| 发明名称 |
ASIL B-COMPLIANT IMPLEMENTATION OF AUTOMOTIVE SAFETY-RELATED FUNCTIONS BY MEANS OF A HIGH DIAGNOSABILITY, QUALITY MANAGED-COMPLIANT INTEGRATED CIRCUIT |
| 摘要 |
An automotive internal combustion engine electronic control unit for performing safety-related functions with a predetermined automotive safety integrity level, including: a microcontroller and an integrated circuit distinct from and communicating with the microcontroller. The microcontroller performs one or more safety-related functions with the same automotive safety integrity level as required to the automotive engine electronic control unit. The integrated circuit performs one or more safety-related functions with an automotive safety integrity level that is lower than that of the microcontroller. The integrated circuit performs, for each performed safety-related function, a corresponding diagnosis function for detecting failures in the performance of the safety-related function. The microcontroller performs, for each performed diagnosis function, a corresponding monitoring function for monitoring performance of the corresponding diagnosis function by the integrated circuit to detect failures that may compromise the diagnostic capability of the diagnosis function. |
| 申请公布号 |
US2015057908(A1) |
申请公布日期 |
2015.02.26 |
| 申请号 |
US201414446466 |
申请日期 |
2014.07.30 |
| 申请人 |
Magneti Marelli S.p.A. ;Exida Development S.r.l. |
发明人 |
Carbonaro Piero;Dallara Giovanni;Fusari Alessandro;Pezzoli Alberto;Traversi Francesco;Lambertini Loris |
| 分类号 |
F02D29/02;G07C5/08 |
主分类号 |
F02D29/02 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. An automotive internal combustion engine electronic control unit for performing safety-related functions with a predetermined automotive safety integrity level, the electronic control unit comprising: a microcontroller and an integrated circuit distinct from and communicating with the microcontroller; wherein the microcontroller is designed to perform one or more safety-related functions with an automotive safety integrity level that is the same as is required to the automotive electronic control unit; wherein the integrated circuit is designed to perform one or more safety-related functions with an automotive safety integrity level that is lower than that of the microcontroller; wherein the integrated circuit is further designed to perform, for each performed safety-related function a corresponding diagnosis function designed to detect failures in the performance of the safety-related function; and wherein the microcontroller is designed to perform, for each performed diagnosis function, a corresponding monitoring function designed to monitor the performance of the corresponding diagnosis function by the integrated circuit to detect failures that may compromise the diagnostic capability of the diagnosis function. |
| 地址 |
Corbetta IT |
