Motor Industry Software Reliability Association

Last updated December 14, 2024

The Motor Industry Software Reliability Association (MISRA) is an organization that produces guidelines for the software developed for electronic components used in the automotive industry.^[1] It is a collaboration between numerous vehicle manufacturers, component suppliers and engineering consultancies.

Aim

The aim of this organization is to provide advice in questions of quality assurance mainly to the automotive industry for the creation and application of safe, reliable software within vehicles.^[2] The mission statement of MISRA is "To provide assistance to the automotive industry in the application and creation within vehicle systems of safe and reliable software".^[3] The safety requirements of the software used in control units of Automobiles is specific as compared to that of other industries and devices.

MISRA creates, reviews and publishes (sells) standards, such as the MISRA C Coding Standard for the C programming language, first published in 1998.

History

MISRA was formed in the 1990s by a consortium of organizations formed in response to the UK Safety Critical Systems Research Programme. This program was supported by the Department of Trade and Industry and the Engineering and Physical Sciences Research Council. Another program was "SafeIT".

Subsequently MISRA published its first guide, "Development guidelines for vehicle based software", which is considered a foundational element of functional safety by the engineering community. This was roughly ten years before the creation of the ISO 26262 standard.

Organization (MISRA Consortium)

Since 2021, MISRA is managed by the MISRA Consortium Limited, an independent not-for-profit entity.^[4]^[5]

The Steering Committee is as follows (2024).

Steering Committee

Bentley Motors
Delphi Diesel Systems
Ford Motor Company Ltd
HORIBA MIRA Ltd
Peter Jesty Consulting Ltd
Ricardo plc
Visteon Engineering Services Ltd
ZF (and former TRW, which was acquired by ZF)

Former members are: Protean Electric Ltd^[6]

Activities

According to MISRA, the following activities are pursued:

MISRA Autocode
MISRA C
MISRA C++
MISRA Safety Argument
Functional Safety

Guidelines

MISRA guidelines are a set of development guidelines to ensure safe and reliable development of control software for electronic control units (ECUs). The primary focus of the MISRA guidelines is error prevention, not programming style. Among other things, the guidelines are intended to guide and support the following objectives

Ensure safety
Ensure security^[7]
Bring in robustness, reliability to the software
Human safety must take precedence when in conflict with security of property
Consider both random and systematic faults in system design
Demonstrate robustness, not just rely on the absence of failures
Application of safety considerations across the design, manufacture, operation, servicing and disposal of products

As with many standards (for example, ISO, BSI, RTCA), the MISRA guideline documents are not free to users or implementers.^[8]

Coding guidelines

MISRA guidelines are primarily focused and derived for the C and C++ programming languages. The main standard is known as "MISRA C" and has been updated several times.

Table 1: Overview of MISRA guidelines C/C++
Language	Standard (year)	Exact specifier	Edition	Incremental Updates	Features
C	1998	MISRA C:1998	1st	-	Original guidance emerging from the automotive industry.
	2004	MISRA C:2004	2nd	-	Add user feedback and cross-industry applications
	2012	MISRA C:2012	3rd	-	Add support for C99 language features, improved strong typing model, analysis keywords
	2019	MISRA C:2019		1st Revision based on MISRA C:2012 (3rd) with amendment 1 (AMD1) and technical corrigendum 1 (TC1)	Add additional security guidelines
	2023	MISRA C:2023		2nd Revision based on MISRA C:2012 (3rd) with AMD2, AMD3, and AMD4, plus TC2	Add C11 and C18 language features

	2008				Initial launch of standard
C++	2023	MISRA C++:2023			Guidelines for the use C++17 in critical systems

Weblinks

Official website

Related Research Articles

Safety engineering is an engineering discipline which assures that engineered systems provide acceptable levels of safety. It is strongly related to industrial engineering/systems engineering, and the subset system safety engineering. Safety engineering assures that a life-critical system behaves as needed, even when components fail.

A safety-critical system or life-critical system is a system whose failure or malfunction may result in one of the following outcomes:

Automotive engineering, along with aerospace engineering and naval architecture, is a branch of vehicle engineering, incorporating elements of mechanical, electrical, electronic, software, and safety engineering as applied to the design, manufacture and operation of motorcycles, automobiles, and trucks and their respective engineering subsystems. It also includes modification of vehicles. Manufacturing domain deals with the creation and assembling the whole parts of automobiles is also included in it. The automotive engineering field is research intensive and involves direct application of mathematical models and formulas. The study of automotive engineering is to design, develop, fabricate, and test vehicles or vehicle components from the concept stage to production stage. Production, development, and manufacturing are the three major functions in this field.

OSEK is a standards body that has produced specifications for an embedded operating system, a communications stack, and a network management protocol for automotive embedded systems. It has produced related specifications, namely AUTOSAR. OSEK was designed to provide a reliable standard software architecture for the various electronic control units (ECUs) throughout a car.

In the context of software engineering, software quality refers to two related but distinct notions:

In functional safety, safety integrity level (SIL) is defined as the relative level of risk-reduction provided by a safety instrumented function (SIF), i.e. the measurement of the performance required of the SIF.

Information security standards are techniques generally outlined in published materials that attempt to protect a user's or organization's cyber environment. This environment includes users themselves, networks, devices, all software, processes, information in storage or transit, applications, services, and systems that can be connected directly or indirectly to networks.

IEC 61508 is an international standard published by the International Electrotechnical Commission (IEC) consisting of methods on how to apply, design, deploy and maintain automatic protection systems called safety-related systems. It is titled Functional Safety of Electrical/Electronic/Programmable Electronic Safety-related Systems.

IEC standard 61511 is a technical standard which sets out practices in the engineering of systems that ensure the safety of an industrial process through the use of instrumentation. Such systems are referred to as Safety Instrumented Systems. The title of the standard is "Functional safety - Safety instrumented systems for the process industry sector".

Software safety is an engineering discipline that aims to ensure that software, which is used in safety-related systems, does not contribute to any hazards such a system might pose. There are numerous standards that govern the way how safety-related software should be developed and assured in various domains. Most of them classify software according to their criticality and propose techniques and measures that should be employed during the development and assurance:

In functional safety a safety instrumented system (SIS) is an engineered set of hardware and software controls which provides a protection layer that shuts down a chemical, nuclear, electrical, or mechanical system, or part of it, if a hazardous condition is detected.

MISRA C is a set of software development guidelines for the C programming language developed by The MISRA Consortium. Its aims are to facilitate code safety, security, portability and reliability in the context of embedded systems, specifically those systems programmed in ISO C / C90 / C99.

Functional safety is the part of the overall safety of a system or piece of equipment that depends on automatic protection operating correctly in response to its inputs or failure in a predictable manner (fail-safe). The automatic protection system should be designed to properly handle likely systematic errors, hardware failures and operational/environmental stress.

LDRA, previously known as the Liverpool Data Research Associates, is a privately held company producing software analysis, testing, and requirements traceability tools for the public and private sectors. It is involved static and dynamic software analysis.

ISO 26262, titled "Road vehicles – Functional safety", is an international standard for functional safety of electrical and/or electronic systems that are installed in serial production road vehicles, defined by the International Organization for Standardization (ISO) in 2011, and revised in 2018.

TargetLink is a software for automatic code generation, based on a subset of Simulink/Stateflow models, produced by dSPACE GmbH. TargetLink requires an existing MATLAB/Simulink model to work on. TargetLink generates both ANSI-C and production code optimized for specific processors. It also supports the generation of AUTOSAR-compliant code for software components for the automotive sector. The management of all relevant information for code generation takes place in a central data container, called the Data Dictionary.

ETAS GmbH is a German company which designs tools for the development of embedded systems for the automotive industry and other sectors of the embedded industry. ETAS is 100% owned by Robert Bosch GmbH.

Parasoft C/C++test is an integrated set of tools for testing C and C++ source code that software developers use to analyze, test, find defects, and measure the quality and security of their applications. It supports software development practices that are part of development testing, including static code analysis, dynamic code analysis, unit test case generation and execution, code coverage analysis, regression testing, runtime error detection, requirements traceability, and code review. It's a commercial tool that supports operation on Linux, Windows, and Solaris platforms as well as support for on-target embedded testing and cross compilers.

Automotive Safety Integrity Level (ASIL) is a risk classification scheme defined by the ISO 26262 - Functional Safety for Road Vehicles standard. This is an adaptation of the Safety Integrity Level (SIL) used in IEC 61508 for the automotive industry. This classification helps defining the safety requirements necessary to be in line with the ISO 26262 standard. The ASIL is established by performing a risk analysis of a potential hazard by looking at the Severity, Exposure and Controllability of the vehicle operating scenario. The safety goal for that hazard in turn carries the ASIL requirements.

Cantata++, commonly referred to as Cantata in newer versions, is a commercial computer program designed for dynamic testing, with a focus on unit testing and integration testing, as well as run time code coverage analysis for C and C++ programs. It is developed and marketed by QA Systems, a multinational company with headquarters in Waiblingen, Germany.

References

↑ Ward, D.D. (2006). "MISRA standards for automotive software". 2nd IEE Conference on Automotive Electronics. London, UK: IEE. pp. 5–18. doi:10.1049/ic:20060570 (inactive 7 December 2024). ISBN 978-0-86341-609-5.{{cite book}}: CS1 maint: DOI inactive as of December 2024 (link)
↑ Pagès, Louis César (2021). "Motor Industry Software Reliability Association (MISRA): MISRA C for Software Development HIS Seminar: Standards and Certification". Conference: Motor Industry Software Reliability Association (MISRA): MISRA C for Software Development HIS Seminar: Standards and Certification. doi:10.13140/RG.2.2.15024.79369.
↑ "MISRA" . Retrieved 16 September 2024.
↑ "THE MISRA CONSORTIUM LIMITED overview - Find and update company information - GOV.UK". find-and-update.company-information.service.gov.uk. Retrieved 16 September 2024.
↑ "MISRA Website" . Retrieved 16 September 2024.
↑ "MISRA Web site > MISRA Home > Who are we?". www.misra.org.uk. Retrieved 24 April 2024.
↑ Bagnara, Roberto (2017). "MISRA C, for Security's Sake!". arXiv: 1705.03517 [cs.SE].
↑ "MISRA Web site > Buy online". www.misra.org.uk. Retrieved 23 February 2021.

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.

[1] Ward, D.D. (2006). "MISRA standards for automotive software". 2nd IEE Conference on Automotive Electronics. London, UK: IEE. pp. 5–18. doi:10.1049/ic:20060570 (inactive 7 December 2024). ISBN 978-0-86341-609-5.{{cite book}}: CS1 maint: DOI inactive as of December 2024 (link)

[2] Pagès, Louis César (2021). "Motor Industry Software Reliability Association (MISRA): MISRA C for Software Development HIS Seminar: Standards and Certification". Conference: Motor Industry Software Reliability Association (MISRA): MISRA C for Software Development HIS Seminar: Standards and Certification. doi:10.13140/RG.2.2.15024.79369.

[misra-3] "MISRA" . Retrieved 16 September 2024.

[4] "THE MISRA CONSORTIUM LIMITED overview - Find and update company information - GOV.UK". find-and-update.company-information.service.gov.uk. Retrieved 16 September 2024.

[5] "MISRA Website" . Retrieved 16 September 2024.

[:0-6] "MISRA Web site > MISRA Home > Who are we?". www.misra.org.uk. Retrieved 24 April 2024.

[7] Bagnara, Roberto (2017). "MISRA C, for Security's Sake!". arXiv: 1705.03517 [cs.SE].

[8] "MISRA Web site > Buy online". www.misra.org.uk. Retrieved 23 February 2021.

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]