Hi,
My customer use TMS570LS2124 to achieve SIL3 target.
According to the document of SPNU511B_Safety Manual for TMS570LS31x and TMS570LS21x Hercules ARM Safety Critical Microcontrollers.pdf and Hercules FMEDA LS31x_LS21x_v1.3.xlsx. We have adopted certain diagnosis for selected function, so that each function in FMEDA can achieve 99% diagnostic coverage.
However, the 3rd party TUV SUD says that all functions such as efu, lbist, pbist need to be fully selected, otherwise, can't meet SIL3 ability.
For example, my customer already enable boot time PBIST check for RAM(RAM7A), but do not enable periodic PBIST check for RAM(RAM7B).
Although the final SFF can reach 99.92%, but TUV SUD believes that the diagnosis is still insufficient and needs to be fully enabled.
Therefore, I would like to ask when this security chip is applied to SIL3 applications. Except for the safety parameters in FMEDA that meet the requirements of IEC 61508, are there any mandatory or necessary requirements? This information is not fully explained in the safety manual. Thanks.