prEN ISO 19014-4
(Main)Earth-moving machinery - Functional safety - Part 4: Design and evaluation of software and data transmission for safety-related parts of the control system (ISO/DIS 19014-4:2024)
Earth-moving machinery - Functional safety - Part 4: Design and evaluation of software and data transmission for safety-related parts of the control system (ISO/DIS 19014-4:2024)
This document specifies general principles for software development and signal transmission requirements of safety-related parts of machine-control systems (MCS) in earth-moving machinery (EMM) and its equipment, as defined in ISO 6165. In addition, this document addresses the significant hazards as defined in ISO 12100 related to the software embedded within the machine control system. The significant hazards being addressed are the incorrect machine control system output responses from machine control system inputs.
Cyber security is out of the scope of this document.
NOTE For guidance on cybersecurity, see an appropriate security standard.
This document is not applicable to EMM manufactured before the date of its publication.
Erdbaumaschinen - Funktionale Sicherheit - Teil 4: Gestaltung und Beurteilung von Software und Datenübertragung für sicherheitsrelevante Steuerungssysteme (ISO/DIS 19014-4:2024)
Dieses Dokument legt allgemeine Grundsätze für Anforderungen an Software-Entwicklung und Signalübertragung von sicherheitsbezogenen Teilen von Maschinensteuerungssystemen (MCS, en: machine-control systems) in Erdbaumaschinen (EMM, en: earth-moving machinery) und deren Ausrüstung, wie in ISO 6165:2012 definiert, fest. Zudem behandelt dieses Dokument die in ISO 12100 festgelegten signifikanten Gefährdungen in Bezug auf die im Maschinensteuerungssystem eingebettete Software. Bei den behandelten signifikanten Gefährdungen handelt es sich um das falsche Ansprechen der Ausgabe von Maschinensteuerungssystemen auf Eingaben in Maschinensteuerungssystemen.
Cybersicherheit liegt außerhalb des Anwendungsbereichs dieses Dokuments.
ANMERKUNG Hinweise zur Cybersicherheit sind in einer geeigneten Sicherheitsnorm zu finden.
Dieses Dokument gilt nicht für EMM, die vor dem Veröffentlichungsdatum dieses Dokuments hergestellt wurden.
Engins de terrassement - Sécurité fonctionnelle - Partie 4: Conception et évaluation du logiciel et de la transmission des données pour les parties relatives à la sécurité du système de commande (ISO/DIS 19014-4:2024)
Le présent document spécifie les principes généraux applicables aux exigences en matière de développement de logiciel et de transmission des signaux des parties relatives à la sécurité des systèmes de commande de la machine (MCS) dans les engins de terrassement et leur équipement tels que définis dans l'ISO 6165. De plus, le présent document traite des phénomènes dangereux significatifs tels que définis dans l'ISO 12100 en rapport avec les logiciels intégrés dans le système de commande de la machine. Les phénomènes dangereux significatifs traités sont les réponses incorrectes du système de commande de la machine aux entrées du système de commande de la machine.
La cybersécurité n'est pas couverte par le présent document.
NOTE Voir une norme appropriée relative à la sécurité pour des recommandations à propos de la cybersécurité.
Le présent document n'est pas applicable aux engins de terrassement fabriqués avant la date de sa publication.
Stroji za zemeljska dela - Funkcijska varnost - 4. del: Načrtovanje in vrednotenje programske opreme in prenosa podatkov za dele krmilnega sistema, povezane z varnostjo (ISO/DIS 19014-4:2024)
General Information
Relations
Standards Content (Sample)
SLOVENSKI STANDARD
01-marec-2024
Stroji za zemeljska dela - Funkcijska varnost - 4. del: Načrtovanje in vrednotenje
programske opreme in prenosa podatkov za dele krmilnega sistema, povezane z
varnostjo (ISO/DIS 19014-4:2024)
Earth-moving machinery - Functional safety - Part 4: Design and evaluation of software
and data transmission for safety-related parts of the control system (ISO/DIS 19014-
4:2024)
Erdbaumaschinen - Funktionale Sicherheit - Teil 4: Gestaltung und Beurteilung von
Software und Datenübertragung für sicherheitsrelevante Steuerungssysteme (ISO/DIS
19014-4:2024)
Engins de terrassement - Sécurité fonctionnelle - Partie 4: Conception et évaluation du
logiciel et de la transmission des données pour les parties relatives à la sécurité du
système de commande (ISO/DIS 19014-4:2024)
Ta slovenski standard je istoveten z: prEN ISO 19014-4
ICS:
35.080 Programska oprema Software
53.100 Stroji za zemeljska dela Earth-moving machinery
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.
DRAFT INTERNATIONAL STANDARD
ISO/DIS 19014-4
ISO/TC 127/SC 2 Secretariat: ANSI
Voting begins on: Voting terminates on:
2024-01-26 2024-04-19
Earth-moving machinery — Functional safety —
Part 4:
Design and evaluation of software and data transmission
for safety-related parts of the control system
Engins de terrassement — Sécurité fonctionnelle —
Partie 4: Conception et évaluation du logiciel et de la transmission des données pour les parties relatives à
la sécurité du système de commande
ICS: 53.100
This document is circulated as received from the committee secretariat.
THIS DOCUMENT IS A DRAFT CIRCULATED
FOR COMMENT AND APPROVAL. IT IS
ISO/CEN PARALLEL PROCESSING
THEREFORE SUBJECT TO CHANGE AND MAY
NOT BE REFERRED TO AS AN INTERNATIONAL
STANDARD UNTIL PUBLISHED AS SUCH.
IN ADDITION TO THEIR EVALUATION AS
BEING ACCEPTABLE FOR INDUSTRIAL,
TECHNOLOGICAL, COMMERCIAL AND
USER PURPOSES, DRAFT INTERNATIONAL
STANDARDS MAY ON OCCASION HAVE TO
BE CONSIDERED IN THE LIGHT OF THEIR
POTENTIAL TO BECOME STANDARDS TO
WHICH REFERENCE MAY BE MADE IN
Reference number
NATIONAL REGULATIONS.
ISO/DIS 19014-4:2024(E)
RECIPIENTS OF THIS DRAFT ARE INVITED
TO SUBMIT, WITH THEIR COMMENTS,
NOTIFICATION OF ANY RELEVANT PATENT
RIGHTS OF WHICH THEY ARE AWARE AND TO
PROVIDE SUPPORTING DOCUMENTATION. © ISO 2024
ISO/DIS 19014-4:2024(E)
DRAFT INTERNATIONAL STANDARD
ISO/DIS 19014-4
ISO/TC 127/SC 2 Secretariat: ANSI
Voting begins on: Voting terminates on:
Earth-moving machinery — Functional safety —
Part 4:
Design and evaluation of software and data transmission
for safety-related parts of the control system
Engins de terrassement — Sécurité fonctionnelle —
Partie 4: Conception et évaluation du logiciel et de la transmission des données pour les parties relatives à
la sécurité du système de commande
ICS: 53.100
This document is circulated as received from the committee secretariat.
THIS DOCUMENT IS A DRAFT CIRCULATED
FOR COMMENT AND APPROVAL. IT IS
© ISO 2024
ISO/CEN PARALLEL PROCESSING
THEREFORE SUBJECT TO CHANGE AND MAY
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
NOT BE REFERRED TO AS AN INTERNATIONAL
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on STANDARD UNTIL PUBLISHED AS SUCH.
the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below
IN ADDITION TO THEIR EVALUATION AS
or ISO’s member body in the country of the requester. BEING ACCEPTABLE FOR INDUSTRIAL,
TECHNOLOGICAL, COMMERCIAL AND
ISO copyright office
USER PURPOSES, DRAFT INTERNATIONAL
CP 401 • Ch. de Blandonnet 8
STANDARDS MAY ON OCCASION HAVE TO
BE CONSIDERED IN THE LIGHT OF THEIR
CH-1214 Vernier, Geneva
POTENTIAL TO BECOME STANDARDS TO
Phone: +41 22 749 01 11
WHICH REFERENCE MAY BE MADE IN
Reference number
Email: copyright@iso.org
NATIONAL REGULATIONS.
Website: www.iso.org ISO/DIS 19014-4:2023(E)
RECIPIENTS OF THIS DRAFT ARE INVITED
Published in Switzerland
TO SUBMIT, WITH THEIR COMMENTS,
NOTIFICATION OF ANY RELEVANT PATENT
RIGHTS OF WHICH THEY ARE AWARE AND TO
ii
PROVIDE SUPPORTING DOCUMENTATION. © ISO 2023
ISO/DIS 19014-4:2023(E)
Contents Page
Foreword .iv
Introduction .v
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
4 Software development . 4
4.1 General . 4
4.2 Planning . 5
4.3 Artifacts . 6
4.4 Software safety requirements specification . 7
4.5 Software architecture design . 8
4.6 Software module design and coding . 8
4.7 Language and tool selection . 9
4.8 Software module testing . 10
4.9 Software module integration and testing . 11
4.10 Software validation .12
5 Software-based parameterization .13
5.1 General .13
5.2 Data integrity . 13
5.3 Software-based parameterization verification . 13
6 Transmission protection of safety-related messages on bus systems .13
7 Independence by software partitioning .15
7.1 General . 15
7.2 Several partitions within a single microcontroller . 16
7.3 Several partitions within the scope of an ECU network . 17
8 Information for use .17
8.1 General . 17
8.2 Instruction handbook. 17
Annex A (informative) Description of software methods/measures .18
Annex B (normative) Software validation test environments .31
Annex C (informative) Data integrity assurance calculation .34
Annex D (informative) Methods and smeasures for transmission protection.36
Annex E (informative) Methods and measures for data protection internal to
microcontroller .38
Annex ZA (informative) Relationship between this document and the essential
requirements of EU Directive 2006/42/EC aimed to be covered .40
Bibliography .41
iii
ISO/DIS 19014-4:2023(E)
Foreword
ISO (the International Organization for Standardization) is a worldwide federation of national standards
bodies (ISO member bodies). The work of preparing International Standards is normally carried out
through ISO technical committees. Each member body interested in a subject for which a technical
committee has been established has the right to be represented on that committee. International
organizations, governmental and non-governmental, in liaison with ISO, also take part in the work.
ISO collaborates closely with the International Electrotechnical Commission (IEC) on all matters of
electrotechnical standardization.
The procedures used to develop this document and those intended for its further maintenance are
described in the ISO/IEC Directives, Part 1. In particular, the different approval criteria needed for the
different types of ISO documents should be noted. This document was drafted in accordance with the
editorial rules of the ISO/IEC Directives, Part 2 (see http://www.iso.org/directives).
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. ISO shall not be held responsible for identifying any or all such patent rights. Details of
any patent rights identified during the development of the document will be in the Introduction and/or
on the ISO list of patent declarations received (see http://www.iso.org/patents).
Any trade name used in this document is information given for the convenience of users and does not
constitute an endorsement.
For an explanation of the voluntary nature of standards, the meaning of ISO specific terms and
expressions related to conformity assessment, as well as information about ISO's adherence to
the World Trade Organization (WTO) principles in the Technical Barriers to Trade (TBT), see
http://www.iso.org/iso/foreword.html.
This document was prepared by ISO/TC 127, Earth-moving machinery, Subcommittee SC 2, Safety,
ergonomics and general requirements, in collaboration with the European Committee for Standardization
(CEN) Technical Committee CEN/TC 151, Construction equipment and building material machines - Safety,
in accordance with the Agreement on technical cooperation between ISO and CEN (Vienna Agreement).
This first edition of ISO 19014-4, together with other parts in the ISO 19014 series, cancels and replaces
ISO 15998:2008 and ISO/TS 15998-2:2012, which have been technically revised.
The main changes compared to the previous documents are as follows:
— Detailed Annex ZA included;
— Referenced standards dated.
A list of all parts in the ISO 19014 series can be found on the ISO website.
Any feedback or questions on this document should be directed to the user’s national standards body. A
complete listing of these bodies can be found at www.iso.org/members.html.
iv
ISO/DIS 19014-4:2023(E)
Introduction
This document addresses systems comprising any combination of electrical, electronic, and
programmable electronic components [electrical/electronic/programmable electronic systems (E/E/
PES)] used for functional safety in earth-moving machinery.
T
...
Questions, Comments and Discussion
Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.