We detect you are using an unsupported browser. For the best experience, please visit the site using Chrome, Firefox, Safari, or Edge. X

Maximize Your Experience: Reap the Personalized Advantages by Completing Your Profile to Its Fullest! Update Here

Stay in the loop with the latest from Microchip! Update your profile while you are at it. Update Here

Complete your profile to access more resources.Update Here!

CAN and CAN FD Functional Safety

With the high number of Electronic Control Units (ECUs) accompanied by an increasing complexity of functions in today’s cars, functional safety is very important. The growing importance of safety and driver assistance systems in modern cars intensifies the need for more robust and dependable electronic components. Risks resulting from hardware, random failures or systematic hardware/software errors must be reduced as far as reasonably practicable throughout the product’s foreseeable lifetime.

There are guidelines and standards for the process, the technology and the methods used for the implementation of functional safety. Functional safety means the prevention of unacceptable risks that can arise from hazards caused by malfunctions in electrical or electronic systems, such as a CAN or a CAN FD network. As these networks are intended to support data exchange amongst safety-critical functions, the risk of transmitting incorrect data in a network can be reduced dramatically by implementing robust safety measures in the system. As described below, the safety measures available in our CAN transceivers and CAN controllers result in a more robust CAN or CAN FD communication network.

Functional Safety Documentation

Functional safety documentation for the devices listed below is available on our purchasing portal.

Buy Now

Memory (Flash/RAM) Error Detection and Correction

Feature	MCP2517FD	MCP2518FD	MCP251863	Fault Prevention	Self Diagnostic	System Diagnostic	Fault Mitigation
SRAM with Error Detection and Correction (ECC)	●	●	✔		✔

System Reset, Detect and Manage

Feature	MCP2517FD MCP2518FD	MCP251863	ATA6570 ATA6574	ATA6571	ATA6562 ATA6563 ATA6564 ATA6565 ATA6566	ATA6500 ATA6501 ATA6502 ATA6503 ATA6504 ATA6505	ATA6580 ATA6581 ATA6582 ATA6583 ATA6585 ATA6586 ATA6587 ATA6588	Fault Prevention	Self Diagnostic	System Diagnostic	Fault Mitigation
Power-on Reset (POR)	●	●	●	●	●	●	●			✔	✔
CAN with Loopback Mode	●	●								✔
SPI with Cyclic Redundancy Check (CRC)	●	●							✔	✔
CAN Bus dominant/recessive clamp detection			●	●			●	✔		✔	✔
Voltage monitoring (VCC, VIO, VS)		●	●	●	●	●	●	✔		✔	✔
Watchdog			●				●			✔	✔
SPI with Failure Event Detection			●				●	✔		✔
TXD Dominant Timeout		●	●	●	●	●	●	✔		✔	✔
RXD Recessive clamp detection		●	●	●	●	●	●			✔	✔
Overtemperature Detection		●	●	●	●	●	●			✔	✔

Other Features

Feature	MCP2517FD MCP2518FD	MCP251863	ATA6570 ATA6574	Fault Prevention	Self Diagnostic	System Diagnostic	Fault Mitigation
MCAL Drivers for AUTOSAR^® (enabling E2E communication protection)	●	●	●		✔	✔

For additional information about our functional safety-enabled products and supporting documentation, please visit our Functional Safety page.

Legend:
● Available in all devices
○ Available in some devices
✔ Functional Safety Feature Available
- Not Available

Definitions:
Fault Prevention - Silicon feature that prevents damage, unintended configuration changes or invalid operation
Self-Diagnostic - Silicon/software feature that identifies if the silicon is working as it should be
System Diagnostic - Silicon/software feature that identifies if the system is working as it should be
Fault Mitigation - Silicon feature that can be used by the system to transition to a safe state after a fault is detected