Kanzi Safety is a Kanzi plug-in which enables seamless development of automotive user interfaces compliant with functional safety standards. It provides an independent ISO 26262 ASIL A & B certifiable 2D pipeline in parallel with the main UI. Kanzi Safety ensures that safety-critical UI elements are loaded and displayed correctly and that they remain up and running in the event of a failure of the main UI. Here we demonstrate how the both 2D & 3D pipelines are integrated into one Kanzi Studio workflow and also how the system responds on target hardware when the Kanzi Safety middleware detects faulty rendering.
For this demonstration, we developed an illustrative cluster on an i.MX6 board, running QNX RTOS with QPIC. We have designed multiple screens for this cluster, with one common element across them: the safety-critical telltales, which stay constant across all the displays. We have added a “glitch,” a small square which is a little bit grey: it slightly changes the coloring underneath it. Moving this glitch on top of a telltale, we immediately see an error message to indicate the telltale is no longer being rendered 100% accurately. Of course, a production implementation would not show such an error message to the driver; this is simply for demonstration purposes. Moving the glitch away, returning the telltale to normal, clears the error message.
Not only do we monitor the state of the icons when they are supposed to be there, but we also monitor their state when they are not supposed to be there. Moving the same “glitch” to the black area where the telltales are supposed to be, we can immediately see an error message. We can clear this by moving the glitch away from the telltale area.
The way we accomplish all this is to render the safety-critical UI elements in their own layer. We integrate both rendering pipelines into the Kanzi workflow. Both safety-critical and non-safety-critical elements can be designed in Kanzi Studio and both can be viewed together in Live Preview. Similarly, both can be exported as packages for deployment onto target hardware. In this way, the Kanzi workflow helps to accelerate development of ISO 26262 compliant HMIs.