Appendix I: Bibliography

This appendix provides complete references for all standards, books, papers, and online resources cited in this book. Entries are organized by category to help you locate relevant sources for further study.

Standards and Specifications

ASPICE

  1. ASPICE 4.0 (2024). "Automotive SPICE Process Assessment Model and Process Reference Model". VDA QMC Working Group.

  2. VDA Scope (2023). "Automotive SPICE Guidelines v3.2". VDA (Verband der Automobilindustrie).

Safety Standards

  1. ISO 26262:2018. "Road vehicles — Functional safety". Parts 1-12. International Organization for Standardization.

  2. IEC 61508:2010. "Functional safety of electrical/electronic/programmable electronic safety-related systems". Parts 1-7. International Electrotechnical Commission.

  3. IEC 62304:2006+AMD1:2015. "Medical device software — Software life cycle processes". International Electrotechnical Commission.

  4. ISO 21448:2022 (SOTIF). "Road vehicles — Safety of the intended functionality". International Organization for Standardization.

  5. DO-178C (2011). "Software Considerations in Airborne Systems and Equipment Certification". RTCA/EUROCAE.

  6. ISO/PAS 8800:2024. "Road vehicles — Safety and artificial intelligence". International Organization for Standardization.

  7. UL 4600:2020 (Ed. 2 2022). "Standard for Safety for the Evaluation of Autonomous Products". Underwriters Laboratories.

  8. ISO/IEC 12207:2017. "Systems and software engineering — Software life cycle processes". International Organization for Standardization / International Electrotechnical Commission.

  9. ISO/IEC 33001:2015. "Information technology — Process assessment — Concepts and terminology". International Organization for Standardization / International Electrotechnical Commission.

  10. ISO/IEC/IEEE 15288:2023. "Systems and software engineering — System life cycle processes". International Organization for Standardization.

Cybersecurity

  1. ISO/SAE 21434:2021. "Road vehicles — Cybersecurity engineering". International Organization for Standardization.

  2. IEC 62443 (series). "Industrial communication networks — Network and system security". International Electrotechnical Commission.

  3. UNECE R155 (2021). "UN Regulation No. 155 — Uniform provisions concerning the approval of vehicles with regards to cyber security and cyber security management system". United Nations Economic Commission for Europe.

  4. UNECE R156 (2021). "UN Regulation No. 156 — Uniform provisions concerning the approval of vehicles with regards to software update and software update management system". United Nations Economic Commission for Europe.

Coding Standards

  1. MISRA C:2012 (AMD3:2024). "Guidelines for the use of the C language in critical systems". MISRA Ltd.

  2. AUTOSAR (2023). "Classic Platform Release 4.4.0". AUTOSAR consortium.

  3. CERT C (2024). "SEI CERT C Coding Standard". Carnegie Mellon Software Engineering Institute.

Books

Software Engineering

  1. McConnell, Steve (2004). "Code Complete". 2nd Edition. Microsoft Press.

  2. Martin, Robert C. (2008). "Clean Code: A Handbook of Agile Software Craftsmanship". Prentice Hall.

  3. Fowler, Martin (2018). "Refactoring: Improving the Design of Existing Code". 2nd Edition. Addison-Wesley.

Embedded Systems

  1. Ganssle, Jack (2007). "The Art of Designing Embedded Systems". 2nd Edition. Newnes.

  2. Barr, Michael (2019). "Embedded C Coding Standard". 3rd Edition. Barr Group.

  3. Simon, David E. (1999). "An Embedded Software Primer". Addison-Wesley.

Safety-Critical Systems

  1. Leveson, Nancy G. (2011). "Engineering a Safer World: Systems Thinking Applied to Safety". MIT Press.

  2. Storey, Neil (1996). "Safety-Critical Computer Systems". Addison-Wesley.

  3. Knight, John C. (2002). "Safety Critical Systems: Challenges and Directions". IEEE Computer Society.

ASPICE & Process Improvement

  1. Kugler, H. J., et al. (2019). "Automotive SPICE in Practice: Surviving Audits and Assessments". dpunkt.verlag.

  2. Hörmann, K., et al. (2012). "Automotive SPICE in Practice: Surviving Implementation and Assessment". Rocky Nook.

  3. Chrissis, M. B., Konrad, M., Shrum, S. (2011). "CMMI for Development: Guidelines for Process Integration and Product Improvement". 3rd Edition. Addison-Wesley.

  4. Poth, A., Jacobsen, M. (2018). "Lean and Agile Software Development in Regulated Environments". Springer.

  5. Leffingwell, D. (2011). "Agile Software Requirements: Lean Requirements Practices for Teams, Programs, and the Enterprise". Addison-Wesley.

DevOps and CI/CD

  1. Kim, Gene, et al. (2016). "The DevOps Handbook: How to Create World-Class Agility, Reliability, and Security in Technology Organizations". IT Revolution Press.

  2. Humble, Jez, Farley, David (2010). "Continuous Delivery: Reliable Software Releases through Build, Test, and Deployment Automation". Addison-Wesley.

  3. Morris, Kief (2020). "Infrastructure as Code: Dynamic Systems for the Cloud Age". 2nd Edition. O'Reilly.

  4. Simmonds, Chris (2022). "Mastering Embedded Linux Programming". 3rd Edition. Packt Publishing.

  5. McLaughlin, Mark (2021). "DevOps for Embedded: Applying CI/CD Practices to Firmware and Real-Time Systems". Independently published.

AI and Machine Learning

  1. Goodfellow, Ian, et al. (2016). "Deep Learning". MIT Press.

  2. Géron, Aurélien (2022). "Hands-On Machine Learning with Scikit-Learn, Keras, and TensorFlow". 3rd Edition. O'Reilly.

  3. Chollet, François (2021). "Deep Learning with Python". 2nd Edition. Manning.

Online Resources

Official Documentation

  1. AUTOSAR Documentation. https://www.autosar.org/standards/

  2. ISO 26262 Road Map. https://www.iso.org/standard/68383.html

  3. IEC 61508 Homepage. https://www.iec.ch/functionalsafety/

  4. GitHub Copilot Documentation. https://docs.github.com/en/copilot

  5. PyTorch Documentation. https://pytorch.org/docs/

  6. TensorFlow Documentation. https://www.tensorflow.org/

Training and Certification

  1. SGS Academy ASPICE Training. https://www.sgsgroup.com.tr/en/automotive/aspice-training

  2. TÜV SÜD Functional Safety. https://www.tuvsud.com/en/industries/mobility/automotive-and-oem/automotive-testing/functional-safety

  3. Udemy: Automotive SPICE Courses. https://www.udemy.com/topic/automotive-spice/

Technical Papers

Requirements and Architecture

  1. Vogelsang, A., Fuhrmann, S. (2013). "Why Feature Dependencies Challenge the Requirements Engineering of Automotive Systems". IEEE RE Conference.

  2. Juez, G., et al. (2014). "An ASPICE Oriented Process for Safety-Critical Systems". ERTS2 2014 Conference.

AI/ML Verification and Validation for Automotive

  1. Borg, M., et al. (2019). "Safely Entering the Deep: A Review of Verification and Validation for Machine Learning and a Challenge Elicitation in the Automotive Industry". Journal of Automotive Software Engineering.

  2. Salay, R., et al. (2018). "An Analysis of ISO 26262: Using Machine Learning Safely in Automotive Software". arXiv:1709.02435.

  3. Gauerhof, L., Munk, P., Burton, S. (2020). "Structuring Validation Targets of a Machine Learning Function Applied to Automated Driving". In: Casimiro, A., et al. (eds) Computer Safety, Reliability, and Security (SAFECOMP 2020). Springer, LNCS 12234.

  4. Schwalbe, G., Schels, M. (2020). "A Survey on Methods for the Safety Assurance of Machine Learning Based Systems". 10th European Congress on Embedded Real Time Systems (ERTS 2020).

  5. Burton, S., et al. (2020). "Mind the Gap: A Comparison of Safety Frameworks for AI in Automotive". In Proceedings of the Workshop on Artificial Intelligence Safety (SafeAI 2020), AAAI.

  6. Falcini, F., Lami, G., Costanza, A.M. (2017). "Deep Learning in Automotive Software". IEEE Software, 34(3), pp. 56-63.

  7. Kläs, M., Sembach, L. (2019). "Uncertainty Wrappers for Data-Driven Models: Bridging the Gap between Safety Requirements and ML-Based Components". In: Computer Safety, Reliability, and Security (SAFECOMP 2019 Workshops). Springer.

  8. Henriksson, J., Berger, C., Borg, M., et al. (2021). "Performance Analysis of Out-of-Distribution Detection on Various Trained Neural Networks". 46th Euromicro Conference on Software Engineering and Advanced Applications (SEAA).

AI Tool Qualification and LLM Code Generation

  1. Heyn, H.M., Knauss, E., Muhammad, A.P., et al. (2023). "Requirement Engineering Challenges for AI-Intense Systems Development". IEEE International Requirements Engineering Conference Workshops (REW).

  2. Kästner, C., Kang, E. (2020). "Teaching Software Engineering for AI-Enabled Systems". In Proceedings of the ACM/IEEE 42nd International Conference on Software Engineering: Software Engineering Education and Training (ICSE-SEET).

  3. Perry, N., Srivastava, M., Kumar, D., Boneh, D. (2023). "Do Users Write More Insecure Code with AI Assistants?". In Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security (CCS '23). ACM.

  4. Pearce, H., Ahmad, B., Tan, B., Dolan-Gavitt, B., Karri, R. (2022). "Asleep at the Keyboard? Assessing the Security of GitHub Copilot's Code Contributions". In 2022 IEEE Symposium on Security and Privacy (SP). IEEE.

  5. Sandoval, G., Pearce, H., Nishi, T., Karri, R., Luo, S., Dolan-Gavitt, B. (2023). "Lost at C: A User Study on the Security Implications of Large Language Model Code Assistants". In Proceedings of the 32nd USENIX Security Symposium.

  6. Jesse, K., Destefanis, G., Humphreys, M., Zhao, D. (2023). "Large Language Models and Simple, Stupid Bugs". In Proceedings of the 2023 IEEE/ACM 20th International Conference on Mining Software Repositories (MSR). IEEE.

DevOps and CI/CD for Safety-Critical Systems

  1. Staron, M. (2021). "Continuous Integration and Delivery for Safety-Critical Automotive Systems: An Industry Perspective". IEEE Software, 38(6), pp. 68-76.

  2. Kolb, R., Muccini, H., Avgeriou, P. (2020). "DevOps in Safety-Critical Systems: Challenges and Recommendations". In Proceedings of the 6th International Workshop on Software Engineering for Smart Cyber-Physical Systems (SEsCPS). ACM.

Process Improvement

  1. Poth, A., Kottke, M., Middelhauve, K. (2019). "Lean and Agile Transition in Regulated and Safety-Critical Environments". In Systems, Software and Services Process Improvement (EuroSPI). Springer, CCIS 1060.

Tools Documentation

  1. PC-lint Plus Manual. Gimpel Software. https://pclintplus.com/

  2. VectorCAST User Guide. Vector Software. https://www.vector.com/int/en/products/products-a-z/software/vectorcast/

  3. IBM DOORS Next Documentation. IBM. https://www.ibm.com/docs/en/engineering-lifecycle-management-suite/doors-next

  4. GitLab CI/CD Documentation. GitLab. https://docs.gitlab.com/ee/ci/

  5. Doxygen Manual. https://www.doxygen.nl/manual/

  6. Jenkins Documentation. https://www.jenkins.io/doc/

  7. Docker Documentation. https://docs.docker.com/

  8. Terraform Documentation. HashiCorp. https://developer.hashicorp.com/terraform/docs

Industry Blogs & Forums

  1. Embedded.com: https://www.embedded.com/

  2. Barr Group Embedded Systems Blog: https://barrgroup.com/blog

  3. Automotive Grade Linux: https://www.automotivelinux.org/

  4. Stack Overflow - MISRA: https://stackoverflow.com/questions/tagged/misra

Previous
Appendix H: Acronyms
Next
Appendix J: Index