C2000™ MCU device workshops

Hello. This is Kevin Herring. Welcome to our Functional Safety at TI Overview video. In this video, we will review TI's history in functional safety, what type of documents TI provides to aid your functional safety designs, and explain where to find these documents.

At TI, we have spent decades building our functional safety engineering expertise from industry leadership as participants of standards organizations to developing R&D processes to enable ASIL-D and SIL-3 systems. We have tools to simplify your functional safety part selection, including functional safety-compliant products that leverage TÜV SÜD-certified hardware and software development processes.

Texas Instruments is not new to safety. We have been developing, mass-producing, and delivering products into safety critical applications for approximately four decades. This journey began even before functional safety was a formalized industry standard now known as IEC 61508, 1st Edition, which released in 1997.

In 2009, we had our first IEC 61508 certified product. In 2013, we achieved certification of our safety silicon development process and in 2014 achieved certification of our safety software development process. And now in 2020, we have deployed simplified safety parametric search tools and collateral to help engineers be more efficient in their functional safety designs.

There are many automotive systems that require functional safety. The term ASIL stands for Automotive Safety Integrity Level, and it has an associated letter from A to D. ASIL A has the lowest Safety Integrity Level, and ASIL D has the highest Safety Integrity Level. Not all circuits in a car have an ASIL assigned. A simple circuit, such as a courtesy interior light, may not have a functional safety requirement and therefore no ASIL required.

Other systems in the car that require functional safety will have an ASIL that is based on the potential hazard from a malfunction of that system. For example, a tail light could be ASIL A, the lowest Safety Integrity Level. Another system, such as an electric power steering or self-steering, will have an ASIL D because of the higher potential risk.

Industrial systems that require functional safety have a Safety Integrity Level or SIL with an associated number from 1 to 4. SIL 1 has the lowest Safety Integrity Level, and SIL 4 has the highest Safety Integrity Level. Similar end equipment can have different SIL levels depending on what the end application requires.

For example, a temperature transmitter that is monitoring a soft drink dispenser may be designed for a lower SIL 1 rating if the temperature is being monitored for non-hazardous reasons. In contrast, a temperature sensor in a chemical mixing application that could become hazardous if the temperature reading is wrong might be designed to a higher SIL 3 level. Some low risk industrial systems may have no SIL rating if functional safety is not a concern.

In functional safety, there is an assumption that all electronic systems will fail eventually. These faults fall into two categories, systematic fault or random fault. Systematic faults are created by inferior design.

For example, a systematic software fault can exist because of bad coding. An example of a systematic hardware fault is an amplifier circuit that oscillates due to unstable design. The good news is systematic faults can be managed and mitigated by following rigorous development processes combined with independent assessments.

Random hardware faults are unexpected failures of the hardware. Random faults can be reduced by using high quality devices with low failure rates. In functional safety systems, additional mechanisms can be used to monitor and detect faults which allow the system to take necessary action to prevent a hazardous condition in the event of a random fault. In summary, hardware faults can be either systematic or random. Software faults are by definition only systematic.

There are distinct roles for everyone when it comes to functional safety design. TI's role is to deliver hardware and software products in compliance with our functional safety processes. We maintain hardware and software products while supporting customer system level functional safety certification.

Certification bodies like TÜV-SÜD certify our functional safety compliant hardware and software development processes. They may also certify TI selected products, subsystems, and reference designs. The role of the customer or integrator is to complete the system-level hazard analysis and risk analysis of their product, determine the system-level functional safety requirements of their product, and finally, certify the functional safety of their end product.

Where do you find functional safety information at TI? You go to www.ti.com/functionalsafety, all one word. This will take you to the TI functional safety landing page.

At TI, we have created three categories of functional safety devices. Our most basic devices are the functional safety-capable devices. These tend to be lower-complexity products that can be evaluated for use in a functionally safe system. The functional safety-capable devices are developed on a TI quality-managed process and include a functional safety FIT rate document. They also include a failure mode distribution and/or pin failure mode analysis.

The next higher level is the functional safety quality-managed devices. These devices provide additional documentation such as FMEDA and functional safety manual. The highest level of functional safety device category is the functional safety-compliant category. These devices are designed using a TI functional safety process. These devices may also provide a fault tree analysis and a functional safety product certificate.

To find functional safety products at TI, you can start your search on the TI functional safety landing page at www.ti.com functional safety. You can also access the functional safety landing page from within the TI website by clicking Applications on the top of the menu, then clicking functional safety under the Technologies heading. This will take you to the functional safety landing page.

To locate the Quick Search entry box, click Select products in the upper menu. The Quick Search allows you to filter products by their TI functional safety category, their product group, and their product family. Once you have found a device that fits your needs, you can go to the device product folder to learn more about it. The functional safety fit and other documentation can be found under the Technical Documentation tab. The TPS3840-Q1 is an example of a functional safety-capable device.

In addition to the Quick Search tool, you can also use the TI online parametric search tool to find parts with functional safety documentation. The parametric search tool now includes a column titled "TI functional safety category" that you can use to filter part selection. In this MCU example, we have filtered results to only include functional safety quality-managed and functional safety-compliant devices.

In this example, we have selected TMS320F28379S, which is from TI's functional safety-compliant category. Notice the functional safety-compliant category provides more functional safety-related documents compared to the previous functional safety-capable example.

At TI, we strive to make your functional safety designs easier to achieve. To learn more about functional safety at TI, please visit www.ti.com/functionalsafety. This concludes our Functional Safety at TI Overview video. Thank you for watching.