HCC’s SafeTCPIP is a complete TCP/IPv4 network stack developed to the ISO 26262 Automotive Safety Integrity Level (ASIL) B standard. This makes it suitable for integration with any safety system complete with full process that is mappable to other standards such as IEC61508 and ISO 62304.
Automotive software developers may require a TCP/IP stack to be integrated into a safety product to guarantee the quality of the networking, or to allow it to be used in a safety environment for a supporting, non-safety-critical role such as diagnostics. The de facto network standard for connected cars and in-vehicle safety systems is TCP/IP, but commercially available products are rarely developed to meet safety standards, are only partially certified, or are tightly integrated to a single vendor’s development system and RTOS.
SafeTCPIP fills a critical market need by giving automotive OEMs and suppliers an off-the-shelf solution that has been independently designed to satisfy TCP/IP networking requirements. The reusability of the TCP/IP stack contributes to long-term stability and reduces development costs.
Critical to the success of this approach, SafeTCPIP is developed to full ISO 26262 Section 6 processes for integration with automotive systems that require a high safety-integrity level and is supported by an independent software lifecycle for maintenance. The exact verified product that is integrated can be maintained and modified to safety standards independent of any other project that integrates SafeTCPIP. Because it is developed as a SEooC, the Element can be integrated with the company’s other safety development lifecycle.
The stack is built as a set of SEooCs, Safety Elements out of Context as defined in ISO 26262-10, and deliverable as a distinct safety project with full life cycle maintenance for each customer project.
It has been developed following ISO26262-6 as a formal V-model development with the following core work products:
- Assumptions (Required for SEooCs)
- High Level Requirements
- Functional Requirements
- Architectural Design
- Detailed design
- Fully MISRA compliant C Implementation
- Verification Test Specification
- Full MC/DC coverage
- Validation Test Specification
- Test harness for complete on-target testing
- Complete forwards/backwards traceability between requirements, design, implementation and test cases
The initial release of SafeTCP/IP includes the following modules each built to this standard:
- Ethernet Interface
SafeTCPIP can be integrated with almost any RTOS and includes a test suite to validate the RTOS resources required by the stack.
For safety systems that require space separation, HCC can provide a solution. As full space separation involves a performance trade-off, the degree of space separation can be defined when the stack is ordered.