ASIL-Decomposition and Related DFA for Autonomous Driving Systems 2019-01-0135

According to ISO 26262, ASIL decomposition is the breakdown of a top level safety requirement derived from safety goal into redundant safety requirements with sufficient independence to achieve the safety goal independently. The usage of decomposition enables the opportunity to reduce the ASIL rating of the decomposed safety requirements of a safety goal. To apply decomposition, the decomposed safety requirements should be allocated to sufficiently independent architectural elements. If the redundant/decomposed safety requirements cannot be allocated to sufficiently independent architectural elements, then these redundant safety requirements inherit the initial ASIL of the safety goal. ASIL decomposition can be applied to the functional, technical, hardware or software safety requirements of the item.

This paper discusses, how the decomposition approach from ISO 26262 can be applied for autonomous driving (AD) systems considering processing chain from sensors such as camera, radar, LIDAR, etc. to perception algorithms and decision algorithms which are executed in high performance chips. In addition, this research provides different solutions for the extension of dependent failure analysis considering SOTIF-related technological shortcomings.