自動車ソフトウェア三規格参考文献の参考文献

自動車ソフトウェア三規格参考文献
https://qiita.com/kaizen_nagoya/items/def6176e74e8cd13ca79

の参考文献を記載する。

<この項は書きかけです。順次追記します。>

388

3rd Generation Partnership Project; Technical Specification Group Services and System Aspects; Enhancement of 3GPP support for V2X scenarios; Stage 1(Release 16) 3GPP TS 22.186 V16.2.0 (2019-06).
https://www.etsi.org/deliver/etsi_ts/122100_122199/122186/16.02.00_60/ts_122186v160200p.pdf

Reference

1. 3GPP TR 21.905: "Vocabulary for 3GPP Specifications".
2. 3GPP TS 22.261: "Service requirements for the 5G system".
3. 3GPP TS 22.185: "Service requirements for V2X services".
4. SAE International, "AUTOMA TED DRIVING LEVELS OF DRIVING AUTOMA TION ARE DEFINED IN NEW SAE INTERNATIONAL STANDARD J3016", December 2016; US Homeland Security Digital Library, "Self-Driving Cars: Levels of Automation", March 2017 https://www.hsdl.org/?view&did=801463.
5. ISO TS 17419:2014: "Intelligent Transport Systems - Cooperative systems - Classification and management of ITS applications in a global context".
6. IEEE Std 1609.0-2013: "IEEE Guide for Wireless Access in V ehicular Environments (W A VE) architecture".

51

Abbreviated injury scale; Association of the advancement of Automotive medicine; Barrington, IL, USA
https://www.aaam.org/abbreviated-injury-scale-ais-position-statement/

Research

1. The Association for the Advancement of Automotive Medicine. Abbreviated Injury Scale (AIS) 2005 – Update 2008. Barrington, IL: The Association for the Advancement of Automotive Medicine; 2008.
2. The Association for the Advancement of Automotive Medicine. Abbreviated Injury Scale (AIS) 2015. Chicago, IL: The Association for the Advancement of Automotive Medicine; 2016.
3. European Commission, Serious Injuries, European Commission, Directorate General for Transport, September 2015.
4. Cox S, Currell A, Harriss L, et al. Evaluation of the Victorian state adult pre-hospital trauma triage criteria. Injury 2012;43: 573e581.
5. Lossius HM, Rehn M, Tjosevik KE, Eken T. Calculating trauma triage precision: effects of different definitions of major trauma. J Trauma Manag Outcomes 2012;6:9.
6. American College of Surgeons Committee on Trauma. Resources for Optimal Care of the Injured Patient. Chicago, IL: American College of Surgeons Committee on Trauma; 2006.
7. Palanca S, Taylor DM, Bailey M, Cameron PA. Mechanisms of motor vehicle accidents that predict major injury. Emerg Med 2003;15:423e428.
8. Ryan JM, Gaudry PL, McDougall PA, McGrath PJ. Implementation of a two-tier trauma response. Injury 1998;29: 677e683.
9. National Center for Injury Prevention and Control. Recommendations from the Expert Panel: Advanced Automatic Collision Notification and Triage of the Injured Patient. Atlanta, GA: Centers for Disease Control and Prevention; 2008.

354

Abdulkhaleq A. et al., A Systematic Approach Based on STPA for Developing a Dependable Architecture for Fully Automated Driving Vehicles, 4th European STAMP Workshop 2016, Procedia Engineering, 179, 41-51, 2017
https://www.sciencedirect.com/science/article/pii/S1877705817312109

References

[1]
T. Raste, S. Lüke, A. Eckert. Automated Driving, Technical Approach with Motion Control Architecture. at- Automatisierungstechnik 63. January 2015.
[2]
International Standards Organization, ISO 26262:2011, Road Vehicles – Functional Safety. 2011.
[3]
T. Novak and A. Treytl. Functional Safety and System Security in Automation Systems-a Life Cycle Model. 2008 IEEE International Conference on Emerging Technologies and Factory Automation. IEEE, 2008.
[4]
J. Kim, R.R. Rajkumar, and M. Jochim. Towards Dependable Autonomous Driving Vehicles: A System-Level Approach. ACM SIGBED Review 10.1 (2013): 29-32.
[5]
A. Avizienis, J.C. Laprie, B. Randell, and C. Landwehr. Basic Concepts and Taxonomy of Dependable and Secure Computing. IEEE Trans. Dependable Secur. Comput. 1, 1 (January 2004), 11-33.
[6]
B. Boehm, P. Kind, R. Turner
Risky business: 7 Myths About Software Engineering That Impact Defense Acquisitions
(Software Engineering). Program Manager, 31 (3) (2002), pp. 74-78
[7]
N.G. Leveson
Engineering A Safer World: Systems Thinking Applied to Safety
MIT Press, Cambridge, MA (2011)
[8]
W. Young and N. G. Leveson. 2014. An Integrated Approach to Safety and Security Based on Systems Theory. Commun. ACM 57, 2 (February 2014), 31-35.
[9]
C. H. Feleming. Safety-Driven Early Concept Analysis and Development. Ph.D. Dissertation. MIT, February 2015.
[10]
A. Abdulkhaleq, S. Wagner, N. Leveson
A Comprehensive Safety Engineering Approach for Software-Intensive Systems Based on STPA
C. L. Thornberry. Extending the Human-Controller Methodology in Systems-Theoretic Processs Analysis (STPA), Master Thesis, MIT (2012).
[12]
A. Pnueli, The Temporal Logic of programs, Proceedings of the 18th Annual Symposium on Foundations of Computer Science, SFCS’ 77, IEEE Computer Society, Washington, 1977, pp. 46-57.
[13]
J. Langenberg, C. Hilbert, D. Lammering et al., AdaptIVe Deliverable 1.7: AdaptIVe-SP1-v10-DL-D1.7 System architecture and updated system specification_summary.pdf, August 2015.
[14]
Guide to Maintaining Roadworthiness: Commerical Goods and Passanger Carrying Vehicles, Driver & Vehicle Statndards Agency (2014).
[15]
H.L. Ross, Funktionale Sicherheit im Automobil ISO 26262, Systemengineering auf Basis eines Sicherheitslebenszyklus und bewährten Managementsystemen ISBN 978-3-446-43632-9.
[16]
I. Sommerville, An Integrated Approach to Dependability Requriements Engineering. In: Proceedings of the 11th safety-critical systems symposium, Bristol, Uk, 2003.
[17]
Despotou, G., Kelly, T.: Extending Safety Deviation Analysis Techniques to Elicit Flexible Dependability Requirements. In: System Safety, 2006. 1st Institution of Engineering and Technology International Conference, pp. 29-38 (2006).
[18]
M. Romani, C. Lahoz, E. Yano
Idenitifying Dependabliity Requriements for Space Software Systems
Journal of Aerospace Technology and Management, 2 (2010), pp. 287-300
[19]
MoD- Defence Standard 00-56. Safety Management Requirements for Defence Systems, Ministry of Defence, 2005.
[20]
A. Abdulkhaleq, S. Wagner, XSTAMPP 2.0: New Improvements to XSTAMPP including CAST Accident analysis and an extended approach to STPA. 2016 STAMP Conference at Massachusetts Institute of Technology (MIT), 21 March 2016, Boston, USA.
[21]
PREEvision, https://vector.com/vi_preevision_en.html.

356

Abdulkhaleq A., Wagner S., Leveson N., A Comprehensive Safety Engineering approach for Software-Intensive Systems Based on STPA. Procedia Engineering, 128:2?11, 2015, https://www.researchgate.net/publication/286926014_A_Comprehensive_Safety_Engineering_Approach_for_Software-Intensive_Systems_Based_on_STPA/link/574812fa08ae707fe21f3246/download

REFERENCES

[1] M. Wirsing, J.-P. Ban?tre, M. H?lzl, A. Rauschmayer, Software-Intensive Systems and New Computing Paradigms: Challenges and Visions, Springer-Verlag, Berlin, Heidelberg, 2008.
[2] W. Vesely, F. F. Goldberg, N. H. Roberts, D. F. Haasl, Fault Tree Handbook NUREG-0492, U.S. Nuclear Regulatory Agency, Washington, 1981.
[3] Society for Automotive Engineers, Design Analysis Procedure for Failure Modes, Effects and Criticality Analysis (FMECA), ARP926, Warrendale, USA, 1967.
[4] J.E. Troyan, L.Y. Le Vine, HAZOP, Loss Prevention 2:125, 1968.
[5] N.G. Leveson, Engineering A Safer World: Systems Thinking Applied to Safety, MIT Press, Cambridge, MA, 2011.
[6] ISO, Road Vehicles Functional Safety Part 1 Glossary ISO/DIS 26262-1, Technical report, International Standards Organizations, Geneva, Switzerland, 2009.
[7] U.S. Department of Defense, System Safety, MIL-STD-882E, Virginia, 2012.
[8] N.G. Leveson, Software safety in embedded computer systems, Communications of the ACM. 34 (1991) 34?46.
[9] M. Jaffe, N. Leveson, M. Heimdahl, B. Melhart, Software requirements analysis for real-time process-control systems, IEEE Transactions on Software Engineering 17 (3) (1991) 241-258.
[10] C. Baier, J.-P. Katoen, Principles of Model Checking: Representation and Mind Series, The MIT Press, Boston, 2008.
[11] A. Pnueli, The temporal logic of programs, Proceedings of the 18th Annual Symposium on Foundations of Computer Science, SFCS’ 77, IEEE Computer Society, Washington, 1977, pp. 46-57.
[12] A. Cimatti, E. Clarke, F. Giunchiglia, M. Roveri, NUSMV: A new symbolic model checker, International Journal on Software Tools for Technology Transfer 2 (4) (2000) 410-425.
[13] G. Holzmann, Spin Model Checker: The Primer and Reference Manual, Addison-Wesley Professional, Boston, 2003.
[14] B. Hetzel, The Complete Guide to Software Testing, QED Information Sciences, Boston, 1988.
[15] M. Utting, B. Legeard, Practical Model-Based Testing: A Tools Approach, Morgan Kaufmann Publishers Inc., San Francisco, USA, 2007.
[16] J. Thomas, Extending and Automating a Systems-Theoretic Hazard Analysis for Requirements Generation and Analysis, Ph.D. Dissertation, MIT, Boston, 2013.
[17] A. Abdulkhaleq, S. Wagner, Integrating State Machine Analysis with System-Theoretic Process Analysis, Software Engineering Workshop, San Francisco, 2013.
[18] P. E. Ammann, P.E. Black, W. Majurski, Using model checking to generate tests from specifications, Proceedings of the Second IEEE International Conference on Formal Engineering Methods (ICFEM98), IEEE Computer Society, 1998, pp. 46-54.
[19] A. Abdulkhaleq, S. Wagner, A software safety verification method based on system-theoretic process analysis, Computer Safety, Reliability, and Security Volume 8696 of the series Lecture Notes in Computer Science, 2014, pp. 401-412.
[20] A. Abdulkhaleq, S. Wagner, Integrated safety analysis using systems-theoretic process analysis and software model checking, Computer
Safety, Reliability, and Security Volume 9337 of the series Lecture Notes in Computer Science, 2015, pp. 121-134.
[21] A. Abdulkhaleq, S. Wagner, XSTAMPP: An Extensible STAMP Platform as Tool Support for Safety Engineering, 2015 STAMP Conference, MIT, Boston, 2015.
[22] D. R. Kuhn, R. N. Kacker, Y. Lei, Introduction to Combinatorial Testing, Chapman & Hall/CRC, London, 2013.
[23] G.J. Holzmann and M.H. Smith, Software model checking: Extracting verification models from source code, Software Testing Verification and Reliability 11(2) (2001) 65-79

355

Abdulkhaleq A.,, Wagner , S , Lammering , D , Boehmert , H , Blueher , P , Using STPA in Compliance with ISO 26262 for Developing a Safe Architecture for Fully Automated Vehicles. arXiv preprint arXiv:1703.03657, 2017

References

[AvW] Abdulkhaleq , A.; Wagner, S.: XSTAMPP 2.0: new improvements to XSTAMPP Including CAST accident analysis and an extended approach to STPA. STAMP 2015, MIT, USA.
[AW13] Abdulkhaleq, A.; Wagner, S.: Experiences with Applying STPA to Software-Intensive Systems in the Automotive Domain. 2013 STAMP Conference at MIT, Boston, USA, 2013.
[AW14] Abdulkhaleq, Asim; Wagner, Stefan: A software safety verification method based on system-theoretic process analysis. In: International Conference on Computer Safety, Reliability, and Security. Springer, pp. 401?412, 2014.
[AWL15] Abdulkhaleq, Asim; Wagner, Stefan; Leveson, Nancy: A Comprehensive Safety Engineering Approach for Software-Intensive Systems Based on STPA. Procedia Engineering, 128:2 ? 11, 2015. Proceedings of the 3rd European STAMP Workshop 5-6 October 2015, Amsterdam.
[Go14] Gov.UK: , Guide to Maintaining Roadworthiness: Driver and Vehicle Standards Agency and Department for Transport, 2014.
[Ho12] Hommes, Qi Van Eikema: Review and Assessment of the ISO 26262 Draft Road VehicleFunctional Safety. In: SAE Technical Paper. 2012.
[Ho15] Hommes, Q.V. E.: , Safety Analysis Approaches for Automotive Electronic Control Systems, 2015.
[IS11] ISO: International Organization for Standardization, International Standard 26262: Road vehicles a Functional safety. International Standard. ISO, First edition, Nov. 2011. ?
[Ka15] Kannan, S Manoj; Dajsuren, Yanja; Luo, Yaping; Barosan, Ion: Analysis of ISO 26262 Compliant Techniques for the Automotive Domain. In: Proceedings of the International Workshop on Modelling in Automotive Software Engineering co-located with ACM/IEEE 18th International Conference on Model Driven Engineering Languages and Systems (MoDELS 2015), Ottawa, Canada. volume 1487, 2015.
[Le11] Leveson, N.: Engineering a Safer World: Systems Thinking Applied to Safety. Engineering Systems. MIT Press, 2011.
[Ma16] Mallya, Archana; Pantelic, Vera; Adedjouma, Morayo; Lawford, Mark; Wassyng, Alan: Using STPA in an ISO 26262 Compliant Process. In: Computer Safety, Reliability, and Security: 35th International Conference, SAFECOMP 2016, Trondheim, Norway, September 21-23, 2016, Proceedings. Springer International Publishing, Cham, pp. 117? 129, 2016.
[MHM15] Monkhouse, Helen; Habli, Ibrahim; Mcdermid, John: The Notion of Controllability in an autonmous vehicle context. In: CARS 2015-Critical Automotive applications: Robustness & Safety. 2015.
[SA16] Automated Driving Levels of Driving Automation are defined in new SAE International Standard J3016.
[Wa10] Wagner, S.; Schatz, B.; Puchner, S.; Kock, P.: A Case Study on Safety Cases in the Automotive Domain: Modules, Patterns, and Models. In: 2010 IEEE 21st International Symposium on Software Reliability Engineering. pp. 269?278, Nov 2010.
[YL14] Young, William; Leveson, Nancy G.: An Integrated Approach to Safety and Security Based on Systems Theory. Commun. ACM, 57(2):31?35, February 2014

163

AEC Q100, Failure Mechanism Based Stress Test Qualification For Integrated Circuits http://www.aecouncil.com/Documents/AEC_Q100_Rev_J_Base_Document.pdf

1.2 Reference Documents

Current revision of the referenced documents will be in effect at the date of agreement to the qualification plan. Subs quent qualification plans will automatically use updated revisions of these
referenced documents.

1.2.1 Automotive

AEC-Q001 Guidelines for Part Average Testing
AEC-Q002 Guidelines for Statistical Yield Analysis
AEC-Q003 Guidelines for Characterizing the Electrical Performance
AEC-Q004 Zero Defects Framework
AEC-Q005 Pb-Free Requirements
AEC-Q006 Qualification Requirements for Components Using Copper (Cu) Wire Interconnections
SAE J1752/3 Integrated Circuits Radiated Emissions Measurement Procedure
SAE J1879/J1211/ZVEI Handbook for Robustness Validation of Semiconductor Devices in Automotive Applications
IATF 16949 Automotive Quality Management System Standard
AIAG Production Part Approval Process (PPAP)
AEC-Q100-001 Wire Bond Shear Test
AEC-Q100-002 Human Body Model (HBM) Electrostatic Discharge Test
AEC - Q100 - REV-J
AEC-Q100-004 IC Latch-Up Test
AEC-Q100-005 Non-Volatile Memory Program/Erase Endurance Data Retention and Operational Life Test
AEC-Q100-007 Fault Simulation and Test Grading
AEC-Q100-008 Early Life Failure Rate (ELFR)
AEC-Q100-009 Electrical Distribution Assessment
AEC-Q100-010 Solder Ball Shear Test
AEC-Q100-011 Charged Device Model (CDM) Electrostatic Discharge Test
AEC-Q100-012 Short Circuit Reliability Characterization of Smart Power Devices for 12V Systems

1.2.2 Military

MIL-STD-883 Department Of Defense Test Method Standard: Microcircuits

1.2.3 Industrial

JEDEC JESD22 Reliability Test Methods for Packaged Devices
UL-STD-94 Tests for Flammability of Plastic materials for parts in Devices and Appliances
IPC/JEDEC J-STD-002 Solderability Tests for Component Leads, Terminations, Lugs, Terminals and Wires
IPC/JEDEC J-STD-020 Moisture/Reflow Sensitivity Classification for Plastic Integrated Circuit Surface Mount Devices
JESD89 Measurement and Reporting of Alpha Particle and Terrestrial Cosmic Ray-Induced Soft Errors in Semiconductor Devices
JESD89-1 System Soft Error Rate (SSER) Test Method
JESD89-2 Test Method For Alpha Source Accelerated Soft Error Rate
JESD89-3 Test Method for Beam Accelerated Soft Error Rate
JESD94 Application Specific Qualification Using Knowledge Based Test Methodology
JESD671 Component Quality Problem Analysis and Corrective Action Requirements
JEP155 Recommended ESD Target Levels for HBM Qualification
JEP157 Recommended ESD-CDM Target Levels
JEP178 Electrostatic Discharge (ESD) Sensitivity Testing ? Reporting ESD Withstand Levels on Datasheets

164

AEC Q101, Failure Mechanism Based Stress Test Qualification For Discrete Semiconductors http://www.aecouncil.com/Documents/AEC_Q101_Rev_E_Base_Document.pdf

1.2 Reference Documents

Current revision of the referenced documents will be in effect at the date of agreement to the qualification plan. Subs quent qualification plans will automatically use updated revisions of these referenced documents.

1.2.1 Military

MIL-STD-750 Test Methods for Semiconductor Devices

1.2.2 Industrial

UL-STD-94 Test for Flammability of Plastic Materials of Parts in Devices and Appliances.
JEDEC JESD-22 Reliability Test Methods for Packaged Devices
J-STD-002 Solderability Tests for Component Leads, Terminations, Lugs, Terminals and Wires.
J-STD-020 Moisture/Reflow Sensitivity Classification for Nonhermetic Solid State Surface Mount Devices
JESD22-A113 Preconditioning of Nonhermetic Surface Mount Devices Prior to Reliability Testing
JEDEC/IPC J-STD-035 Acoustic Microscopy for Nonhermetic Encapsulated Electronic Components

1.2.3 Automotive

AEC-Q001 Guidelines for Part Average Testing
AEC-Q005 Pb-Free Test Requirements
AEC-Q006 Qualification Requirements for Components Using Copper (Cu) Wire Interconnections
AEC-Q101-001 Human Body Model (HBM) Electrostatic Discharge (ESD) Test
AEC-Q101-003 Wire Bond Shear Test
AEC-Q101-004 Miscellaneous Test Methods? Unclamped Inductive Switching? Dielectric Integrity? Destructive Physical Analysis
AEC-Q101-005 Charged Device Model (CDM) Electrostatic Discharge (ESD) Test
AEC-Q101-006 Short Circuit Reliability Characterization of Smart Power Devices for 12V Systems

1.2.4 Other

IATF 16949

1.2.5 Decommissioned

AEC-Q101-002 Machine Model (MM) Electrostatic Discharge (ESD) Test? Removed from JEDEC due to obsolescence. HBM and CDM cover virtually all known ESD-related failure mechanisms.

165

AEC Q200, Stress Test Qualification For Passive Components http://www.aecouncil.com/Documents/AEC_Q200_Rev_E_Base_Document.pdf
1.3 Reference Documents
The current revision of the referenced documents (shown below) will be in effect at the date of agreement to the qualifcation plan. Subsequent qualification plans will automatically use the latestrevisions of these referenced documents.
AEC-Q005 Pb-Free Test Requirements
AEC-Q200-001 Flame Retardance Test
AEC-Q200-002 Human Body Model (HBM) Electrostatic Discharge (ESD) Test
AEC-Q200-004 Measurement Procedures for Resettable Fuses
AEC-Q200-005 Board Flex Test
AEC-Q200-006 Terminal Strength (SMD) / Shear Stress Test
AEC-Q200-007 Voltage Surge Test
EIA-469 Standard Test Method for Destructive Physical Analysis (DPA) for Ceramic Monolithic Capacitors
IATF Quality Management System for Organizations in the Automotive Industry
IEC 60695-11-5 Fire Hazard Testing ? Part 11-5: Test Flames ? Needle Flame Test Method, Apparatus, Confirmatory Test Arrangement and Guidance
IEC 60127 Series Miniature Fuses
IEC 60068-2-21 Robustness of terminations and integral mounting devices
ISO-7637-1 Road Vehicles ? Electrical Disturbances from Conduction and Coupling ? Part 1: Definitions and General Considerations
J-STD-002 Solderability Tests for Component Leads, Terminations, Lugs, Terminals and Wires
J-STD-020 Moisture/Reflow Sensitivity Classification for Nonhermetic Surface Mount Devices
JESD22-A104 Temperature Cycling
JESD22-B100 Physical Dimension
JESD22-B106 Resistance to Solder Shock for Through-Hole Mounted Devices
JIS-C-5101-1 Fixed Capacitors for use in Electronic Equipment ? Part 1: Generic Specification
MIL-STD-202 Test Method Standard Electronic and Electrical Component Parts
MIL-STD-883 Test Method Standard Microcircuits
UL 94 Tests for Flammability of Plastic Materials for Parts in Devices and Appliance

254

Al-Ars, Z.; Hamdioui, S.; Van De Goor, A.J., Space of DRAM Fault Models and Corresponding Testing. Design, Automation and Test in Europe, 2006. DATE '06. IEEE. March 2006, 1, 1-6 [viewed 2017-10-10].https://ieeexplore.ieee.org/document/1657087/references#references

Reference

R.D. Adams and E.S. Cooley, "Analysis of a Deceptive Destructive Read Memory Fault Model and Recommended Testing," In Proc. IEEE North Atlantic Test Workshop, 1996.
2.
E. Adler et al., "The Evolution of IBM CMOS DRAM Technology," in IBM J. of Research and Development, vol. 39, no. 1-2, 1995, pp. 167-188.
3.
Z. AI-Ars, DRAM Fault Analysis and Test Generation, PhD thesis, Delft Univ. of Technology, Delft, the Netherlands, 2005
4.
R. Dekker et al., "A Realistic Fault Model and Test Algorithms for Static Random Access Memories," in IEEE Trans. on CAD, vol. C-9, no. 6, 1990, pp. 567-572.
5.
S. Hamdioui, Testing Static Random Access Memories: Defects, Fault Models and Test Patterns, Kluwer Academic Publishers, Boston, MA, 2004.
6.
G. Harutunvan, V.A. Vardanian and Y. Zorian, "Minimal March Tests for Unlinked Static Faults in Random Access Memories," in Proc. IEEE VLSI Test Symp., 2005, pp. 53-59.
7.
R. McConnell, U. M?ller and D. Richter, "How we test Siemens' Embedded DRAM Cores," in Proc. IEEE Int'l Test Conf., 1998, pp. 1120-1125.
8.
J. Vollrath, "Tutorial: Synchronous Dynamic Memory Test Construction, A Field Approach," in Proc. IEEE Int'l Workshop Memory Technology, Design and Testing, 2000, pp. 59-64.

361

Allen R., Magdaleno R., Serafin C., Eckert S., , Sieja F., Driver Car Following Behavior Under Test Track and Open Road Driving Condition," SAE Technical Paper 970170, 1997, https://saemobilus.sae.org/content/970170/

References

1 Pipes, L.A. 1953 “An Operational Analysis of Traffic Dynamics,” Journal of Applied Physics 24 271 281
2 Bekey, G.A. Burnham, G.O. Seo, J. 1977 “Control Theoretic Models of Human Drivers in Car Following,” Human Factors 19 4 399 413
3 Fancher, P.S. Bareket, Z. 1995 “Evaluation of Human Factors and Safety Performance in the Longitudinal Control of Headway,” Proceedings of the Second World Congress on Intelligent Transport Systems, Intelligent Transport Systems World Congress Yokohama, Japan
4 Sayer, J.R. Fancher, P.S. et al. 1995 “Automatic Target Acquisition Autonomous Intelligent Cruise Control (AICC): Driver Comfort, Acceptance, and Performance in Highway Traffic SAE Paper 950970 Society of Automotive Engineers Warrendale, PA
5 Chandler, F.E. Herman, R. Montroll, E.W. 1958 “Traffic Dynamics: Studies in Car Following,” Operations Research 6 165 184
6 Allen, R.W. 1982 “Stability and Performance Analysis of Automobile Driver Steering Control,” SAE Paper 820303 International Congress & Exposition Detroit, MI
7 Torf, A.S. Duckstein, L. 1966 “A Methodology for the Determination of Driver Perceptual Latency in Car Following,” Human Factors 8 5 441 447
8 McRuer, D.T. Krendal, E S. 1974 “Mathematical Models of Human Pilot Behavior,” AGARD-AG-188
9 Truxal, J.G. 1955 Automatic Feedback Control System Synthesis McGraw-Hill New York
10 Bendat, J.S. Piersol, A.G. 1971 Random Data: Analysis and Measurement Procedures Wiley-Inter-science New York
11 Randall, R.B. 1987 Frequency Analysis Bruel & Kjaer Denmark
12 Farber, E. Paley, M. 1993 “Using Freeway Traffic Data to Estimate the Effectiveness of Rear-End Collision Countermeasures,” The Proceedings of the 1993 Annual Meeting of IVHS America 14-17 April Washington, DC

234

Arlat J., et al. Fault Injection and Dependability Evaluation of Fault-Tolerant Systems. IEEE Transactions on Computers [online]. IEEE. August 1993, 42(8), 913 [viewed 2017-10-10].

Reference

W C. Carter and J. A. Abraham, "Design and evaluation tools for fault-tolerent systems", Proc. AIAA Computers in Aerospace Conf., pp. 70-77, 1987.
2.
W.G. Bouricius, W. C. Carter and P. R. Schneider, "Reliability modeling techniques for self-repairing computer systems", Proc. 24th Nat. Conf. ACM, pp. 295-309, 1969.
3.
J. B. Dugan and K. S. Trivedi, "Coverage modeling for dependability analysis of fault-tolerant systems", IEEE Trans. Comput., vol. 38, no. 6, pp. 775-787, June 1989.
4.
D. Powell, "Failure mode assumptions and assumption coverage", Proc. 22nd Int. Symp. Fault-Tolerant Computing (FTCS-22), pp. 386-395, 1992-July.
5.
Y. Crouzet and B. Decouty, "Measurements of fault detection mechanisms efficiency: Results", Proc. 12th Int. Symp. Fault-Tolerant Computing (FTCS-12), pp. 373-376, 1982-June.
6.
J. H. Lala, "Fault detection isolation and reconfiguration in FTMP: Methods and experimental results", Proc. Digital Avionics Systems Conf., pp. 21.3.1-21.3.9, 1983-Nov.
7.
Z. Segall, D. Vrsalovic, D. [illegible text], D. Yaskin, J. Kownacki, J. Barton, et al., "FIAT?Fault Injection based Automated Testing Environment", Proc. 18th Int. Symp. Fault-Tolerant Computing (FTCS-18), pp. 102-107, 1988-June.
8.
Α. Damm, Experimental evaluation of error-detection and self-checking coverage of components of a distributed real-time system, Oct. 1988.
9.
R. Chillarege and N. S. Bowen, "Understanding large system failures?A fault injection experiment", Proc. 19th Int. Symp. Fault-Tolerant Computing (FTCS-19), pp. 356-363, 1989-June.
10.
U. Gunneflo, J. Karlsson and J. Torin, "Evaluation of error detection schemes using fault injection by heavy-ion radiation", Proc. 19th Int. Symp. Fault-Tolerant Computing (FTCS-19), pp. 340-347, 1989-June.
11.
E. W. Czeck and D. P. Siewiorek, "Effect of transient gate-level faults on program behavior", Proc. 20th Int. Symp. Fault Tolerant Computing (FTCS-20), pp. 236-243, 1990-June.
12.
G. S. Choi, R. K. Iyer, R. Saleh and V. Carreno, "A fault behavior model for an avionic microprocessor: A case study", Proc. 1st Int. Working Conf. Dependable Computing for Critical Applications, pp. 177-195, 1989-Aug.
13.
G. A. Kanawati, N. A. Kanawati and J. A. Abraham, "FERRARI: A tool for the validation of system dependability properties", Proc. 22nd Int. Symp. Fault-Tolerant Computing (FTCS-22), pp. 336-344, 1922-July.
14.
J. Arlat, Y. Crouzet and J. -C. Laprie, "Fault injection for the experimental validation of fault tolerance", Proc. Esprit Conf. '91 (CEC-CGXIII), pp. 791-805, 1991-Nov.
15.
J. -C. Laprie, "Dependable computing and fault tolerance: Concepts and terminology", Proc. 15th Int. Symp. Fault Tolerant Computing (FTCS-15), pp. 2-11, 1985-June.
16.
"Dependability: Basic concepts and terminology" in Dependable Computing and Fault-Tolerance, Austria, Vienna:Springer-Verlag, vol. 5, 1992.
17.
K. Echtle and Y. Chen, "Evaluation of deterministic fault injection for fault-tolerant protocol testing", Proc. 21st Int. Symp. Fault-Tolerant Computing (FTCS-21), pp. 418-425, 1991-June.
18.
D. Avresky, J. Arlat, J.-C. Laprie and Y. Crouzet, "Fault injection for the formal testing of fault tolerance", Proc. 22nd Int. Symp. Fault-Tolerant Computing (FTCS-22), pp. 345-354, 1992-July.
19.
J. McGough, F. Swern and S. J. Bavuso, "Methodology for measurement Of fault latency in a digital avionic miniprocessor", Proc. AGARD Conf., vol. 303, pp. 21.1-21.18, 1981-June.
20.
D. P. Siewiorek and R. S. Swarz, The Theory and Practice of Reliable System Design, Digital Press, 1982.
21.
C. J. Walter, "Evaluation and design of an ultra-reliable distributed architecture for fault tolerance", IEEE Trans. Rel., vol. 39, no. 4, pp. 492-499, Oct. 1990.
22.
Delta-4: A Generic Architecture for Dependable Distributed Computing, Germany, Berlin:Springer-Verlag, 1991.r
23.
D. Tang and R. K. Iyer, "Impact of correlated failures on dependability in a VAXcluster system", Proc. 2nd Int. Working Conf. Dependable Computing for Critical Applications, pp. 175-194, 1991-Feb.
24.
J. Arlat, M. Aguera, L. Amat, Y. Crouzet, J.-C. Fabre, J.-C. Laprie, et al., "Fault injection for dependability validation?A methodology and some applications", IEEE Trans. Software Eng., vol. 16, no. 2, pp. 166-182, Feb. 1990.
25.
J. Arlat, Dependability validation by fault injection: Method implementation application, Dec. 1990.
26.
R. Geist, M. Smotherman and R. Talley, "Modeling recovery time distributions in ultrareliable fault-tolerant systems", Proc. 20th Int. Symp. Fault-Tolerant Computing (FTCS-20), pp. 499-504, 1990-June.
27.
W. Nelson, Applied Life Data Analysis, New York:Wiley, 1982.
28.
J. F. Lawless, Statistical Models and Methods for Lifetime Data, New York:Wiley, 1982.
29.
V. F. Nicola, M. K. Nakayama, P. Heidelberger and A. Goyal, "Fast simulation of dependability models with general failure repair and maintenance processes", Proc. 20th Int. Symp. Fault-Tolerant Computing (FTCS-20), pp. 491-498, 1990-June.
30.
D. A. Rennels, "Some past experiments and future plans in experimental evaluations of fault tolerance", Proc. Int. Symp. Mini and Micro-Computers in Control and Measurement, pp. 91-98, 1981.
31.
E. Martins, Validation of distributed systems by fault injection, June 1992.
32.
J. McGough, "Effects of near-coincident faults in multiprocessor systems", Proc. 5th Digital Avionics Systems Conf., pp. 16.6.1-16.6.7, 1983-Nov.
33.
J. Arlat and J. -C. Laprie, "On the dependability evaluation of high safety systems", Proc. 15th Int. Symp. Fault-Tolerant Computing (FTCS-15), pp. 318-323, 1985.
34.
A. Pag?s and M. Gondran, System Reliability, Paris:Eyrolles, 1980.
35.
D. Powell, G. Bonn, D. Seaton, P. Ver?ssimo and F. Waeselynck, "The Delta-4 approach to dependability in open distributed computing systems", Proc. 18th Int. Symp. Fault-Tolerant Computing Systems (FTCS-18), pp. 246-251, 1988-June.
36.
J. Arlat, M. Aguera, Y. Crouzet, J. Fabre, E. Martins and D. Powell, "Experimental evaluation of the fault tolerance of an atomic multicast protocol", IEEE Trans. Rel., vol. 39, no. 4, pp. 455-467, Oct. 1990.
37.
J. Arlat, Y. Crouzet, E. Martins and D. Powell, Dependability testing report LA2?Fault-injection on the fail-silent NAC: Preliminary results, Mar. 1991.
38.
J. Arlat, Y. Crouzet, E. Martins and D. Powell, Dependability testing report LA3?Fault-injection on the extended self-checking NAC, Dec. 1991.

370

ASAM OpenCRG http://www.asam.net/standards/detail/opencrg/

3.4. References to other standards

ISO 8855 for right handed coordinate systems
ISO 8601 for time / date
ISO 8859-1 for plain-text encoding
Georeferencing (ISO DIN 19111)
ASAM OpenDRIVE
ASAM OpenSCENARIO
IEEE 754

369

ASAM OpenDRIVE http://www.asam.net/standards/detail/opendrive/

3.3. References to other standards

XML 1.0 Schema [4]
UML 2.5.1 Standard [10]
ISO 3166-2 for country codes [8]
ISO 8855 for right handed coordinate systems
ISO 8601 for time / date [7]
Georeferencing (ISO DIN 19111)
ASAM OpenCRG [3]

371

ASAM OpenSCENARIO http://www.asam.net/standards/detail/openscenario/

Normative Reference

ASAM OpenDRIVE [1]
ASAM OpenCRG [2]
ISO 8855 [11]
ISO 8601 [4]
W3C XML Schema Definition Language [3]

Bibliography

[1] ISO 22901-1: Road vehicles - Open diagnostic data exchange (ODX). International Organisation for Standardisation, 2008.
[2] Sparx Systems, Enterprise Architects. 2019.

205

Askari S., Nourani M. Design methodology for mitigating transient errors in analogue and mixed-signal circuits. Circuits, Devices & Systems [online]. IET. November 2012, 6(6), 447-456 https://digital-library.theiet.org/content/journals/10.1049/iet-cds.2012.0053

References

T. Balen , F. Leite , F.L. Kastensmidt , M. Lubaszewski . A self-checking scheme to mitigate single event upset effects in SRMA-based FPAAs. IEEE Trans. Nucl. Sci. , 4 , 1950 - 1957
2)
M. Singh , I. Koren . Fault-sensitivity analysis and reliability enhancement of analog-to-digital converters. IEEE Trans. VLSI Syst. , 5 , 839 - 852
3)
A. Maheshwari , W. Burleson , R. Tessier . Trading off transient fault tolerance and power consumption in deep submicron (DSM) VLSI circuits. IEEE Trans. VLSI Syst. , 3 , 299 - 311
4)
G. Wirth , F. KAstensmidt , I. Ribeiro . Single event transients in logic circuits-load and propagation induced pulse broadening. IEEE Trans. Nucl. Sci. , 6 , 2928 - 2935
5)
A. Antola , R. Negrini , M. Sami , N. Scarabottolo . Tolerance of transient faults in microprogrammed control units. IEEE Trans. Reliab. , 535 - 546
6)
Askari, S., Dwivedi, B., Saeed, A., Nourani, M.: Scalable mean voter for fault-tolerant mixed-signal circuits', IEEE Aerospace Conf., March 2010. 7) S. Roy , V. Beiu . Majority multiplexing-economical redundant fault-tolerant designs for nanoarchitectures. IEEE Trans. Nanotechnol. , 4 , 441 - 451 8) H. Cha , E. Rudnick , J. Patel , R. Iyer , G. Choi . A gate level simulation environment for alpha-particle-induced transient faults. IEEE Trans. Comput. , 1248 - 1256 9) F.L. Yang , R.A. Saleh . Simulation and analysis of transient faults in digital circuits. IEEE J. Solid State Circuits , 258 - 264 10) R. Baker . (2008) CMOS mixed signal circuit design. 11) S. Rezgui , J.J. Wang , E.C. Tung , B. Cronquist , J. McCollum , C. Actel . New methodologies for SET characterization and mitigation in flash-based FPGAs. IEEE Trans. Nucl. Sci. , 6 , 2512 - 2524 12) Cadence Design System Inc, Virtuoso Multi-Mode Simulation, Available at http://www.cadence.com/rl/Resources/datasheets/virtuoso_mmsim.pdf. 13) pan, X., Graeb, H.: Reliability analysis of analog circuits by lifetime yield prediction using worst-case distance degradation rate', Int. Symp. Quality Electronic Design, October 2010.
14)
S. Askari , M. Nourani , A. Namazi . Fault-tolerant A/D converter using analogue voting. IET Circuits Devices Syst. , 462 - 470
15)
G. Messanger . Collection of charge on junction nodes from ion tracks. IEEE Trans. Nucl. Sci. , 6 , 2024 - 2031
16)
J. von Neumann , C.E. Shannon , J. McCarthy . (1956) Probabilistic logics and the synthesis of reliable organisms from unreliable components, Automata Studies.
17)
de M. Borges, G., Gonsalves, L.F., Balen, T.R., Lubaszewski, M.S.: Increasing reliability of programmable mixed-signal systems by applying design diversity redundancy', IEEE European Test Symp. '10, May 2010, p. 261?261. 18) Mitra, S., Saxena, N.R., McCluskey, E.J.: A design diversity metric and reliability analysis for redundant systems', IEEE Int. Test Conf., 1999, p. 662?671.
19)
Askari, S., Dwivedi, B., Saeed, A., Nourani, M.: Scalable mean voting mechanism for fault tolerant analog circuits', IEEE Int. Design Test Workshop, November 2009. 20) Semiconductor Industry Association: The International Technology Roadmap for Semiconductors: 2010 Update, Available at http://www.itrs.net/Links/2010ITRS/2010Update/ToPost/2010-Update-Overview.pdf. 21) D.A. Johns , K. Martin . (1997) Analog integrated circuit design. 22) Namazi, A., Askari, S., Nourani, M.: Highly reliable A/D converter using analog voting', Int. Conf. Computer Design, October 2008.
23)
Zhu, P.: `Design and characterization of PLLs for radiation tolerant applications', 2008, PhD, SMU.
24)
B. Parhami . Voting networks. IEEE Trans Reliab. , 3 , 380 - 394

318

Automotive ISAC, Automotive Cybersecurity Best Practice. https://www.automotiveisac.com/best-practices/

References

ISO 17799: Mobile Phone Security https://www.iso.org/standard/39612.html ISO/IEC 17799:2005
Information technology ? Security techniques ? Code of practice for information security management[Withdrown]
ISO/IEC 27001?Information Security Management
ISO/IEC 27010:2012?Inter-sector and Inter-organizational Communications
ISO/IEC 27035:2011 Information Security Incident Management
ISO/IEC 30111: Vulnerability Handling Procedures
NHTSA: Cybersecurity Best Practices for Modern Vehicles
NIST 800-30: Guide for Conducting Risk Assessments
NIST SP 800-50: Building an Information Technology Security Awareness and Training Program
NIST SP 800-61: Computer Security Incident Handling Guide
NIST 800-64: Security Considerations in the Systems Development Lifecycle
NIST SP 800-121 Guide to Bluetooth Security
NIST SP-127: Guide to Securing WiMAX Wireless Communications
NIST 800-137: Continuous Monitoring for Federal Information Systems and Organizations
NIST SP 800-150: Guide to Cyber Threat Information Sharing
SAE J3061: Cybersecurity Guidebook for Cyber-Physical Vehicle Systems

Resources

Industry Associations, such as Auto Alliance and Global Automakers
International Organization for Standardization (ISO)
National Institute of Standards and Technology (NIST)
SAE International

41

Automotive SPICE [viewed 2017-10-11

53

Baker S.P., O’Neill, B., Haddon, W., Long, W.B., The injury severity score: a method for describing patients with multiple injuries and evaluating emergency care. The Journal of Trauma, Vol. 14, No. 3, 1974 https://journals.lww.com/jtrauma/Citation/1974/03000/THE_INJURY_SEVERITY_SCORE__A_METHOD_FOR_DESCRIBING.1.aspx

REFERENCES

1. BARER SP: Evaluation of medical care of the injured. J Trauma 11 :892-894, 1971
2. BAKER SP: Injury control. in Saarwan. PE (Editor): Preventive Medicine and Public Health. Appleton-Century-Crofte, 1973, p. 987-1006
3. BOYD DR, Lows RJ, Bann RI, a al: Trauma registry. New computer method for multifac-tonal evaluation of major health problem. JAMA 223:422-428, 1973
4. COMITIEE ON MEDIC.AL ASPECTS OF AUTOMOTIVE SAFETY: Rating the severity of tissue damage. I. The Abbreviated Scale. JAMA 215:277-280, 1971
5. COMMITTEE on MEDICAL ASI)SCES of Arromorws SAFETY: Rating the severity nf tissue damage. II. The Comprehensive Scale:Y.4MA 220:717-720, 1972
6. GERTNER HR JR, BAKES SP, HUT ERFORD RB, et al: Evaluation of the manage ent of ve-hicular fatalities secondary to abd hal in-jury. J Trauma 12:426-431, 1972
7. GIBSON 0: Research and evaluation emer-gency medical services. Health Se s Re-ports, in swats
8. HADDON W A note concerning accident the-ory and research with special reference to motor vehicle accidents. Ann NY Aced Sci 10 635.446, 1963
9. Hugon W JR: The prevention of accidents. In CLARK DW, MACMAITON B (Editors): Preven-tive Medicine. Little, Brown and Co., 1967, p. 591-621
10. HADDON W Jr Energy damage and the ten countermeasure strategies. Trauma 13:321- 331, 1973
11. SACCO WI, COWLEY RA, Gotasses MA, et al: A prognostic index in critical care medicine. Aberdeen Proving Ground, Md., Edgewood Amenal Technical Report EATR 4777, 1973
12. Suns JD, PENNER HA Is, Flaws EE, et al: Field application and research development of the Abbreviated Injury Scale. SAE Print 710873. New York, Society of Automotive En-gineers, 1971
13. Warns IA: How do we evaluate services and set priorities? Proceedings of Workshop on Emergency Health Services in Vermont. Bur-lington, University of Vermont, 1970

＜この記事は個人の過去の経験に基づく個人の感想です。現在所属する組織、業務とは関係がありません。＞

参考資料

自動車ソフトウェア三規格参考文献
https://qiita.com/kaizen_nagoya/items/def6176e74e8cd13ca79

自動車ソフトウェア三規格参考文献の参考文献
https://qiita.com/kaizen_nagoya/items/4595182168a2f7b0aa32

サイバー攻撃に防衛隊を組織教育
https://qiita.com/kaizen_nagoya/items/5bc6235c509e4fb108f0

文書履歴

ver. 0.01 初稿 20231015
ver. 0.02 30文献追記　20231019

最後までおよみいただきありがとうございました。

いいね　💚、フォローをお願いします。

Thank you very much for reading to the last sentence.

Please press the like icon 💚　and follow me for your happy life.