Background for Black-Channel-Communication
During the development of a system with safety requirements, we will often encounter the situation in which the safety device needs to communicate with other safety devices. For communication, a standard communication channel (such as CAN or Ethernet) is usually available.
The development of a separate communication channel for the safety communication is possible - but usually economically not viable. For this reason, the so-called "black channel communication" is often used as a method of choice. This is a method in which the safety devices can send their safety-relevant data via unsafe channels by protecting the safety-related data.
Protecting the safety-relevant messages via unsafe communication channels must be able to detect the following errors:
- Repeated message
- Lost message
- Inserted message
- Wrong sequence of messages
- Changed message
- Delayed message
- Coupling of safe and unsafe data
The safety data are protected with safety information before transmission via the standard communication channel (we call this information the "Safety Envelope"). It refers to:
- A sender identification
- A data package counter
- A checksum on data (including the envelope)
Upon receipt, the information from the "Safety Envelope" is checked for plausibility and it can be detected whether one of the listed errors has occurred.
One Functional-Safety-Engineer in every team
We continuously educate engineers in software development for Functional Safety. After at least 5 years of activity in this functional safety, the training leads to an examination by an external company. The recognition of the knowledge takes place with the certificate "Functional Safety Engineer".
We are able to contribute a lot of experience, knowledge and technologies from more than 270 projects and research projects to your project.
The module "End-To-End (E2E) protection of communication" enables the transmission of security-relevant data via insecure communication channels. This type of communication is also called black channel communication.
You will not get only source code of the Safety Add-Ons, in fact you get pre-certified modules for IEC 61508 and ISO 26262. The safety manual, the user's guide and the example projects provide an efficient entry point.
Program Flow Monitor
The module "Program Flow Monitor" enables the monitoring of the logical program sequence via freely definable program execution gates. Any number of gates in the application can be distributed and monitored.
Time Budget Watchdog
The module "Time Budget Watchdog" offers the monitoring of the CPU runtime consumption in functions, function groups or tasks. In addition, the number of activations in a period can be monitored for cyclic functions.
You are Interested in Functional Safety ...
Arrange an expert meeting
We offer a free and non-committal interview with one of our experts. We can get to know each other, answer your open questions and also discuss the first requirements of your project.
Related Products and Services
The so-called Flexible Safety RTOS is the real-time kernel with memory protection, pre-certified for applications in the field of functional safety according to IEC 61508, ISO 26262 and IEC 62304
For a first impression of the nature and extent of completed projects, we have put together a small selection for you. For more details read: Reference Projects.