ISO26262, flow of workproducts visualized

Overview of ISO26262, colored Chart (c) icomodIn November 2011 the standard ISO 26262 for functional safety in automotive systems was published. It consists altogether of 10 parts, 9 of them are normative and one – part 10 – represents an additional guideline, e.g. provides examples how to decompose ASILs (Automotive Safety Integrity Levels), how to combine FMEAs and FTAs or of a so-called “proven in use argument”.

Some of the parts specify some cross-sectional aspects: part 1 defines the vocabulary used in the ISO 26262, part 2 the management of functional safety in general, part 8 the supporting processes (e.g. configuration or change management, confidence in software tools or the qualification of software or hardware components) and part 9 illustrates the process of ASIL decomposition.

The remaining parts 3 to 7 adress individual steps of the overall product development lifecycle, which is assumed to follow the “standard” vee-chart for the overall system development respectively a double-vee for the parallel hardware development and software development.

The individual process steps to follow are explained with their required inputs, an explanation of the activity itself and the resulting output, the so-called workproduct. Based on this information, a network of flowing information is described by the descriptive texts of the ISO 26262.

Unfortunately the standard does not provide a graphical illustration of these dependencies. That’s why in the following we are providing the “Visio-crafted” visualizations that we created in the context of a particular project. Maybe these pictures might help you in your Automotive safety projects.

Please note that we are providing these illustrations “as is”, without any guarantee for completeness or correctness. Have fun!

ISO26262-2, Management of functional safety, Part 2-5 to 2-7:

  • 2-5: Overall Safety Management
  • 2-6: Safety management during the concept phase and the product development
  • 2-7: Safety management after the item ́s release for production

Workproduct dependencies ISO26262, part 2

ISO26262-3, Concept phase, Part 3-5 to 3-8:

  • 3-5: Item definition
  • 3-6: Initiation of the safety lifecycle
  • 3-7: Hazard analysis and risk assessment
  • 3-8: Functional safety concept

Workproduct dependencies ISO26262, part 3 (c) icomod

ISO26262-4, Product development at the system level (left wing), Part 4-5 to 4-7:

  • 4-5: Initiation of product development at the system level
  • 4-6: Specification of the technical safety requirements
  • 4-7: System design

Workproduct dependencies-ISO26262, part 4 (c) icomod

ISO26262-4, Product development at the system level (right wing), Part 4-8 to 4-11:

  • 4-8: Item integration and testing
  • 4-9: Safety validation
  • 4-10: Functional safety assessment
  • 4-11: Release for production

Workproduct dependencies ISO26262, part 4a (c) icomod

ISO26262-5, Product development at the hardware level, Part 5-5 to 5-10:

  • 5-5: Initiation of product development at the hardware level
  • 5-6: Specification of hardware safety requirements
  • 5-7: Hardware design
  • 5-8: Evaluation of the hardware architectural metrics
  • 5-9: Evaluation of the safety goal violations due to random hardware failures
  • 5-10: Hardware integration and testing

Workproduct dependencies ISO26262, part 5a (c) icomodWorkproduct dependencies ISO26262, part 5b (c) icomod

ISO26262-6, Product development at the software level, Part 6-5 to 6-11:

  • 6-5: Initiation of product development at the software level
  • 6-6: Specification of software safety requirements
  • 6-7: Software architectural design
  • 6-8: Software unit design and implementation
  • 6-9: Software unit testing
  • 6-10: Software integration and testing
  • 6-11: Verification of software safety requirements

Workproduct dependencies ISO26262, part 6a (c) icomod

ISO26262-7, Production and operation, Part 7-5 to 7-6:

  • 7-5: Production
  • 7-6: Operation, service (maintenance and repair), and decommissioning

Workproduct dependencies ISO26262, part 7 (Copyright: icomod)

ISO26262-8, Supporting processes, Part 8-5 to 8-14:

  • 8-5: Interfaces within distributed development
  • 8-6: Specification and management of safety requirements
  • 8-7: Configuration management
  • 8-8: Change management
  • 8-9: Verification
  • 8-10: Documentation
  • 8-11: Confidence in the use of software tools
  • 8-12: Qualification of software components
  • 8-13: Qualification of hardware components
  • 8-14: Proven in use argument

Workproduct dependencies ISO26262, part 8a (Copyright: icomod)
Workproduct dependencies ISO26262, part 8b (Copyright: icomod)

ISO26262-9, ASIL-oriented and safety-oriented analyses, Part 9-5 to 9-8:

  • 9-5: Requirements decomposition with respect to ASIL tailoring
  • 9-6: Criteria for coexistence of elements
  • 9-7: Analysis of dependent failures
  • 9-8: Safety analyses

Workproduct dependencies ISO26262, part 9 (Copyright: icomod)