Search Results

The flight area of drones and other unmanned aerial vehicles (UAVs) had been highly restricted but has been relaxing, including flights beyond the scope of sight. Deregulation without aircraft-reliability improvement increases the risk of accidents. However, demanding high reliability for all aircraft leads to an increase in the price of the aircraft. Therefore, if airspace restrictions are relaxed for more reliable aircraft, the cost of higher reliability and its benefits can be balanced. This will improve efficiency and optimize cost-effectiveness. The purpose of this proposal is to balance the cost of aircraft-reliability improvement (which allows flight to continue in the event of a failure) and its advantages. Specifically, the author proposes rules that apply more relaxed airspace restrictions to UAVs with higher FCLs (Flight Continuity Possibility Levels) and stricter airspace restrictions to those with lower FCLs.

This paper presents the “Virtual Failure Mode and Effects Analysis (vFMEA)” system, which is a high-fidelity electrical-failure-simulation platform, and applies it to the software verification of an electric power steering (EPS) system. The vFMEA system enables engineers to dynamically inject a drift fault into a circuit model of the electronic control unit (ECU) of an EPS system, to analyze system-level failure effects, and to verify software-implemented safety mechanisms, which consequently reduces both cost and time of development. The vFMEA system can verify test cases that cannot be verified using an actual ECU and can improve test coverage as well. It consists of a cycle-accurate microcontroller model with mass-production software implemented in binary format, analog and digital circuit models, mechanical models, and a state-triggered fault-injection mechanism.

A virtual power window control system was built in order to look into and demonstrate applications of microcontroller models. A virtual ECU simulated microcontroller hardware operations. The microcontroller program, which was written in binary digital codes, was executed step-by-step as the virtual ECU simulation went on. Thus, production-ready codes of ECUs are of primary interest in this research. The mechanical system of the power window, the DC motor to lift the window glass, the H-bridge MOSFET drivers, and the current sensing circuit to detect window locking are also modeled. This means that the hardware system of the control system was precisely modeled in terms of mechanical and circuit components. By integrating these models into continuous and discrete co-simulation, the power window control system was analyzed in detail from the microscopic command execution of the microcontroller to the macroscopic motion of the window mechanism altogether.

Highly automated driving systems have a responsibility to keep a vehicle safe even in abnormal conditions such as random or systematic failures. However, creating redundancy in a system to respond to failures increases the cost of the system, and simple redundancy cannot detect systematic failures because some systematic failures occur in each system at the same time. Systematic failures in automated driving systems cannot be verified sufficiently during the development phase due to numerous patterns of parameters input from outside the system. A safety concept based on a “safety sustainer” for highly automated driving systems is proposed. The safety sustainer is designed for keeping a vehicle in a safe state for several seconds if a failure occurs in the system and notifying the driver that the system is in failure mode and requesting the driver to take over control of the vehicle.

“Virtual Failure Mode and Effects Analysis” (vFMEA), a novel safety-verification method of control software for automotive electronic systems, was proposed to save prototyping cost at verification stage. The proposed vFMEA is system-level FMEA method, which uses virtualized electronic control units (ECUs) consisting of microcontroller models on a microcontroller simulator and a transistor-level circuit models on a circuit simulator. By using the structure, the control software in binary code formats can be verified when a circuit-level fault occurs in the ECU hardware. As an illustrative example, vFMEA was applied to an engine ECU. As a result of short-circuit fault into a driver IC, engine revolution and engine speed decreased. However, the engine continued to operate normally when an open-circuit fault occurred in a capacitor connected in parallel. Effects of the hardware faults in ECU on a vehicle are demonstrated; thereby software verification can be performed using vFMEA system.