Reviewing software models in compliance with ISO 26262

Abstract

Model-based development has become a standard software development approach in the automotive field. Evidence for this is provided by its incorporation in the ISO 26262 safety and process standard. This standard proposes different measures and methods that can already be applied at model level. These techniques contribute towards ensuring and increasing the quality of the software that is finally generated and deployed on the embedded controller. The benefit of this approach is clear: Failures and defects are discovered earlier on in the development cycle. How quality measures and methods can be applied within development projects is however far from obvious. In this paper we introduce best practices for model reviews of software models with the aim of ensuring safety-related objectives and adherence to ISO 26262. We summarize the main benefits that can be achieved with our best practice approach, which is a combination of automated (tool supported) and manual reviews. Finally, we report on our review experiences with Simulink and TargetLink models of safety-related systems from serial projects. © 2012 Springer-Verlag.