Q9: If the chip passes ISO 26262, but it still fails during use, can you give a failure report, similar to the 8D report of the vehicle regulations?
A9: There is no necessary relationship between chip failure and failure of ISO 26262, and there are many reasons for chip failure, which may be internal or external. If a safety incident is caused by the failure of a chip in a safety related system during use, it is related to 26262. At present, there is a failure analysis team, which can help customers find the cause of the failure of the chip, and you can contact the relevant business personnel.
Q10: ISO 26262, only for programmable integrated circuits? No requirements for analog and interface integrated circuits?
A10: If an analog and interface class integrated circuit has an internal safety mechanism related to the concept of safety (i.e., a diagnostic and response mechanism to prevent a breach of safety objectives/safety requirements), it needs to meet ISO 26262 requirements.
Q11: Security mechanism, apart from Appendix D of Part5, are there any other reference standards?
A11: ISO 26262-11:2018 lists some common safety mechanisms for different types of integrated circuits. IEC 61508-7:2010 recommends a number of safety mechanisms for controlling random hardware failures and avoiding system failures.
Q12: If the system is functionally safe, will you assist in reviewing the PCB and schematics?
A12: Generally, it only reviews the design level (such as schematic design), the rationality of some design principles concerned at the design level (such as derating design), and whether the PCB layout is carried out according to the design principles (layout level will not pay too much attention). Attention will also be paid to the design level to prevent non-functional failure aspects (e.g., EMC, ESD, etc.) that could potentially lead to a breach of functional safety, as well as the requirements for production, operation, service, and obsolescence introduced during the design phase.
Q13: After the functional safety is passed, can the software and hardware not be modified any more, nor can the resistance and tolerance be changed?
A13: In principle, if a product that has passed the product certification needs to be changed, the impact of the change on functional safety should be assessed, and the required design change activities and testing and verification activities should be evaluated, which needs to be re-evaluated by the product certification body.
Post time: Apr-17-2024