process: document safety analysis #902
Conversation
License Check Results🚀 The license check job ran with the Bazel command: bazel run //:license-checkStatus: ✅ Passed Click to expand output |
|
The created documentation from the pull request is available at: docu-html |
| :complies: std_wp__iso26262__analysis_851, std_wp__iso26262__software_752 | ||
|
|
||
| Bottom-Up Safety Analysis with e.g. FMEA method, verifies the feature architecture (as part of SW Safety Concept) | ||
| - Detection and prevention mitigations linked to Software Feature Requirements or Assumptions of Use |
There was a problem hiding this comment.
May link here to the correct WPs per need, AoU are here concrete Feature Assumption of Use
| :status: valid | ||
| :complies: std_wp__iso26262__software_754 | ||
|
|
||
| Depends on architecture, FMEA and DFA tooling. |
There was a problem hiding this comment.
This should be updated to make it concrete and as said, update or link to SW Development Plan accordingly
|
|
||
| todo: need to add guidance and standard links | ||
|
|
||
|
|
||
| .. workflow:: Analyse Feature Architecture | ||
| :id: wf__analyse_featarch | ||
| :status: draft |
There was a problem hiding this comment.
We defined to have a new role for that as Resp., Safety Engineer (t.b.d. including Role description), rl_contributor, rl_committer shall support, would remove technical lead as supporter, comment is valid for all workflows, where is the Architecture Verification done?
|
|
||
| Contributing Roles: | ||
|
|
||
| * :need:`Contributor <rl__contributor>` |
There was a problem hiding this comment.
Add it to workflows, otherwise not part here, would remove leads, and add missing Safety Engineer Role with complete description
| :maxdepth: 1 | ||
|
|
||
| guidance/index | ||
| safety_analysis_concept |
There was a problem hiding this comment.
may change order, to start with getting started, concept, guidance, etc.
| The analysis is finished, if for each identified faults a mechanism/measure exists. | ||
| Unless the attribute sufficient is yes, measure and argument attribute can be still empty. | ||
|
|
||
| **Examples:** |
There was a problem hiding this comment.
may link here toe the introduction, building model, where this example is available as image
|
|
||
| Safety Analysis shall be linked to its adjacent level via the attribute mitigates. | ||
|
|
||
| * Feature Safety Analysis <-> feature architecture |
There was a problem hiding this comment.
check traceability model, there are more links
| * 0 to 100 percent | ||
|
|
||
| .. gd_req:: Safety Analysis attribute: link to Aou | ||
| :id: gd_req__saf__attr_aou |
There was a problem hiding this comment.
see above, also requirements
|
|
||
| It shall be checked that Safety Analysis (Safety != QM) can only be linked against elements with the same ASIL. | ||
|
|
||
| .. needextend:: "process_areas/requirements_engineering" in docname |
There was a problem hiding this comment.
you need to change that to safety_analysis
| It shall be checked if all mandatory attributes for each Safety Analysis is provided by the user. For all Safety Analysis following attributes shall be mandatory: | ||
|
|
||
| .. needtable:: Overview mandatory Safety Analysis attributes | ||
| :filter: "mandatory" in tags and "attribute" in tags and "safety analysis" in tags and type == "gd_req" |
There was a problem hiding this comment.
does not work, other attributes are shown, compare sphinx-docu, see comment for needextend
|
Architecture Verification is part of Architecture Design, can be removed from Safety Analysis, see https://github.com/eclipse-score/score/pull/907/files#diff-c89206dc1e9d878523aa319232e3ee40c242ee096987e2cdcee145c61cee71ab |
No description provided.