Laying the Safety Foundation for Smart Mobility:
Tackling ISO 26262 Needs, Challenges, and Comprehensive Solutions for Functional Safety Regulations
In the era of exponential growth of autonomous driving and in-vehicle systems, Jotactic helps you master the core technologies of functional safety and cross the mandatory threshold of the global supply chain.
When System Failure is No Longer an Option
As the automotive industry moves towards autonomous driving and high electronification, the complexity of in-vehicle systems is growing exponentially. When software and hardware take full control of the vehicle, any minor system failure or random hardware fault (such as high-temperature chip damage or program crash) can directly threaten the lives of drivers and passengers.
ISO 26262 This is an international standard born precisely to regulate the Functional Safety of automotive electrical and electronic (E/E) systems. For Tier 1 and Tier 2 suppliers in the automotive supply chain, passing ISO 26262 certification is no longer a bonus point, but a 'mandatory threshold' to enter the mainstream supply chains of international automakers (OEMs).
Towards ISO 26262: Core Needs and Challenges Faced by Enterprises
The core logic of ISO 26262 lies in 'reducing risk to an acceptable level'. In practical implementation, R&D and quality teams typically encounter the following four major challenges:
Rigorous Hazard Analysis and ASIL Level Derivation
Enterprises must conduct rigorous Hazard Analysis and Risk Assessment (HARA) during the concept phase and define the ASIL (Automotive Safety Integrity Level, A to D). Once a system is rated as the highest ASIL D, it means that from security requirement decomposition and architecture design to testing and validation, every step must follow the most stringent technical and technical redundancy requirements. How to accurately and exhaustively decompose high-level Safety Goals into hardware and software requirements is a significant management challenge.
Isolation and Architecture Design of Safety-Critical Software
Within the same ECU, safety-critical code (e.g., brake control, ASIL D) and non-safety-critical code (e.g., in-vehicle entertainment, QM level) are usually executed simultaneously. ISO 26262 requires the implementation of strict Freedom from Interference (FFI) principles. Without a robust underlying operating system architecture (such as AUTOSAR or a secure microkernel), memory overflows or crashes of non-safety software will affect safety software, leading to a complete system collapse.
Technical Threshold of Random Hardware Faults and Diagnostic Coverage (FMEDA)
To cope with random hardware failures caused by aging or the environment, engineering teams need to conduct Failure Modes, Effects, and Diagnostic Analysis (FMEDA) and incorporate extensive safety mechanisms (such as watchdogs, core self-tests, and data verification) into the hardware or underlying software. This requires a high degree of integration between the underlying software and the Hardware Security Module (HSM), presenting a very high development threshold.
High-Coverage HiL and Fault Injection Testing
ISO 26262 has extremely high requirements for safety validation. Conventional testing alone is not enough; fault injection testing must also be performed—that is, artificially 'creating' short circuits, open circuits, memory errors, or communication interruptions while the system is running to verify whether the system can promptly detect faults and enter a 'Safe State'. Traditional testing methods struggle to safely and efficiently simulate these extreme fault scenarios.
Comprehensive Functional Safety Solutions
In response to the strict requirements of ISO 26262, Jotactic has integrated a complete toolchain encompassing lifecycle management, embedded security architecture, secure compilation, and high-level simulation testing.
Functional Safety Management and Full-Process Traceability
ISO 26262 emphasizes the establishment of a complete Safety Case. Polarion ALM has built-in compliance templates dedicated to ISO 26262, assisting enterprises in managing full-chain bidirectional traceability from 'Safety Goal ➔ Functional Safety Requirement (FSR) ➔ Technical Safety Requirement (TSR) ➔ Hardware/Software Implementation ➔ Testing and Validation'. When facing audits by third-party certification bodies (like TÜV SÜD, etc.), Polarion can generate compliant traceability matrices and analysis reports with one click, drastically reducing certification time.
Core Product
Siemens Polarion ALM
Automotive-Grade Secure Operating Systems and Security Architecture
For complex systems where multiple ASIL levels coexist, GHS INTEGRITY RTOS is the world's premier hard real-time secure operating system. It employs an advanced microkernel architecture, utilizing hardware memory protection units (MPU/MMU) to achieve strict spatial and temporal isolation (Partitioning). This ensures that non-safety tasks (QM) can absolutely never interfere with safety-critical tasks (ASIL D), perfectly fulfilling the highest technical requirements of ISO 26262 for 'Freedom from Interference'.
Core Product
GHS INTEGRITY RTOS
Production-Grade AUTOSAR Basic Software and In-Vehicle Security Protection
As production-grade AUTOSAR solutions, EB tresos / corbos have built-in abundant safety mechanisms in their basic software (BSW), including End-to-End communication protection (E2E Profile), memory protection, and hardware diagnostics (Dem/Dcm), which can effectively prevent communication data loss and random hardware failures. EB zentur is responsible for the firmware configuration of the Hardware Security Module (HSM). Functional safety and Cybersecurity are inseparable; EB zentur provides underlying encryption and Secure Boot, preventing malicious tampering from destroying the system's functional safety mechanisms.
Core Product
EB tresos / EB corbos / EB zentur
High-Security Compilers and Static Error Prevention
GHS's C/C++ optimizing compilers have passed the highest level of ISO 26262 ASIL D certification, meaning the compiler itself will not introduce any security vulnerabilities when translating source code into machine code. Paired with built-in static analysis tools, it can strictly enforce coding standards like MISRA C:2012 / AUTOSAR C++14, eliminating potential random or systematic failure risks early in the coding phase.
Core Product
GHS MULTI IDE
Fault Injection and Model/Hardware-in-the-Loop Automated Testing
Combined with hardware interface cards, TOSUN TSMaster can build a cost-effective automated testing platform to effectively verify the ECU's fault-tolerant mechanisms and safe state transitions.
Core Product
TOSUN TSMaster
Multiphysics and Multi-Domain Safety Simulation
In the development of E-drive systems (battery, motor, electronic control), JMAG can convert motor designs into high-precision JMAG-RT real-time models and import them into HiL (Hardware-in-the-Loop) test platforms. This allows engineers to conduct extreme functional safety fault tests on the electronic control software (ECU), such as motor overloads and coil short circuits, before the high-voltage physical motor is even manufactured. For Advanced Driver Assistance Systems (ADAS) and autonomous driving, Simcenter PreScan provides physics-based sensor and environment simulation, capable of injecting thousands of extreme traffic scenarios into a virtual world to verify the functional safety and SOTIF (Safety of the Intended Functionality) of autonomous driving control software.
Core Product
JMAG / Siemens PreScan
ISO 26262 is not a single technology, but an engineering system deeply rooted in the lifeblood of R&D.
Jotactic deeply understands the hardships of functional safety certification. We not only provide the world's top toolchains but also have a professional engineering team with a profound background in automotive electronics, assisting you in translating cumbersome safety regulations into efficient automated R&D processes, so you can confidently and quickly pass international ASIL certification.