CN108153285A - Automotive safety monitoring method, device, storage medium and system - Google Patents
Automotive safety monitoring method, device, storage medium and system Download PDFInfo
- Publication number
- CN108153285A CN108153285A CN201711467533.0A CN201711467533A CN108153285A CN 108153285 A CN108153285 A CN 108153285A CN 201711467533 A CN201711467533 A CN 201711467533A CN 108153285 A CN108153285 A CN 108153285A
- Authority
- CN
- China
- Prior art keywords
- monitoring
- monitoring programme
- programme
- automotive safety
- kinetic parameter
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B23/00—Testing or monitoring of control systems or parts thereof
- G05B23/02—Electric testing or monitoring
- G05B23/0205—Electric testing or monitoring by means of a monitoring system capable of detecting and responding to faults
- G05B23/0208—Electric testing or monitoring by means of a monitoring system capable of detecting and responding to faults characterized by the configuration of the monitoring system
- G05B23/0213—Modular or universal configuration of the monitoring system, e.g. monitoring system having modules that may be combined to build monitoring program; monitoring system that can be applied to legacy systems; adaptable monitoring system; using different communication protocols
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B2219/00—Program-control systems
- G05B2219/20—Pc systems
- G05B2219/24—Pc safety
- G05B2219/24065—Real time diagnostics
Landscapes
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Engineering & Computer Science (AREA)
- Automation & Control Theory (AREA)
- Testing And Monitoring For Control Systems (AREA)
- Electric Propulsion And Braking For Vehicles (AREA)
Abstract
The present invention discloses a kind of automotive safety monitoring method, device, storage medium and system, wherein, the automotive safety monitoring method includes:First monitoring programme monitors hardware module, parameters of electric power and the kinetic parameter of vehicle, and the hardware module, parameters of electric power and kinetic parameter are diagnosed and the output valve of the kinetic parameter is calculated, and calculated value is exported to controller;Whether the calculating process that the second monitoring programme monitors the kinetic parameter correctly performs, and the output valve of the kinetic parameter control that the calculating process is not performing properly is calculated and is constrained;Third monitoring programme monitoring second monitoring programme performs sequence, and make corresponding response according to monitoring result.In technical solution provided by the invention, three layers of monitoring, the operation of effective monitoring programme are carried out by the software and hardware of the electric system to vehicle, it is ensured that vehicle safety is run.
Description
Technical field
The present invention relates to automotive safety monitoring technology field, more particularly to a kind of automotive safety monitoring method, device, storage
Medium and system.
Background technology
The electric machine control system of existing electric vehicle has certain security monitoring function, overvoltage that can be to system, mistake
The failures such as stream, excess temperature, hypervelocity are monitored, while in software levels there is the methods of software watchdog, software trap to be transported to software
Row is monitored.But these measures are not enough, in some cases, some failures still can not be monitored with mistake, such as software
Normal operation, but mistake occurs in operation result, and the data of some storage unit are destroyed by external force and changed etc..These fail to supervise
Mistake and the failure controlled also bring along safety-related problem, particularly in automobile motor control system, to the peace of entire vehicle
Full requirement is stringenter, needs more fully security monitoring function, it is ensured that vehicle safe operation in the process of moving.
Invention content
The main object of the present invention is to propose automotive safety monitoring method, device, storage medium and system, it is intended to realization pair
The software and hardware of the electric system of vehicle carries out three layers of monitoring, to ensure that its software and hardware is normal, so that it is guaranteed that vehicle safety is run.
To achieve the above object, the present invention proposes a kind of automotive safety monitoring method, including:
First monitoring programme monitors hardware module, parameters of electric power and the kinetic parameter of vehicle, and to the hardware module, electricity
Force parameter and kinetic parameter are diagnosed and the output valve of the kinetic parameter are calculated, and by calculated value export to
Controller;
Whether the calculating process that the second monitoring programme monitors the kinetic parameter correctly performs, and to the calculating process not
The output valve control of the kinetic parameter correctly performed, which calculates, to be constrained;
Third monitoring programme monitoring second monitoring programme performs sequence, and make corresponding sound according to monitoring result
It should.
Preferably, the hardware module includes I/O module, A/D module, PWM module, WatchDog modules and Bootloader
Module;
The parameters of electric power includes the voltage, electric current, temperature of battery system and charging system;
The kinetic parameter includes vehicle demand torque, the aperture of accelerator pedal, brake pedal aperture, parking brake aperture, shelves
Position and motor speed.
Preferably, the step of whether calculating process of the second monitoring programme monitoring kinetic parameter correctly performs is wrapped
It includes:
By the way that the calculated value of the kinetic parameter and preset binding occurrence are compared, kinetic parameter described in control constraints
Output in zone of reasonableness;
If calculated value<=binding occurrence, then the calculating process sequence of first monitoring programme perform and export described dynamic
The calculated value of force parameter;
If calculated value>Binding occurrence, then second monitoring programme first monitoring programme is controlled to export the power
The binding occurrence of parameter.
Preferably, the step of execution sequence of the third monitoring programme monitoring second monitoring programme includes:
Timing sends test assignment to second monitoring programme;
Receive the test result that second monitoring programme is tested out according to pre-defined rule;
The test result of second monitoring programme with preset value is compared and makes corresponding response.
Preferably, the pre-defined rule includes:
Second monitoring programme is provided with visits point, institute with the corresponding multiple tests of the execution of calculating process sequence
It states multiple tests and visits the dot sequency execution test assignment.
Preferably, the test result by second monitoring programme is compared with preset value and makes corresponding sound
The step of answering includes:
The test result of second monitoring programme is compared with preset value;
When the test result is consistent with the preset value, the third monitoring programme enters next round monitoring link;
The test result and the preset value are inconsistent, and first monitoring programme carries out reset operation.
Preferably, the step of third monitoring programme controls first monitoring programme to carry out after reset operation is also wrapped
It includes:
After first monitoring programme resets successfully, first monitoring programme, second monitoring programme and described
Third monitoring programme sequence performs;
The first monitoring programme reset is unsuccessful, and the third monitoring programme enters fault alarm pattern.
In addition, to achieve the above object, the present invention also proposes a kind of automobile safety monitoring device, the automotive safety monitoring
Device includes:The automotive safety prison that memory, processor and being stored in can be run on the memory and on the processor
Program is controlled, the automotive safety monitoring programme realizes the step of automotive safety monitoring method as described above when being executed by processor
Suddenly.
In addition, to achieve the above object, the present invention also proposes a kind of computer readable storage medium, described computer-readable
Automotive safety monitoring programme is stored on storage medium, as above institute is realized when the automotive safety monitoring programme is executed by processor
The step of automotive safety monitoring method stated.
In addition, to achieve the above object, the present invention also proposes a kind of automotive safety monitoring system, including main control chip and pair
Chip, the main control chip to store first monitoring programme and second monitoring programme, the pair chip with it is described
Main control chip communication connection, and the secondary chip is stored with the third monitoring programme, the automotive safety monitoring programme is by institute
The step of automotive safety monitoring method as described above being realized when stating main control chip and the secondary chip execution.
In technical solution provided by the invention, three layers of monitoring are carried out by the software and hardware of the electric system to vehicle, layer by layer
It interlocks, the key link of key monitoring program easy break-down reduces the hidden danger that monitoring programme chip failure is brought, it is ensured that
Control software and vehicle safety operation.The operation of effective monitoring programme is capable of in this three layers monitoring, when program failure or its
It can be found in time when performing sequence error and program is made to enter safe working condition and then effectively ensures that vehicle safety is run.
Description of the drawings
In order to illustrate more clearly about the embodiment of the present invention or technical scheme of the prior art, to embodiment or will show below
There is attached drawing needed in technology description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this
Some embodiments of invention, for those of ordinary skill in the art, without creative efforts, can be with
Structure according to these attached drawings obtains other attached drawings.
Fig. 1 is the structural representation of the automobile safety monitoring device of hardware running environment that the embodiment of the present invention is related to
Figure;
Fig. 2 is a kind of flow diagram of automotive safety monitoring method first embodiment of the present invention;
Fig. 3 is a kind of flow diagram of automotive safety monitoring method second embodiment of the present invention;
Fig. 4 is a kind of flow diagram of automotive safety monitoring method 3rd embodiment of the present invention;
Fig. 5 is a kind of flow diagram of automotive safety monitoring method fourth embodiment of the present invention;
Fig. 6 is a kind of flow diagram of the 5th embodiment of automotive safety monitoring method of the present invention.
The embodiments will be further described with reference to the accompanying drawings for the realization, the function and the advantages of the object of the present invention.
Specific embodiment
It should be noted that herein, term " comprising ", "comprising" or its any other variant are intended to non-row
His property includes, so that process, method, article or system including a series of elements not only include those elements, and
And it further includes other elements that are not explicitly listed or further includes intrinsic for this process, method, article or system institute
Element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that including this
Also there are other identical elements in the process of element, method, article or system.
Following serial numbers of the embodiment of the present invention are for illustration only, do not represent the quality of embodiment.
Herein, the use of word first, second, and third does not indicate that any sequence.It can be by these word solutions
It is interpreted as title.
Through the above description of the embodiments, those skilled in the art can be understood that following embodiment sides
Method can add the mode of required general hardware platform to realize by software, naturally it is also possible to by hardware, but in many cases
The former is more preferably embodiment.Based on such understanding, technical scheme of the present invention substantially in other words does the prior art
Going out the part of contribution can be embodied in the form of software product, which is stored in one as described above
In storage medium (such as ROM/RAM, magnetic disc, CD), including some instructions use so that a station terminal equipment (can be mobile phone,
Computer, server, air conditioner or network equipment etc.) perform method described in each embodiment of the present invention.
It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, it is not intended to limit the present invention.
With reference to Fig. 1, Fig. 1 is the structure diagram of automobile safety monitoring device of the present invention.
As shown in Figure 1, the automobile safety monitoring device can include:Processor 1001, such as CPU, communication bus 1002,
User interface 1003, network interface 1004, memory 1005.Wherein, communication bus 1002 is used to implement between these components
Connection communication.User interface 1003 can include display screen (Display), input unit such as keyboard (Keyboard), optional
User interface 1003 can also include standard wireline interface and wireless interface.Network interface 1004 can optionally include standard
Wireline interface, wireless interface (such as WI-FI interfaces).Memory 1005 can be high-speed RAM memory or stabilization
Memory (non-volatile memory), such as magnetic disk storage.Memory 1005 optionally can also be independently of aforementioned
The storage device of processor 1001.
It will be understood by those skilled in the art that the structure shown in Fig. 1 does not form the limit to automobile safety monitoring device
It is fixed, it can include either combining certain components or different components arrangement than illustrating more or fewer components.
As shown in Figure 1, it can lead to as in a kind of memory 1005 of computer storage media including operating system, network
Believe the presentation program of module, Subscriber Interface Module SIM and electronic program guides.
In server shown in Fig. 1, network interface 1004 is mainly used for connecting terminal device, with terminal device into line number
According to communication;User interface 1003 is mainly used for receiving the input instruction of administrator;The server is called by processor 1001
The automotive safety monitoring programme stored in memory 1005, and perform following operate:
First monitoring programme monitors hardware module, parameters of electric power and the kinetic parameter of vehicle, and to the hardware module, electricity
Force parameter and kinetic parameter are diagnosed and the output valve of the kinetic parameter are calculated, and by calculated value export to
Controller;
Whether the calculating process that the second monitoring programme monitors the kinetic parameter correctly performs, and to the calculating process not
The output valve control of the kinetic parameter correctly performed, which calculates, to be constrained;
Third monitoring programme monitoring second monitoring programme performs sequence, and make corresponding sound according to monitoring result
It should.
Further, processor 1001 can call the automotive safety monitoring programme stored in memory 1005, also perform
It operates below:
The hardware module includes I/O module, A/D module, PWM module, WatchDog modules and Bootloader modules;
The parameters of electric power includes the voltage, electric current, temperature of battery system and charging system;
The kinetic parameter includes vehicle demand torque, the aperture of accelerator pedal, brake pedal aperture, parking brake aperture, shelves
Position and motor speed.
Further, processor 1001 can call the automotive safety monitoring programme stored in memory 1005, also perform
It operates below:
The step of whether calculating process that second monitoring programme monitors the kinetic parameter correctly performs includes:
By the way that the calculated value of the kinetic parameter and preset binding occurrence are compared, kinetic parameter described in control constraints
Output in zone of reasonableness;
If calculated value<=binding occurrence, then the calculating process sequence of first monitoring programme perform and export described dynamic
The calculated value of force parameter;
If calculated value>Binding occurrence, then second monitoring programme first monitoring programme is controlled to export the power
The binding occurrence of parameter.
Further, processor 1001 can call the automotive safety monitoring programme stored in memory 1005, also perform
It operates below:
The step of execution sequence of the third monitoring programme monitoring second monitoring programme, includes:
Timing sends test assignment to second monitoring programme;
Receive the test result that second monitoring programme is tested out according to pre-defined rule;
The test result of second monitoring programme with preset value is compared and makes corresponding response.
Further, processor 1001 can call the automotive safety monitoring programme stored in memory 1005, also perform
It operates below:
The pre-defined rule includes:
Second monitoring programme is provided with visits point, institute with the corresponding multiple tests of the execution of calculating process sequence
It states multiple tests and visits the dot sequency execution test assignment.
Further, processor 1001 can call the automotive safety monitoring programme stored in memory 1005, also perform
It operates below:
The test result by second monitoring programme is compared with preset value and makes the corresponding step responded
Suddenly include:
The test result of second monitoring programme is compared with preset value;
When the test result is consistent with the preset value, the third monitoring programme enters next round monitoring link;
The test result and the preset value are inconsistent, and first monitoring programme carries out reset operation.
Further, processor 1001 can call the automotive safety monitoring programme stored in memory 1005, also perform
It operates below:
The step of third monitoring programme controls first monitoring programme to carry out after reset operation further includes:
After first monitoring programme resets successfully, first monitoring programme, second monitoring programme and described
Third monitoring programme sequence performs;
The first monitoring programme reset is unsuccessful, and the third monitoring programme enters fault alarm pattern.
In technical solution provided by the invention, three layers of monitoring are carried out by the software and hardware of the electric system to vehicle, layer by layer
It interlocks, the key link of key monitoring program easy break-down reduces the hidden danger that monitoring programme chip failure is brought, it is ensured that
Control software and vehicle safety operation.The operation of effective monitoring programme is capable of in this three layers monitoring, when program failure or its
It can be found in time when performing sequence error and program is made to enter safe working condition and then effectively ensures that vehicle safety is run.
Based on above-mentioned hardware configuration, the present invention proposes a kind of automotive safety monitoring method, such automotive safety monitoring side
Method for entire car controller local area network carry out delamination area monitoring, and bottom hardware failure is diagnosed and to monitor journey
The important instruction of sequence chip carries out routine test, and the failure haveing for program operational diagnostics will ensure that program enters safe shape
State.
With reference to Fig. 2, Fig. 2 is a kind of flow diagram of automotive safety monitoring method first embodiment of the present invention.
In the present embodiment, the automotive safety monitoring method includes the following steps:
Step S10, the first monitoring programme monitor hardware module, parameters of electric power and the kinetic parameter of vehicle, and to described hard
Part module, parameters of electric power and kinetic parameter are diagnosed and the output valve of the kinetic parameter are calculated, and will be calculated
Value output is to controller;
In the present embodiment, first monitoring programme can be used for the fault diagnosis of the hardware module of bottom layer driving, described
Hardware module includes I/O module, A/D module, PWM module, WatchDog modules and Bootloader modules;It is additionally operable to electric system
Parameters of electric power and kinetic parameter diagnosis, the parameters of electric power includes the voltage, electric current, temperature of battery system and charging system
Degree;The kinetic parameter includes vehicle demand torque, the aperture of accelerator pedal, brake pedal aperture, parking brake aperture, gear and electricity
Machine rotating speed;The controller includes battery system, electric system, charging system, Inversion Control System device.So as to realize to vehicle
The bottom hardware of electric system, parameters of electric power and kinetic parameter diagnosis, to ensure that vehicle safety is run.
More specifically, first monitoring programme is additionally operable to calculate the output valve of the kinetic parameter, it is main to use
In the calculating of vehicle demand torque, the aperture of accelerator pedal, brake pedal aperture, parking brake aperture, gear and motor speed, and will
Calculated value is exported to controller, to control the safe operation of vehicle.
Whether step S20, the calculating process that the second monitoring programme monitors the kinetic parameter correctly perform, and to the meter
The output valve control for the kinetic parameter that calculation process is not performing properly, which calculates, to be constrained;
In the present embodiment, second monitoring programme is mainly used for the calculating process of the kinetic parameter of the first monitoring programme
Monitoring, such as it is expected torque calculating, it is expected the calculating of acceleration, once calculate the unreasonable failure by the system that triggers of result
Responsive measures.So as to fulfill the monitoring of the kinetic parameter of the electric system to vehicle, to make correct response in time.
Step S30, third monitoring programme monitoring second monitoring programme perform sequence, and make according to monitoring result
Corresponding response.
In the present embodiment, second monitoring programme carries out program flow inspection to the execution sequence of first monitoring programme
It looks into, second monitoring programme tests out test result according to pre-defined rule, and the third monitoring programme is made according to test result
Go out corresponding response.So as to take correct responsive measures, by vehicle control in safe condition.
In order to more accurately monitor the calculating process of the kinetic parameter, with reference to Fig. 3, Fig. 3 is a kind of automobile peace of the present invention
The flow diagram of full monitoring method second embodiment, the embodiment and the first embodiment that Fig. 2 is provided the difference lies in:
Step S20 includes:
Step S21, by the way that the calculated value of the kinetic parameter and preset binding occurrence are compared, described in control constraints
The output of kinetic parameter is in zone of reasonableness;
Step S22, if calculated value<=binding occurrence, then first monitoring programme calculating process sequence perform and it is defeated
Go out the calculated value of the kinetic parameter;
Step S23, if calculated value>Binding occurrence, then the second monitoring programme control the first monitoring programme output
The binding occurrence of the kinetic parameter.
In the present embodiment, second monitoring programme to first monitoring programme control calculated value reasonability into
Row judges, such as it is expected the calculating of torque, it is expected the calculating of acceleration.Specifically judgment mode is:The meter of first monitoring programme
The binding occurrence that calculation value is less than or equal to second monitoring programme is reasonable for calculated value;The calculated value of first monitoring programme is big
It is unreasonable for calculated value in the binding occurrence of second monitoring programme.In the present embodiment, if calculated value is reasonable, described first
The control computation sequence of monitoring programme performs and exports calculated value;If calculated value is unreasonable, to first monitoring programme
Calculated value is constrained.So as to be constrained by the calculated value to the kinetic parameter, by vehicle control in safe condition.
Specifically, if constrained successfully, controller controls first monitoring programme to export first monitoring programme
Calculated value controls the calculated value of first monitoring programme to be less than or equal to binding occurrence and the output of second monitoring programme;
If constraint is unsuccessful, the calculated value of first monitoring programme assigns safety value, and the calculated value of first monitoring programme is assigned
The mode of safety value is:The calculated value of first monitoring programme is controlled to be equal to the binding occurrence of second monitoring programme and defeated
Go out.So as to make controller in a safe condition, crucial control signal is safety value.If it is unsuccessful to assign safety value, monitoring
System enters fault alarm.
In order to improve the accuracy for the execution sequence for monitoring second monitoring programme, with reference to Fig. 4, Fig. 4 is the present invention one
The flow diagram of kind automotive safety monitoring method 3rd embodiment, the difference of the embodiment and Fig. 3 second embodiments provided
Part is:Step S30 includes:
Step S31 periodically sends test assignment to second monitoring programme;
Step S32 receives the test result that second monitoring programme is tested out according to pre-defined rule;
The test result of second monitoring programme with preset value is compared and makes corresponding response by step S33.
Specifically, the third monitoring programme tests whether second monitoring programme is correctly held by way of question and answer
Whether row, the monitoring chip RAM/ROM that detection second monitoring programme of cycle is distributed are destroyed, and do instruction set survey
It tries out in whether monitoring machine code instruction correctly performs.
In the present embodiment, the test of described instruction collection relates generally to the test of the major calculations instruction of monitoring chip, such as adds,
Subtract, programming jump, the instructions such as logic judgment.It compares with model answer to judge the instruction whether just by preset data
True execution.If instruction is correct, system monitor enters normal cycle operational mode, if instruction is incorrect, triggers system
Carry out reset operation.So as to perform sequence by the evaluation of test assignment come the second monitoring programme described in accurate measurements.
In the present embodiment, second monitoring programme carries out program flow inspection to the execution sequence of first monitoring programme
It looks into, second monitoring programme is provided with visits point with the corresponding multiple tests of the execution of calculating process sequence, described more
A test visits dot sequency and performs the test assignment, and second monitoring programme tests out test result according to the pre-defined rule,
And the test result is fed back into the third monitoring programme.The inspection of described program stream can accurately test the calculating process
Perform sequence, and rapid feedback gives the third monitoring programme.
In order to which the test result to second monitoring programme makes correct response, to ensure the safety of vehicle operation,
With reference to Fig. 5, Fig. 5 is a kind of flow diagram of automotive safety monitoring method fourth embodiment of the present invention, which carries with Fig. 4
The 3rd embodiment of confession the difference lies in:Step S33 includes:
The test result of second monitoring programme is compared by step S331 with preset value;
Step S332, when the test result is consistent with the preset value, the third monitoring programme enters next round prison
Control link;
Step S333, the test result and the preset value are inconsistent, the third monitoring programme control described first
Monitoring programme carries out reset operation.
Specifically, the third monitoring programme to second monitoring programme send problem " 1+2 ", the problem pass through described in
Result is obtained after the ordering calculation of second monitoring programme as " 3 ", and the result is fed back into the third monitoring programme, described the
Three monitoring programmes are according to the test result fed back and preset results contrast.
In the present embodiment, illustrate that the instruction is correct if consistent, when these tests all by after, system enters normal week
Phase operational mode;It is incorrect if inconsistent, carry out reset operation so as to trigger system.
For further security response with reference to Fig. 6, Fig. 6 is a kind of stream of automotive safety monitoring method fourth embodiment of the present invention
Journey schematic diagram, the fourth embodiment that the embodiment and Fig. 5 are provided the difference lies in:Step S333 includes:
Step S3331, after first monitoring programme resets successfully, first monitoring programme, second monitoring
Program and third monitoring programme sequence perform;
Step S3332, the first monitoring programme reset is unsuccessful, and the third monitoring programme enters fault alarm mould
Formula.
Specifically, after first monitoring programme resets successfully, first monitoring programme, second monitoring programme
It is performed with third monitoring programme sequence, system enters normal cycle operational mode;If first monitoring programme resets not
Success, system quote failure code, and the third monitoring programme enters fault alarm pattern.
The present invention also proposes a kind of automotive safety monitoring system, and such automotive safety monitoring system is directed to full-vehicle control general ability
Domain network carries out delamination area monitoring, and bottom hardware failure is diagnosed and the important instruction to monitoring programme chip
Routine test is carried out, and the failure haveing for program operational diagnostics will ensure that program enters safe condition.
The automotive safety monitoring system includes main control chip and secondary chip, and the main control chip is storing described first
Monitoring programme and second monitoring programme, the pair chip are connected with main control chip communication, and the secondary chip storage
There is the third monitoring programme, the automotive safety monitoring programme is realized such as when being performed by the main control chip and the secondary chip
Above the step of automotive safety monitoring method.The main control chip and secondary chip layering monitoring, interlock, layer by layer so as to reduce
The hidden danger that chip failure is brought.
The foregoing is merely the preferred embodiment of the present invention, are not intended to limit the scope of the invention, every at this
The equivalent structure transformation made under the inventive concept of invention using description of the invention and accompanying drawing content or directly/utilization indirectly
It is included in the scope of patent protection of the present invention in other related technical areas.
Claims (10)
1. a kind of automotive safety monitoring method, which is characterized in that include the following steps:
First monitoring programme monitors hardware module, parameters of electric power and the kinetic parameter of vehicle, and the hardware module, electric power are joined
Number and kinetic parameter are diagnosed and the output valve of the kinetic parameter are calculated, and calculated value is exported to control
Device;
Whether the calculating process that the second monitoring programme monitors the kinetic parameter correctly performs, and incorrect to the calculating process
The output valve control of the kinetic parameter performed, which calculates, to be constrained;
Third monitoring programme monitoring second monitoring programme performs sequence, and make corresponding response according to monitoring result.
2. automotive safety monitoring method as described in claim 1, which is characterized in that the hardware module includes I/O module, AD
Module, PWM module, WatchDog modules and Bootloader modules;
The parameters of electric power includes the voltage, electric current, temperature of battery system and charging system;
The kinetic parameter include vehicle demand torque, the aperture of accelerator pedal, brake pedal aperture, parking brake aperture, gear and
Motor speed.
3. automotive safety monitoring method as described in claim 1, which is characterized in that the second monitoring programme monitoring is described dynamic
The step of whether calculating process of force parameter correctly performs includes:
By the way that the calculated value of the kinetic parameter and preset binding occurrence are compared, kinetic parameter described in control constraints it is defeated
Go out in zone of reasonableness;
If calculated value<=binding occurrence, then the calculating process sequence of first monitoring programme perform and export power ginseng
Several calculated values;
If calculated value>Binding occurrence, then second monitoring programme first monitoring programme is controlled to export the kinetic parameter
Binding occurrence.
4. automotive safety monitoring method as described in claim 1, which is characterized in that third monitoring programme monitoring described the
The step of execution sequence of two monitoring programmes, includes:
Timing sends test assignment to second monitoring programme;
Receive the test result that second monitoring programme is tested out according to pre-defined rule;
The test result of second monitoring programme with preset value is compared and makes corresponding response.
5. automotive safety monitoring method as claimed in claim 4, which is characterized in that the pre-defined rule includes:
Second monitoring programme is provided with visits point with the corresponding multiple tests of the execution of calculating process sequence, described more
A test visits dot sequency and performs the test assignment.
6. automotive safety monitoring method as claimed in claim 4, which is characterized in that the survey by second monitoring programme
Test result is compared with preset value and includes the step of making corresponding response:
The test result of second monitoring programme is compared with preset value;
When the test result is consistent with the preset value, the third monitoring programme enters next round monitoring link;
The test result and the preset value are inconsistent, and first monitoring programme carries out reset operation.
7. automotive safety monitoring method as claimed in claim 6, which is characterized in that third monitoring programme control described the
The step of one monitoring programme is carried out after reset operation further includes:
After first monitoring programme resets successfully, first monitoring programme, second monitoring programme and the third
Monitoring programme sequence performs;
The first monitoring programme reset is unsuccessful, and the third monitoring programme enters fault alarm pattern.
8. a kind of automobile safety monitoring device, which is characterized in that the automobile safety monitoring device includes:Memory, processor
And the automotive safety monitoring programme that can be run on the memory and on the processor is stored in, the automotive safety monitoring
The step of automotive safety monitoring method as described in any one of claim 1 to 7 is realized when program is executed by processor.
9. a kind of computer readable storage medium, which is characterized in that automobile peace is stored on the computer readable storage medium
Full monitoring programme, the automotive safety monitoring programme realize vapour as described in any one of claim 1 to 7 when being executed by processor
The step of vehicle method for safety monitoring.
10. a kind of automotive safety monitoring system, which is characterized in that including automobile safety monitoring device as claimed in claim 8,
The automobile safety monitoring device includes main control chip and secondary chip, and the main control chip is storing first monitoring programme
With second monitoring programme, pair chip and the main control chip communication connects, and the secondary chip is stored with described the
Three monitoring programmes.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711467533.0A CN108153285B (en) | 2017-12-28 | 2017-12-28 | Automobile safety monitoring method, device, storage medium and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711467533.0A CN108153285B (en) | 2017-12-28 | 2017-12-28 | Automobile safety monitoring method, device, storage medium and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN108153285A true CN108153285A (en) | 2018-06-12 |
| CN108153285B CN108153285B (en) | 2020-12-15 |
Family
ID=62463700
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201711467533.0A Active CN108153285B (en) | 2017-12-28 | 2017-12-28 | Automobile safety monitoring method, device, storage medium and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108153285B (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109709849A (en) * | 2018-12-20 | 2019-05-03 | 浙江吉利汽车研究院有限公司 | Single-chip microcontroller safety operating control method and device |
| CN113232609A (en) * | 2021-05-11 | 2021-08-10 | 上汽通用五菱汽车股份有限公司 | Power mode skip method, vehicle, and computer-readable storage medium |
| CN114750774A (en) * | 2021-12-20 | 2022-07-15 | 广州汽车集团股份有限公司 | Safety monitoring method and automobile |
Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| DE102006057297A1 (en) * | 2006-12-05 | 2008-06-12 | Giesecke & Devrient Gmbh | Method for monitoring of progress of program, involves processing test value of command sequence of program, which is calculated on basis of commands during execution of program |
| DE102009047724A1 (en) * | 2009-12-09 | 2011-06-16 | Endress + Hauser Wetzer Gmbh + Co Kg | Program sequence monitoring method for operating field device utilized for e.g. measuring physical parameter at defined areas in process plant, involves comparing test value with another test value to monitor program sequence |
| EP2339318A1 (en) * | 2009-12-23 | 2011-06-29 | ACTIA Automotive | Method for diagnosing a malfunction of a mechatronic system |
| CN102929275A (en) * | 2012-11-09 | 2013-02-13 | 重庆长安汽车股份有限公司 | Security monitoring and control method and system of automobile controller |
| CN103738198A (en) * | 2013-12-18 | 2014-04-23 | 奇瑞汽车股份有限公司 | Vehicle electrical motor control system with safety monitoring function and monitoring method of vehicle electrical motor control system |
| CN104691555A (en) * | 2015-01-05 | 2015-06-10 | 联合汽车电子有限公司 | Full-vehicle function safety monitoring system |
| CN104714463A (en) * | 2015-03-10 | 2015-06-17 | 重庆长安汽车股份有限公司 | Safety monitoring system and method |
| CN104859452A (en) * | 2014-05-23 | 2015-08-26 | 北汽福田汽车股份有限公司 | Monitoring method and system for running safety of electric vehicle |
| CN105760253A (en) * | 2016-01-13 | 2016-07-13 | 奇瑞汽车股份有限公司 | Software implementation method for electronic throttle valve chip security monitoring |
| CN106844084A (en) * | 2017-03-16 | 2017-06-13 | 北京新能源汽车股份有限公司 | A kind of control method, device and automobile |
-
2017
- 2017-12-28 CN CN201711467533.0A patent/CN108153285B/en active Active
Patent Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| DE102006057297A1 (en) * | 2006-12-05 | 2008-06-12 | Giesecke & Devrient Gmbh | Method for monitoring of progress of program, involves processing test value of command sequence of program, which is calculated on basis of commands during execution of program |
| DE102009047724A1 (en) * | 2009-12-09 | 2011-06-16 | Endress + Hauser Wetzer Gmbh + Co Kg | Program sequence monitoring method for operating field device utilized for e.g. measuring physical parameter at defined areas in process plant, involves comparing test value with another test value to monitor program sequence |
| EP2339318A1 (en) * | 2009-12-23 | 2011-06-29 | ACTIA Automotive | Method for diagnosing a malfunction of a mechatronic system |
| CN102929275A (en) * | 2012-11-09 | 2013-02-13 | 重庆长安汽车股份有限公司 | Security monitoring and control method and system of automobile controller |
| CN103738198A (en) * | 2013-12-18 | 2014-04-23 | 奇瑞汽车股份有限公司 | Vehicle electrical motor control system with safety monitoring function and monitoring method of vehicle electrical motor control system |
| CN104859452A (en) * | 2014-05-23 | 2015-08-26 | 北汽福田汽车股份有限公司 | Monitoring method and system for running safety of electric vehicle |
| CN104691555A (en) * | 2015-01-05 | 2015-06-10 | 联合汽车电子有限公司 | Full-vehicle function safety monitoring system |
| CN104714463A (en) * | 2015-03-10 | 2015-06-17 | 重庆长安汽车股份有限公司 | Safety monitoring system and method |
| CN105760253A (en) * | 2016-01-13 | 2016-07-13 | 奇瑞汽车股份有限公司 | Software implementation method for electronic throttle valve chip security monitoring |
| CN106844084A (en) * | 2017-03-16 | 2017-06-13 | 北京新能源汽车股份有限公司 | A kind of control method, device and automobile |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109709849A (en) * | 2018-12-20 | 2019-05-03 | 浙江吉利汽车研究院有限公司 | Single-chip microcontroller safety operating control method and device |
| CN109709849B (en) * | 2018-12-20 | 2021-03-19 | 浙江吉利汽车研究院有限公司 | Method and device for controlling safe operation of single chip microcomputer |
| CN113232609A (en) * | 2021-05-11 | 2021-08-10 | 上汽通用五菱汽车股份有限公司 | Power mode skip method, vehicle, and computer-readable storage medium |
| CN114750774A (en) * | 2021-12-20 | 2022-07-15 | 广州汽车集团股份有限公司 | Safety monitoring method and automobile |
| CN114750774B (en) * | 2021-12-20 | 2023-01-13 | 广州汽车集团股份有限公司 | Safety monitoring method and automobile |
Also Published As
| Publication number | Publication date |
|---|---|
| CN108153285B (en) | 2020-12-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103568863B (en) | The Real-Time Monitoring diagnostic system of cell management system of electric automobile and diagnostic method | |
| JP5338591B2 (en) | Remaining life diagnosis method and remaining life diagnosis system | |
| CN108153285A (en) | Automotive safety monitoring method, device, storage medium and system | |
| CN103676937B (en) | Method and device for processing control parameters in controller | |
| CN103455025B (en) | A kind of vehicle fault diagnosis system based on Android platform | |
| CN104834303A (en) | Vehicle fault diagnosis method and system, and vehicle | |
| CN104714463B (en) | A kind of safety monitoring system and method | |
| US20120330501A1 (en) | Vehicle hardware integrity analysis systems and methods | |
| CN112068004A (en) | Method and device for determining battery abnormity and battery charging remaining time | |
| CN105182964B (en) | Code reading card diagnoses the method, apparatus and diagnostic device of vehicle modules | |
| CN106155042A (en) | The method of testing of a kind of entire car controller troubleshooting and device | |
| CN109733238B (en) | Fault detection method, device, storage medium and processor | |
| CN111624433B (en) | State evaluation method and system for pure electric vehicle and computer readable storage medium | |
| CN109140687A (en) | Method for diagnosing faults, device, system, air-conditioning, server and storage medium | |
| US9046581B2 (en) | Supervisor monitoring system | |
| CN109522296B (en) | Engine ECU data matching calibration method and device | |
| CN109884533A (en) | The diagnostic method and device of battery failures, equipment and storage medium | |
| CN108146250A (en) | A kind of vehicle torsional moment method of controlling security based on multi-core CPU | |
| CN104316808B (en) | A kind of method and system for detecting transformer winding fault | |
| CN112356818B (en) | Function safety monitoring method for range extender control system | |
| CN113030753A (en) | Test method, device and test system for battery management system BMS | |
| CN112824919A (en) | Method, device and equipment for determining thermal runaway alarm threshold of battery | |
| CN109828857A (en) | Vehicle trouble reason localization method, device, equipment and storage medium | |
| CN111552584B (en) | Testing system, method and device for satellite primary fault diagnosis isolation and recovery function | |
| US9304171B2 (en) | Computer-implemented method for generating software, a battery, and a motor vehicle |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |