Transmitted by the Experts of TRL (EC)

Slides:



Advertisements
Similar presentations
Building a Cradle-to-Grave Approach with Your Design Documentation and Data Denise D. Dion, EduQuest, Inc. and Gina To, Breathe Technologies, Inc.
Advertisements

Hazard and Incident Warning « Majority of events occurring on the road represent a danger for road users » By transmitting road events and road status.
OICA/CLEPA Homework Part I HMI, Driver in/out of the Loop Submitted by the experts of OICA/CLEPA Tokyo, June 2015 Informal Document ACSF
Quality Risk Management ICH Q9 Annex I: Methods & Tools
ACSF Informal Group Industry proposals 1 st Meeting of ACSF informal group April 29 and 30, 2015 in Bonn 1 Informal Document ACSF
Hans-Martin Gerhard28. April 2010 Seite 1Dr. Ing. h. c. F. Porsche AG Pedestrian Safety - Quiet Cars Hans-Martin Gerhard Dr. Ing. h.c. F. Porsche AG Quiet.
Summary of Activities up to Now March 16, th ITS Informal Group Meeting K. Hiramatsu and M. Sekine NTSEL: National Traffic Safety and Environmental.
Outline of Definition of Automated Driving Technology Document No. ITS/AD (5th ITS/AD, 24 June 2015, agenda item 3-2) Submitted by Japan.
Damage Mitigation Braking System
Integrating Trust and Driver’s Safety By Robin Mitchell.
1 ACSF Test Procedure Draft proposal – For discussion OICA and CLEPA proposal for the IG Group ACSF Tokyo, 2015, June Informal Document ACSF
IHRA-ITS UN-ECE WP.29 ITS Informal Group Geneva, March, 2011 Design Principles for Advanced Driver Assistance Systems: Keeping Drivers In-the-Loop Transmitted.
Protective Braking for ACSF Informal Document: ACSF
Minimum Risk Manoeuvres (MRM)
Brief Review up to Now 1 March 11, 2011, Geneva UNECE/WP29/ITS Informal Group 19th Meeting T. Onoda & K. Hiramatsu, Japan Transmitted by expert from JAPANInformal.
1. Overview of the past and future work of WP29 ITS Round Table 18/2/2004 Geneva Kenji Wani Co-chairman of ITS informal Group, ECE/WP29 Ministry of Land,
Common Understanding on Major Horizontal Issues and Legal Obstacles Excerpts from the relevant sections of the ToR: II. Working items to be covered (details.
OICA IWG AECSAPRIL 2016 AECS REGULATION POST-CRASH CHECK WITH HMI TEST METHOD SUMMARY -ASIL determination – ISO Pre-requirements for HMI test method.
ON “SOFTWARE ENGINEERING” SUBJECT TOPIC “RISK ANALYSIS AND MANAGEMENT” MASTER OF COMPUTER APPLICATION (5th Semester) Presented by: ANOOP GANGWAR SRMSCET,
Process Safety Management Soft Skills Programme Nexus Alliance Ltd.
1 6th ACSF meeting Tokyo, April 2016 Requirements for “Sensor view” & Environment monitoring version 1.0 Transmitted by the Experts of OICA and CLEPA.
OICA „Certification of automated Vehicles“
Guide for the application of the CSM design targets (CSM-DT)
Regulatory strategy when voluntary systems become mandated
Introduction TRL’s study was performed in the context of ACSF updates to UN Regulation No 79. Focus: Ensure safe system function in all real-world driving.
Common Understanding on Major Horizontal Issues and Legal Obstacles
Submitted by the expert form Japan Document No. ITS/AD-09-12
Initial project results: Annex 6 – 20 Sept 2016
Informal document GRPE-73-21
Informal Document: ACSF Rev.1
ACSF-C2 2-actions system
Automatic Emergency Braking Systems (AEBS)
Timing to be activated the hazard lights
ACSF-C2 2-actions system
Regulatory strategy when voluntary systems become mandated
Informal Document: ACSF-11-08
Outcome of TFCS-12 - summary slides - (detailed meeting minutes will be provided separately) April The Shilla Seoul, ROK.
Informal document GRRF-86-36
Statement of Principles on the Design of High-Priority Warning Signals
Industry Homework from AEB 02
Submitted by OICA Document No. ITS/AD-14-07
Status of the Informal Working Group on ACSF
Proposals from the Informal Working Group on AEBS
Status of the Informal Working Group on ACSF
Status of the Informal Working Group on ACSF
ETRTO proposal for UN R30 & 64 amendments Extended Mobility Tyres
Transmitted by the expert from ISO
Submitted by the experts of OICA
Status report from UNECE Task Force on Cyber Security &
Submitted by OICA Document No. ITS/AD Rev1
Safety Assessment of Automated Vehicles
Status of the Informal Working Group on ACSF
New Assessment & Test Methods
Proposals from the Informal Working Group on AEBS
Task Force – Cyber Security, Data Protection and Over-the-Air issues
Status report of TF-CS/OTA
Safety concept for automated driving systems
Informal Document: ACSF-10-08
Informal document GRPE-77-30
Hazards Analysis & Risks Assessment
Safety considerations on Emergency Manoeuver
In service monitoring Near miss logging Continuous improvement
Maximum allowable Override Force
ISO and TR Update for FDA Regulated Industries
ACSF-17 – Industry Preparation
Review and comparison of the modeling approaches and risk analysis methods for complex ship system. Author: Sunil Basnet.
ACSF B2 SAE Level 2 and/or Level 3
Status of the Informal Working Group on ACSF
Automated Lane Keeping Systems
Informal document GRVA-04-34
Presentation transcript:

Transmitted by the Experts of TRL (EC) Informal Document ACSF-07-06 Support for amendments to UN R79 to allow approval of ACSF, in particular LKA and LCA Mervyn Edwards, Matt Seidl on behalf of EC 28-30th June 2016

Project objectives / timescales Support IWG to develop and build current proposal Focus on identification of additional requirements to ensure safe system function in all real world driving situations Other Investigation of safety assessment in other industries Initial investigation of OTA updates Timescales aligned with IWG, end Sept.

General questions What SAE level systems is it intended to allow; level 2 or greater? Scope of R79, M, N & O Consideration of heavy vehicles (N2 / N3 & M2 / M3)? Doc ACSF-01-11 Japan concept paper

Develop and build on IWG proposal: Initial review of ACSF-06-28 The aim is to ensure safety under … Normal (non-fault) operating conditions Fault conditions Prevent diver misuse In-service safety performance

Normal (non-fault) operating conditions ADAS design approach Annex 7 tests Annex 6 safety concept Suggest OEM supply data as part of Annex 6 to demonstrate safe function in full range of real-world operating conditions for normal operation? Guidelines for data supplied? Data supplied assessed by technical service Guidelines for assessment?

Guidelines for data supplied? To include evidence of safe operation for full range of real-world conditions, including: Different environmental conditions, e.g. road, weather, etc (minimum level, FOT) Infrequent/emergency cases (minimum level, HIL simulation & sensor evaluation) Infrequent, e.g. roadworks, LCA high-speed vehicle in adjacent lane Emergency, e.g. animals, pedestrians or obstacles on road Variations to configuration of Annex 7 physical tests, e.g. speed, vehicle type, lane markings, etc. (minimum level, HIL simulation & sensor evaluation)

Fault conditions ADAS design approach usually based on ISO 26262 FMEA: Failure Mode and Effects Analysis – logical, structured cost effective method HAZOP: Hazard and Operability Study – systematic comprehensive method which uses guide words but focuses on single events FTA: Fault Tree Analysis – deductive top down method STPA: System theoretic Process Analysis – top down method based on systems theory which can be used early in the design cycle Functional Safety Concept Fault detection and failure mitigation Safe states Driver warning & degradation strategy Allocation to system elements Suggest more comprehensive hazard analysis, e.g. bottom up (FMEA, HAZOP) and top down (FTA, STPA)? Functional safety concept

Prevent driver misuse: How to ensure the driver is in-the-loop? Potential issue: What is the driver’s role in Category E ACSF? Is driver supposed to monitor the driving environment (SAE Level 2) or only be available as fallback (SAE Level 3)? Current draft requires ‘driver availability recognition system’ appropriate for SAE Level 3. If SAE Level 2: Driver might need to intervene and has to be kept in-the-loop (no secondary tasks allowed). Options for monitoring/ensuring that driver is in-the-loop: Hands on steering wheel Direction of head (forward and not down towards a hand-held device)! Direction of gaze: Technically difficult to monitor Tests or assessment/design principles for driver monitoring systems are not currently available: Best placed in separate annex or separate regulation?

How to ensure safe in-service performance? Potential issue: Would problems in real-world performance become apparent before a large number of collisions happen? Current draft requires data recording (DSSA) only in case of a road accident. Potential solution: Trigger DSSA recording also by other safety-relevant incidents when ACSF active (e.g. near miss events, unplanned system disengagements, emergency disengagements by the driver). IWG ACSF to agree on suitable triggering criteria: e.g. braking deceleration >.x g, brake pedal force >y N, brake pedal speed >z mm/s, system disengagements due to hardware/software discrepancy).

What’s the best way to achieve more safety? Potential future interaction: Type-approval tests and in-service performance reporting The ultimate aim of the group is to ensure safe performance of ACSF in the real world with real drivers. What’s the best way to achieve more safety? Add more scrutiny up-front (more tests, simulations, documentation of development process, …)? OR Ensure that safety issues in real world use are detected and resolved early (rapid reporting of in-service safety performance by OEM)? perhaps using a similar mechanism to in-service conformity reporting for emissions in UN R83

Do You Have Any Questions? Mervyn Edwards; email: medwards@trl.co.uk Matthias Seidl; email: mseidl@trl.co.uk

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.