Dr.-Ing.

Schneider, Daniel

Filters

10 2
Reset filters

Settings
Now showing 1 - 10 of 12
  • Publication
    Predictive Runtime Simulation for Building Trust in Cooperative Autonomous Systems
    ( 2019)
    Cioroaica, Emilia
    ;
    Schneider, Daniel
    ;
    Alzughbi, Hanna
    ;
    Reich, Jan
    ;
    Adler, Rasmus
    ;
    Braun, Tobias
    Future autonomous systems will also be cooperative systems. They will interact with each other, with traffic infrastructure, with cloud services and with other systems. In such an open ecosystem trust is of fundamental importance, because cooperation between systems is key for many innovation applications and services. Without an adequate notion of trust, as well as means to maintain and use it, the full potential of autonomous systems thus cannot be unlocked. In this paper, we discuss what constitutes trust in autonomous cooperative systems and sketch out a corresponding multifaceted notion of trust. We then go on to discuss a predictive runtime simulation approach as a building block for trust and elaborate on means to secure this approach.
  • Publication
    Dynamic Risk Assessment Enabling Automated Interventions for Medical Cyber-Physical Systems
    ( 2019)
    Leite, Fábio L.
    ;
    Schneider, Daniel
    ;
    Adler, Rasmus
    As in many embedded systems domains, in modern healthcare we experience increasing adoption of (medical) cyber-physical systems of systems. In hospitals, for instance, different types of medical systems are integrated dynamically to render higher-level services in cooperation. One important task is the realization of smart alarms as well as, in a second step, the realization of automated interventions, such as the administration of specific drugs. A fundamental correlated problem is insufficient risk awareness, which are caused by fluctuating context conditions, insufficient context awareness, and a lack of reasoning capabilities to deduce the current risk. A potential solution to this problem is to make systems context- and risk-aware by introducing a runtime risk assessment approach. In this paper, we introduce such an approach for a wider identification of relevant risk parameters and risk assessment model building based on Bayesian Networks (BN). This model considers not only changes in the actual health status of the patient but also the changing capabilities to detect and react according to this status. This includes changing capabilities due to adding or removing different types of sensors (e.g. heart rate sensors) and replacing sensors of the same type but with other integrity level. In addition, we present an evaluation of the approach based on a simulated clinical environment for patient-controlled analgesia.
  • Publication
    Engineering and Hardening of Functional Fail-Operational Architectures for Highly Automated Driving
    ( 2019)
    Adler, Rasmus
    ;
    Akram, Mohammed Naveed
    ;
    Feth, Patrik
    ;
    Fukuda, Takeshi
    ;
    Ishigooka, Tasuku
    ;
    Otsuka, Satoshi
    ;
    Schneider, Daniel
    ;
    Yoshimura, Kentaro
    Rising automation levels in the automotive domain demand a shift from the fail-safe to the fail-operational paradigm. Fail-operational architectures and behaviors are inherently more complex and thus require special diligence from a safety engineering point of view. In this work, we present how we tailored and applied a methodology that facilitates the design of fail-operational architectures from early design stages on by enabling informed judgment regarding the gradually evolved architecture's fitness for purpose. The method specifically considers resilience regarding dynamic changes in environmental conditions, including V2X aspects and internal capabilities. In this paper, we summarize our experiences in applying the methodology in a highway pilot case study. Furthermore, we present essential extensions of the methodology for modeling and evaluating the operational design domain.
  • Publication
    Dynamic Risk Management for Cooperative Autonomous Medical Cyber-Physical Systems
    ( 2018)
    Leite, Fábio L.
    ;
    Schneider, Daniel
    ;
    Adler, Rasmus
    Medical cyber-physical systems (MCPS) combine independent devices at runtime in order to render new patient monitoring/control functionalities, such as physiological closed loops for controlling drug infusion and optimization of alarms. MCPS and their relevant system contexts are highly variable, which detrimentally affects the application of established safety assurance methodologies. In this paper, we introduce an approach based on dynamic risk assessment and control for MCPS. During runtime, information regarding the safety properties of the constituent systems, relevant information about the patient's characteristics, as well as other relevant context information is utilized to dynamically and continuously optimize the system performance while guaranteeing an acceptable level of safety. We evaluated our approach by means of a patient-controlled analgesia proof-of-concept simulation and sensitivity analysis.
  • Publication
    Multi-aspect Safety Engineering for Highly Automated Driving
    ( 2018)
    Feth, Patrik
    ;
    Adler, Rasmus
    ;
    Fukuda, Takeshi
    ;
    Ishigooka, Tasuku
    ;
    Otsuka, Satoshi
    ;
    Schneider, Daniel
    ;
    Uecker, Denis
    ;
    Yoshimura, Kentaro
    Highly automated and autonomous driving is a major trend and vast amounts of effort and resources are presently being invested in the development of corresponding solutions. However, safety assurance is a concern, as established safety engineering standards and methodologies are not sufficient in this context. In this paper, we elaborate the fundamental safety engineering steps that are necessary to create safe vehicles of higher automation levels. Furthermore, we map these steps to the guidance presently available in existing (e.g., ISO26262) and upcoming (e.g., ISO PAS 21448) standards and point out open gaps. We then outline an approach for overcoming the identified deficiencies by integrating three different safety engineering disciplines. This includes (1) creating a safe nominal behavior specification; (2) dealing with functional insufficiencies, and (3) assuring the related performance wrt. functional safety. We exemplify our proposed methodology with a case study from industry.
  • Patent
    Apparatus, methods and computer programs for controlling a machine
    ( 2018)
    Adler, Rasmus
    ;
    Schneider, Daniel
    ;
    Feth, Patrik
    ;
    Kremmer, Martin
    ;
    Neermann, Benjamin
    ;
    Volz, Stefan
    ;
    Fritz, Norbert
    ;
    Nissen, Hans Jürgen
    ;
    Reinmuth, Florian
    Embodiments relate to apparatuses (10; 30), methods and computer programs for controlling a machine. The apparatus (10) is suitable for a mobile communication device (100) for providing a sensor input signal to a machine control entity (300) to control a machine (350). The apparatus (10) comprises one or more sensor modules (12) for providing first user input sensor data and second user input sensor data. The apparatus further comprises a control module (16) configured to determine the sensor input signal based on the first user input sensor data and the second user input sensor data. The control module (16) is further configured to provide the sensor input signal for sensor data processing to the machine control entity (300) to control at least one of a force transmission interface of the machine (350) for an external component and an engine of the machine (350) via an interface (18).
  • Publication
    A Context-Aware, Confidence-Disclosing and Fail-Operational Dynamic Risk Assessment Architecture
    ( 2018)
    Feth, Patrik
    ;
    Adler, Rasmus
    ;
    Schneider, Daniel
    Future automotive systems will be highly automated and they will cooperate to optimize important system qualities and performance. Established safety assurance approaches and standards have been designed with manually controlled stand-alone systems in mind and are thus not fit to ensure safety of this next generation of systems. We argue that, given frequent dynamic changes and unknown contexts, systems need to be enabled to dynamically assess and manage their risks. In doing so, systems become resilient from a safety perspective, i.e. they are able to maintain a state of acceptable risk even when facing changes. This work presents a Dynamic Risk Assessment architecture that implements the concepts of context-awareness, confidence-disclosure and fail-operational. In particular, we demonstrate the utilization of these concepts for the calculation of automotive collision risk metrics, which are at the heart of our architecture.
  • Patent
    Apparatuses, methods and computer programs for controlling a machine via a mobile communication device
    ( 2017)
    Schneider, Daniel
    ;
    Kuhn, Thomas
    ;
    Adler, Rasmus
    ;
    Ngyuyen, Viet Yen
    ;
    Feth, Patrik
    Embodiments relate to apparatuses (10; 30), methods and computer programs for controlling a machine. The apparatus (10) is suitable for a mobile communication device (100) for providing a sensor input signal to a machine control entity (300) to control a machine (350). The apparatus (10) comprises one or more sensor modules (12) for providing first user input sensor data and second user input sensor data. The apparatus further comprises a control module (16) configured to determine the sensor input signal based on the first user input sensor data and the second user input sensor data. The control module (16) is further configured to provide the sensor input signal for sensor data processing to the machine control entity (300) to control the machine (350) via an interface (18).
  • Publication
    Safety engineering for autonomous vehicles
    ( 2016)
    Adler, Rasmus
    ;
    Feth, Patrik
    ;
    Schneider, Daniel
    In safety engineering for non-autonomous vehicles, it is generally assumed that safety is achieved if the vehicle appropriately follows certain control commands from humans such as steering or acceleration commands. This fundamental assumption becomes problematic if we consider autonomous vehicles that decide on their own which behavior is most reasonable in which situation. Safety criticality extends to the decision-making process and the related perception of the environment. These, however, are so complex that they require the application of concepts for intelligence that do not harmonize with traditional safety engineering. In this paper, we investigate these problems and propose a solution.