| CPC G07C 5/0808 (2013.01) [G07C 5/0825 (2013.01)] | 7 Claims |
|
1. An information processing apparatus of an autonomous driving system mounted on an autonomous vehicle, the apparatus comprising:
a plurality of highly reliable function circuitries each including an input and an output;
a normal function circuitry capable of performing processing in a system execution environment, and capable of calling one of the highly reliable function circuitries corresponding to the processing and injecting data used to perform the highly reliable function circuitry into the input while performing the processing;
a verification table to hold injected verification data used to verify operation of the highly reliable function circuitry;
a verification function circuitry to inject the injected verification data into the input to perform the highly reliable function circuitry, and verify operation of the highly reliable function circuitry based on output from the output when performing the highly reliable function circuitry in a verification execution environment being a secure execution environment against the system execution environment; and
a time management function circuitry to manage timing of verifying operation and a maximum time of verifying operation, wherein
the verification table further holds:
verification operation timing indicating timing of starting verifying operation;
expected output data indicting expected output from the output when the verification function circuitry performs the highly reliable function circuitry;
an expected operation log indicting an expected operation log of the highly reliable function circuitry when the verification function circuitry performs the highly reliable function circuitry;
an output control flag indicating whether the execution transition to the normal function circuitry is performed after the verification function circuitry performs the highly reliable function circuitry; and
a maximum verification time indicating a maximum allowable time of verifying operation,
wherein the verification function circuitry is configured to continuously verify the operation of the highly reliable function circuitry in the autonomous driving system mounted on the autonomous vehicle.
|