Functional safety analysis of SAE conditional driving automation in time-critical situations and proposals for its feasi
- PDF / 947,721 Bytes
- 19 Pages / 595.276 x 790.866 pts Page_size
- 55 Downloads / 195 Views
ORIGINAL ARTICLE
Functional safety analysis of SAE conditional driving automation in time‑critical situations and proposals for its feasibility Takayuki Hirose1,2 · Tetsuo Sawaragi1 · Hideki Nomoto2 · Yasutaka Michiura2 Received: 30 April 2020 / Accepted: 22 September 2020 © The Author(s) 2020
Abstract The autonomous driving technology is rapidly developed for commercial use, aiming at the conditional driving automation or the third level of driving automation (LoDA 3). One of the most critical challenges for the achievement is the smooth authority transfer from the system to human drivers in an emergency. However, it is still on the way to find out fundamental solutions. The difficulty is closely related to the envisioned world problem, for which the concept of functional modeling could be a solution. This paper presents a safety analysis of the authority transfer problem based on the ideas of functional modeling. We discuss the safety of the authority transfer in a time-critical situation by using a simulator based on the functional resonance analysis method (FRAM). The result shows that the involvement of human drivers in driving activities is still essential even during autonomous driving. We show that the current LoDA 3 is a myth that the human drivers are supposed to be required just in non-normal situations, while they can be free from dynamic driving tasks (DDTs) in usual cases. Based on the result, this work makes some proposals for successful autonomous driving, effective human–machine collaboration, and the right design of artifacts. Keywords Autonomous driving · Conditional driving automation · Levels of driving automation (LoDA) · Envisioned world problem · Functional resonance analysis method (FRAM)
1 Introduction The technology of autonomous driving is rapidly developed for commercial use, aiming at conditional driving automation or the third level of driving automation (LoDA 3) issued by SAE (2016). At the LoDA 3, while the system is basically responsible for dynamic driving tasks (DDTs), human drivers also need to intervene in the operation in an emergency. One of the most critical issues for the achievement is how to * Takayuki Hirose hirose.takayuki.27v@kyoto‑u.jp Tetsuo Sawaragi sawaragi.tetsuo.3r@kyoto‑u.ac.jp Hideki Nomoto [email protected] Yasutaka Michiura [email protected] 1
Department of Mechanical Engineering and Science, Kyoto University, Kyoto 615‑8540, Japan
IV&V Research Laboratory, Japan Manned Space Systems Corporation (JAMSS), Tokyo 100‑0004, Japan
2
smoothly transfer the driving authority from the automated system to human drivers therein. Many researchers from both academic and industrial fields have been working on this issue. However, it is still on the way. More specifically, while the nature of this problem highly depends on specific contexts (Inagaki and Sheridan 2019; Eriksson and Stanton 2017), most of the current approaches are restricted only to identify static or even fixed time requirements to issue the take over requests (TOR). The
Data Loading...
