According to ISO 26262, highly available systems must adhere to the highest Automotive Safety Integrity Level D (ASIL-D). This typically requires significant support in the hardware architecture – for example, monitoring of the power management, dedicated safety management units, etc. Based on these hardware safety features, the software has the responsibility to detect faults, categorize and respond to them, and attempt to recover the system if needed.
Testing the correct software response to power faults, such as over voltage or over current faults, is particularly difficult to perform in a physical environment, because injecting these types of faults into the real hardware can damage the device under test.
This Tech Talk discusses how virtual prototypes can help with the systematic testing of the correct handling of power faults by the software. The key idea is to use the fault injection capabilities of the virtual prototype to create “software-visible” error scenarios and then check that the software correctly programs the safety management infrastructure in response to these power faults.