Ein Werkzeug zur Entwicklung und zum Vergleich von Verfahren zur dynamischen Risikobewertung für Aktive Sicherheitssysteme

With rising automation level, the responsibility for a safe behavior is increasingly assigned to the automatic control system. To live up to this responsibility, it is a promising approach to enable systems to judge on their own on the inherent risk of a behavior in the context of a situation. Based on this, a dynamic risk management can maintain an acceptable risk at all times. To achieve this dynamic risk assessment, it is state of the practice to use risk metrics as e.g. timeto-collision. The calculation of such metrics is based on a set of limitations and assumptions, mostly taken implicitly. In this work, we analyze the consequences of those limitations and assumptions on the risk assessment explicitly. To this end, we present the results of a developed tool for the calculation of risk metrics under varying assumptions

Dynamic Behavior Risk Assessment for Autonomous Systems

Software-controlled technical systems are omnipresent in our daily lives. In many domains, such as automotive, avionics, and robotics, engineers are currently building systems that act without human assistance, in only partly defined open environments. The most prominent example are self-driving vehicles. To achieve this automation in an open environment, technical systems need to be able to behave adequately in unthought-of situations. We refer to systems with this capability as autonomous systems. Autonomous systems inevitably contain some degree of uncertainty regarding their behavior in such unthought-of situations. Consequently, it is not possible to analyze the full space of their behavior at development time. The current risk assessment approaches in Safety Engineering - the discipline responsible for creating systems with acceptable risk - rely on extensive analyses conducted during development time. This is not feasible for assessing the risk associated with the behavior of autonomous systems. This dissertation presents a novel approach for Dynamic Behavior Risk Assessment for autonomous systems to overcome this limitation

Virtual validation of cyber physical systems

The increasing importance of Cyber Physical Systems (CPS) yields new challenges for their systematic and efficient quality assurance. CPS are characterized by open and heterogeneous architectures and environments. For embedded systems, this implies a separation of the currently very tight integration of hardware and software components. Development and testing of these systems require new development environments that enable prototyping and testing of system concepts on different levels of abstraction. In this paper, we describe the extension of our FERAL framework to support the prototyping of automotive CPS by adding an AUTOSAR simulation environment. This supports the virtual development of next generation open architectures that integrate software components from multiple suppliers on one hardware platform

Apparatuses, methods and computer programs for controlling a machine via a mobile communication device

Embodiments relate to apparatuses (10; 30), methods and computer programs for controlling a machine. The apparatus (10) is suitable for a mobile communication device (100) for providing a sensor input signal to a machine control entity (300) to control a machine (350). The apparatus (10) comprises one or more sensor modules (12) for providing first user input sensor data and second user input sensor data. The apparatus further comprises a control module (16) configured to determine the sensor input signal based on the first user input sensor data and the second user input sensor data. The control module (16) is further configured to provide the sensor input signal for sensor data processing to the machine control entity (300) to control the machine (350) via an interface (18)

Engineering and Hardening of Functional Fail-Operational Architectures for Highly Automated Driving

Rising automation levels in the automotive domain demand a shift from the fail-safe to the fail-operational paradigm. Fail-operational architectures and behaviors are inherently more complex and thus require special diligence from a safety engineering point of view. In this work, we present how we tailored and applied a methodology that facilitates the design of fail-operational architectures from early design stages on by enabling informed judgment regarding the gradually evolved architecture’s fitness for purpose. The method specifically considers resilience regarding dynamic changes in environmental conditions, including V2X aspects and internal capabilities. In this paper, we summarize our experiences in applying the methodology in a highway pilot case study. Furthermore, we present essential extensions of the methodology for modeling and evaluating the operational design domain