
332 Cyber-Physical Systems: From Theory to Practice
TABLE 13.3
Safety Requirements on Application Software and Middleware Software Components
FSR
FUEL
If actualParkingBrake[Bool] is false, then indicatedFuelVolume[%], shown by the fuel gauge, is less than
or equal to actualFuelVolume[%]{TSR
Tank
, FSR
EMS
, FSR
ICL
,TSR
ANIN
,TSR
1−2
ICAN
,TSR
1−2
OCAN
}.
TSR
ANIN
A fuelSensorRes_Val_F32[%] corresponds to the floater position sensedFuelLevel[%], sensed by the fuel
sensor; or fuelSensorRes_SS_U08[Enum] has the value ERR {TSR
ADCC
, HWSR
fuelSensor
}.
TSR
1
ICAN
If it has not passed more than 0.3s
a
since the last time CAN1 was equal to CAN message FuelEconomy
containing CAN