From: "Dmitry A. Kazakov" <mailbox@dmitry-kazakov.de>
Subject: Re: Killing software and certification
Date: Tue, 27 Mar 2018 21:25:27 +0200
Date: 2018-03-27T21:25:27+02:00 [thread overview]
Message-ID: <p9e5r5$1h47$1@gioia.aioe.org> (raw)
In-Reply-To: p9e2nu$t5c$1@dont-email.me
On 2018-03-27 20:32, Alejandro R. Mosteo wrote:
> On 23/03/18 10:05, Jeffrey R. Carter wrote:
>
>> Autopilots have to be certified to DO178B/C. They'll continue to be
>> written in Ada and not kill us.
>>
>> Self-driving cars, though operating in a much more complex
>> environment, don't seem to need any certification, and will probably
>> kill us all.
>
> I'd like to revisit this point in light of the recent Uber news, but
> also let's not forget for example this one which is simpler than fully
> autonomous cars:
>
> https://en.wikipedia.org/wiki/2009–11_Toyota_vehicle_recalls
>
> I'm not in the industry, and I'd be surprised that unverified software
> were allowed to run in civilian environments where failures basically
> amount to a very dangerous situation.
Why should it surprise you? How are you going to verify it? Black box
test is impossible. White box test isn't either, assuming any NN
involved. There is nothing to prove.
> After a bit of googling around I see that there are automotive standards
> for certification (the one I see more often mentioned is ISO 26262).
> About enforcement, I also read that regulation varies by US state. I
> haven't found anything definite about Europe.
If any certification will ever be set up, it will be certification of
the tools and developing processes/teams, not certification of the
actual software. That is the usual backdoor to go around any questions
about correctness.
> Also, it's not the same software for a drive-by-wire part than for an
> autonomous car.
>
> I'm under the impression that these autonomous car outfits are at the
> time closer to a research environment than to that of a well-established
> industry. I.e., code is produced faster, hence bugs are more likely.
The code used in the ECU and other car subsystems is not any better from
that point of view. It is much simpler, deploys well-established
algorithms and, importantly, is testable with a large set of test
hardware and software available. That is the reason why it works better.
But otherwise, it is just same. There is no any guarantee for it to work.
> In the end I'm not sure where I want to go with this post. It's simply
> that I find the topic very interesting. If anyone with actual knowledge
> on the status of automotive software certification (or any informed
> ideas) would share some thoughts I'll be eager to read.
My understanding is that it is possible to certify about anything
regardless the correctness.
--
Regards,
Dmitry A. Kazakov
http://www.dmitry-kazakov.de
next prev parent reply other threads:[~2018-03-27 19:25 UTC|newest]
Thread overview: 100+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-03-18 13:33 Ada-Oriented GUI Jeffrey R. Carter
2018-03-19 2:03 ` Dan'l Miller
2018-03-19 14:10 ` Dan'l Miller
2018-03-21 9:49 ` Alejandro R. Mosteo
2018-03-21 13:58 ` Dan'l Miller
2018-03-21 18:43 ` briot.emmanuel
2018-03-21 19:17 ` Shark8
2018-03-21 22:40 ` Randy Brukardt
2018-03-21 23:52 ` Shark8
2018-03-22 6:50 ` briot.emmanuel
2018-03-22 16:56 ` Shark8
2018-03-23 16:29 ` Shark8
2018-03-23 22:59 ` Randy Brukardt
2018-03-23 23:43 ` Mehdi Saada
2018-03-26 22:09 ` Randy Brukardt
2018-03-27 7:27 ` Dmitry A. Kazakov
2018-03-27 23:58 ` Randy Brukardt
2018-03-28 7:09 ` Dmitry A. Kazakov
2018-03-22 17:34 ` Alejandro R. Mosteo
2018-03-22 17:50 ` Dan'l Miller
2018-03-22 18:58 ` Shark8
2018-03-23 12:06 ` Alejandro R. Mosteo
2018-03-20 16:41 ` Dan'l Miller
2018-03-20 21:34 ` Randy Brukardt
2018-03-21 2:22 ` Dan'l Miller
2018-03-21 21:50 ` Randy Brukardt
2018-03-22 8:45 ` Dmitry A. Kazakov
2018-03-22 10:58 ` Bojan Bozovic
2018-03-22 11:03 ` Bojan Bozovic
2018-03-21 8:25 ` Dmitry A. Kazakov
2018-03-21 14:30 ` Dan'l Miller
2018-03-21 15:57 ` vincent.diemunsch
2018-03-21 17:33 ` Dan'l Miller
2018-03-21 16:27 ` Dmitry A. Kazakov
2018-03-21 17:04 ` Dan'l Miller
2018-03-21 17:42 ` Dmitry A. Kazakov
2018-03-21 18:19 ` Dan'l Miller
2018-03-21 19:11 ` Simon Wright
2018-03-21 19:51 ` Dan'l Miller
2018-03-21 20:11 ` Dmitry A. Kazakov
2018-03-21 20:33 ` Dan'l Miller
2018-03-21 22:16 ` Dan'l Miller
2018-03-22 9:12 ` Dmitry A. Kazakov
2018-03-22 14:57 ` Dan'l Miller
2018-03-22 15:46 ` Bojan Bozovic
2018-03-22 14:00 ` Dan'l Miller
2018-03-22 17:29 ` Alejandro R. Mosteo
2018-03-21 21:58 ` Randy Brukardt
2018-03-26 21:20 ` G. B.
2018-03-21 22:33 ` Randy Brukardt
2018-03-22 1:43 ` Dan'l Miller
2018-03-22 23:47 ` Randy Brukardt
2018-03-23 2:37 ` Dan'l Miller
2018-03-23 22:42 ` Randy Brukardt
2018-03-24 7:47 ` Simon Wright
2018-03-23 9:05 ` Jeffrey R. Carter
2018-03-23 9:48 ` Bojan Bozovic
2018-03-23 10:20 ` Alejandro R. Mosteo
2018-03-27 18:32 ` Killing software and certification (was: Ada-Oriented GUI) Alejandro R. Mosteo
2018-03-27 19:25 ` Dmitry A. Kazakov [this message]
2018-03-28 13:54 ` Killing software and certification Alejandro R. Mosteo
2018-03-28 14:23 ` Dmitry A. Kazakov
2018-03-28 17:06 ` Alejandro R. Mosteo
2018-03-28 19:35 ` Dmitry A. Kazakov
2018-03-28 15:47 ` Jeffrey R. Carter
2018-03-28 17:02 ` Dennis Lee Bieber
2018-03-28 17:59 ` Dan'l Miller
2018-03-27 19:41 ` Killing software and certification (was: Ada-Oriented GUI) Dan'l Miller
2018-03-28 0:04 ` Randy Brukardt
2018-03-28 2:27 ` Dan'l Miller
2018-03-28 13:54 ` Killing software and certification Alejandro R. Mosteo
2018-03-28 0:21 ` Killing software and certification (was: Ada-Oriented GUI) Jere
2018-03-28 13:54 ` Killing software and certification Alejandro R. Mosteo
2018-03-23 12:31 ` Ada-Oriented GUI Alejandro R. Mosteo
2018-03-23 12:59 ` Dmitry A. Kazakov
2018-03-23 16:16 ` Dan'l Miller
2018-03-23 17:18 ` Dmitry A. Kazakov
2018-03-23 18:31 ` Dan'l Miller
2018-03-23 20:06 ` Dmitry A. Kazakov
2018-03-23 20:48 ` Mehdi Saada
2018-03-23 21:18 ` Dmitry A. Kazakov
2018-03-24 11:36 ` Alejandro R. Mosteo
2018-03-24 13:12 ` Dmitry A. Kazakov
2018-03-28 14:09 ` Alejandro R. Mosteo
2018-03-28 15:02 ` Dmitry A. Kazakov
2018-03-28 18:07 ` Alejandro R. Mosteo
2018-03-29 7:58 ` Dmitry A. Kazakov
2018-04-02 22:13 ` Robert I. Eachus
2018-04-03 8:31 ` Dmitry A. Kazakov
2018-04-03 22:32 ` Robert I. Eachus
2018-04-04 7:30 ` Dmitry A. Kazakov
2018-03-25 12:57 ` Jeffrey R. Carter
2018-03-24 16:33 ` Dan'l Miller
2018-03-26 22:29 ` Randy Brukardt
2018-03-27 0:15 ` Dan'l Miller
2018-03-27 6:08 ` Dennis Lee Bieber
2018-03-27 7:52 ` Simon Wright
2018-03-27 14:48 ` Dennis Lee Bieber
2018-04-01 17:37 ` Robert I. Eachus
2018-03-25 19:19 ` Andrew Shvets
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox