Model-based Development of Embedded Software in Compliance with ISO 26262 – Challenges and Effective Solutions CME1801

Topics: Quality, Safety & Maintenance

This training class describes how to develop and safeguard safety critical embedded software in serial projects with Simulink in compliance with ISO 26262 (part 6). Beginning with a general overview of the ISO standard, we proceed by focusing on the ISO 26262 requirements that are specifically relevant to model based development. We address the impact the standard has had on model-based development with Simulink, as well as the requirements for model and software architecture in safety critical software. We also look at modeling guidelines and testing before wrapping up the class by assessing ISO 26262 readiness of controller functions. All theoretical knowledge is supplemented by means of several practical examples, which you can take straight back to your desk.


  • Developing safety-critical software in compliance with ISO 26262
  • All contents updated for ISO 26262:2018
  • Impact of ISO 26262 on development of embedded software with Simulink
  • Model architectures for safety-critical software
  • Safeguarding ISO 26262-compliant models with modeling guidelines and complexity metrics
  • ISO 26262-compliant testing for model-based SW development
  • Tool qualification
  • Prioritization of ISO 26262 requirements for process adaptation

At the conclusion of the training workshop, participants will have the option of completing an evaluation exercise to attain the SAE Certificate of Competency.

Learning Objectives

By completing this course, the participants will achieve the following:

  • An understanding of the characteristics and benefits of model-based development
  • Know-how to apply model-based methods to develop safety-related systems in compliance with ISO 26262
  • An understanding of the model-based development process as outlined by ISO 26262
  • Ability to assess elements of effective software architecture according to ISO 26262
  • An understanding of how to implement software architecture in models
  • The skills to analyze and evaluate model structures
  • An understanding of how to ensure model quality with effective modeling guidelines
  • Ability to recall the approach to tool qualification that aligns with ISO 26262
  • Knowledge of how to apply methods to ensure model quality with model testing
  • An understanding of approaches to detailed design in model-based development
  • An understanding of the priorities for process adaptation towards ISO 26262 compliance

Who Should Attend

This training class is designed for developers, testers, project managers, and quality managers, whose focus is modelbased development of safety-critical embedded software using MATLAB/Simulink.

Day 1
Overview: Model-based software development with Simulink
  • Foundations of model-based development
  • Overview of development and quality assurance activities
  • Characteristics of ISO 26262-compliant development
Safety-related software development in compliance with ISO 26262
  • Impact on the development process
  • Hazard analysis and risk assessment, ASIL determination
  • Strategies for safety concepts – deriving software safety requirements
  • ASIL decomposition
  • Safety Of The Intended Functionality (SOTIF)
Hands-on: Safety requirements
ISO 26262-compliant development process
  • Reference work
  • Process phases and work products
  • Process manuals and developer guides
  • Similarities to ASPICE 3 requirements
Implementing software architectures in models
  • Basics of software architecture
  • Expected properties of an ISO 26262-compliant software architecture
  • Software architecture in models
  • Principles for layered models
  • Interface handling in models
  • Simulink design patterns for safety-critical software
Analysis and evaluation of model architecture
  • Model structure analysis
  • Introduction to complexity metrics
  • Calculating model complexity
  • Measures to reduce model complexity
  • Identification of ineffective interfaces and model clones
Hands-on: Analysis, evaluation and refactoring of model architecture

Day 2
Ensuring model quality with modeling guidelines
  • Overview of modeling guidelines
  • General modeling guidelines for MISRA- and ISO 26262-compliant modeling
  • Specific guidelines on improving code generator application
  • Automatic checking of modeling guidelines
Hands-on: Ensuring model quality with modeling guidelines
Tool qualification in compliance with ISO 26262
  • Foundations of tool qualification
  • Determination of the tool confidence level
  • Qualification methods
Hands-on: Tool qualification kit
Ensuring model quality with model testing
  • ISO 26262 requirements in the testing process
  • Test goals on different testing levels
  • Regression testing and back-to-back testing, MiL – SiL – PiL
  • Model and code coverage
  • Automatic test evaluation with test assessments
Hands-on: Model testing project
Overview and priorities for process adaptation in compliance with ISO 26262
  • Quality monitoring of development projects, software verification report
  • Prioritizing ISO 26262 requirements for model-based development
  • Assessing effort and benefits of ISO 26262 requirements
  • Available methods and tools for process tailoring
Hands-on: Quality monitoring project
Evaluation test to qualify for the SAE Certificate of Competency (optional)
Dr. Jan Grabowski; Sophia Kohle; Dr. Harmut Pohlheim; Melina Simichanidou; ; Kai Teschner; Yuzhu Yang

Jan Grabowski is Head of Product at Model Engineering Solutions. With unwavering interest in ensuring the optimal support for our customers, he designs application scenarios and solution concepts for the MES software tools and services, and consults and assists customers worldwide. His expertise in quality assurance flows into the MES webinars and also into his role as speaker at conferences, and he happily shares his knowledge in MES training classes.

Sophia Kohle is Product Manager of the MES Model Examiner® (MXAM). As part of her role, she defines the strategic objectives for the development and advancement of the tool. She also manages customer projects in which company-specific features, guidelines, and checks are implemented in MXAM. Her commitment to quality led her and her team to confirm the tool’s quality even further by having it classified and qualified by TÜV SÜD for its use in safety-related software development in compliance with ISO 26262, IEC 61508, and ISO 25119.

Hartmut Pohlheim has been driving forward the quality assurance of software models for the automotive industry for more than 20 years. He holds a doctorate in technical cybernetics and automation engineering from the Technical University of Ilmenau and is considered one of the most distinguished experts in model-based software development. Since 2008 Hartmut Pohlheim has been Managing Director of Model Engineering Solutions (MES) and is responsible for technology development as Chief Technology Officer (CTO). He inspires customers with his effective solutions and expertise in quality assurance. Agile management is important to him and he cares a lot about his employees feeling valued and appreciated.

Melina Simichanidou is a mathematician. After completing her Bachelor\'s degree at the Aristotle University of Thessaloniki, she successfully completed her Master\'s degree at the Technische Universität Berlin. She has been working as a software developer in the development team of the MES Model Examiner® (MXAM) since 2017. Her main areas of focus are the development of checks in MXAM and customer support. She also shares her expertize in software development as a trainer in the training classes.

Kai Teschner is a software engineer in the MES Test Manager® (MTest) team. He joined MES in 2016 while he was studying electrical engineering with a focus on control engineering and modeling at the Technische Universität Berlin (Technical University Berlin). In this way, he was able to gain first-hand experience in test projects regarding safety relevant software. After successfully completing his studies, he started working on developing the software of the test management tool MTest. As an MES Academy trainer, he shares his expertize in testing and developing safety critical software.

Yuzhu Yang is Product Application Engineer of MES China. He supports the introduction of model checking and testing tools to Chinese customers and contributes to the product development process. With over seven years of software developing experience in safety-related systems, he assists customers in how to best use MES tools and how to implement them in the model-based software development practice. As an MES Academy trainer, he likes to share how to make the software development more efficient by using qualified tools and having a well-defined process.

Duration: 0 Day

Fees: $2000.00

If paying by any other method or if you have general questions, please contact SAE Customer Service.