A mixed model to evaluate random hardware failures of whole-redundancy system in ISO 26262 based on fault tree analysis and Markov chain

In order to ensure safety and reliability, some safety-related electrical and electronic (E/E) systems in vehicles need to be designed as a whole-redundancy system. Although ISO 26262 provides guidance for the analysis of random hardware failure, the problem of estimating whether the safety-related E/E systems, especially whole-redundancy system can meet the index of the ASIL level in ISO 26262 is still unsolved. Fault tree analysis (FTA) is one of the basic methods to analyze random hardware failure of a vehicle’s E/E systems quantitatively. In generic FTA, the quantitative analysis of dynamic logic gates, which usually exist in the fault tree of whole-redundancy system, cannot be calculated. Meanwhile, Markov chain can solve the problem of quantitative calculation of dynamic fault tree, but brings a side-effect of complicating the calculation of static logic gates in fault trees. In order to evaluate random hardware failure of a vehicle E/E system more concisely and effectively, and to estimate if a new safety-related E/E system’s random hardware failure rate can meet the index demand in ISO 26262, this study proposed a mixed model based on FTA and Markov chain. First, the definition of random hardware failure and fault classification were clarified. Then, a mixed model based on FTA and Markov chain was proposed. Finally, a whole-dual-redundancy steer by wire system was used as an example to test the validity of the mixed model. This study not only proposed a new mixed model based on FTA and Markov chain for the calculation of a whole-redundancy system’s random hardware failure rate, but also provided a new quantitative validation method for safety-related E/E systems in vehicles that need to meet the reliability index requirement in ISO 26262.

[1]  Nabarun Das,et al.  Quantified fault tree techniques for calculating hardware fault metrics according to ISO 26262 , 2016, 2016 IEEE Symposium on Product Compliance Engineering (ISPCE).

[2]  Paolo Maggiore,et al.  Failure rate evaluation method for HW architecture derived from functional safety standards (ISO 19014, ISO 25119, IEC 61508) , 2017, Reliab. Eng. Syst. Saf..

[3]  Balbir S. Dhillon,et al.  A new reliability analysis method for vehicle systems based on goal-oriented methodology , 2017 .

[4]  Robert Pilch Extending the Possibilities of Quantitative Determination of SIL - a Procedure Based on IEC 61508 and the Markov Model with Common Cause Failures , 2017, Qual. Reliab. Eng. Int..

[5]  Alberto Sangiovanni-Vincentelli,et al.  Fault Tree Analysis for the Design Exploration of Fault Tolerant Automotive Architectures , 2009 .

[6]  C. Berges,et al.  Innovative methodology for failure rate estimation from quality incidents, for ISO26262 standard requirements , 2012, 2012 19th IEEE International Symposium on the Physical and Failure Analysis of Integrated Circuits.

[7]  Salvatore J. Bavuso,et al.  Dynamic fault-tree models for fault-tolerant computer systems , 1992 .

[8]  Chaozhong Wu,et al.  Incorporating CREAM and MCS into fault tree analysis of LNG carrier spill accidents , 2017 .

[9]  Yung-Ruei Chang,et al.  An improved decomposition scheme for assessing the reliability of embedded systems by using dynamic fault trees , 2007, Reliab. Eng. Syst. Saf..

[10]  Roberto Colombo,et al.  Automotive electronics: Application & technology megatrends , 2014, 2014 44th European Solid State Device Research Conference (ESSDERC).

[11]  Carl Graham Markov chains : analytic and Monte Carlo computations , 2014 .

[12]  Peng Zhang,et al.  Reliability Evaluation of Phasor Measurement Unit Using Monte Carlo Dynamic Fault Tree Method , 2012, IEEE Transactions on Smart Grid.