Stacking Up by solving puzzeled pieces.

Services : Engineering Consultation
Xilicom Research Inc. Creating Silicon Complements for Mankind Electronic Systems Architecture Research and Consultation SOC, PCB, DSP, CPU, Analog Digital Mixed Signal Design, Audio Video Algorithm Low Power Architecture, Long Battery Life Product Engineering Consultation

Long Life Cycle Design Requirements

Penalties of Failures

Forces of Inner Qualities

Effects of Common Design Practices
Text Box: International Symposium on Quality Electronic Design (ISQED) Title: Long Life Cycle Product Design ... Is It Really Different from Traditional CE? Are the design practices any different from traditional CE or is it the business model and supply chain that allows these products to support extended life cycle? By Jason Kim 3/21/2010 Text Box: Resolution: Long-life-cycle products (10~30 yrs) require different design process than the current short-life-cycle products (18 month). Thesis: There needs to be significant changes in design flows to support longer-life-cycle products requiring 10 to 30 year than from those we currently use for developing 3 to 5 year life cycle products. It not only will require new tools and new materials for the existing components, but a new set of design mentalities and systems architectures to accommodate soft errors, user errors, design flaws, and component failures. However, all these has to be done as promptly and as cost effectively. Text Box: Definition: CE Short-Life Products: 3~5 years Labtops, Cellphone, DSC, PMP, (iPod, iPhone) CE Long-Life Products: 5~30 years. live performance (content creation, capture, distribution, etc.) transportation (automotive, aircraft, watercraft, etc.) white goods electronic (durable home appliances, AC, etc.) Specialty Products: Industrial Products: durability, continuous use Medical Products: failsafe, operational quality Military Products: robust, manhandling, Space Products: failsafe, radiation, extreme temp, Text Box: Automotive Recalls: Toyota 8.5 million - accelerator failures (Lexus, Camry, Prius,) (437,000 Prius 2010 models breaking malfunctions) Honda 950,000 – airbag malfunction sssss (Accord, Civic, Odyssey, CRV, Acura TLs) (410,000 Odysseys and Elements – soft brakes.) Nissan 540,000 – fault gas gauge (179K break) GM 1.3 million - steering failures. (Chevrolet and Pontiac) Worn-out Pencil and Paper.Rubic's cube with I N N O V A T I O NCircular Process of Engineering Regeneration. 1. Access Needs, 2. Design Specifications, 3. Design / Develop / Validate, 4. Implement Sustems, 5. Support Operations, 6. Evaluate Performance,Text Box: AFF: more dependent, because failures are more critical and devastating. (reliability, dependency, personal private contents) more complex systems, because failure rates are more significant within the lifecycle. (uneven component degradation over time and environment) soft errors are more critical, Failure modes are more diverse with interrelated. (More software controls the critical functions of a product) different tools and data are required, because contemporary design tools does not accommodate uneven component aging and digital design practices are difficult to handle soft-error detection and recovery. Text Box: NEG: not practical, because the fads to replace products with better features even before the product’s extended warranty time expire not profitable, because fiercely competition even requires cannibalize your own successful product lines shortly after its own launch. fatalities are no longer devastating, because industry have already created anti-obsolescence design practices with software upgradeable products. long-life-cycle product design practices obsolete, because contemporary “adaptive-life-cycle” product design practices allow anti-aging measures allow real-time performance tuning and lifetime usability enhancements. Text Box: CE product Failure Rates (within 3 years) iPod (5% warranty failures per apple) others dispute it to be 13% when include batteries. { John Martellaro at Business Week - iSuppli. Aug.2007} iPhone ( less than 1% warranty failures per study) { Shelley Risk at SquareTrade inc. Aug.2009 on 16K samples} Xbox360 (23.7% failures, within 19.9 days during 2yr period) PS3 (10% failures, within 17.6 days during 2yr period) Wii (2.7% failure, within 8.6 days during 2yr period) Text Box: Text Box: Toyota Acceleration Problems Engine Control Firmware? Realtime Software for fuel injection controls 2274 reports with 275 crashes (1.2million Corolla and Matrix engine stalling) Breaking Control Firmware? Regenerative breaking system on Prius 2010 models 300 complaints of breaking problem on Prius 2010 model. Text Box: Break vs. Accelerator Override Not a simple answer to have break override. When can pressing both break and accelerator necessary? Stop & Go traffics on hillside roads of San Francisco? In order to not slip backward, many holds on break while pressing accelerator to rev up the engine before releasing the break to build up enough engine torques. Without through analysis, we will see many cars stuck on the hill side roads Text Box: Component Failures: Bad Electrolytic Capacitors (ESR) - common cause of change in filter characteristics - common cause for power supply failures. - most common cause of hum, pops, and poor amplification. Sensors and Contacts: - common cause for intermittent failures. - Paul’s CD-changer, - Oki Laser Printer Toner Errors, Moisture on PCB - Holter Monitor ECG – trace shortages. Text Box: Test and Validation Methodologies: Accelerated life test? TRW, designed to tolerate overvoltage, but QA complained that they cannot test their usual accelerated life test because they had been using elevated voltage and temperature to screen out suspected aging fall-outs. Voltage scaling and frequency scaling? Text Box: EMI Related glitches: RF interferences RF inter modulation and beat frequencies Remote cell-phone inter-modulation? Electro Magnetic Interferences: Electric Storm in Airplane (disabled touch pad) ESD related glitches: Soft error due to bit level upsets Radiation Effect (bit errors) Alpha particles and Gamma rays? Neutrinos—Solar Spurs? Text Box: Software Controlled Hardware: Throttle Controls. Anti Breaking Systems CD Changers (sensor malfunction) 100M lines of Automotive Control Codes? More lines of Codes on TRW systems than all the codes that were in IBM computers. Field Upgradeable Software: Flash downloadable codes Internet based live updates (Window OS etc.) Over the Air upgrades (iPhone Apps, etc.)

Designing for Reliabilities

Welcome to our virtual office of Engineering Research in San Jose, California, USA.

 

In light of devastating recent recall events for 8.5 million Toyota cars with unintentional acceleration, the International Symposium on Quality Electronic Design (ISQED 2010) raised an interesting wakeup call for reevaluating our engineering process for product reliability.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

During one of the ISQED panel discussion, the moderator, Tets Maniwa, opened the panel discussion with a simple question, what makes a single-use throw-away devices like the Mars Rover, lasts over 5 years when it was only designed for 90 days of use, whereas many CE consumer electronic devices designed for 5 years fail within 90 days of use?

 

My quick answer was - because that Mars Rover had to be designed and verified for 100% operation with zero tolerance for failure within 90 days of use.  Whereas, today’s CE products are designed to accept 5% failures within 30 days of purchase and 50% obsolescence within 5 years of product life cycle.

 

This small difference in the product requirement makes big difference in the final quality of a product.  These small philosophical divergence was made apparent through recent automotive industry’s colossal recalls where 8.5 million Toyotas, 950 thousand Hondas, 540 thousand Nissans, 1.3 million GMs, and etc. had serious safety concerns over resultant reliability issues.

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Needless to say that there are incredible cost associated with achieving zero tolerance for failure.  There are also too many reasons why the CE products can not afford the qualities of space and industrial products.

 

Understandably, CE product engineering has accepted the challenges of developing process for balancing the market demands and product reliabilities with field upgradeable technologies.  Many of the products, such as Google remain in indefinite “Beta testing” while others like the Microsoft and Apple have automatic updates.   Even many hardware products have field upgradeable firmware that reconfigures the hardware through internet downloads.  

 

Thus the consumer electronics industry has adapted the process of “adaptive-life-cycle” products.  The fiercely competitive CE market environments had obsolete the old practices of keeping engineering margin of error.  The blindly fast cycles of consumer fads has obsolete the old practices of allowing products to age before selling.

 

So, could the traditional long life cycle products, such as automotives and home appliances be designed with current CE engineering practices?

 

The costly failures evidenced by recent recalls of automobiles would answer it—definitely NO. 

 

People will rightfully argue that these products, such as live performance gears, transportation equipments, and household white goods can not afford to fail, because people are depending on these products more these days.

 

Regretfully, more and more products are now implementing these same consumer electronic technologies where many electronics are being designed with software controlled processors.  More and more household appliances—such as ovens, ranges, cook tops, refrigerators, water heaters, and air conditionals, are being designed with “smart” features.  

 

Today’s automotives, for example, are being designed with more than 100 million lines of codes for implementing computer controlled engine managements, anti-locking break systems, diversity wheel stealing, active suspensions, plethora of heating, cooling, visual and aural compensation, and topped off with drive-by-wire user controls. 

 

Any one unexpected failures from these electronics could mean the pain and suffering, even a possible life and death situation often characterized in science fiction horror movies.

 

On the other hand, when I was working for TRW few decades ago, we designed radiation hardened electronics for military satellites.  We jokingly claimed that TRW is a software company, because we developed more lines of code than the whole codes that IBM developed for their mainframe business systems.

 

The difference, however, could be that TRW designed-in lots of fault tolerant controls to build up reliabilities, such as triple redundancy voting circuitries and protective guard bands for minimizing soft-errors due to interferences and peripheral failures.

 

In another word, we bought reliabilities through careful engineering and component selections. 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

In light of Toyota’s unintentional acceleration, I noticed that many people were voicing out the stupidity of Toyota engineering for not implementing a simple break pedal override.

 

At a first glance, the break override seemed to make good sense, but I began to wonder if that might create much more side effects.  

 

For example, when could there be a time where a simple break override will not work?  One case I thought about was during stop-and-go driving conditions of San Francisco.  These cars typically have under powered engines not sufficient for the steep hill side traffics and thus needs to be raved up to build enough torque to prevent them sliding backward.

 

Experienced drivers might have used hand breaks and accelerators to accomplish these tasks.  But, many of these cars don’t have hand breaks but a ratcheted parking breaks and computer controlled engine managements.  

 

Consequently, the central engine management controller may now have to override the break pedal inputs to rave up the engines, to avoid having the cars slide backward and stalling the engines powerless.

 

This brings to a secondary set of questions on exceptions that require situation awareness sensors.  Is the car in stop, is the car on hill side, is the car sliding backward, does the driver want the car to not slide back, etc. etc.

 

Unfortunately, all these sensors and safety override mechanisms will add more points of possible failures.  Bad electrolytic capacitors are notorious for commonly causing electronics mal functions and mechanical sensors are common causes of many software control anomalies.

 

Other environmental factors, such as salt and moisture will shortens mechanical aging and reduce operational reliabilities.  Electric, magnetic, radiation, and yes the mechanical interferences will increase intermittent soft-errors that would be difficult to replicate.

 

So, can we still use same CE technologies and engineering practices to develop long term quality products—such as medical devices?

 

The answer can not be true, but the common technologies and abundant infrastructures could be leveraged with appropriate design practices and associated architecture solutions that utilize fault tolerant redundancies and adaptive systems resiliencies.

 

The need for cost reduction and time to market competition will undoubtedly demand for cutting every possible corners, but the true artist of engineering will learn to balance these diametrically opposing demands of market and qualities.

 

Jason Kim
4/7/2010

Consulting Services

Create Silicon Complements

Services : Systems Solution

Xilicom Research Inc. , San Jose, CA 95120  [email: webmaster at xilicom.com]

Copyright, 2010. All rights reserved.
Updated:  4/7/2010

Safe Harbor:  Many of the information provide in this website are forward looking statements.  Though we do our best to keep them accurate, Murphy’s law dictates that you should double check our analysis to your satisfaction.

Analysis:

 

Products,

Technology,

Market,

We provide competitive analysis of your market, products, and technologies for you to formulate your value proposition.

 

We provide supplier research, teardown analysis, destructive testing, and nondestructive probing for you to understand, verify, and renovate.

Process:

 

Quality,

Performance,

Reliability,

 

We provide engineering consultation to observe and identify intermittent failures in quality, performance, and reliability.

 

We provide engineering insights to empower you to improve and innovate.

Design:

 

Review,

Compliance,

Retrofit,

 

We provide design consultation to prevent costly errors and incompatible systems compliance solutions.

 

We provide design strategies to improve and retrofit faulty products.