Characterization and Mitigation of Insufficiencies In Automated Driving Systems

Automated Driving (AD) systems have the potential to increase safety, comfort and energy efficiency. Recently, major automotive companies have started testing and validating AD systems (ADS) on public roads. Nevertheless, the commercial deployment and wide adoption of ADS have been moderate, partially due to system functional insufficiencies (FI) that undermine passenger safety and lead to hazardous situations on the road. In contrast to system faults that are analyzed by the automotive functional safety standard ISO 26262, FIs are defined in ISO 21448 Safety Of The Intended Functionality (SOTIF). FIs are insufficiencies in sensors, actuators and algorithm implementations, including neural networks and probabilistic calculations. Examples of FIs in ADS include inaccurate ego-vehicle localization on the road, incorrect prediction of a cyclist maneuver, unreliable detection of a pedestrian in rainy weather using cameras and image processing algorithms, etc. The main goal of the study is to formulate a generic architectural design pattern, which is compatible with existing methods and ADS, to improve FI mitigation and enable faster commercial deployment of ADS. First, the authors studied the 2021 autonomous vehicles disengagement reports published by the California Department of Motor Vehicles (DMV). The data clearly show that disengagements are five times more often caused by FIs rather than by system faults. They then made a comprehensive list of insufficiencies and their characteristics by analyzing over 10 hours of publicly available road test videos. In particular, the authors identified insufficiency types in four major categories: world model, motion plan, traffic rule, and operational design domain. The insufficiency characterization helps making the SOTIF analyses of triggering conditions more systematic and comprehensive. To handle faults, modern ADS already integrate multiple AD channels, where each channel is composed of sensors and processors running AD software. The characterization study triggered a hypothesis that these heterogeneous channels can also complement each other’s capabilities to mitigate insufficiencies in vehicle operation. To verify the hypothesis, the authors built an open-loop automated driving simulation environment based on the LG SVL simulator. Three realistic AD channels (Baidu Apollo, Autoware.Auto, and comma.ai openpilot) were tested in the same driving scenario. The experiments suggest that even advanced AD channels have insufficiencies that can be mitigated by switching control to another (possibly less advanced) AD channel at the right moment. Based on the FI characterization, simulation experiments and literature survey, the authors define a novel generic architectural design pattern Daruma to dynamically select the channel that is least likely to have a FI at the moment. The key component of the pattern does cross-channel analysis, in which planned trajectories and world models from different AD channels are mutually evaluated. The output of the cross-channel analysis is combined with more traditional fault detections in a safety fusion component. The safety fusion then feeds an aggregated per-channel safety score to the high-level arbiter, which eventually selects the AD channel to control the vehicle. The formulated architectural pattern can help manufactures of autonomous vehicles in mitigating FIs. Limitations of the study suggest interesting future work, including algorithmic research on cross-channel analysis and safety fusion, as well as evaluation of the cross-channel analysis in simulations and road tests

Higher incidence of clear cell adenocarcinoma of the cervix and vagina among women born between 1947 and 1971 in the United States

Although the association between in utero exposure to diethylstilbestrol (DES) and clear cell adenocarcinoma of the cervix and vagina (CCA) was first reported among young women, subsequent case reports and cohort studies suggest that an elevated risk for CCA may persist with age. Data from the National Program of Cancer Registries (NPCR) and the Surveillance, Epidemiology and End Results (SEER) Program were used to construct indirect standardized incidence ratios (SIR) comparing CCA risk among women born during the exposure period 1947 through 1971, when DES was prescribed to pregnant women, to the relevant time period for nonexposed women born before or after DES exposure period. CCA incidence among the women born before the DES exposure period (ages 30–54 at diagnosis of CAA) or after the DES exposure period (ages 15–29 at diagnosis) were used to calculate the expected rates for women born during the DES exposure period. Among women aged 15–29 years, CCA risk increased with age and peaked in the 25–29 year age group, but the risk estimates were unstable (SIR = 6.06; 95% CI: 0.97, −251.07, SEER data). Among women aged 40–54 years, CCA risk was greatest in the 40–44 year age group (SIR = 4.55; 95% CI: 1.11, 40.19, SEER data and SIR = 3.94; 95% CI: 1.06, 33.01, NPCR/SEER data) and remained significantly elevated throughout this age group in the combined data set. Risk was not elevated among women aged 30–39 years. The observed risk of CCA, if causally related to DES exposure, reflects a persistent health impact from in utero exposure that is widespread in the general population. When assessing a woman’s cancer risks, whether her mother took DES while pregnant may still be a relevant aspect of the medical history for women born during the period of DES use in pregnancy

Additional Techniques in Serous Effusions

Cytological examination is a valuable diagnostic tool in case of a serous effusion. The firstmanifestation of malignancy may be an effusion of the pleural, pericardial, or peritoneal cavity, especially in carcinoma of the ovary, or lung, and malignant mesothelioma. In other malignancies effusions may occur in the course of the disease. The contribution by Motherby et al. in this issue of ACP focuses on the contribution of image and flow cytometry to establish the presence or absence of malignancy in serous effusions [16]. They point out that the sensitivity of DNA image cytometry in equivocal effusions may be as high as 87.5%, and that for the detection of malignancy, DNA image cytometry is superior to flow cytometry

Detection and Mitigation of Functional Insufficiencies in Autonomous Vehicles:The Safety Shell

Autonomous vehicles (AVs) promise to reduce greenhouse gas emissions, increase comfort and throughput of transportation, while simultaneously significantly reducing traffic deaths. To allow autonomous vehicles to satisfy the high safety levels for unsupervised participation in realistic traffic, the faults and functional insufficiencies of AV systems need to be mitigated during operation. Unfortunately, current state-of-the-art functional insufficiency detection and mitigation methods do not provide large enough safety improvements, without impeding the availability of safe autonomous functionality. To fill this gap, we propose the Safety Shell, an implementable multi-channel architecture and arbitration method. The ability to increase the number of parallel AV function channels allows for a path to safe AV systems, while the novel arbitration method ensures availability for comfortable journey continuation. The flexibility and benefits of the Safety Shell are shown using use case studies.Autonomous vehicles (AVs) promise to reduce greenhouse gas emissions, increase comfort and throughput of transportation, while simultaneously significantly reducing traffic deaths. To allow autonomous vehicles to satisfy the high safety levels for unsupervised participation in realistic traffic, the faults and functional insufficiencies of AV systems need to be mitigated during operation. Unfortunately, current state-of-the-art functional insufficiency detection and mitigation methods do not provide large enough safety improvements, without impeding the availability of safe autonomous functionality. To fill this gap, we propose the Safety Shell, an implementable multi-channel architecture and arbitration method. The ability to increase the number of parallel AV function channels allows for a path to safe AV systems, while the novel arbitration method ensures availability for comfortable journey continuation. The flexibility and benefits of the Safety Shell are shown using use case studies

Characterization and Mitigation of Insufficiencies In Automated Driving Systems

Automated Driving (AD) systems have the potential to increase safety, comfort and energy efficiency. Recently, major automotive companies have started testing and validating AD systems (ADS) on public roads. Nevertheless, the commercial deployment and wide adoption of ADS have been moderate, partially due to system functional insufficiencies (FI) that undermine passenger safety and lead to hazardous situations on the road. In contrast to system faults that are analyzed by the automotive functional safety standard ISO 26262, FIs are defined in ISO 21448 Safety Of The Intended Functionality (SOTIF). FIs are insufficiencies in sensors, actuators and algorithm implementations, including neural networks and probabilistic calculations. Examples of FIs in ADS include inaccurate ego-vehicle localization on the road, incorrect prediction of a cyclist maneuver, unreliable detection of a pedestrian in rainy weather using cameras and image processing algorithms, etc. The main goal of the study is to formulate a generic architectural design pattern, which is compatible with existing methods and ADS, to improve FI mitigation and enable faster commercial deployment of ADS. First, the authors studied the 2021 autonomous vehicles disengagement reports published by the California Department of Motor Vehicles (DMV). The data clearly show that disengagements are five times more often caused by FIs rather than by system faults. They then made a comprehensive list of insufficiencies and their characteristics by analyzing over 10 hours of publicly available road test videos. In particular, the authors identified insufficiency types in four major categories: world model, motion plan, traffic rule, and operational design domain. The insufficiency characterization helps making the SOTIF analyses of triggering conditions more systematic and comprehensive. To handle faults, modern ADS already integrate multiple AD channels, where each channel is composed of sensors and processors running AD software. The characterization study triggered a hypothesis that these heterogeneous channels can also complement each other’s capabilities to mitigate insufficiencies in vehicle operation. To verify the hypothesis, the authors built an open-loop automated driving simulation environment based on the LG SVL simulator. Three realistic AD channels (Baidu Apollo, Autoware.Auto, and comma.ai openpilot) were tested in the same driving scenario. The experiments suggest that even advanced AD channels have insufficiencies that can be mitigated by switching control to another (possibly less advanced) AD channel at the right moment. Based on the FI characterization, simulation experiments and literature survey, the authors define a novel generic architectural design pattern Daruma to dynamically select the channel that is least likely to have a FI at the moment. The key component of the pattern does cross-channel analysis, in which planned trajectories and world models from different AD channels are mutually evaluated. The output of the cross-channel analysis is combined with more traditional fault detections in a safety fusion component. The safety fusion then feeds an aggregated per-channel safety score to the high-level arbiter, which eventually selects the AD channel to control the vehicle. The formulated architectural pattern can help manufactures of autonomous vehicles in mitigating FIs. Limitations of the study suggest interesting future work, including algorithmic research on cross-channel analysis and safety fusion, as well as evaluation of the cross-channel analysis in simulations and road tests

Summary statement on quantitative cytochemistry (DNA and molecular biology): Task Force 8.

Item does not contain fulltextOBJECTIVE: To reach consensus on the application of quantitative cytochemical analysis of chromosomal and DNA aneuploidy in cervical cytopathology. CONCLUSION: The current Pap test has limited specificity to predict cancer and its truly progressive pre-malignant lesions. Infection with human papillomavirus may trigger genetic instability, hyperproliferation and immortalization of the cervical mucosa and cause cervical cancer. Several related molecular markers have been shown to be informative about this neoplastic process. Quantitative analysis of chromosomal and DNA aneuploidy has been shown to be an important tool for identifying (progression to) high grade squamous intraepithelial lesions. A high degree of standardization (material handling, calibration and quality control, measurement and interpretation of results) is required for accurate and reproducible measurements. Areas for further study are presented

Interphase cytogenetic analysis of cervical intraepithelial neoplasia.

The aim of this study was to detect numerical chromosomal aberrations that may be involved in the progression of cervical intraepithelial neoplasia (CIN) toward cervical carcinoma. Therefore, cervical lesions (five CIN 1, seven CIN 2, six CIN 3, six invasive carcinomas, and six normal samples) were studied by in situ hybridization (ISH) on serial 3-microm-thick paraffin tissue sections, using a panel of eight centromeric DNA probes for chromosomes 1, 3, 6, 7, 8, 11, 17, and X. An estimation of the percentage of dysplastic epithelium with abnormal ISH signals per nucleus was made. Chromosome aneusomy could be detected in all persisting and high-grade CIN lesions and invasive carcinomas. In most cases, when one of the chromosomes showed aneusomy then all studied chromosomes showed numerical changes. Interestingly, the abnormal ISH signals were found only in a varying part of the morphologically dysplastic epithelium, the remainder showing no such changes. In aneuploid regions of the CIN 1 lesions the mean chromosome index for all chromosomes was 1.97+/-0.03 with a range of 1.92 to 2.00. The chromosome index ratios of chromosomes 1, 7, and X showed a significant positive correlation with CIN grade (r > or = 0.74; P < or = 0.006). It is concluded that chromosome aneusomy of chromosomes 1, 7, and X may be involved in the progression of CIN lesions