TMS570LS1114: FMEDA

Robert Priestley

Part Number: TMS570LS1114
Other Parts Discussed in Thread: TPS65381A-Q1, HALCOGEN

Dear TI Functional Safety Support,

We are currently completing an FMEDA and hardware safety analysis for a railway warning controller platform in support of an IEC 61508 SIL 3 product safety case, with alignment to EN 50126, EN 50129, and EN 50716.

The design uses the TMS570LS1114 MCU together with the TPS65381A-Q1 watchdog / PMIC as part of the core vital architecture. We already hold several TI safety documents and certificates, however we now need to confirm the exact quantitative and assumptions-based safety-package data required to finalise the FMEDA and downstream hardware metrics.

Could you please provide, or confirm availability of, the following for the TMS570LS1114 / TMS570LS12x/11x family:

The current applicable safety manual revision for the exact part/family baseline.
The quantitative FMEDA / safety metrics package, including the documents referenced by the safety manual for chip-level failure rates and detailed quantitative safety analysis.
SPNU530 and SPNU531, or the current equivalent documents if these have been superseded.
The applicable TÜV certificate and any supporting certification report relevant to IEC 61508 SIL 3 use.
Confirmation of the expected diagnostic assumptions for the safety case, including lockstep CPU compare, flash ECC, SRAM ECC, LBIST, PBIST, ESM, voltage/clock monitoring, and external watchdog supervision.
Confirmation whether a used-function FMEDA partition or tailoring method is available for our application.

For the TPS65381A-Q1, could you please confirm:

The current applicable FMEDA / safety package revision.
The used-function subset relevant to watchdog Q&A, MCU rail monitoring, POR/reset behaviour, fault signalling, and mux / fail-safe flasher handover assumptions.
Any diagnostic coverage assumptions that depend on periodic servicing, software interaction, or proof-test interval.

In addition, please advise availability of the following software-support items where relevant to the TMS570LS1114 safety case:

SafeTI Hercules Diagnostic Library CSP
HALCoGen CSP
TI compiler qualification kit

Our intent is to use TI device-specific safety-package data as the primary quantitative basis for the MCU and watchdog rows in the WLX Controller FMEDA, rather than relying on generic handbook estimates.

Please let me know the correct request path, NDA requirements if any, and whether a local FAE or functional safety contact should be engaged for this package.

Best regards,

Robert

2 months ago

0 jagadish gundavarapu 2 months ago

TI__Guru* 77086 points

Hi Robert,

Apologies for the delayed response.

I can provide information on the availability of safety documentation for the TMS570LS1114/TMS570LS12x/11x family and TPS65381A-Q1 components.

TMS570LS1114 / TMS570LS12x/11x Family

Safety Manual:
- Current applicable safety manual is available as SPNU550B RevB
- Safety Manual for TMS570LS12x/11x Hercules ARM Safety Critical MCUs (Rev. B)

Quantitative FMEDA / Safety Metrics:
- Available to customers under NDA
- Contains detailed failure rates and safety analysis referenced in the safety manual
- Contact your TI sales representative or functional safety team for access
SPNU530 and SPNU531:
- These documents (Diagnostic Library User Guide and Safety Library User Guide) are available
- May have been updated with newer versions; check the TI website for current equivalents
TÜV Certification:
- IEC 61508 SIL 3 certification is available
- TÜV certificate can be found in product page: spnq002d.pdf
Safety Case Diagnostic Assumptions:
- All mentioned safety mechanisms are part of the safety case:
  - Lockstep CPU comparison
  - Flash ECC
  - SRAM ECC
  - LBIST/PBIST
  - ESM (Error Signaling Module)
  - Voltage/clock monitoring
  - External watchdog supervision requirements
Used-Function FMEDA Tailoring:
- TI does offer tailoring methods for application-specific FMEDA. The Hercules FMEDA spreadsheet provides a sheet for Safety Mechanism Tailoring.

TPS65381A-Q1

Current FMEDA/Safety Package:
- Available under NDA
- Contact TI sales representative for latest revision
Used-Function Subset:
- Information available for watchdog Q&A, MCU rail monitoring, POR/reset behavior
- Fault signaling and fail-safe flasher handover assumptions are documented
- Available in the safety package under NDA
Diagnostic Coverage Assumptions:
- Documentation includes information on periodic servicing requirements
- Software interaction dependencies are documented
- Proof-test interval requirements are specified in the safety package

Software Support Items

All of the following are available for the TMS570LS1114 safety case:

SafeTI Hercules Diagnostic Library CSP (Certified Support Package)
HALCoGen CSP
TI compiler qualification kit

These can be accessed through the TI Resource Explorer or by contacting your TI representative.

For accessing any NDA-required documentation or to request specific safety packages, please contact your TI sales representative or the TI functional safety team directly.

--
Thanks & regards,
Jagadish.

0 Robert Priestley 2 months ago in reply to jagadish gundavarapu

Prodigy 10 points

Hi Jagadish

How do we contact the functional safety team directly ?

We already have a NDA in place from 2021 and require access to

SPNU530

SPNU531

regards

Robert

0 jagadish gundavarapu 2 months ago in reply to Robert Priestley