Affiliation:
1. Siemens AG Otto‐Hahn‐Ring 6 81739 Munich Germany
Abstract
AbstractIn order to assess AI/ML‐based autonomous systems in terms of safety, it is not sufficient to assess the system w.r.t. potential failures that could lead to hazards (e.g., as proposed by standards such as IEC 61508, ARP 4761, etc.). Also, functional weaknesses/insufficiencies of the used algorithms according to Safety Of The Intended Functionality (SOTIF) standard ISO 21448 must be considered. In this paper, we present an approach for the safety assessment of systems incorporating AI/ML models using a Model‐based Systems Engineering (MBSE) and a Model‐based Safety Assurance (MBSA) approach. Therefore, we introduce with Component Fault and Deficiency Trees (CFDTs) an extension of the model‐based Component Fault Tree (CFT) methodology. Thereby, we are able to describe cause‐effect relationships between individual failures and functional insufficiencies as well as system hazards and assess if all risks are mitigated. In this paper, we apply our approach to an industrial case study of a self‐driving toy vehicle (the PANORover) and present our lessons learnt.
Reference20 articles.
1. Basic concepts and taxonomy of dependable and secure computing
2. Höfig K.et al. 2018.Model-based Reliability and Safety: Reducing the complexity of safety analyses using component fault trees.pp.1–7.
3. IEC 60812:2018–08 2018.Failure modes and effects analysis (FMEA and FMECA).
4. IEC 61508:2010–04 2010.Functional safety of electrical/electronic/programmable electronic safety-related systems.