04 - 07 December, 2018
Germany

Conference day 2

8:30 am - 9:00 am Registration and welcome coffee

9:00 am - 9:10 am Opening remarks by chairman

Riccardo Mariani, Chief Functional Safety Technologist at Intel

Riccardo Mariani

Chief Functional Safety Technologist
Intel

9:10 am - 9:50 am Current implementation of ISO26262:2018 Part 11 to Semiconductor development

Although the new edition of the ISO26262 is not yet released, the part11 already brings added value to the current development of semiconductor component within NXP. This presentation gives an insight in how NXP applies the standard.
• What’s new in Edition 2 that can already be implemented (or not!)
• Integration / anticipation within NXP BCAM7 development process
• Practical example of Part11 guideline on safety analysis
Franck Galtié, Director BU Automotive Functional Safety at NXP, Toulouse

Franck Galtié

Director BU Automotive Functional Safety
NXP, Toulouse

9:50 am - 10:30 am Functional Safety Automation : What’s Next

Traditionally Functional Safety Automation has focused on the two areas of the management
of random hardware failure and the management of safety requirements. As Functional
Safety Culture grows, the shortcoming of these two worlds not always being neatly linked be come more and more evident, as well as the lack of automation in other critical areas, within the same organization and across organizations. We will explore the direction functional safety automation has to take to respond of the challenges of an increasing complexity
• Functional Safety Automation
• Design for safety
• Automation roadmap
Mauro Pipponzi, Functional Safety Automation Manager at Intel Corporation

Mauro Pipponzi

Functional Safety Automation Manager
Intel Corporation

10:30 am - 11:00 am Coffee break and networking

Describes methods to validate the presence and functionality of SoC safety mechanisms in production SoCs, post-silicon.
• ISO26262 requirements
• Latent fault detection and BIST
• Non-intrusive “online BIST”
• Ensure safety mechanism are present and in working condition regularly (manufacturing defect, aging, …)
• Safe State (no reset)
Kurt Shuler, Vice President of Marketing at Arteris IP

Kurt Shuler

Vice President of Marketing
Arteris IP

Alexis Boutillier, Functional Safety Manager (FSM) and Corporate Application Manager at Arteris IP

Alexis Boutillier

Functional Safety Manager (FSM) and Corporate Application Manager
Arteris IP

11:40 am - 12:20 pm Safety, the non-negotiable requirement driving autonomous vehicle SoC designs

The automotive industry has set itself the goal of achieving autonomous driving and is accruing the building blocks to make that happen. The challenge is in architecting the next generation automotive SoCs which must deliver exploding performance while meeting requirements for
real-time latency, end-to-end QoS, FuSa (ISO 26262) and security. These SoCs need to include heterogeneous architectures—GPUs, accelerators, processor cores—with built-in cache coherency. Making the right design decisions and performance-area trade-offs, especially with regard to FuSu, is a major challenge for architects. The presentation walks through a proven methodology using the industry’s only ISO 26262 certified cache coherent SoC interconnect.
• New requirement s coming in design and architecture with autonomous vehicles
• Trade-offs with Functional Safety
• Best Practice methodology
Karol Niewiadomski, Product Manager, Cyber Security at SGS-TÜV Saar GmbH

Karol Niewiadomski

Product Manager, Cyber Security
SGS-TÜV Saar GmbH

Tom Wong, Director of Marketing, Automotive Segment, IP Group at Cadence Design Systems

Tom Wong

Director of Marketing, Automotive Segment, IP Group
Cadence Design Systems

12:20 pm - 1:30 pm Network luncheon

1:30 pm - 2:10 pm Implementation challenges for coexistence of safety and security related applications within an Automotive MCU/SoC

The increasing application of distributed electronic control systems in vehicles continues to revolutionize the automotive industry providing more flexibility and efficiency. However, this comes with several security and safety implications.
• Analyzing key security use-cases such as on-board communication, secure boot, and secure
storage
• Discussing the challenge of addressing combined automotive safety and security use-cases
• Reviewing the advantages and disadvantages of several proposed countermeasures
Mohamed Soubhi, Staff Engineer- Functional Safety at Renesas Electronics Europe GmbH

Mohamed Soubhi

Staff Engineer- Functional Safety
Renesas Electronics Europe GmbH

Philip Lapczynski, Sr. Staff Engineer – Cybersecurity at Renesas Electronics America

Philip Lapczynski

Sr. Staff Engineer – Cybersecurity
Renesas Electronics America

2:10 pm - 2:50 pm Possibilities and challenges of a flexible microcontroller architecture for safety and security applications

Microcontrollers for the automotive market need to target a broad range of complex applications at various customers. This requires a flexible hardware architecture offering mechanisms to satisfy both safety and security needs without compromising the other domain.
• Efficiently creating partitions in the resource landscape
• Resolving contradicting safety and security requirements during MCU architecture definition
• Combined usage of safety and security mechanisms
Dr. Martin Oberkönig, Sr. Staff Engineer at Cypress Semiconductor, Germany

Dr. Martin Oberkönig

Sr. Staff Engineer
Cypress Semiconductor, Germany

2:50 pm - 3:20 pm Refreshment break and networking

A | Traceability and compliance through semiconductor IP lifecycle management
While there is a lot of focus on the verification of semiconductors for ISO 26262 compliance, little is being done to automate traceability &
compliance through the lifecycle of IP. This roundtable will discuss how to automate the traceability & compliance checking throughout the IP lifecycle.
• Associating Requirements to IP and IP Versions (IPV)
• Associating verification and results to IP and IPV
• Automating checking verification results against requirements

B | How to detect and control failures
• Failure Detection Probability
• How to minimize failure in time (FIT)
• How to improve failure rate and reliability

C| Functional safety audits
• How are Functional safety audits planned and conducted in semiconductor companies?
• How much reliance assessors place on the audit findings?
• How to increase the effectiveness and efficiency of the functional safety audits to help the project teams, assessors and OEMs etc.?
• How to manage requests from OEMs, and Tier 1s for certification to multiple standards like TS16949, ASPICE, IEC61508 etc.?
Michael Munsey, Vice President Business Development and Strategic Accounts at Methodics, Inc. USA

Michael Munsey

Vice President Business Development and Strategic Accounts
Methodics, Inc. USA

Mohamed Soubhi, Staff Engineer- Functional Safety at Renesas Electronics Europe GmbH

Mohamed Soubhi

Staff Engineer- Functional Safety
Renesas Electronics Europe GmbH

Priyanka Viswanathan, Senior Engineering Auditor at Arm Ltd, United Kingdom

Priyanka Viswanathan

Senior Engineering Auditor
Arm Ltd, United Kingdom

The first SOTIF draft released in October is heating up discussions. On the basis of ISO 26262, SOTIF outlines a safety standard for autonomous vehicles to close the gap with ISO 26262. How will controllability be conceptualized in SOTIF?
• How to define ODDs accurately
• What SOTIF is tackling and what is missing
• When SOTIF will be mature enough
Hakan Sivencrona, Safety Program Manager at Qamcom Research & Technology AB

Hakan Sivencrona

Safety Program Manager
Qamcom Research & Technology AB

Karol Niewiadomski, Product Manager, Cyber Security at SGS-TÜV Saar GmbH

Karol Niewiadomski

Product Manager, Cyber Security
SGS-TÜV Saar GmbH

Riccardo Vincelli, Director of the Functional Safety Competence Center at Renesas Electronics Europe GmbH

Riccardo Vincelli

Director of the Functional Safety Competence Center
Renesas Electronics Europe GmbH

4:40 pm - 4:50 pm Closing remarks by chairman

Riccardo Mariani, Chief Functional Safety Technologist at Intel

Riccardo Mariani

Chief Functional Safety Technologist
Intel

Selected project partners will present how AutoDrive strives to advance methodologies to develop fail-aware,fail-safe, and fail-operational electronic components, systems, and architectures for fully automated driving.
Dipl.-Ing. Erwin Schoitsch, Senior Research Fellow - Center for Digital Safety & Security at AIT Austrian Institute of Technology GmbH

Dipl.-Ing. Erwin Schoitsch

Senior Research Fellow - Center for Digital Safety & Security
AIT Austrian Institute of Technology GmbH

Bernhard Winkler, Senior Researcher - Functional Safety at Virtual Vehicle

Bernhard Winkler

Senior Researcher - Functional Safety
Virtual Vehicle

Renaud Gillon, Program Manager at ON Semiconductor

Renaud Gillon

Program Manager
ON Semiconductor