Top 5 System Software Considerations for Next-Generation ADAS

May 14, 2015 //By Peter Hoogenboom, Green Hills Software

Submitted by eetimes on Thu, 05/14/2015 - 00:00

Top 5 System Software Considerations for Next-Generation ADAS

Next generation ADAS (with autonomous driving perhaps its ultimate manifestation) presents automotive application and system designers with a seemingly irreconcilable mix of safety certification, connected security, and cutting edge signal processing and graphics visualization requirements. This article presents the top 5 system software considerations for OEMs, Tier-1s, and their suppliers looking to create successful ADAS software organizations, infrastructures, and products.

5. Plan to Patch

Legacy driver assistance systems, such as simple electronic instrument clusters, are characterized by relatively small software code bases, simple operating systems (OSEK, AUTOSAR), and software design teams experienced with safety-critical development processes. Next-generation ADAS have more extreme demands, such as 3D graphics processing, which leverage large code bases and possibly third party software developed by engineers lacking a formal safe software development process capability. Designers must plan for serious problems with these increasingly complex systems and build into them a reliable, scalable software patch/upgrade system. The mobile device industry has proven the importance and practicality of scalable software upgrade, ranging from lowest level bootloader firmware up to entire mobile operating systems and applications, and mobile device manufacturers have done an admirable job developing and deploying this capability. While there are open standards relating to software upgrade (notably Open Mobile Alliance DM/FUMO), they do not cover many of the more difficult considerations of practical software upgrade, such as version management, scheduling delivery to a high volume of remote systems, and optimizing patch size for constrained wireless networks. The automotive industry needs to get smart on this quickly and then take the technology a step further to demand a high level of confidence in the security and safety of the upgrade infrastructure and the patches themselves.

Fig. 1: ADAS subsystems and non-critical partitions consolidated on a multicore processor

Safe field upgrade requires a cryptographic infrastructure built into the SoC and its system software. In particular, software will be checked for its integrity and authenticity via digital signatures, whose verification key must be protected against tamper (either via software or physical attack). The verification key must reside in tamper-resistant on-chip key storage or protected by such a hardware-based key. The system software used to perform the validation must itself be protected against tamper, using a combination of secure boot, dynamic integrity checking, and remote attestation. One can think of

Design category:

Infotainment

This site use Cookies

Essential cookies

These cookies are required to navigate on our Site. They allow us to analyse our traffic. If you disable cookies, you can no longer browse the site. You can of course change the setting

Advertising cookies

Analytical Cookies

These cookies are used to gather information about your use of the Site to improve your access to the site and increase its usability.

Third party cookies

These cookies allow you to share your favourite content of the Site with other people via social networks. Some sharing buttons are integrated via third-party applications that can issue this type of cookies. This is particularly the case of the buttons "Facebook", "Twitter", "Linkedin". Be careful, if you disable it, you will not be able to share the content anymore. We invite you to consult the privacy policy of these social networks.

Pay attention, some cookies cannot be removed

To cancel some cookies, please follow the procedures on the following links

AddThis