ELISA Workshop Fall 2021 has ended

Create Your Own Event

ELISA Workshop Fall 2021

13:00 CET

Newcomer Session - Philipp Ahmann, ADIT GmbH & Elana Copperman, Mobileye/Intel

WATCH RECORDING

Project overview by ambassadors: Who we are in ELISA, topics, groups, work in progress, participants and all the rest...
- Newcomers expectation on ELISA and this specific workshop
- Q&A / open floor based on Project overview and expectations

Speakers

Philipp Ahmann

Product Manager - Embedded Open Source, Robert Bosch GmbH

Philipp Ahmann is a technical business development manager at Robert Bosch GmbH with focus on Open Source activities. He represents the ELISA project of the Linux Foundation as technical steering committee chair and leads the automotive as well as systems work group. He has more than... Read More →

Elana Copperman

Safety Software Architect, Mobileye

Elana Copperman, PhD is a System Safety Architect at Mobileye (part of Intel). She provides support for designing safety features in Mobileye products, including system boot; drivers; automotive control units; and Linux infrastructure. Before working at Mobileye, she worked as a Security... Read More →

Newcomers intro Linux ELISA final pdf

Monday November 8, 2021 13:00 - 14:00 CET
Zoom

14:00 CET

General Welcome & Established Working Group Updates

WATCH RECORDING

Safety Architecture Working Group - Gabriele Paoloni, Red Hat
Tool Investigation and Code Improvement Working Group - Lukas Bulwahn, Elektrobit Automotive GmbH
Medical Devices Working Group - Kate Stewart & Shuah Khan, The Linux Foundation; Milan Lakhani, Codethink; Jason Smith, UL LLC
Automotive Working Group - Jochen Kall, ITK Engineering on behalf of Toyota & Philipp Ahmann, ADIT GmbH

Speakers

Gabriele Paoloni

Open Source Technical Leader (FuSa), Red Hat

Gabriele Paoloni is an Open Source Community Technical Leader at Red Hat where he defines best methodologies and requirements to qualify Linux for functional safety usage.

Lukas Bulwahn

Kate Stewart

VP Dependable Embedded Systems, Linux Foundation

Kate Stewart is Vice President of Dependable Embedded Systems at the Linux Foundation. She works with the safety, security and license compliance communities to advance the adoption of best practices into embedded open source projects. Since joining The Linux Foundation, she has launched... Read More →

Shuah Khan

Linux Fellow, Linux Foundation

Kernel Maintainer & Linux Fellow, The Linux Foundation Shuah Khan is a Kernel Maintainer & Linux Fellow at The Linux Foundation. She is an experienced Linux Kernel developer, maintainer, and contributor. She authored A Beginner’s Guide to Linux Kernel Development (LFD103). She leads... Read More →

Milan Lakhani

Software Engineer, Codethink Ltd

Software engineer and safety consultant at Codethink with experience with React, Python, R, C and Java and have completed a Machine Learning course in Matlab. Interested in safety, medical devices, the kernel and new technology.

Jason Smith

Principal Engineer, UL Solutions

Jochen Kall

Expert Engineer Safety, ITK Engineering on behalf of Toyota

Dr. rer. Nat. Jochen Kall is a development engineer in the field of functional safety at ITK Engineering since 2016. As part of his work, he is involved in the Linux Foundation ELISA project (Enabling Linux in Safety Applications) which aims for establishing Linux as a valid option... Read More →

Philipp Ahmann

Product Manager - Embedded Open Source, Robert Bosch GmbH

Philipp Ahmann is a technical business development manager at Robert Bosch GmbH with focus on Open Source activities. He represents the ELISA project of the Linux Foundation as technical steering committee chair and leads the automotive as well as systems work group. He has more than... Read More →

Monday November 8, 2021 14:00 - 15:00 CET
Zoom

15:00 CET

Evolution of the Development Process Working Group - Paul Albertella, Codethink & Elana Copperman, Mobileye/Intel

WATCH RECORDING

Introduction to the two new working groups chaired by Paul and Elana, which represent an evolution of the former Development Process working group, to describe the focus and planned approach for each group and explain how they will collaborate.

Speakers

Paul Albertella

Consultant, Codethink

Paul Albertella is a consultant at Codethink, with more than 30 years of experience in the automotive, semiconductor and mobile device sectors. He's passionate about software engineering processes and the role that open source software and communities are playing in their evolution... Read More →

Elana Copperman

Safety Software Architect, Mobileye

Elana Copperman, PhD is a System Safety Architect at Mobileye (part of Intel). She provides support for designing safety features in Mobileye products, including system boot; drivers; automotive control units; and Linux infrastructure. Before working at Mobileye, she worked as a Security... Read More →

Evolution of Dev Process WG pdf

Monday November 8, 2021 15:00 - 15:30 CET
Zoom

15:30 CET

Break

Monday November 8, 2021 15:30 - 15:45 CET
Zoom

15:45 CET

Linux in Safety Systems - Challenges & Solutions - Christopher Temple, Arm Germany GmbH

WATCH RECORDING

Speakers

Christopher Temple

Lead Safety & Reliability Architect, Arm Germany GmbH

As Lead Safety & Reliability Architect Dr. Chris Temple develops the safety and reliability technology roadmap, and drives thought leadership in next generation cost effective safety systems at Arm. Temple is active in the ELISA open source project, where he is investigating inter-dependencies... Read More →

Monday November 8, 2021 15:45 - 16:15 CET
Zoom

16:15 CET

eBPF Verifier: Lessons Learned for Safety - Elana Copperman, Mobileye, Intel

WATCH RECORDING

The ebpf verifier ensures that ebpf programs are "safe" to run in the Linux kernel. We describe why the verifier is necessary, and how "safety" is defined/attained in this context, including what may be relevant for "safety" as expected for safety-critical systems.

Speakers

Elana Copperman

Safety Software Architect, Mobileye

Elana Copperman, PhD is a System Safety Architect at Mobileye (part of Intel). She provides support for designing safety features in Mobileye products, including system boot; drivers; automotive control units; and Linux infrastructure. Before working at Mobileye, she worked as a Security... Read More →

eBPF verifier pdf

Monday November 8, 2021 16:15 - 16:45 CET
Zoom

16:45 CET

Kernel Testing Frameworks - Shuah Khan, The Linux Foundation & Brendan Higgins, Google

WATCH RECORDING

This session gives you a overview of Kselftest and KUnit frameworks, how to use them for unit, regression testing, and code coverage. Hope to discuss the importance of Code coverage important for Safety and where Kselftest & KUnit fit in. Improvements that could be made to Kselftest & KUnit to increase test/regression/code coverage.

Speakers

Shuah Khan

Linux Fellow, Linux Foundation

Kernel Maintainer & Linux Fellow, The Linux Foundation Shuah Khan is a Kernel Maintainer & Linux Fellow at The Linux Foundation. She is an experienced Linux Kernel developer, maintainer, and contributor. She authored A Beginner’s Guide to Linux Kernel Development (LFD103). She leads... Read More →

Brendan Higgins

Software Engineer, Google

Monday November 8, 2021 16:45 - 17:15 CET
Zoom

17:15 CET

Break

Monday November 8, 2021 17:15 - 17:30 CET
Zoom

17:30 CET

Discovery Linux Kernel Subsystems Used by openAPS - Shuah Khan, The Linux Foundation & Milan Lakhani, Codethink

WATCH RECORDING

Discovering the Linux kernel subsystems in use by an application can be accomplished using Linux kernel features and commands. The goal is to gather the system state while the OpenAPS workload is running ro determine which parts of the kernel is being used. In this talk Milan and Shuah will share the data and conclusions from tracing RasPi/Rasbian running OPenAPS workload.

Speakers

Shuah Khan

Linux Fellow, Linux Foundation

Kernel Maintainer & Linux Fellow, The Linux Foundation Shuah Khan is a Kernel Maintainer & Linux Fellow at The Linux Foundation. She is an experienced Linux Kernel developer, maintainer, and contributor. She authored A Beginner’s Guide to Linux Kernel Development (LFD103). She leads... Read More →

Milan Lakhani

Software Engineer, Codethink Ltd

Software engineer and safety consultant at Codethink with experience with React, Python, R, C and Java and have completed a Machine Learning course in Matlab. Interested in safety, medical devices, the kernel and new technology.

Monday November 8, 2021 17:30 - 18:00 CET
Zoom

18:00 CET

Enforce Properties During Kernel Development - Lukas Bulwahn, Elektrobit Automotive GmbH

WATCH RECORDING

While there are stakeholders that clearly would like to enforce a certain property during the kernel development, one can observe that these stakeholders unfortunately just continue to hunt down violations of those properties in a delayed fashion with significant human effort, as it currently is difficult to enforce a property during kernel development so that the violation is not introduced in the first place.
We will discuss the needed technical steps and tools (development process monitors and safeguards) to enforce a property during kernel development. The goal of this session to agree on some first prototypes of tools we would like to build and deploy to enable stakeholders to enforce a property during kernel development.

Speakers

Lukas Bulwahn

Linux Chief Expert, Elektrobit Automotive GmbH

Lukas Bulwahn has received a diploma in computer science and a PhD in formal methods from Technische Universität München. Since 2012, he is working at BMW on research and development of an open-source software platform for autonomous driving systems. One part of this research has... Read More →

2021 11 08 Enforce properties during kernel development pdf

Monday November 8, 2021 18:00 - 18:30 CET
Zoom

18:30 CET

How We Are Stronger Together - Suggestions to Drive the Linux Open Ecosystem and Functional Safety Community Standardisation Together - Gabriele Paoloni & Jeffrey Osier-Mixon, Red Hat

WATCH RECORDING

In the automotive functional safety software ecosystem there are different projects, standard bodies, and consortiums that are working on different aspects of the system. In order to have a successful qualification of Linux based stack for functional safety we need to make sure that all the stakeholders work in close coordination and propose compatible approaches and solutions as well as help each other to succeed

Speakers

Gabriele Paoloni

Open Source Technical Leader (FuSa), Red Hat

Gabriele Paoloni is an Open Source Community Technical Leader at Red Hat where he defines best methodologies and requirements to qualify Linux for functional safety usage.

Jeffrey Osier-Mixon

Senior Principal Community Architect, Red Hat

Jeffrey "Jefro" Osier-Mixon is a Senior Principal Community Architect within the Office of the CTO at Red Hat, focusing on the automotive and energy industry verticals. A 30-year industry veteran, he previously worked with RISC-V, LF Energy, Yocto Project, Zephyr Project, and Project... Read More →

How we are stronger together pdf

Monday November 8, 2021 18:30 - 19:00 CET
Zoom

13:00 CET

Networking Hour - Philipp Ahmann, ADIT GmbH & Elana Copperman, Mobileye

This session was not recorded.

The intention of this session is to get the chance for small talk & discussion to exchange with othrs who are active in ELISA or want to become active. As the title says it is a networking hour, so everybody is welcome to participate and no specific experience is needed.

Speakers

Philipp Ahmann

Product Manager - Embedded Open Source, Robert Bosch GmbH

Philipp Ahmann is a technical business development manager at Robert Bosch GmbH with focus on Open Source activities. He represents the ELISA project of the Linux Foundation as technical steering committee chair and leads the automotive as well as systems work group. He has more than... Read More →

Elana Copperman

Safety Software Architect, Mobileye

Elana Copperman, PhD is a System Safety Architect at Mobileye (part of Intel). She provides support for designing safety features in Mobileye products, including system boot; drivers; automotive control units; and Linux infrastructure. Before working at Mobileye, she worked as a Security... Read More →

Tuesday November 9, 2021 13:00 - 14:00 CET
Zoom

Technical Discussion Group

14:00 CET

Certification Using the 'New Approach to Safety' - Paul Albertella, Codethink

WATCH RECORDING

Codethink recently used our 'new approach to safety', which was presented at the last ELISA workshop, to achieve ISO 26262 certification of an open-source tools integration (Deterministic Construction Service) to ASIL D. Paul Albertella describes how this applied the key principles of 'new approach', how open source tooling and practices were used to provide the necessary evidence for certification, how tool qualification differs from a full ISO 26262 certification process, and the expected role of the certified tooling in future work.

Speakers

Paul Albertella

Consultant, Codethink

Paul Albertella is a consultant at Codethink, with more than 30 years of experience in the automotive, semiconductor and mobile device sectors. He's passionate about software engineering processes and the role that open source software and communities are playing in their evolution... Read More →

Certification using the New Approach to Safety (ELISA workshop) pdf

Tuesday November 9, 2021 14:00 - 15:00 CET
Zoom

15:00 CET

Break

Tuesday November 9, 2021 15:00 - 15:30 CET
Zoom

15:30 CET

SW Quality Process Guidance for FuSa: Updates - Roberto Paccapeli & Stefano Dell'Osa, Intel Corporation

WATCH RECORDING

The software Quality Process Requirements, created by Intel and presented in the past to ELISA stakeholders, defines a checklist to leverage the existing software quality capabilities in SoC platforms or standalone SW Products for enabling Functional Safety technology. The list of Software Quality Process Requirements including ""Generic IP-SW Evidence for Technique/Measure"" and “Evidence Quality Criteria” details is mapped against IEC 61508-3:2010 and ISO 26262-6:2018.

The goal of this session is to show the final updated version. It has been assessed by TUV SUD certification body to be used, in case of software product based on a standardized development process, as pre-processing instrument for making data, evidence and argumentations which can be suitable (in the context of a specific project) for a final assessment against specific safety integrity levels.

Speakers

Roberto Paccapeli

Functional Safety Manager, Intel Corporaiton

Acting today as Functional Safety Manager, I support the planning and coordination of Intel safety programs. Currently, I lead FuSa LC MRC, an Intel committee responsible to establish, implement and maintain FuSa Lifecycle, and I collaborate with different internal groups on enforcing... Read More →

Stefano Dell'Osa

FuSa SW Architect, Intel Corporation

2021 11 09 Elisa Workshop SW Process Guidance pdf

Tuesday November 9, 2021 15:30 - 16:00 CET
Zoom

16:00 CET

Understanding the Z Model - Lukas Bulwahn, Elektrobit Automotive GmbH

WATCH RECORDING

Most software engineers have heard about the V Model, and it serves as basis for the structure in the safety standards. The V Model well suited for the dedicated software development in the context of a specific system. However, our experience has shown that the V Model causes confusions when considering the risk assessment and mitigation of properties of pre-existing software elements that are integrated into a system context after its construction. Hence, there is the need to introduce the Z Model, which may resolve that confusion.

Speakers

Lukas Bulwahn

2021 11 09 The Z Model pdf

Tuesday November 9, 2021 16:00 - 16:30 CET
Zoom

16:30 CET

Using STPA for ISO-26262 - Shaun Mooney, Codethink Ltd

WATCH RECORDING

STPA (Systems Theoretic Process Analysis) has been presented at previous ELISA workshops as a way to analyse complex software-intensive systems for safety. During this talk Shaun Mooney will show how Codethink have used STPA to achieve ISO-26262 certification of an open-source toolchain. The talk will show how we conducted the analysis and derived tests from the outputs, and discuss the YAML schema and custom validation tools that Codethink developed as a practical way to conduct STPA. Shaun will also share lessons learned while introducing this relatively new technique to an engineering team.

Speakers

Shaun Mooney

Tuesday November 9, 2021 16:30 - 17:30 CET
Zoom

13:00 CET

Isolation Techniques for Safety - Elana Copperman, Mobileye, Intel

WATCH RECORDING

We will present various existing Linux features which may be amenable to support safety claims such as FFI (Freedom From Interference), including: cgroups, namespaces, capabilities, and access control frameworks (SELinux, apparmor). Each feature will be presented with examples and highlighting the aspects which may be relevant to support safety claims in specific use cases.

Speakers

Elana Copperman

Safety Software Architect, Mobileye

Elana Copperman, PhD is a System Safety Architect at Mobileye (part of Intel). She provides support for designing safety features in Mobileye products, including system boot; drivers; automotive control units; and Linux infrastructure. Before working at Mobileye, she worked as a Security... Read More →

Isolation Techniques pdf

Wednesday November 10, 2021 13:00 - 14:00 CET
Zoom

14:00 CET

Dynamic Memory Allocation in Safety Related Context - Alessandro Biasci & Fabrizio Tronci, Evidence Srl

WATCH RECORDING

Regarding the addressing of FFI, dynamic allocation of memory must be analyzed to ensure spatial isolation between SR/NSR chunks. First an introduction about standard requirements of dynamic memory allocation usage in safety related context will be provided. Then, possible faults are described and potential mitigation strategies will be illustrated.

Speakers

Alessandro Biasci

Project Manager, Evidence srl

Fabrizio Tronci

Functional Safety Manager, Evidence

ELISA MASTER DynMA for Workshop v2 pptx

Wednesday November 10, 2021 14:00 - 14:30 CET
Zoom

14:30 CET

Safety Standards and the Community Problem - Lukas Bulwahn, Elektrobit Automotive GmbH

WATCH RECORDING

The investigation of standards’ expectation on quality management and open-source communities has indicated that safety standards poorly fit to the different dynamics in a true community project.

We will discuss the following hypotheses:
- Quality-managed Software is not a property of the software (as an asset), but of the organisation that creates and releases it.
- Standards assume that the software development is done by an organisation with limits.
- Within an organisation with limits, a result of the software development with quality management is better than a result of the software development without quality management.
- The kernel is developed by a multi-stakeholder community, where no organisation is in full control.
- The software development of the kernel is not quality-managed by an organisation.
Interpretation of the standards’ requirements must consider the absence of any controlling organisation, but instead measure the performance of a multi-stakeholder community.

Speakers

Lukas Bulwahn

2021 11 10 Safety Standards and the Community Problem pdf

Wednesday November 10, 2021 14:30 - 15:00 CET
Zoom

15:00 CET

Break

Wednesday November 10, 2021 15:00 - 15:30 CET
Zoom

15:30 CET

Requirements Traceability Using Code Coverage - Rachel Sibley, Red Hat

WATCH RECORDING

In this session I will talk about the existing techniques we use at Red Hat for kernel code coverage and how we would like to apply them towards requirements traceability and verification for Red Hat's Automotive Initiative. By embedding both code coverage analysis and targeted testing during the verification stage using existing tooling, it will enable us to improve our test coverage starting with requirements.

Speakers

Rachel Sibley

Senior Principal Software Quality Engineer, Red Hat

Currently leading the testing efforts for the Red Hat In-Vehicle Operating System, previously CKI (Continuous Kernel Integration)

Requirements Traceability Using Code Coverage pdf

Wednesday November 10, 2021 15:30 - 16:00 CET
Zoom

16:00 CET

The Red Hat Approach to Linux Qualification for Functional Safety Targeting ASILB - Gabriele Paoloni & Dmitri Pal, Red Hat

WATCH RECORDING

The presentation gives an overview of the Red Hat approach to qualify a Linux based stack to support ASILB safety applications. The main pillars of the safety argumentation will be presented together with the Red Hat continuous certification scheme aimed to maintain the safety claims as the code evolves.

Speakers

Gabriele Paoloni

Open Source Technical Leader (FuSa), Red Hat

Gabriele Paoloni is an Open Source Community Technical Leader at Red Hat where he defines best methodologies and requirements to qualify Linux for functional safety usage.

Dmitrri Pal

The Red Hat Approach to Linux Qualification for Functional Safety Targeting ASILB (1) pdf

Wednesday November 10, 2021 16:00 - 16:30 CET
Zoom

16:30 CET

ELISA Goal Setting for Next Quarter & Wrap Up

WATCH RECORDING

Discussion and brain storming session. Set goals for next quarter for ELISA and derives goals for WGs based on ELISA goals.

Speakers

Shuah Khan

Linux Fellow, Linux Foundation

Kernel Maintainer & Linux Fellow, The Linux Foundation Shuah Khan is a Kernel Maintainer & Linux Fellow at The Linux Foundation. She is an experienced Linux Kernel developer, maintainer, and contributor. She authored A Beginner’s Guide to Linux Kernel Development (LFD103). She leads... Read More →

Wednesday November 10, 2021 16:30 - 17:30 CET
Zoom

Planning Discussion