Search Results

The development of highly automated driving functions (AD) recently rises the demand for so called Fail-Operational systems for native driving functions like steering and braking of vehicles. Fail-Operational systems shall guarantee the availability of driving functions even in presence of failures. This can also mean a degradation of system performance or limiting a system’s remaining operating period. In either case, the goal is independency from a human driver as a permanently situation-aware safety fallback solution to provide a certain level of autonomy. In parallel, the connectivity of modern vehicles is increasing rapidly and especially in vehicles with highly automated functions, there is a high demand for connected functions, Infotainment (web conference, Internet, Shopping) and Entertainment (Streaming, Gaming) to entertain the passengers, who should no longer occupied with driving tasks.

One main goal of the automotive industry is to reduce the aerodynamic drag of passenger vehicles. Therefore, a deeper understanding of the flow field is necessary. Time-resolved data of the flow field is required to get an insight into the complex unsteady flow phenomena around passenger vehicles. This data helps to understand the temporal development of wake structures and enables the analysis of the formation of vortical structures. Numerical simulations are an efficient method to analyze the time-resolved data of the unsteady flow field. The analysis of the steady and unsteady numerical data is only relevant for aerodynamic developments in the wind tunnel, if the predicted temporal evolving structures of a passenger vehicle’s simulated flow field correspond to the structures of the flow field in the wind tunnel. In this study, time-resolved measurements of the empty wind tunnel and a notchback passenger vehicle in the wind tunnel are conducted.

The performance of environment perceiving sensors such as e.g. lidar, radar, camera and ultrasonic sensors is safety critical for automated driving vehicles. Therefore, one has to assess the sensors’ performance to assure the automated driving system’s safety. The performance of these sensors is however to some degree sensitive towards adverse weather conditions. A challenge is to quantify the effect of adverse weather conditions on the sensor’s performance early in the development of an automated driving system. This challenge is addressed in this work for lidar sensors. The lidar equation was previously employed in this context to derive estimates of a lidar’s maximum range in different weather conditions. In this work, we present a stochastic simulation framework based on a probabilistic extension of the lidar equation, to quantify the effect of adverse rainfall conditions on a lidar’s raw detection performance.

Advanced safety features and new services in connected cars depend on the security of the underlying vehicle functions. Due to the interconnection with the outside world and as a result of being an embedded system a modern vehicle is exposed to both, malicious activities as faced by traditional IT world systems as well as physical attacks. This introduces the need for utilizing hardware-assisted security measures to prevent both kinds of attacks. In this paper we present a survey of the different classes of hardware security devices and depict their different functional range and application. We demonstrate the feasibility of our approach by conducting a case study on an exemplary implementation of a function-on-demand use case. In particular, our example outlines how to apply the different hardware security approaches in practice to address real-world security topics. We conclude with an assessment of today’s hardware security devices.

Minimizing the lap time for a given race track is the main target in racecar development. In order to achieve the highest possible performance of the vehicle configuration the mutual interaction at the level of assemblies and components requires a balance between the advantages and disadvantages for each design decision. Especially the major shift in the focus of racecar powerunit development to high efficiency powertrains is driving a development of lean boosted and rightsized engines. In terms of dynamic engine behavior the time delay from requested to provided torque could influence the lap time performance. Therefore, solely maximizing the full load behavior objective is insufficient to achieve minimal lap time. By means of continuous predictive virtual methods throughout the whole development process, the influence on lap time by dynamic power lags, e.g. caused by the boost system, can be recognized efficiently even in the early concept phase.

A main challenge when developing next generation architectures for automated driving ECUs is to guarantee reliable functionality. Today’s fail safe systems will not be able to handle electronic failures due to the missing “mechanical” fallback or the intervening driver. This means, fail operational based on redundancy is an essential part for improving the functional safety, especially in safety-related braking and steering systems. The 2-out-of-2 Diagnostic Fail Safe (2oo2DFS) system is a promising approach to realize redundancy with manageable costs. In this contribution, we evaluate the reliability of this concept for a symmetric and an asymmetric Electronic Power Steering (EPS) ECU. For this, we use a Markov chain model as a typical method for analyzing the reliability and Mean Time To Failure (MTTF) in majority redundancy approaches. As a basis, the failure rates of the used components and the microcontroller are considered.

With increasing levels of driving automation, the perception provided by automotive environment sensors becomes highly safety relevant. A correct assessment of the sensors’ perception reliability is therefore crucial for ensuring the safety of the automated driving functionalities. There are currently no standardized procedures or guidelines for demonstrating the perception reliability of the sensors. Engineers therefore face the challenge of setting up test procedures and plan test drive efforts. Null Hypothesis Significance Testing has been employed previously to answer this question. In this contribution, we present an alternative method based on Bayesian parameter inference, which is easy to implement and whose interpretation is more intuitive for engineers without a profound statistical education. We show how to account for different environmental conditions with an influence on sensor performance and for statistical dependence among perception errors.

Driven by the growing internet and remote connectivity of automobiles, combined with the emerging trend to automated driving, the importance of security for automotive systems is massively increasing. Although cyber security is a common part of daily routines in the traditional IT domain, necessary security mechanisms are not yet widely applied in the vehicles. At first glance, this may not appear to be a problem as there are lots of solutions from other domains, which potentially could be re-used. But substantial differences compared to an automotive environment have to be taken into account, drastically reducing the possibilities for simple reuse. Our contribution is to address automotive electronics engineers who are confronted with security requirements. Therefore, it will firstly provide some basic knowledge about IT security and subsequently present a selection of automotive specific security use cases.

The increasing complexity of automotive functions which are necessary for improved driving assistance systems and automated driving require a change of common vehicle architectures. This includes new concepts for E/E architectures such as a domain-oriented vehicle network based on powerful Domain Control Units (DCUs). These highly integrated controllers consolidate several applications on different safety levels on the same ECU. Hence, the functions depend on a strictly separated and isolated implementation to guarantee a correct behavior. This requires middleware layers which guarantee task isolation and Quality of Service (QoS) communication have to provide several new features, depending on the domain the corresponding control unit is used for. In a first step we identify requirements for a middleware in automotive DCUs. Our goal is to reuse legacy AUTOSAR based code in a multicore domain controller.

Longitudinal models are used to evaluate different vehicle-engine concepts with respect to driving behavior and emissions. The engine is generally map-based. An explicit calculation of both fluid dynamics inside the engine air path and cylinder combustion is not considered due to long computing times. Particularly for dynamic certification cycles (WLTC, US06 etc.), dynamic engine effects severely influence the quality of results. Hence, an evaluation of transient engine behavior with map-based engine models is restricted to a certain extent. The coupling of detailed 1D-engine models is an alternative, which rapidly increases the model computation time to approximately 300 times higher than that of real time. In many technical areas, the Fourier transformation (FT) method is applied, which makes it possible to represent superimposed oscillations by their sinusoidal harmonic oscillations of different orders.

The open jet wind tunnel is a widespread test section configuration for developing full scale passenger cars in the automotive industry. However, using a realizable nozzle cross section for cost effective aerodynamic development is always connected to the presence of wind tunnel effects. Wind tunnel wall interferences which are not present under open road conditions, can affect the measurement of aerodynamic forces. Thus, wind tunnel corrections may be required. This work contains the results of a CFD (Computational Fluid Dynamics) approach using unsteady Delayed Detached Eddy Simulations (DDES) to evaluate wind tunnel interferences for open jet test sections. The Full Scale DrivAer reference geometry of the Technical University of Munich (TUM) using different rear end shapes has been selected for these investigations.

Automotive engineering processes are dynamic, iterative and driven by changes. Reasons for changes on development artifacts are manifold, but the result is a new evolution step which may influence all, some, or just a single development artifact. Consequently, research on impact analysis put forth approaches to assess the adverse effects of changes. However, understanding and implementing functional changes and its consequences in the safety domain is often aggravated by dependencies between different types of development artifacts, scattered in various (tool) formats. Safety properties may change depending on the type of a modification. Thereby, connected analyses like fault trees, Failure Modes and Effects Analysis (FMEA), and safety concepts cannot be reused easily if the artifacts on which they are based on are affected by changes. In this paper we suggest a new difference analysis approach which allows a (semi-)automated comparison of safety work products based on models.

The trend towards even more sophisticated driver assistance systems and growing automation of driving sets new requirements for the robustness and availability of the involved automotive systems. In case of an error, today it is still sufficient that safety related systems just fail safe or silent to prevent safety related influence of the driving stability resulting in a functional deactivation. But the reliance on passive mechanical fallbacks in which the human driver taking over control, being inevitable in such a scenario, is expected to get more and more insufficient along with a rising degree of driving automation as the driver will be given longer reaction time. The advantage of highly or even fully automated driving is that the driver can focus on other tasks than controlling the car and monitoring it’s behavior and environment.

In this work we extended the findings from a previous study by the authors on the mechanisms and influence factors of deposit formation in urea-based selective catalytic reduction systems (SCR) [1]. A broader range of operating conditions was investigated in detail. In order to quantify the boundary conditions of deposition, a representative set of deposits was studied during formation and decomposition. A box of heat resisting glass was equipped with a surrogate mixing element to monitor solidification timescales, temperatures and deposit growth. A chemical analysis of the deposits was performed using thermogravimetry. The depletion timescales of individual deposit components were systematically investigated. A moderate temperature increase to 350 °C was deemed sufficient to trigger fast decomposition of deposits formed below 250 °C.

Starting from the USA and followed by the European Union, legal requirements concerning “Tire Pressure Monitoring Systems” (TPMS) for passenger cars and light trucks will be introduced in China as well and therefore in the third of the three largest automobile markets worldwide. Changes of pressure dependent physical tire properties such as dynamic roll radius and a certain tire eigenfrequency, which are included in the ESC-wheel speed signals, indicates pressure loss in an indirect manner. Systems with corresponding working principles are called “indirect Tire Pressure Monitoring System” (iTPMS). Since the tire is a structural element with varying characteristics according to the design parameters, the roll radius and frequency behavior due to pressure loss is variable as well. As a consequence, tires have to be evaluated regarding there compatibility to iTPMS during the vehicle development process.

The German funded project ARAMiS included work on several demonstrators one of which was a multicore approach on large scale software integration (LSSI) for the automotive domain. Here BMW and Audi intentionally implemented two different integration platforms to gain both experience and real life data on a Hypervisor based concept on one side as well as using only native AUTOSAR-based methods on the other side for later comparison. The idea was to obtain figures on the added overhead both for multicore as well as safety, based on practical work and close-to-production implementations. During implementation and evaluation on one hand there were a lot of valuable lessons learned about multicore in conjunction with safety. On the other hand valuable information was gathered to make it finally possible to set up a cost model for estimation of potential overhead generated by different integration approaches for safety related software functions.

In the context of the ARAMiS project, AUDI AG contributed the development of a multi-core demonstrator based on car functions already in production. For this demonstrator, these legacy car functions were ported from single-core platforms to a multi-core platform to gain real world close-to-production experience while utilizing the new technology. For complex functions with high demands for computational resources, it may be necessary to distribute computation over several cores. In this context, we investigated the parallelization of a legacy sequential AUTOSAR function. A main contribution of this work is an analysis of mechanisms provided by AUTOSAR, their limitations and, possible remedy. This paper will point out observations and experiences during the development of this demonstrator and show practical solutions for parallelization in an AUTOSAR environment.

Strategies for weight reduction have driven the noise treatment advanced developments with a great success considering the already mastered weight decreases observed in the last years in the automotive industry. This is typically the case for all soft trims parts. In the early 2010's a typical european B-segment car soft trims weights indeed 30 to 40% less than in the early 2000's years. The main driver behind such a gap has been to combine insulation and absorption properties on a single part while increasing the number of layers. This product-process evolution was conducted using a significant improvement in the simulation capacities. In that sense, several studies presenting very good correlation results between Transmission Loss measurements and finite elements simulations on dashboard or floor insulators were presented. One may consider that those kinds of parts have already achieved a considerable improvement in performance.

This study deals with the experimental investigation of the mechanical properties of a lithium-ion pouch cell and its modelling in an explicit finite element simulation code. One can distinguish between ‘macroscopic’ and ‘microscopic’ modelling approaches. In the ‘macroscopic’ approach, one material model approximates the behaviour of multiple inner cell layers. In the ‘microscopic’ approach, which is used in the present study, all layers and their interactions are modelled separately. The cell under study is a pouch-type lithium-ion cell with a liquid electrolyte. With its cell chemistry, design, size and capacity it is usable for automotive applications and can be assembled into traction batteries. One cell sample was fully discharged and disassembled, and its components (anode, cathode, separator and pouch) were examined and measured by electron microscopy. Components were also tensile tested.

The increased pressure for power, space, and cost reduction in automotive applications together with the availability of high performance, automotive qualified multicore microcontrollers has lead to the ability to engineer Domain Controller ECUs that can host several separate applications in parallel. The standard automotive constraints however still apply, such as use of AUTOSAR operating system, support for legacy code, hosting OEM supplied code and the ability to determine warranty issues and responsibilities between a group of Tier 1 and Tier 2 vendors who all provide Intellectual Property to the final production ECU. Requirements for safety relevant applications add even more complexity, which in most current approaches demand a reconfiguration of all basic software layers and a major effort to redesign parts of the application code to enable co-existence on the same hardware platform. This paper outlines the conflicting requirements of hosting multiple applications.