Increasing programming personnel uses ARM processor when the program uses related design safety, limits pervades medical treatment, carry, aviation electron and industrial domain. Accordingly, the software that carries out through these processor place also gets more strict examination, because any is small,the mistake causes serious consequence likely. To avoid to cause such consequence, include IEC 61508, still have the safe level arise at the historic moment such as the ISO 26262 of car line of business that just passes recently, in order to ensure development staff and client can accord with the criterion of optimal fact Wu with the most advanced industry in software side. Even if is such, there should be what element among decision level applicable, what not applicable, ensure integral design accords with a standard even next, whole process is very time-consuming hang back of Yu Lingren of as a result. Because consume the design of kind of parts of an apparatus cycle is extremely short and gradually as safe as the car system is integrated, development staff also faces greater time pressure accordingly, the design must be finished to alter before increasingly pressing design cycle time. Place favour is aimed at software development tool and relevant exercise, manufacturer of software set tool has general software to develop the information that personnel place does not have and knowledge, because this has unique fixed position in the market, can develop personnel to provide support for all safe and relevant software. To compiling implement for more such, because compile implement security of system of can immediate impact, and the infuse that its produce likely is wrong, follow-up function designs a test to cannot detect however. Accordingly, group of series software tool suits those use to be based on the development staff of ARM core processor very much, can make develop personnel to ensure the system accords with code standard, deal with the product that adds increasingly to appear on the market at the same time the pressure of time. ARM processor extends application to accompany mobile agitation gradually, add the ecosystem that expands continuously to provide support, the application that is based on ARM core processor already from smartphone and embedded wait for parts of an apparatus, extend fundamental framework equipment and data server. Now, design personnel also begins to guide them safety applies relevantly gradually. This kind of application covered industry (motor control, factory automation, far be apart from monitoring) ; car (chassis control, automobile body and control of safe, dashboard, intelligence sensor, engine, prevent embrace dead turn off a machine) ; medical treatment (infuse pump, pacemaker, disease suffers from monitoring) ; . Graph 1: ARM processor over or across is consumed kind use a field with data server, infiltrate all sorts of industries such as car electron, industry electron, it is however among these domains, the demand of functional sex security of the standard place standard such as IEC 61508, ISO 26262, develop a company for small controller software group brought new pressure. whole, the system adds to the demand of intelligent function, drove ARM processor to be used extensively for market place, but this also asks course of study person must have integrated ability and flexibility in order to reduce cost, provide more function, replace a system at any time. Meanwhile, a lot of designs that use hard encode logic to provide all sorts of functions, now gradually conformity arrives by software place pilot 32 small controller, produce a new issue again thereby. Design centre of gravity gradually jib codes to small controller and program function, also push safe issue at the same time to software domain, let safety application process accord with the responsibility of IEC 61508 standard, on the shoulder that because this falls in software,also develops personnel. This covers a standard originally normative is electric with / or the functional security of electronic system, cover the electronic component of safe system at the same time now. Graph 2: IEC 61508 and relevant industry are special standard, can assist safety relevant electric, electron and but process designing system accords with newest requirement. Functional sex safety can let safe and relevant system be aimed at an input to make answer correctly, avoid needless direct or indirect risk and loss then. Because term of IEC 61508 standard is ambiguous, because this derives all sorts of industrial appropriative standards, carry IEC 60880 of appropriative of IEC 60601 of appropriative of parts of an apparatus of use EN50126/8/9, medical treatment, nuclear energy for railroad only for example, still have ISO 26262 of onshore vehicle appropriative. ISO 26262 is applied to 3, 500 kilograms of the following quantities produce a guest to use the safe and relevant system of the car, but do not include physical disabilities special wait for special purpose car. The small controller in average car often amounts to 150, and the navigation system that directs as consumer is arrived to drive by conformity testing system of auxiliary, campaign, advance, the car carries trends control and active / when passive and safe system, the car makes the case of a research of system of security of operation unit sortie gradually. Safe system develops the pressure that personnel place faces to grow day and day, the car also makes typical case. relatively was as long as at every turn in the past the 3 product lifecycle that arrive 10 years, still must cooperate to consume kind of device now (12 to 18 months) the design is periodic. Program of software of Dou Yanglai of 150 in the car small controller runs, resemble compiling even sometimes implement such main component also can cause systematic trouble, because of infuse the error that discovers not easily, check level to cannot detect likely in the function. This meeting creates a risk continuously to the system, but should accord with IEC 61508 standard only, plus ISO 26262, can fall the risk to OK and patient degree. E.g. , criterion of Wu of IEC 61508 optimal fact suggests to be about to use the tool that can trust at the beginning. Think generally to compile commonly implement the tool of support leaving a line that is T3 classification, express to compile implement the executable code of system of security of can direct or indirect effect, because this choice is compiled implement " it is to proper,have its of the gender " . [IEC 61508-3 Section 7. 4.
4.
3] we are OK by means of passes test and verify and a case of a physically strong patient running a high fever or suffering from such disorders as stasis of blood that using, will show the maturity of the tool and stability, evaluate plus the tripartite that comes from industry expert and the manufacturer assures, thereby proves the proper sex of the choice. Criterion of optimal fact Wu still can try outspread, use the use of output of test and verify and language subclass, resembling is MISRA C/C++ . The software nature that test target place uses is essential, but how should be informed the state that had checked every kinds of likelihood happening? The program code that did not implement after all cannot check. Be about to use code to enclothe rate analysis at this moment, will differentiate the program code that has not implement, ensure whole application process already all checked then end. Analytic code is enclothed rate can use source code to insert install or dog data, because string together,spread the effect that dog degree is the smallest. As to language subclass, between a lot of case, high-ranking programming not complete or the definition of the language is punch-drunk, cause different compile implement behavior also differs somewhat. "Strict mode " , still have the language subclass of MISRA C/C++ and so on, it is to eliminate these amphibolous state institute to design, return at the same time can: The; of behavior set regulation that ensures consistent; replaces use language and standard language to did not define moves except avoid a tool to use option; to consolidate encode type compulsively (for example: Versus //); improves readability; and contractible whole place needs to test range. ISO 26262 compares IEC 61508 further, offerred framework is more exquisite detail, can consider to adopt the safe system that technology of other of in order to develops for fundamental place below such framework. Cover limits to run supplier concern from product cycle, but to software development staff, it offerred a kind to be the car design, method that is a foundation with the risk to come only judge integrality, and this method calls grade of automobile safety integrality (Automotive Safety Integrity Levels; ASILs) . Use ASILs defines the applicable requirement of ISO 26262 clearly, in order to avoid unreasonable odd risk, offer test and verify at the same time demand and affirm measure, achieve in order to ensure enough and acceptability degree of safety. Proposal: Abiding by acquiescent standard good news is, in the design that after ISO 26262 is announced, just begins, must not abide by its to design a guideline, ability is accomplished " the most advanced " design criterion and obtain law to protect. The person that do not pass clever line of business can follow its extensive standard compulsively, because say this is a kind of good way really on the tradition,also can ensure consistency, still can reduce cost at the same time, because do not include the requirement in the standard at present, will be included probably tomorrow, so best from try at the beginning the system is changed. But should accord with IEC 61508 and ISO 26262 at the same time, every measure must prepare to show a file, from the rationality that uses from line tool, analyse to tool behavior, manual, danger all the time, compile implement be short of break report of report, historical version, test, still have reach the difference report that expects a result actually, it is only among them a few a few projects. Such demonstrative file needs to throw great mental efforts, between beautiful take time and cost is high, at this moment supplier of software set tool can be sent on use. They are the experts of the tool. E.g. , they are hep compile implement how to run, how to use safety application program, also understand how to use it will obtain established output and benefit at safe and relevant development. Tool of software of ARM Compiler series is a very good use case, it obtained the attestation of D of ü of V S of ü of T of inspection agency of German security technology recently. The client after obtaining this attestation can build ARM Compiler the tool to apply in safe and relevant development, highest can amount to safe integrality grade the 3rd class (SIL3, IEC 61508) and car SILD(ASILD, ISO 26262) , and need not undertake other and eligible test and verify. Still ARM Compiler standard is covered but function of test and verify of D of ü of V S of augment T ü , include safe brochure among them, be short of break report, test report and development program report as supportive data. Graph 3: Use a program to producing a car but the course of study of process designing system person for, want to accord with IEC 61508 and security of function of ISO 26262 software to ask, must provide many specification file and report. Such tripartite attestation and supportive firm assure, man-hour of can instant economic staff, devoted mental efforts and relevant cost, still can make product or design faster appear on the market at the same time, can assure to apply programming to still can continue to be used by market place even, because designing periodic times quickly, time is everything. CNC Milling
CNC Machining