Safety Plan#
Note
Document header
[Your Module Name] Safety Plan
|
status: draft
security: NO
safety: ASIL_B
|
||||
Attention
The above directive must be updated according to your Module.
Modify
Your Module Nameto be your Module NameModify
idto be your Module Name in upper snake case preceded bydoc_and succeeded bysafety_planAdjust
statusto bevalidAdjust
safetyandtagsaccording to your needs
- note:
The module safety plan shall be continuously maintained during the project. Deviations to the module safety plan should be documented here
Functional Safety Management Context#
This Safety Plan adds to the project’s Platform Safety Plan all the module development relevant work products needed for ISO 26262 conformity.
Functional Safety Management Scope#
This Safety Plan’s scope is a SW module of the SW platform <link to module documentation in platform/modules/<modulename>/index.rst>. The module consists of one or more SW components and will be qualified as a SEooC.
Functional Safety Management Roles#
Role |
Assignee |
|---|---|
Safety Manager |
<link to Module’s Safety Manager assignment or name> |
Module Project Manager |
<link to Module’s Project Manager assignment or name> |
Tailoring#
Additional to the tailoring in the SW platform project as defined in the project’s Platform Safety Plan we define here the additional tailoring on module level.
Excluded for this module are additionally the following work products (and their related requirements):
<work product/requirement> - <Argumentation why it is not needed or replaced by another work product or activity.>
Functional Safety Module Work products#
One set of work products for the module and one set for each component of the module:
Module Work products List#
Work product Id |
Link to process |
Process status |
Link to WP |
|---|---|---|---|
valid |
this document |
||
valid |
this document (including the linked documentation) |
||
Formal Document Review Reports (module Safety Plan) |
valid |
||
Formal Document Review Reports (module Safety Package) |
valid |
||
Formal Document Review Reports (module’s Safety Analyses & DFA) |
valid |
<Link to WP> |
|
performed by external experts |
n/a |
<Link to WP> |
|
valid |
|||
valid |
|||
valid |
Component <name> Work products List#
Work product Id |
Link to process |
Process status |
Link to WP |
|---|---|---|---|
valid |
|||
valid |
|||
valid |
|||
valid |
|||
valid |
|||
valid |
|||
valid |
|||
valid |
[Your Component Name] Detai... & <Link to code> |
||
valid |
<Link to WP> |
||
valid |
|||
valid |
<Link to WP> |
||
valid |
Note: In case the component is a new development, Software component classifi... shall be removed from the above list (and also from the folders). In case an OSS element is used in the module, part 6 has to be filled out.
OSS (sub-)component qualification plan#
For the selected OSS component the following work products will be implemented (and why):
- If the OSS element is classified as
component, then the below table shall match the above, adding the reasoning for tailoring of work products according to the OSS component classification.
lower level component, then no work products additional to the component’s will be planned and activities below are part of the component’s issues.
Work product Id |
Link to process |
Reasoning for tailoring |
|---|---|---|
Always needed (for Q and QR classification) and also improves process Id 2 |
||
Always needed (for Q and QR classification) and also improves process Id 5 |
||
<Reasoning for tailoring> |
||
<Reasoning for tailoring, needed for example in case of deficits in process Id 3&4 and complexity Ids 1&4> |
||
<Reasoning for tailoring, could help arguing too high cyclomatic complexity covered by safety mechanisms> |
||
<Reasoning for tailoring, needed if also wf__cr_mt_comparch is required> |
||
n/a |
Tailored - If source code is modified, this is not a OSS qualification any more. |
|
<Reasoning for tailoring, can improve deficits in process Id 6 and complexity Id 3> |
||
<Reasoning for tailoring, can improve deficits in process Id 6 and complexity Id 2> |
||
Always needed (for Q and QR classification) |
||
Always needed as basis for tailoring. |
Module Safety Package#
To create the safety package (according to Safety package automated ge...) the following documents and work products status have to go to “valid” (after the relevant verification were performed).
Module Documents Status#
For all the work product documents the status can be seen by following the “Link to WP”. A summary of the status is also documented in the project’s documentation management plan.
See <add here the section reference to the documentation management plan>
Component Documents Status#
For all the work product documents the status can be seen by following the “Link to WP”. A summary of the status is also documented in the project’s documentation management plan.
See <add here the section reference to the documentation management plan>
Component Requirements Status#
ID |
Status |
Tags |
|---|---|---|
invalid |
component_name |
Component AoU Status#
ID |
Status |
Tags |
|---|---|---|
invalid |
environment; component_name |
|
invalid |
component_name |
Component Architecture Status#
ID |
Status |
Tags |
|---|---|---|
invalid |
component_name |
|
invalid |
component_name |
|
invalid |
component_name |
Deviations from Module Safety Plan#
The following deviations from the module safety plan are present in the module safety package. These are deviations from planned processes execution and/or workproduct results, safety anomalies in the sense of known bugs in the software are reported in the release notes.
<Describe here the deviations, whether they have an impact on module’s safety functions, how these can be mitigated or argued and if and when a resolution is planned.>