Safety of the Intended Functionality (SOTIF) for Automotive Professionals

ISO 21448 and ISO/TR 4804 - 1 day

Date Location Language
Upon request    

Ensuring the safety of a driving automation system encompasses two aspects, namely
(1) the avoidance of unreasonable risk caused by malfunctioning behavior of the system as well as
(2) the avoidance of unreasonable risk caused by hazards associated with the intended functionality and its implementation, e.g. due to performance limitations.

The first aspect - known as functional safety - has been addressed by the industry for quite some time already and is described by the established ISO 26262 standard. The second aspect - referred to as safety of the intended functionality (SOTIF) - however, is more of an emerging topic and corresponding standards are still under development.

If you are looking for an introduction to the topic of SOTIF and related standardization activities, namely ISO 21448, ISO/TR 4804 (formerly known as Safety First for Automated Driving, SaFAD), enroll in this one-day training class.

In this training class, we will compare and contrast functional safety and safety of the intended functionality, review the conceptual SOTIF framework and fundamental terminology, and provide an overview of activities and methods to achieve SOTIF.  The theoretical knowledge is supplemented by means of practical examples.

Target Audience

This training class is designed for automotive professionals (development engineers, engineering managers, quality and project managers) involved in the development of driving automation systems as well as other people interested in SOTIF.


  • Aspects of safety: functional safety vs SOTIF
  • SOTIF terminology: SAE driving automation levels, use case, scene, scenario,  and triggering event
  • Conceptual framework: the four scenario categories and their evolution
  • SOTIF activities and methods
  • Ongoing standardization activities: ISO 21448, ISO/TR 4804, ISO/TS 5083


Available in English and German


Icon On Site Training

Open-enrolment Trainings
at one of our locations

Icon Online Training

Virtual Classroom Trainings
wherever you are

Icon Inhouse Training

In-house Trainings
online or in-house

Terms & Conditions


Our Trainers


Day 1

Overview: Functional Safety and SOTIF

  • Aspects of safety: Functional safety and SOTIF
  • SOTIF-related hazardous event model


  • SAE levels of driving automation
  • Introducing SOTIF terminology: use case, scene, scenario, …
  • Triggering events

SOTIF Related Standards

  • ISO 21448
  • ISO/TR 4804 (ISO/TS 5083)
  • UNECE R157

SOTIF Conceptual Framework

  • Concept of SOTIF areas (known/unknown and safe/hazardous scenarios)
  • SOTIF activities



  • Identification and evaluation of hazards caused by the intended functionality
  • Risk evaluation of the intended function

Identification/Evaluation of Triggering Events/Triggering Conditions

  • Construction and analysis of triggering conditions
  • Acceptance criteria

SOTIF Verification and Validation

  • SOTIF V&V strategy
  • Strategies for the evaluation of area 2 scenarios
  • Strategies for the evaluation of area 3 scenarios

Hands-on: Fuzzy testing

SOTIF Release

  • Methodology for evaluating SOTIF for release
  • Objectives to meet

Summary and Outlook

  • Evolution of SOTIF related standards
  • Possible interaction between ISO 26262 and ISO 21448