Self-driving vehicles and their impact on the efficiency and safety of future transport

Similar documents
End-to-end Safety, Security and Reliability Keys for a successful I4.0 Migration

Testing of automated driving systems

-- Smart Grid Communication --

Tradition meets modernity

Periodic Technical Inspection for Roadworthiness of HDV

Examining future priorities for cyber security management

Singapore Autonomous Vehicle Initiative (SAVI)

OVERVIEW OF AUTOMATED DRIVING RESEARCH IN EUROPE. Dr. Angelos Amditis Research Director, ICCS

The Safe State: Design Patterns and Degradation Mechanisms for Fail- Operational Systems

FACTS FIGURES TÜV SÜD AG

Compass4D Working towards deployment of C-ITS. Pierpaolo Tona, Project Manager

Securing Automated Driving - The Database Approach in PEGASUS

Automotive Functional Safety

SGS CYBER SECURITY GROWTH OPPORTUNITIES

New Services in Mobility: C-ITS

PEGASUS Method for Assessment of Highly Automated Driving Function

Future Implications for the Vehicle When Considering the Internet of Things (IoT)

Agenda. > AUTOSAR Overview. AUTOSAR Solution. AUTOSAR on the way

The PEGASUS-Method for HAD Assessment - Status Quo

Securing the future of mobility

Cooperative Vehicles Opportunity and Challenges

Security for V2X Communications

13W-AutoSPIN Automotive Cybersecurity

White Paper. Connected Car Brings Intelligence to Transportation

IMPROVING ADAS VALIDATION WITH MBT

Security Challenges with ITS : A law enforcement view

Functional Safety Architectural Challenges for Autonomous Drive

Accelerating solutions for highway safety, renewal, reliability, and capacity. Connected Vehicles and the Future of Transportation

Dedicated Short Range Communication: What, Why and How?

European Activities towards Cooperative Mobility

Agenda. About TRL. What is the issue? Security Analysis. Consequences of a Cyber attack. Concluding remarks. Page 2

Eaton power management solutions Eaton. All Rights Reserved..

AUTOSAR proofs to be THE automotive software platform for intelligent mobility

e-mobility We make the future safe TÜV SÜD AG

To realize Connected Vehicle Society. Yosuke NISHIMURO Ministry of Internal Affairs and Communications (MIC), Japan

Driving virtual Prototyping of Automotive Electronics

Sichere Intelligente Mobilität - Testfeld Deutschland. Safe Intelligent Mobility Field Test Germany

H2020 & THE FRENCH SECURITY RESEARCH

TÜV SÜD. Testing, inspection, certification and training solutions for business success

Voertuigconstructeurs en data economie

Assessments Audits CERTIFICATION

MASP Chapter on Safety and Security

A Perspective on V2X in the United States

Automotive Security Standardization activities and attacking trend

Next Generation Infotainment Systems

EC Perspective on Connectivity and Smart Mobility and the Role of "Digital Co-production/Co-creation" in Transportation

Automated Driving Necessary Infrastructure Shift

Automotive and Aerospace Synergies

Christoph Voigt, Chairman 5GAA GAA

Electrification of Mobility

AVS: A Test Suite for Automatically Generated Code

Cybersecurity Challenges for Connected and Automated Vehicles. Robert W. Heller, Ph.D. Program Director R&D, Southwest Research Institute

The Programmable World Opportunities and Challenges

IEEE-SA Internet of Things - Security & Standards

Click ISO to edit Master title style Update on development of the standard

C-ITS in Europe. Gerhard Menzel, DG MOVE 7th ETSI ITS Workshop 26 th of March 2015, Helmond. Transport

Conquering Complexity: Addressing Security Challenges of the Connected Vehicle

Roberto Brignolo The SAFESPOT Integrated Project: Overview of the architecture, technologies and applications

Sichere Intelligente Mobilität - Testfeld Deutschland. Safe Intelligent Mobility Field Test Germany

Cybersecurity Engineering and Assurance for Connected and Automated Vehicles

Development Progress and OEM Perspective of C-V2X in China

IOT FLAGSHIP PROJECT. Dr. Mario Drobics, AIT

Overview TÜV SÜD Japan. 15/05/2017 Slide 1

TÜV SÜD Industrie Service GmbH. Maximising efficiency of power stations and plants.

Measurement Challenges and Opportunities for Developing Smart Grid Testbeds

Fiscal year 2017: TÜV Rheinland continues growth strategy with investments in future-oriented topics

SIMPLIFYING THE CAR. Helix chassis. Helix chassis. Helix chassis WIND RIVER HELIX CHASSIS WIND RIVER HELIX DRIVE WIND RIVER HELIX CARSYNC

Vehicle & Transportation Infrastructure Cyber Security Discussions. IQMRI

ICAS Workshop 3rd October 2005 Single European Sky Implementation Plan - SESAME

November 16, TTTech Computertechnik AG / TTTech Auto AG Copyright TTTech Auto AG. All rights reserved

Status of activities Joint Working Group on standards for Smart Grids in Europe

Preventing External Connected Devices From Compromising Vehicle Systems Vector Congress November 7, 2017 Novi, MI

Riccardo Mariani, Intel Fellow, IOTG SEG, Chief Functional Safety Technologist

Failure Diagnosis and Prognosis for Automotive Systems. Tom Fuhrman General Motors R&D IFIP Workshop June 25-27, 2010

Security and Privacy in Car2Car Adhoc Networks

The international CETECOM Group. ETSI ITS Workshop 2013 Session 4 Testing and Certification CETECOM ITS Service Partner Ulrich Keuling, CETECOM

A regulatory framework for connected and automated driving Towards a strengthened cooperation

APRIL 2018 ABB Division Fact Sheets

Accelerating solutions for highway safety, renewal, reliability, and capacity. Future of Transportation

WardsAuto Interiors Conference Creating the Ultimate User Experience

A. SERVEL. EuCNC Special Sessions 5G connected car 01/07/2015

Can We Improve Autonomous Driving With IoT and Cloud?

Intelligent Vehicle and Mobility Solutions from Finland. ConCar Berlin 2017 Mikko Koskue

Automotive Cyber Security

TÜV SÜD Rail. Consulting, training, engineering, testing and certification solutions. InnoTrans September 2012 TÜV SÜD

Security analysis and assessment of threats in European signalling systems?

Layer-based Multi-sensor Fusion Architecture for Cooperative and Automated Driving Application Development

Compliance Verification Process for Ethernet ECUs

Connected driving is the future. However, data exchange between vehicles. and roadside equipment will only become genuinely beneficial when it is

Preventing Cyber Attacks on Aftermarket Connectivity Solutions Zach Blumenstein, BD Director Argus Cyber Security

PATHWAYS TO INNOVATION IN DISASTER RISK MANAGEMENT. Paolo Venturoni CEO European Organisation For Security 4 th June 2018

AUTOSAR stands for AUTomotive Open Systems ARchitecture. Partnership of automotive Car Manufacturers and their Suppliers

The modern car has 100 million lines of code and over half of new vehicles will be connected by 2020.

Balancing energy and environmental demands

TomTom Innovation. Hans Aerts VP Software Development Business Unit Automotive November 2015

European Transport Policy: ITS in action ITS Action Plan Directive 2010/40/EU

Cooperative Mobility and the importance of harmonised international standards

ISO Functional Safety Management in the Autonomous Car industry and the overview of the required safety lifecycle.

CYLON ACTIVE ENERGY ENGINEERS IRELAND CONFERENCE 1 ST OCTOBER 2013 OVERVIEW 2013

Advanced Transportation Optimization Systems (ATOS)

Transcription:

Self-driving vehicles and their impact on the efficiency and safety of future transport Dipl.-Ing. Alexander Kraus Senior Vice President Automotive TÜV SÜD Group

Our heritage: 150 years of business success 1866 On 6 January, 22 industrialists united to establish the Steam Boiler Inspection Association Baden in Mannheim. 1881 The first binding standards related to boiler safety were agreed, paving the way for uniform technical inspections. 1906 Our first vehicle periodic technical inspection was carried out. 1951 TÜV organisations were tasked with performing regular inspections of all motorised vehicles. 1989 TÜV Product Service GmbH was launched, pioneering the concept of worldwide approvals. 1996 The TÜVs from Germany s southern states united to form TÜV SÜD. 2001 The TÜV SÜD octagon certification mark became the official company logo. Today TÜV SÜD continues to pursue a strategy of internationalisation and growth. TÜV SÜD 12/12/2016 TÜV SÜD Auto Service Slide 2 GmbH Slide 2

TÜV SÜD in numbers: Growing from strength to strength 1 one-stop technical solution provider 150 years of experience 850 locations worldwide 2,220 24,000 million Euro in sales revenue for 2015 employees worldwide as of February 2016* Note: Figures have been rounded off. *As of 29.02.2016: Inclusive of acquisition in January 2016. TÜV SÜD 12/12/2016 TÜV SÜD Auto Service Slide 3 GmbH Slide 3

Adding value through quality, safety and sustainability solutions across the 3 Strategic Business Segments MOBILITY INDUSTRY CERTIFICATION Ensure 100 years in safe mobility: Periodical Technical Inspections Car business services Fleet management Automotive Maximise reliability, safety & efficiency for: Chemical, oil & gas Power & energy Manufacturing & industrial machinery Rail Real estate and infrastructure Achieve market access for: Manufacturing & industrial machinery Consumer products & retails Healthcare & medical devices Telecommunications & IT Transportation (Automotive, Aerospace and Marine Component) TÜV SÜD 12/12/2016 Solutions for the Automotive industry Slide 4

Automotive Service Portfolio International Homologation Testing Emission E-Mobility Automated Driving Services Consulting Document management Testing Approval Components Systems Full vehicle Fuel Consumtion Type Approval NEDC / WLTP RDE Engineering Battery tests Charging infrastructure Powertrain testing EMC Functional safety Approval of experimental vehicles Data Security Benefits International network of experienced experts Worldwide network of various laboratories Largest independent emissions lab in EU Services for all topics related to E-Mobility Cross-Industry experience Project TÜV SÜD HAD TÜV SÜD AG 15-10-14 12/12/2016 One Solutions stop solution Automotive for the for Automotive automotive Solutions industry excellence Slide 5

Urban traffic development: Example Munich Prediction: 230,000 vechicles per day by 2025! Source: TÜV SÜD AG 31.08.2016 Folie 6

Vision from the perspective of a leading OEM Source: BMW TÜV SÜD AG 31.08.2016 Folie 7

Potentials for efficiency increase through vehicle automatization and connectivity Predicitve driving Savings potential by means of forward-looking driving and traveling at constant speed Less braking situations in traffic Driving vehicle in "sailing mode to minimize friction losses Car2X communication Interconnectivity with infrastructure Detection of traffic volume to control traffic flow Synchronisation of acceleration and braking operations Reduce the circulation times of the traffic light systems Efficient route selection Apply current traffic as the basis for efficient route selection Constant traffic flow through optimal route selection Relief of traffic intersections TÜV SÜD AG 31.08.2016 Folie 8

Potentials for efficiency increase through vehicle automatization and connectivity Reduction of active and passive safety systems Reduced risk of accidents by automated vehicles Reduction of safety systems such as airbags, frame constructions, Reduction of vehicle weight Reduction of engine power Use of the slipstream potential (platooning) Intelligent interconnecttivity of the vehicles (Car2Car and Car2X) Reduction of the vehicle distance to 3-15 meters Fuel saving potential of up to approx. 15% Regrouping of private transport to taxis / buses Change of individual traffic to autonomous taxis (see Singapore) New fleet concepts for the reduction of company fleet vehicles Relieve of traffic hot spots TÜV SÜD AG 31.08.2016 Folie 9

Example: The Digital Shadow Creation of a complete virtual counterpart of the real vehicle moving through a completely digitized world. Functions of the real vehicle are being generated by unlimited availability of context Source: BMW TÜV SÜD AG 31.08.2016 Folie 10

Example: Load-Balancing Routing Vehicle data are used for significant travel time reduction There is a lot of potential by vehicle automatization and interconnectivity to reduce traffic and increase transportation efficiency! TÜV SÜD AG 31.08.2016 Folie 11

HAD Roadmap Source: VDA 2015 Automation 2 nd gen. Automation 1 st gen. New DAS Established DAS Driver is always in the loop and monitors environment. LCA, PDC, LDW, FCW Driver only (0) Eco ACC, Work site assistant ACC, S&G, PSA, LKA Assisted (1) Congestion assistant, Park assist. Partially automated (2) System monitors environment, driver is (temporarily) out of the loop. Highway pilot Highway congestion pilot Highly automated (3) Parking garage pilot Fully automated (4) Robot taxi Driverless (5) LCA: Lane Change Assistant LDW: Lane Departure Warning ACC: Adaptive Cruise Control PSA: Park Steering Assistant PDC: Park Distance Control FCW: Forward Collision Warning S&G: ACC incl. Stop & Go LKA: Lane Keeping Assistant TÜV SÜD AG 15-10-01 09/11/2016 Dipl.-Phys. Udo Steininger TÜV SÜD Slide 12

Current Trend Necessity to engage in the field of safeguarding autonomous vehicles Forecast about the launch of first autonomous vehicles Launch of autonomous vehicles earlier than announced (2030 2020 2017?) Cooperation Mobileye and Delphi plans an upgrade plugin module for autonomous driving in 2019 2010 Audi, Volvo GM, Tesla, Audi, BMW, Google, Lockhead Martin Competition about Deutungshoheit, strong increase of research projects, consortiums OEMs and TIER high personnel requirements, leading to a lack of skilled workers Since Tesla s Beta-tests on public roads: Demand of certifications and standardisation by an expert with know-how in automotive and IT 2020 2030 Mobileye - Delphi, Royal Academy of Eng. Volvo, Mercedes Toyota, NASA TU Wien, JDPower Stanford University TÜV SÜD AG 16-09-15 Slide 13

What is new/different about autonomous driving? TÜV SÜD AG 31.08.2016 Folie 14

Example: From fail safe to fail operational systems Safety of conventional vehicles based on driver s emergency intervention through mechanical connection between control elements and actuation (steering column, brake linkage) in case of technical malfunctions (e.g. loss of power) This works as long as the driver is able to intervene immediately, i.e. in level 0 to level 2 systems In level 3 and beyond, driver is - at least temporarily - not available for prompt emergency intervention NXP Mechanical connection between control elements and actuation is not longer sufficient / makes no longer sense Highly and fully automated vehicles will have redundant or diverse by-wire systems for steering and braking TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 15

Automated Driving: Complexity evolution TÜV SÜD AG 31.08.2016 Folie 16

Can we handle this complexity with existing methodologies? Latest examples Example 1 Proof of effectiveness and reliability Autopilot keeps/changes lanes and brakes automatically Wireless transfer of software updates Example 2 Security and functional safety Relevant safety gaps in software directly linked to hardware Regulatory grey area Customer = Test driver Hackers could gain control over essential vehicle functions. TÜV SÜD AG 15-10-01 09/11/2016 Dipl.-Phys. Udo Steininger TÜV SÜD Slide 17

Challenges for safe and secure HAD Scenarios Feasibility IT security Regulations Real testing no longer sufficient Definition of scenarios needed New concepts with different interests Proof of safety with a small number of real testing Continuous development of the system vehicle via updates IT security as a new pillar of vehicle safety View of the overall system - end to end communication - (vehicle data transfer data centre - applications) Development of existing regulations International standards are necessary TÜV SÜD AG 16-09-15 Slide 18

Safe and Secure vehicle automatization Focus Areas for type approval methodology development Project TÜV SÜD HAD Effectiveness assessments System specification System assessment Safety of use Functional safety IT security Future PTI Simulation Proving ground tests Field / Accident data System development process Frequent Probable Occasional Minor Threat & risk analyses Negligible Marginal Critical Catastrophic E.g. Peridocal Certification?? E.g. Conformity of Production?? E.g. Software Homologation?? Remote Improbable HAD = Highly Automated Driving TÜV SÜD AG 16-09-15 Slide 19

TÜV SÜD Project HAD Organisational Structure 30 FTE in total Sounding-Board VDA, OEMs, Tier1s, IT-Vendors, Universities, Simulation Tool Vendors Steering committee Fruth, Kraus, Dr. Schlesinger Project leader Dr. A Committees & Partnerships Dr. V, PP, GM, Dr. A, Kraus, starting Q2/2017 Effectiveness assessments RM GeSi, FuSi, IT-Sec Dr.A 3 FTE Future PTI RB 5FTE 4FTE 2FTE Simulation JN Testing SW Field / accident data MS PEGASUS Dr. V Autobahn Use CETRAN EQ Urban Use test field Singapore 6FTE 6FTE Functional safety MJ IT security TR GIL WS IT security / Test Field Garching CYSREN EQ IT Security Singapore Project-, Sub-Project Managers Target structure Funding projects Project Budget 10.6 meur Project Duration 2017-2020 Cooperations with Universities desireable! HAD = Highly Automated Driving TÜV SÜD AG 16-09-15 Slide 20

New methods for a safe and secure product lifecycle Development phase will be extended to entire vehicle lifetime with focus on safety relevant Software. Agile development, testing and approval methodologies are required. Concept Safety of use, functional safety, IT security SoP Verification Validation Vehicle field usage Scope 2 P(C)TI (Periodical Certification of SW) Simulation Testing Conventional vehicle development Scope 1 New Type Approval methodologies TÜV SÜD AG 16-09-15 Slide 21

Actual Example: Complicated scenario of ADS proving ground testing for type approval Object Description Lateral / Longitudinal controled by: Accicent avoidance Vehicle Under Test AV Safety driver Traffic Simulation Vehicles Control room (CR) Safety driver / CR Soft Crash Target Control room (CR) CR TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 22

Actual Example scenarios of complex HAD virtual testing TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 23

Relation of functional safety and IT security static environment Functional Safety handling of random faults OBD external manipulation faulty sensors remote access dynamic environment IT Security theft protection data privacy TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 24

Threat analysis for HAD security V2V & V2X Off-board PSI5 Engine Control Gearbox Control Brake Control 3G 4G 5G On-board Dashboard Powertrain, Gateway Navigation Ethernet Entertainment / Telematics Head Unit Door Lock Control HVAC Control Light Control Ethernet Diagnostic Systems OBD2 On-board Off-board No physical access necessary, Attack scaled Physical access necessary, Attack does not scaled TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 25

Supplemented product development process Functional Safety Hazard analysis & risk assessment Safety goals Measures (?) Safety assessment ISO 26262 Product Development Definition Design Verification & validation Product IT Security Security risks analysis Security objectives & security measures Measures (?) Security assessment SAE J3061 To evaluate new technologies it is vital to be and remain state of the art! TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 26

All aspects covered? Functional safety: Protection of people ISO 26262 2 nd ed. Integral approach for safety & security: No safety without security! Cyber security: Protection of systems SAE J3061 Privacy: Protection of data Applicable standard for V2X communication - does, e.g., ISO TC22/SC31 provide this? TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 27

Future evolution of ADS Continental Audi Revision of Vienna Convention on Road Traffic Driver has to intervene in case of malfunction Highly automated driving on highway Fully autonomous driving in first urban areas Drive-by-wire solutions Driver out of loop V2V, V2X communication approved 2020 2016 2025 TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 28

A possible scenario: car driving license TÜV SÜD AG 31.08.2016 Folie 29

Acceptance of automated systems TÜV SÜD AG 31.08.2016 Folie 30

Resumee We experience the most significant technological revolution in vehicles since introduction of combustion engines. Massive potential to reduce accidents, emissions and increase efficiency and availability of individual mobility. Functional Safety and public acceptance are significant key issues to be handled. Verification and validation needs a tool chain including virtual testing and simulation methods, also for type approval. IT Security as important as functional safety and safety of use Harmonisation of standards and methods is necessary. TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 31

Thank you very much for your attention. TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 32

3 A) PEGASUS for the assessment of HAD Project for establishing generally accepted quality criteria, tools and methods as well as scenarios and situations for the release of highly automated driving functions 17 partners from industrie, 12 subcontractors, 42 month project duration PEGASUS will close gaps in the area of testing and approval of automated vehicles with the aim to transfer existing highly automated vehicle-prototypes into products SP 1 SP 2 SP 3 SP 4 SZENARIENANA SCENARIO ANALYSIS LYSE & UMSETZUNGSPROZESSE IMPLEMENTATION QUALITÄTSM AßE & QUALITY METRICS PROCESSES TESTEN TESTING ERGEBNISREFLEKTION PROFIT REFLECTION & EINBETTUNG & EMBEDDING Application scenario Quality metrics Extended application scenario Lead: Volkswagen Process methodology Process specification Lead: Adam Opel Test specification database Laboratory and simulation tests Proving ground tests Field tests Lead: Daimler, BMW, TÜV SÜD Proof of concept Embedding Lead: Continental TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 33

3 A) PEGASUS - Characteristics of test levels Virtual tests Proving ground tests Field tests Palisade Corporation Analysis of a huge number of scenarios, environments, system configurations and driver characteristics Reproducibility by use of driving robots, self driving cars and targets; critical manoeuvres are possible Investigation of real driving situations and comparison with system specifications TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 34

3 B) Similarities between safety and security Similar general understanding: Safety and security by design Common methods: for example HARA TARA Common process framework: TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 35

Existing regulations for type approval European type approval for passenger cars based on Commission Regulation (EU) No. 46/2007 and ECE Regulations 13 & 79 brake and steering with so called electronic annexes No influence of E/E systems on mechanical brake and steering functions Regulations only sufficient as long as systems are fully controlled by drivers according to the Vienna Convention Commission Regulation (EU) No. 351/2012 & 347/2012 and ECE Regulations 130 & 131 for LDWS and AEBS for trucks and buses deliver relatively simple test procedures Increasing level of automation calls for revision of existing regulations or additional regulations, respectively, for type approval TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 36

Existing standardisation for safety and security Product safety confirmation based on ISO 26262 for functional safety of E/E systems in road vehicles Limitations: ISO 26262 doesn t cover functional insufficiencies, for example misinterpretation of objects or traffic situations SAE J3061:2016-01-14(!) 1 st automotive specific IT security standard delivers at least a framework for IT security, very similar to ISO framework With increasing level of automation, upgrade of functional safety standard is necessary as well as extension to safety of use and IT security TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 37

Common assessment procedure - field tests On the one hand systems for HAD have to fulfil very high functional safety requirements, e.g. random hardware failure rates < 10-8 / h for ASIL D it is not possible to prove those failure rates by conventional field tests with reasonable effort On the other hand we have to deal with a huge number of traffic situations, environmental conditions and driver behavior it is not possible to cover this test space by real tests at all BMW Field testing is obviously not sufficient for verification & validation of highly automated driving systems, a tool chain is necessary TÜV SÜD AG 15-10-01 09/11/2016 V4 Slide 38

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback