 (Risk017~Risk022)

4. ISO 26262 기반 Integrity Qualification(계속)� 검토 필요 Policies (by User)

� Company Level Policies vs. Project-Specific Policies

Policy RecommendedValue Reference Comment

Revision Description Required - -

Deferred operations Changes that include multiple files are submitted in one

� RiskI001, 4 - Inconsistent Configuration, Incomplete Changes� RiskI002, 7 – Unreviewed Changes, Conflicting Changes

Deferred operations mandatory True RiskM001 Changes that include multiple files are submitted in one

coherent transaction.

Change Packages Transactional True RiskM004 All changes in a change package can only be submitted in

one coherent transaction. (rolled back)

Change Package Review Enabled True RiskM003 A submitted change package is reviewed before becoming

integrated in the source-project configuration.

Workflow and State Capabilities

In Review<enabled> - Allows SI change packages under review to exist in this

state

4. ISO 26262 기반 Integrity Qualification(계속)� Classification and Qualification

� The Integrity is certified by TUV-SUD and it is fit for purpose for developing safety-related software according to IEC 61508 and ISO 26262.(up to ASIL D and/or SIL3)

� The Integrity is classified at TCL1, and hence does not need re-qualification.

Determination of the TCL

Tool error Detection(TD)

TD1 TD2 TD3

※ Justification of TI: The malfunction of PTC Integrity can lead to wrong selection of the item from the configuration management system.

※ Justification of TD: There is a high degree of confidence that a malfunction as result of this tool can be detected or prevented.

※ TCL : Tool Confidence Level

the TCL TD1 TD2 TD3

Tool Impact(TI)

TI1 TCL1 TCL1 TCL1TI2 TCL1 TCL2 TCL3

5. 프로세스및프로젝트구조� Process Model (Reference)ISO 26262 Road Vehicles – Functional Safety Automotive SPICE PAM v2p5

5. 프로세스및프로젝트구조(계속)� Process Model (Example)

5. 프로세스및프로젝트구조(계속)� Process Asset Library 구조 (Su-bproject vs. Folder)

Project (in Server) Sandbox( (in Client)

5. 프로세스및프로젝트구조(계속)� 프로젝트 구조Module Name Project Name Category

DocumentManagement

<SystemName>_System -

<SystemName>_Software Optional

<SystemName>_SWLogic Optional

ConfigurationManagement

<SystemName>_DevelopmentWP -

<SystemName>_Software -

<SystemName>_SWLogic Optional

※ Global CM : 회사 레벨의 형상관리자

5. 프로세스및프로젝트구조(계속)� 프로젝트 구조(Example)Module Name Image

DocumentManagement

ConfigurationManagement

6. 이슈관리시스템� Master Issue List

Presentation only


6. 이슈관리시스템� Issue States & Workflow

StateStateStateState 행위자행위자행위자행위자 DescriptionDescriptionDescriptionDescription

NewPL

또는PE

Issue 등록Issue 미접수 상태

Submitted PLsIssue 접수In_Analysis CCB 미수행

In_Analysis CCB 수행In_Analysis PLs

In_Analysis CCB 수행Issue 분석 및 구분

In_Progress PLsIssue 구분에 따른 문서변경 착수Activities 생성

In_Verification PLsIssue 구분에 따른 문서변경 완료문서변경에 따른 Verification 착수Test Session 생성

Cancelled PLsIssue 진행 불가 판정(Duplicated, Rejected, Obsolete, …)

Closed PLsVerification 완료Issue 종결

※ PL : Project Leader, PE : Project EngineerCR : Change Request, PR : Problem

6. 이슈관리시스템(계속)� Issue States & Workflow(Example)

6. 이슈관리시스템(계속)� Issue States & Workflow(Example)Activity,

Test Session Description

Document Activity

Requirements, Design, Model, Test Suite (with Traceability)

Configuration Activity for SW

CodeSW Source Code

Configuration Activity for Document

Development Work Products(with Versioning)

Test Session Test Suite

6. 이슈관리시스템(계속)� Activity and Test Session(Example)

7. 형상관리시스템� 형상 항목 – Document Management Module

Presentation only


7. 형상관리시스템(계속)� 형상 항목 – Configuration Management Module

Presentation only


7. 형상관리시스템(계속)� 형상 항목

7. 형상관리시스템(계속)� Attributes

WorkProduct

AttributesHazard SG ASIL Safe State FDT / FRT FTTI Classification Priority Feasibility Verification Criteria LastResultSG ○ ○FSC ○ ○

SyRS ○ ○SyDS ○ ○

(HSIS) ○ ○SRS ○ ○

SADS ○ ○SUDS ○ ○SUTS ○ XSITS ○ XSTS ○ X

산출물별 Attributes Configuration: Customization Project

7. 형상관리시스템(계속)� AttributesWork Product Image

SG

FSC

7. 형상관리시스템(계속)� Traceability 설정 (참조 : Automotive SPICE BPs)Work Product Image

SyRS※ 참조 : Automotive SPICE BPs

7. 형상관리시스템(계속)� Traceability 설정 (PTC Terminology)

validation

validation

validation

input requirement Design spec model source test

Decompose satisfy

modeled

Source trace

modeled Source trace

Source trace

Source trace

※※※※첨부1 : ISO 26262 프로젝트를수행하며간과하기쉬운것들Presentation only


※※※※첨부2 : 인증서예제Presentation only


감사합니다.감사합니다.

ISO 26262 ˘ˇ - CAD&Graphics

Documents

Transcript of ISO 26262 ˘ˇ - CAD&Graphics