Wooden panels and beltless bench seating have gone the way of the dinosaurs, and vehicles have become increasingly sophisticated with every passing year. A major part of that? Embedded systems and automotive software. So why have functional safety requirements become more standardized while automotive software standards remain touch and go?
ISO 26262, the functional safety standard for vehicles broadly adopted worldwide, incorporates extensive safety analysis methods that account for random errors. But ISO 26262 largely fails to account for systematic errors, including software flaws. ASPICE, or Automotive SPICE, is the most current standard for automotive software best practices, but it is yet to be globally adopted. Read on for a deep dive into this essential automotive software guideline and how to go about meeting it.
Before we can understand ASPICE, we must tackle SPICE. Software Process Improvement and Capability dEtermination (also known as ISO/IEC 15504, or SPICE) is a framework for software process assessment developed by the ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) in 1993. Its purpose is to evaluate development factors that allow assessors to determine an organization's capacity for effectively and reliably delivering software products.
ASPICE, or Automotive SPICE, applies this framework to the automotive industry, which comes with its own critical requirements. ASPICE differs from functional safety standards (namely, ISO 26262) in that it covers how design is conducted if safety is not a concern. To ensure effective safety practices, automotive suppliers should incorporate both ASPICE and ISO 26262 guidelines. Without adhering to both, you open yourself up to various risks and potential failures.
Fundamentally, ASPICE defines best practices for embedded software in automotive development. It allows teams to organize their projects and approaches to ensure manageability, reliability, and deliverables. While ASPICE has not been conclusively mandated, every automotive supplier could at some point be assessed for ASPICE compliance. As a result, it’s a smart choice to begin integrating the associated practices as early as possible. Some organizations, such as the VDA (Verband der Automobilindustrie – Association Of Automotive Industry), have already set ASPICE as the standard process model, and others are likely not far behind.
ASPICE builds on the V-Model, also known as the Verification and Validation model, which requires a testing phase corresponding to each stage of development. It is a disciplined model that requires rigorous evaluation to ensure continuous assessment and development. This approach benefits both providers, who can eliminate potential problems in initial stages, and clients, who can assume a meticulous approach to both ideation and development. An additional goal of ASPICE is to ensure continuous innovation and product development at every stage.
The ASPICE process is best understood visually as a "V" shape, with two prongs illustrating the complete and continuous development process.
The initial phases, or the left side of the V, include:
The secondary phases, or the right side of the V, include:
Each of these points includes a corresponding testing phase, plus additional traceability and management processes. Suppliers can earn ASPICE certification according to these standardized achievement phases, and their assessment will result in specific ASPICE levels that clients take into account. The ASPICE standard is scored from 0-5, with definitions as follows:
While the ASPICE process may seem daunting, ASPICE itself is largely generic. It does not dictate specific tools or techniques, but rather your approach to the internally selected development methods. Many clients accept ASPICE Level 2, and Level 3 is the universal standard for excellence. Levels 4 and 5 are aspirational achievements usually attempted by massive corporations. You don’t need to fear ASPICE, but rather treat it as a guideline to help you improve your production processes and become a more efficient automotive supplier.
Organizations can only learn by attempting to improve their standards. Without a standard for achievement, it would be challenging to determine structured goals within the industry. ASPICE standards provide a benchmark for suppliers to ensure the stability of their processes and products, leading to an overall improvement in an industry where any mistake could cost you dearly.
ASPICE certification requires both suppliers and clients to be rigorous about the products they put on the road, and that alone will improve the automotive standard. But ASPICE steps beyond that by validating feedback and innovation. Improved standards would lead to continuous innovation in the automotive industry. If every company produced work products based on established criteria and qualified input, and re-evaluated at every development phase, the resulting standards and process improvement would impact not only developers but consumers en masse. In safety-critical industries, it is not only advisable but essential to integrate scrupulous standards for product development – and ASPICE is the set of standards that could make that happen.
ASPICE standards also have the potential to reduce labor time and costs by integrating the testing process throughout production, limiting dangerous missteps and reducing product recalls. If every organization followed these standards, suppliers could identify problems and manage risks before a vehicle goes to market. ASPICE also improves client-facing processes, allowing suppliers to avoid miscommunication and provide greater transparency from the get-go. Wide-scale adoption could optimize the automotive industry at a pace that has not been witnessed since the advent of the assembly line.
Intimidated by ASPICE? Don't be. ASPICE is not a concrete set of systems and processes. It is a rough guideline to help suppliers develop a set of best practices that work for them. You can – and should – incorporate ASPICE standards at every level of production. The most important task is to understand the phases and certification levels. Then follow a few easy steps to assess whether your team is ASPICE compliant:
Hanna Taller is a content creator for PTC’s ALM Marketing team. She is responsible for increasing brand awareness and driving thought leadership for Codebeamer. Hanna is passionate about creating insightful content centered around ALM, life sciences, automotive technology, and avionics.