scholarly journals A Novel Hazard Analysis and Risk Assessment Approach for Road Vehicle Functional Safety through Integrating STPA with FMEA

2020 ◽  
Vol 10 (21) ◽  
pp. 7400
Author(s):  
Lei Chen ◽  
Jian Jiao ◽  
Tingdi Zhao
Keyword(s):  
Risk Assessment ◽  
Process Analysis ◽  
Hazard Analysis ◽  
International Standards ◽  
Functional Safety ◽  
Road Vehicles ◽  
Effect Analysis ◽  
Automotive Safety ◽  
Safety Requirements ◽  
Assessment Approach

ISO26262: 2018 is an international functional safety standard for electrical and/or electronic (E/E) systems within road vehicles. It provides appropriate safety requirements for road vehicles to avoid unreasonable residual risk according to automotive safety integrity levels (ASILs) derived from hazard analysis and risk assessment (HARA) required in the ISO26262 concept phase. Systems theoretic process analysis (STPA) seems to be designed specifically to deal with hazard analysis of modern complex systems, but it does not include risk evaluation required by most safety related international standards. So we integrated STPA into Failure Mode and Effect Analysis (FMEA) template to form a new method called system theoretic process analysis based on an FMEA template, STPAFT for shot, which could not only meet all the requirements of the concept phase in ISO26262, but also make full use of the advantages of the two methods. Through the focus of FMEA on low-level components, STPAFT can obtain more detailed causal factors (CFs), which is very helpful for derivation of safety goals (SGs) and the functional safety requirements (FSRs) in the concept phase of ISO26262. The application of STPAFT is described by the case study of fuel level estimation and display system (FLEDS) to show how the concept phase of ISO26262 could be supported by STPAFT.

scholarly journals ISO 26262 - The Relevance and Importance of Qualitative and Quantitative Methods for Safety and Reliability Issues Regarding the Automotive Industry

2010 ◽  
Vol 14-15 (1) ◽  
pp. 165-176
Author(s):  
Marco Schlummer ◽  
Dirk Althaus ◽  
Andreas Braasch ◽  
Arno Meyna
Keyword(s):  
Risk Assessment ◽  
Automotive Industry ◽  
Quantitative Methods ◽  
Hazard Analysis ◽  
Functional Safety ◽  
Automotive Safety ◽  
Iso 26262 ◽  
Qualitative And Quantitative ◽  
Qualitative And Quantitative Methods ◽  
Safety And Reliability

ISO 26262 - The Relevance and Importance of Qualitative and Quantitative Methods for Safety and Reliability Issues Regarding the Automotive IndustrySafety and reliability are key issues of today's and future automotive developments, where the involved companies have to deal with increasing functionality and complexity of software-based car functions. New functionalities cannot only be found in the area of driver assistance - most of the new car functions are and will be safety related as for example in vehicle dynamics control or active and passive safety systems. The development and integration of those functions will strengthen the need of safe processes during the system development. The new upcoming automotive standard on functional safety (ISO 26262), which is derived from the generic functional safety standard IEC 61508 to comply with the specific needs to the application sector of E/E-systems in road vehicles, will provide guidance to avoid the increasing risks from systematic faults and random hardware faults by providing feasible processes and requirements. It is evident that aspects and methods of the safety and reliability engineering are implemented and suited methods are performed in the development process at an early stage. This is one of the requirements of the new ISO 26262, which introduces a so called automotive safety lifecycle to handle all those activities that are necessary to guarantee the functional safety of automotive E/E-systems. In the following, a brief overview of the upcoming automotive standard, its new safety life cycle and the connected activities in order to ensure functional safety for safety related systems will be given. The main aim of this paper is to show the relevance and importance of one of the major tasks within the ISO 26262: the process of the hazard analysis and risk assessment as it is currently performed in the automotive industry. With the help of an example from the automotive sector, the basic steps of this method to determine the automotive safety integrity level (ASIL) are explained. Depending on the ASIL, safety requirements need to be derived as a result of the new standard regarding safety integrity attributes. Furthermore, the connection of the automotive functional safety process with methods for qualification and quantification of safety and reliability issues will be explained in this paper. The Fault Tree Analysis will be used to exemplify one of these methods which are applied subsequent to the hazard analysis and risk assessment and which make a contribution to the validation and verification of the safety process.

scholarly journals How Completely and Similarly Do Safety Authorities Address Hazards Posed by New Technology? A Paradigm from Small-drone Operations

2016 ◽  
Vol 2 (2) ◽  
pp. 79 ◽  
Author(s):  
Anastasios Plioutsias ◽  
Nektarios Karanikas ◽  
Maria Mikela Chatzimichailidou
Keyword(s):  
Gap Analysis ◽  
Process Analysis ◽  
Hazard Analysis ◽  
New Technology ◽  
End User ◽  
Continuous Increase ◽  
Market Growth ◽  
The Public ◽  
Safety Requirements ◽  
Regulatory Frameworks

<p class="Default">The continuous increase of accident and incident reports has indicated the potential of drones to threaten public safety. The published regulatory framework for small drones is not visibly based on a comprehensive hazard analysis. Also, a variety in the constraints imposed by different regulatory frameworks across the globe might impede market growth and render small-drone operations even more complicated since light drones might be easily transferred and operated in various regions with diverse restrictions. In our study we applied the Systems-Theoretic Process Analysis (STPA) method to small-drone operations and we generated a first set of Safety Requirements (SR) for the authority, manufacturer, end-user and automation levels. Under the scope of this paper, we reviewed 56 drone regulations published by different authorities, and performed (1) a gap analysis against the 57 SRs derived by STPA for the authority level, and (2) Intra-Class Correlations in order to examine the extent of their harmonization. The results suggest that the regulations studied satisfy 5.3% to 66.7% of the SRs, and they are moderately similar. The harmonization is even lower when considering the range of values of various SRs addressed by the authorities. The findings from the drones’ case show that regulators might not similarly and completely address hazards introduced by new technology; such a condition might affect safety and impede the distribution and use of products in the international market. A timely and harmonized standardization based on a systematic hazard analysis seems crucial for tackling the challenges stemmed from technological advancements, especially the ones available to the public.</p>

scholarly journals A comparison of hazard analysis methods capability for safety requirements generation

2021 ◽  
pp. 1748006X2110034
Author(s):  
Nanda Anugrah Zikrullah ◽  
Hyungju Kim ◽  
Meine JP van der Meulen ◽  
Gunleiv Skofteland ◽  
Mary Ann Lundteigen
Keyword(s):  
Process Analysis ◽  
Hazard Analysis ◽  
Functional Requirements ◽  
Critical System ◽  
Safety Requirements ◽  
Safety Critical System ◽  
Analysis Methods ◽  
Resilience Management ◽  
Requirements Generation ◽  
Software Intensive

A safety-critical system comprising several interacting and software-intensive systems must be carefully analyzed to detect whether new functional requirements are needed to ensure safety. This involves an analysis of the systemic properties of the system, which addresses the effect of the interaction between systems and system parts. The paper compares two hazard analysis methods, which are often considered well-suited for such software-intensive systems: the Functional Hazard Analysis (FHA) and Systems-Theoretic Process Analysis (STPA). The focus is on the selection and improvement of the best methods, based on the lesson learned from the comparison of FHA and STPA. The analyses cover the hazard analysis processes, systemic properties, and the criteria of requirements. The paper concludes that STPA is the better choice over FHA. Insights are obtained to align both STPA and FHA methods with the broader topic on risk management, that is, hazard analysis method improvement, cautionary thinking, uncertainty management, and resilience management.

scholarly journals Functional Safety BMS Design Methodology for Automotive Lithium-Based Batteries

Energies ◽  
2021 ◽  
Vol 14 (21) ◽  
pp. 6942
Author(s):  
David Marcos ◽  
Maitane Garmendia ◽  
Jon Crego ◽  
José Antonio Cortajarena
Keyword(s):  
Design Methodology ◽  
International Standards ◽  
Automotive Application ◽  
Special Focus ◽  
Battery Management ◽  
Functional Safety ◽  
Automotive Safety ◽  
Iso 26262 ◽  
Safety Integrity Level ◽  
Hazard And Risk

The increasing use of lithium batteries and the necessary integration of battery management systems (BMS) has led international standards to demand functional safety in electromobility applications, with a special focus on electric vehicles. This work covers the complete design of an enhanced automotive BMS with functional safety from the concept phase to verification activities. Firstly, a detailed analysis of the intrinsic hazards of lithium-based batteries is performed. Secondly, a hazard and risk assessment of an automotive lithium-based battery is carried out to address the specific risks deriving from the automotive application and the safety goals to be fulfilled to keep it under control. Safety goals lead to the technical safety requirements for the next hardware design and prototyping of a BMS Slave. Finally, the failure rate of the BMS Slave is assessed to verify the compliance of the developed enhanced BMS Slave with the functional safety Automotive Safety Integrity Level (ASIL) C. This paper contributes the design methodology of a BMS complying with ISO 26262 functional safety standard requirements for automotive lithium-based batteries.

scholarly journals Conceptual Design of Functional Safety of Motor Control System Based on ISO26262

2018 ◽  
Vol 173 ◽  
pp. 02045
Author(s):  
Dafang Wang ◽  
Peng Song ◽  
Zexu Xu ◽  
Guanglin Dong ◽  
Hui Wei
Keyword(s):  
Motor Control ◽  
Control System ◽  
Conceptual Design ◽  
Hazard Analysis ◽  
Functional Safety ◽  
Iso 26262 ◽  
Safety Requirements ◽  
New Energy ◽  
Motor Control System ◽  
New Energy Vehicle

This paper carries out the conceptual design of motor control system based on the standard of functional safety ISO 26262 for new energy vehicle. First, the paper introduce the main contents of the concept phase of ISO 26262. Then, the paper complete the item definition, hazard analysis and risk assessment of motor control system, and determine the functional safety goal and functional safety requirements.

scholarly journals A Model for Risk Assessment in Health Care Using a Health Care Failure Method and Effect Analysis

2013 ◽  
Vol 52 (4) ◽  
pp. 316-331 ◽  
Author(s):  
Vesna Prijatelj ◽  
Vladislav Rajkovič ◽  
Olga Šušteršič
Keyword(s):  
Risk Assessment ◽  
Health Care ◽  
Process Analysis ◽  
Medication Administration ◽  
Information Communication ◽  
Effect Analysis ◽  
Root Cause ◽  
Whole Process ◽  
Average Impact ◽  
Prevention Methods

AbstractObjective: The purpose of this research is to track and reduce risks so as to prevent errors within the process of health care. The aim is to design an organizational information model using error prevention methods for risk assessment.Method: In order to assess the risk of errors, the Health Care Failure Mode and Effect Analysis is used. To determine the causes of the errors, the Root Cause Analysis is used.Results: Results of the process analysis following corrective measures shows that the risk assessment of individual error causes reduced by73.6 percent. Re-evaluation of the risks to the whole process shows that the overall risk score was decreased by 45.5 percent. The proposed model has a significant impact on professional attention, communication and information, critical thinking, experience and knowledge. The average impact of information communication technology on the reduction of medication administration errors is 56 percent. These findings represent an increase in the quality of care.Conclusions: The results of our research are theoretically and practically useful and verifiable in other environments, if the level of the organizational culture and the culture of recording errors in combination with the precise recording of data to assess the risk of errors in the process. The model provides a standardized data format that can be used for the purpose of defining factors for the occurrence of errors, for developing a base of knowledge for learning from mistakes and for continuous verification and adaptation to changes in the environment in order to prevent errors.

Sign in / Sign up

Export Citation Format

Share Document