DOCSLIB.ORG

Formal Development and Verification of Railway Control Systems - in the Context of ERTMS/ETCS Level 2

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Formal Development and Verification of Railway Control Systems - in the Context of ERTMS/ETCS Level 2 Downloaded from orbit.dtu.dk on: Oct 03, 2021 Formal Development and Verification of Railway Control Systems - In the context of ERTMS/ETCS Level 2 Vu, Linh Hong Publication date: 2015 Document Version Publisher's PDF, also known as Version of record Link back to DTU Orbit Citation (APA): Vu, L. H. (2015). Formal Development and Verification of Railway Control Systems - In the context of ERTMS/ETCS Level 2. Technical University of Denmark. DTU Compute PHD-2015 No. 395 General rights Copyright and moral rights for the publications made accessible in the public portal are retained by the authors and/or other copyright owners and it is a condition of accessing publications that users recognise and abide by the legal requirements associated with these rights. Users may download and print one copy of any publication from the public portal for the purpose of private study or research. You may not further distribute the material or use it for any profit-making activity or commercial gain You may freely distribute the URL identifying the publication in the public portal If you believe that this document breaches copyright please contact us providing details, and we will remove access to the work immediately and investigate your claim. Ph.D. Thesis Doctor of Philosophy Formal Development and Verification of Railway Control Systems In the context of ERTMS/ETCS Level 2 Linh Hong Vu Kongens Lyngby 2015 The work presented in this dissertation is part of the RobustRailS project funded by by Innovation Fund Denmark. www.robustrails.man.dtu.dk DTU Compute Department of Applied Mathematics and Computer Science Technical University of Denmark Richard Petersens Plads Building 324 2800 Kongens Lyngby, Denmark Phone +45 4525 3031 [email protected] www.compute.dtu.dk PHD-2015-395 ISSN: 0909-3192 Summary (In English) This dissertation presents a holistic, formal method for efficient modelling and verification of safety-critical railway control systems that have product line char- acteristics, i.e., each individual system is constructed by instantiating common generic applications with concrete configuration data. The proposed method is based on a combination of formal methods and domain-specific approaches. While formal methods offer mathematically rigorous specification, verification and vali- dation, domain-specific approaches encapsulate the use of formal methods with familiar concepts and notions of the domain, hence making the method easy for the railway engineers to use. Furthermore, the method features a 4-step verification and validation approach that can be integrated naturally into different phases of the software development process. This 4-step approach identifies possible errors in generic applications or configuration data as early as possible inthe software development cycle, and facilitates debugging/troubleshooting if errors are discovered. The proposed method has successfully been applied to case studies of the forthcoming Danish railway interlocking systems that are compatible with the European standardized railway control systems ERTMS/ETCS Level 2. Experiments showed that the method can be used for specification, verification and validation of systems of industrial size. ii Resumé (På Dansk) Denne afhandling præsenterer en holistisk, formel metode til effektiv modeller- ing og verifikation af sikkerhedskritiske jernbanestyresystemer, der har produktlinje- egenskaber, dvs hvert enkelt system konstrueres ved at instantiere fælles generiske applikationer med konkrete konfigurationsdata. Den foreslåede metode er baseret på en kombination af formelle metoder og domæne-specifikke metoder. Mens de formelle metoder tilbyder matematisk stringent specifikation, verifikation og valid- ering, indkapsler de domæne-specifikke metoder brugen af de formelle metoder med velkendte begreber og notationer for det givne domæne, og gør dermed metoden let at bruge for jernbaneingeniører. Metoden tilbyder en 4-trins verifikations-og valid- eringsproces, der kan integreres naturligt i de forskellige faser af software-udvikling. Denne 4-trins proces identificerer eventuelle fejl i generiske applikationer og kon- figurationsdata så tidligt som muligt i softwareudviklingsprocessen, og faciliterer debugging/fejlfinding. Den foreslåede metode har med succes været anvendt i casestudier af de kommende danske jernbanesikringsanlæg, der er kompatible med det europæiske standardiserede jernbanestyresystem, ERTMS/ETCS niveau 2. Forsøg har vist, at fremgangsmåden kan anvendes til specifikation, verifikation og validering af systemer af industriel størrelse. iv To my family. vi Acknowledgements “Every party must come to an end and when it does, there are kisses and promises and waves goodbye.” – LIFE Magazine The last three years have been one of the hardest journeys of my life. Luckily, I didn’t have to walk it alone: my two supervisors, colleagues, friends, and family have always been there for me through all the ups and downs. Anne (Haxthausen): I am grateful to you for your guidance and help with everything from the beginning to the end of my study! The lessons that I learned from you through all these years have equipped me well for the future. Jan (Peleska): I admire you for your excellences in both theory and practice, and for being inspiring professionally and personally. Thank you for your invaluable suggestions, and for your hospitality during my visits in Bremen! Jan (Bertelsen), Nikhil (Mohan Pande), and Ross (Edwin Gammon): thank you for sharing your immense expertise about Danish interlocking systems with me, and for being always helpful when I had questions! I am thankful to my colleagues and partners in RobustRailS project for their valuable inputs and discussions. Florian (Lapschies) and Uwe (Schulze): I am grateful to you for your precious help with the implementation of the method in RT-Tester. Birgit (Michaelis), Blagoy (Genov), Cécile (Braunstein), Cornelia (Zahlten), Christoph (Hilken), Elena (Gorbachuk), Felix (Hübner), and Wen-ling (Huang): many thanks to you for making it feel like home when I was in Bremen. Andreas (Foldager), Jacob (Hansen), Kim (Sørensen), and Peter (Østergaard): thanks for the interesting discussions! It has been fun working with you. Janne (Lassen) and Hanne (Jensen): thanks for your help with all administrative procedures! If it hasn’t been for you, it would have taken me long time to get around. Bahram (Zarrin), Dilshan (Makavitage), Jóhan (Davidsen), and Vlad (Acretoaie): thanks for your accompany and discussions about everything! I have been enjoying having you guys as office mates. viii Acknowledgements Anh-Dung (Phan), Nhut (Nguyen), Huynh (Luong), Trung (Trinh), Thang (Pham), The (Ngo), Nong (Ngo), Hiep (Nguyen), Hung (Tran), and their families; Ninh (Pham), Hong (Phan), Ha (Nguyen), Hang (Cao), Tuan (Nguyen), and Hoa (Le): I am grateful to you for recharging me with laughters, good time, good food, and always reminding me to enjoy every moment in the long journey. To friends and colleagues that I couldn’t list all here: thanks for being there when I need you. A special thank is dedicated to my friend, my companion, my ally, and my sweetheart Soňa. You made the journey an adventure. Finally, I would have never come this far, if it has not been for the unconditional love, trust, and support from my family. Preface This dissertation was prepared at the department of Applied Mathematics and Computer Science (DTU Compute) at the Technical University of Denmark in partial fulfilment of the requirements for acquiring a degree of Doctor of Philosophy (PhD). The work presented in this dissertation deals with formal development and verification of railway control systems. The primary focus is to develop a holistic method and an associated toolchain to facilitate the efficient development of safe railway interlocking systems that are compatible with European Train Control System (ETCS) Level 2. The dissertation summarises all the studies conducted during the period 2012- 2015. Some of the work has been presented in publications published during the PhD study. The work presented in this dissertation is part of the work package WP.4.1 of the RobustRailS project, which is funded by Innovation Fund Denmark. Kongens Lyngby, October 31, 2015 Linh Hong Vu x Contents Summary i Resumé iii Acknowledgements vii Preface ix Contents xi List of Papers xv Acronyms xvii 1 Introduction 1 1.1 The Danish Signalling Programme ..................... 1 1.2 RobustRailS Project .............................. 2 1.3 Goals, Scope, and Contributions of the Thesis ............... 3 1.4 Structure of the Thesis ............................ 4 2 Background 7 2.1 ERTMS/ETCS ................................. 8 2.2 ETCS Level 2 Architecture .......................... 9 2.3 Railway Interlocking Systems ........................ 12 2.4 Interlockings and ETCS Level 2 ....................... 13 2.5 The new Danish Interlocking Systems ................... 13 2.6 Product Line Characteristics ......................... 19 2.7 Formal Methods ................................ 20 2.8 Model Checking ................................ 22 2.9 Model-based Testing ............................. 22 2.10 Domain-specific Languages ......................... 24 2.11 Mathematical Preliminaries ......................... 26 3 Method Overview 31 3.1 Motivation ................................... 31 3.2 Ingredients ................................... 32 3.3 Why Two Domain-specific Languages? ................... 32 3.4 Verification and Validation Flow .....................
Load more

Recommended publications
  • CONTRACT T-8000-1415 AUTOMATIC TRAIN CONTROL TECHNICAL SPECIFICATION THIS PAGE INTENTIONALLY LEFT BLANK Contents
    ATTACHMENT C PART 2 – ATC SYSTEM MARYLAND TRANSIT ADMINISTRATION CONTRACT T-8000-1415 AUTOMATIC TRAIN CONTROL TECHNICAL SPECIFICATION THIS PAGE INTENTIONALLY LEFT BLANK Contents 1 GENERAL REQUIREMENTS 2 COMMUNICATIONS BASED TRAIN CONTROL REQUIREMENTS 3 MAIN LINE AND STORAGE YARD SOLID STATE INTERLOCKING REQUIREMENTS 4 AUTOMATIC TRAIN SUPERVISION REQUIREMENTS 5 DATA COMMUNICATIONS SYSTEM REQUIREMENTS 6 AUXILIARY WAYSIDE EQUIPMENT REQUIREMENTS 7 ENVIRONMENTAL AND EMC 8 SYSTEM SAFETY REQUIREMENTS 9 RELIABILITY, AVAILABILITY, AND MAINTAINABILITY REQUIREMENTS 10 INSTALLATION CUTOVER AND CONSTRUCTION REQUIREMENTS 11 ATC TESTING 12 QUALITY ASSURANCE AND CONTROL 13 TECHNICAL SUPPORT 14 TRAINING Attachment C, Part 2, ATC System T-8000-1415 i September 2015 THIS PAGE INTENTIONALLY LEFT BLANK Attachment C, Part 2, ATC System T-8000-1415 ii September 2015 SECTION 1 GENERAL REQUIREMENTS Contents 1.1 GENERAL..................................................................................................................................1-1 1.2 PROJECT OBJECTIVES ...............................................................................................................1-2 1.2.1 PROVEN DESIGN......................................................................................................1-3 1.2.2 COMMISSIONING ON A REVENUE SYSTEM...............................................................1-3 1.2.3 DESIGN LIFE.............................................................................................................1-3 1.3 SCOPE OF WORK......................................................................................................................1-3
    [Show full text]
  • Rehabilitation and Improvement of the Arkansas River Lift Bridge, Mp 410.6
    REHABILITATION AND IMPROVEMENT OF THE ARKANSAS RIVER LIFT BRIDGE, MP 410.6 JOB SPECIAL PROVISIONS FY2017 TIGER GRANT NO. 157600102 FRA GRANT AGREEMENT NO. 69A36520401680TIIAR July 23, 2021 Arkansas River Lift Bridge, MP 410.6 Table of Contents Page General Special Provisions ........................................................................................... 1 Maintaining Railroad Operations ...................................................................................... 1 Coordination of Marine Navigation ................................................................................... 4 Electrical Special Provisions ........................................................................................ 7 Electrical Rehabilitation .................................................................................................... 8 Mechanical Special Provisions .................................................................................... 59 M100 – General Mechanical Specifications ..................................................................... 60 M101 – Sheaves, Trunnions, Bearings ........................................................................... 81 M102 – Counterweight Wire Ropes ................................................................................. 84 M103 – Counterweight Balancing.................................................................................... 89 M104 – Machinery Bearing Liners ................................................................................... 93
    [Show full text]
  • Signalling Products Such As TCC, TSRS and RBC
    > Unified systems • MACS-ATS (ATS & SCADA): Good performance and high efficiency for dispatching and reduction of implementation and life cycle cost, centralized control, decentralized back up • CBI & ZC: High performance and good expandability, proven track record for high speed railway signalling products such as TCC, TSRS and RBC > Energy efficiency > Configuration oriented design > Reduces data configuration work and data validation process of the original station REFERENCE – BEIJING CHANGPING LINE As a system integration contractor, HollySys has successfully implemented Beijing Subway Changping Line Phase 1 which has been in revenue service since 2010. And the Phase 2 of Changping is currently under construction and expected to be integrated with Phase 1 opening for service in 2015. Phase 1 Chengnan Station to Xi’er Qi Station, 7 stations and full length of 21.42 Km with 15.5km elevated section, 2.92km underground section and 3.0 km ground section. Phase 2 Ming Tombs Station to Chengnan Station, 4 stations and full length of 10.28 Km all underground section. The complete double track 31.7 Km long Changping line consists of 1 Control Center, 1 Back-up Control Center, 11 Stations, 27 of 6-set trains, 2 depots with 1 training center and 1 maintenance center. HollySys (Asia Pacific) Pte Ltd 200 Pandan Loop, #08-01 Pantech 21, Singapore 128388 Tel: +65 6777 0950 Fax: +65 6777 2730 [email protected] Urban Railway SIGNALLINGSIGNALLING All Rights Reserved. Copyright © 2014 by HollySys International. SedSed QuiaQuia NonNon DoloreDolore NequeNeque porro porro quisquam quisquam est, est, qui qui dolorem dolorem ipsum ipsum quia quia dolor dolor sit sit amet, amet, consectetu consectetur,r ,adipisci adipisci velit, velit, sed sed quia quia nonnon numquam numquam eius eius modi modi tempora tempora incidunt incidunt ut ut labore labore et et dolore dolore magnam magnam aliquam aliquam quaerat quaerat voluptatem.
    [Show full text]
  • Chapter 5 Signals
    CALTRAIN DESIGN CRITERIA CHAPTER 5 – SIGNALS CHAPTER 5 SIGNALS A. GENERAL When the Southern Pacific Railroad (SP) owned and operated the Caltrain corridor, the signal system had been designed based on the mixed operation of freight and passenger trains. The signal system spacing was based upon single direction running, with braking distances for 80 Ton per Operative Brake (TPOB) freight trains at 60 MPH (miles per hour). The Santa Clara, College Park, Fourth Street, and San Jose operators' positions were consolidated into a single dispatch center, with Centralized Traffic Control (CTC) from Santa Clara (Control Point or CP Coast) to CP Tamien. San Francisco Control Points, namely Fourth Street, Potrero, Bayshore, and Brisbane were operated as Manual Interlockings under the control of the San Jose Dispatcher with bi-directional automatic block signaling between Fourth Street and Potrero, and single direction running between control points from Potrero southward. After State Department of Transportation (Caltrans) completed the freeway I-280 retrofit, bi- directional CTC was in effect between Fourth Street and Bayshore. Between 1992 and 1997, signal design was performed by various designers, as a by product of third party contracts on the railroad. There was little consistency between projects, and little overview as to how the projects tied together, and how they would fare with future projects. In 1997, the Caltrain's two signal engineering designers, and the contract operator developed the Caltrain Signal Engineering Design Standards. The new standards have become one of migration. 1.0 SIGNAL SYSTEM MIGRATION The migration of the Caltrain Signal System was defined as follows: a.
    [Show full text]
  • Mandatory Requirements for Signalling Safeworking Procedures Version 2.0 Issued Date: 26 May 2015
    T HR SC 02000 ST Standard Mandatory Requirements for Signalling Safeworking Procedures Version 2.0 Issued date: 26 May 2015 Important Warning This document is one of a set of standards developed solely and specifically for use on public transport assets which are vested in or owned, managed, controlled, commissioned or funded by the NSW Government, a NSW Government agency or a Transport Agency (as defined in the Asset Standards Authority Charter). It is not suitable for any other purpose. You must not use or adapt it or rely upon it in any way unless you are authorised in writing to do so by a relevant NSW Government agency. If this document forms part of a contract with, or is a condition of approval by a NSW Government agency, use of the document is subject to the terms of the contract or approval. This document may not be current. Current standards are available for download from the Asset Standards Authority website at Superseded by T HR SC 02000 ST v3.0 www.asa.transport.nsw.gov.au. © State of NSW through Transport for NSW T HR SC 02000 ST Mandatory Requirements for Signalling Safeworking Procedures Version 2.0 Issued date: 26 May 2015 Standard governance Owner: Lead Signals and Control Systems Engineer, Asset Standards Authority Authoriser: Chief Engineer Rail, Asset Standards Authority Approver: Director, Asset Standards Authority on behalf of the ASA Configuration Control Board Document history Version Summary of Changes 1.0 First issue. 2.0 Minor technical changes to the following topics: • treatment of trainstop failures in
    [Show full text]
  • Solid State Interlocking (SSI)
    Discipline Engineering Standard –NSW Category Signalling Title Solid State Interlocking (SSI) Reference Number SMP 32 –(RIC Standard: SC 00 52 00 32 SI) Document Control Status Date Prepared Reviewed Endorsed Approved GM Standards and Standards Infrastructure Safety Systems Engineer Strategy & Committee Issue 1 Mar 05 Performance Revision 2 Refer to Refer to minutes Reference H Olsen M Owens of meeting Number 12/08/04 Engineering Standard –NSW Signalling SMP 32 Solid State Interlocking (SSI) Disclaimer Australian Rail Track Corporation has used its best endeavors to ensure that the content, layout and text of this document is accurate, complete and suitable for its stated purpose. It makes no warranties, express or implied, that compliance with the contents of this document shall be sufficient to ensure safe systems of work or operation. Australian Rail Track Corporation will not be liable to pay compensation in respect of the content or subsequent use of this document for any other purpose than its stated purpose or for any purpose other than that for which it was prepared except where it can be shown to have acted in bad faith or there has been willful default. Document Approval The technical content of this document has been approved by the relevant ARTC engineering authority and has also been endorsed by the ARTC Safety Committee. Document Supply and Control The Primary Version of this document is the electronic version that is available and accessible on the Australian Rail Track Corporation Internet and Intranet website. It is the document user’s sole responsibility to ensure that copies are checked for currency against the Primary Version prior to its use.
    [Show full text]
  • (CCS) and Migration to ERTMS
    FEASIBILITY STUDY REFERENCE FEASIBILITY STUDY REFERENCE SYSTEM ERTMS FinalSYSTEM Report ERTMS DigitalisationFinal Report of CCS (Control Command and Signalling) and MigrationDigitalisation to ERTMS of CCS (Control Command and Signalling) and Migration to ERTMS European Railway Agency - 2017 23 OP European Railway Agency - 2017 23 OP 14 AUGUST 2018 14 AUGUST 2018 FEASIBILITY STUDY REFERENCE SYSTEM ERTMS Contact ANDRÉ VAN ES Arcadis Nederland B.V. P.O. Box 220 3800 AE Amersfoort The Netherlands Our reference: 083702890 A - Date: 2 November 2018 2 of 152 FEASIBILITY STUDY REFERENCE SYSTEM ERTMS CONTENTS 1 INTRODUCTION 9 1.1 EU Context of Feasibility Study 9 1.2 Digitalisation of the Rail Sector 9 1.3 Objectives of Feasibility Study 11 1.4 Focus of Feasibility Study 11 1.5 Report Structure 12 2 SCOPE AND METHODOLOGY 13 2.1 Methodology 13 2.2 Scope Addition 15 2.3 Wider Pallet of Interviewed Parties 15 2.4 Timeframes 19 3 INFRASTRUCTURE MANAGERS 20 3.1 Findings and Trends Infrastructure Managers 20 3.2 Reasons for Replacing Non-ETCS Components 28 3.3 Short-Term versus Long-Term 31 4 OPERATING COMPANIES 33 4.1 Dutch Railways (NS) 33 4.2 DB Cargo 35 4.3 RailGood 36 4.4 European Rail Freight Association 37 4.5 Findings and Trends Operating Companies 38 5 RAIL INDUSTRY SUPPLIERS 40 5.1 Supplier 1 40 5.2 Supplier 2 41 5.3 Supplier 3 42 5.4 Supplier 4 42 5.5 Supplier 5 42 Our reference: 083702890 A - Date: 2 November 2018 3 of 152 FEASIBILITY STUDY REFERENCE SYSTEM ERTMS 5.6 Findings and Trends Suppliers 43 6 RAILWAY INDUSTRY DEVELOPMENT INITIATIVES
    [Show full text]
  • From Formal Verification of Railway Interlocking to Its Certification
    1 SafeCap: from formal verification of railway interlocking to its certification Alexei Iliasov The Formal Route Dominic Taylor Systra Scott Lister Linas Laibinis Vilnius University Alexander Romanovsky The Formal Route and Newcastle University Abstract The increasing complexity of modern interlocking poses a major chal- lenge to ensuring railway safety. This calls for application of formal methods for assurance and verification of their safety. We have developed an industry-strength toolset, called SafeCap, for formal verification of interlockings. Our aim was to overcome the main barriers in deploying formal methods in industry. The ap- proach proposed verifies interlocking data developed by signalling engineers in the ways they are designed by industry. It ensures fully-automated verification of safety properties using the state of the art techniques (automated theorem provers and solvers), and provides diagnostics in terms of the notations used by engineers. In the last two years SafeCap has been successfully used to verify 26 real-world mainline interlockings, developed by different suppliers and design offices. SafeCap is currently used in an advisory capacity, supplementing manual check- ing and testing processes by providing an additional level of verification and ena- bling earlier identification of errors. We are now developing a safety case to sup- port its use as an alternative to some of these activities 2 Iliasov, Taylor, Laibinis, Romanovsky 1 Railway Signalling Effective signalling is essential to the safe and efficient operation of any railway network. Whether by mechanical semaphores, colour lights or electronic messag- es, signalling allows trains to move only when it is safe for them to do so.
    [Show full text]
  • State of the Art of Computer Application to the Railway Traffic Control and Automation Giuseppe Sciutto* & Giacomo Astengo
    Transactions on the Built Environment vol 34, © 1998 WIT Press, www.witpress.com, ISSN 1743-3509 State of the art of computer application to the railway traffic control and automation Giuseppe Sciutto* & Giacomo Astengo^ * University ofGenova via all Opera Pia 11 a, 16100 Genova, Italy 7e/. J9 70 JJJ2747 Fox. JP 70 JJJ2700 * Sciro Electra S.r.l. Via Fieschi, 25/6a 16121 Genova, Italy 7W J9 70 J7026J2 Fm:. J9 70 J70270J Abstract The Computer-based technologies are presently largely applied to the railway traffic control and automation. A high number of installations have been in operation for many years all over the world; some of them controlling very large network areas and providing an extensive range of functions. At the same time, other areas of application are being covered, like the simulation of operating conditions, the evaluation of different design alternatives, the introduction of artificial intelligence techniques, the maintenance management, the information handling. An overview of the most significant technical experience, existing or in progress, is given for the different application areas. 1 Introduction The last decades have seen a development of the computer-based technologies, certainly well beyond any predictable extent, and interesting almost every field of industrial application. Of course, also the railway traffic control and automation area is now presenting a large amount of successful computer-based installations and it Transactions on the Built Environment vol 34, © 1998 WIT Press, www.witpress.com, ISSN 1743-3509 608 Computers in Railways is interesting to note that they are rapidly increasing, not only from the quantity point of view, but also as far as the type of application is concerned.
    [Show full text]
  • Systems Engineering Framework for Railway Control & Safety Systems
    Systems Engineering Framework for Railway Control & Safety Systems Karl Michael King A Thesis Submitted for the Degree of Master of Science by Research January 2018 Department of Electronic, Electrical and Systems Engineering University of Birmingham University of Birmingham Research Archive e-theses repository This unpublished thesis/dissertation is copyright of the author and/or third parties. The intellectual property rights of the author or third parties in respect of this work are as defined by The Copyright Designs and Patents Act 1988 or as modified by any successor legislation. Any use made of information contained in this thesis/dissertation must be in accordance with that legislation and must be properly acknowledged. Further distribution or reproduction in any format is prohibited without the permission of the copyright holder. EXECUTIVE SUMMARY AND ABSTRACT In this report I detail how I have investigated the feasibility of producing a systems engineering framework that can be applied to all forms of Railway Control & Safety (RCS) systems in order to simplify their development, delivery and implementation. Based on this research, I propose two simple models that can be used to model conventional signalling, ERTMS, CBTC and PTC systems; a functional model and a physical model. I have looked into how these models can be utilised to model specific systems and how this can then be used to identify the high-level functionality and interfaces of individual sub-systems across different physical locations and organisations. I go on to propose a simple method to keep track of individual sub- system locations and their high-level functionality. I also propose how the functional model can be represented as a negative-feedback control system.
    [Show full text]
  • Transportation-Markings Database: Railway Signals, Signs, Marks & Markers
    T-M TRANSPORTATION-MARKINGS DATABASE: RAILWAY SIGNALS, SIGNS, MARKS & MARKERS 2nd Edition Brian Clearman MOllnt Angel Abbey 2009 TRANSPORTATION-MARKINGS DATABASE: RAILWAY SIGNALS, SIGNS, MARKS, MARKERS TRANSPORTATION-MARKINGS DATABASE: RAILWAY SIGNALS, SIGNS, MARKS, MARKERS Part Iiii, Second Edition Volume III, Additional Studies Transportation-Markings: A Study in Communication Monograph Series Brian Clearman Mount Angel Abbey 2009 TRANSPORTATION-MARKINGS A STUDY IN COMMUNICATION MONOGRAPH SERIES Alternate Series Title: An Inter-modal Study ofSafety Aids Alternate T-M Titles: Transport ration] Mark [ing]s/Transport Marks/Waymarks T-MFoundations, 5th edition, 2008 (Part A, Volume I, First Studies in T-M) (2nd ed, 1991; 3rd ed, 1999, 4th ed, 2005) A First Study in T-M' The US, 2nd ed, 1993 (part B, Vol I) International Marine Aids to Navigation, 2nd ed, 1988 (Parts C & D, Vol I) [Unified 1st Edition ofParts A-D, 1981, University Press ofAmerica] International Traffic Control Devices, 2nd ed, 2004 (part E, Vol II, Further Studies in T-M) (lst ed, 1984) International Railway Signals, 1991 (part F, Vol II) International Aero Navigation, 1994 (part G, Vol II) T-M General Classification, 2nd ed, 2003 (Part H, Vol II) (lst ed, 1995, [3rd ed, Projected]) Transportation-Markings Database: Marine, 2nd ed, 2007 (part Ii, Vol III, Additional Studies in T-M) (1 st ed, 1997) TCD, 2nd ed, 2008 (Part Iii, Vol III) (lst ed, 1998) Railway, 2nd ed, 2009 (part Iiii, Vol III) (lst ed, 2000) Aero, 1st ed, 2001 (part Iiv) (2nd ed, Projected) Composite Categories
    [Show full text]
  • Report of a Comparative Analysis of the Interlocking Systems
    Report of a comparative analysis of the Interlocking Systems “Rapporto di analisi comparata di Sistemi di Interlocking” Imad Zaza Attività svolta nel progetto RAISSS: RAILWAY SIGNALLING: SAFETY AND SECURITY POR CReO FESR 2007 – 2013, LINEA D’INTERVENTO 1.5.a - 1.6, BANDO UNICO R&S ANNO 2012, cofounded by Tuscany region Referente: Paolo Nesi Distributed System and Internet Technologies Lab Distributed Data Intelligence and Technologies Lab Department of Information Engineering (DINFO) University of Florence http://www.disit.dinfo.unifi.it 19/04/2013 Version 1.0 1 Report of a comparative analysis of the Interlocking Systems EXECUTIVE SUMMARY Signaling is the keystone of the railway transportation system and besides it, the interlocking system acts a central role granting the key issues such safety of the overall system. In order to develop a new Interlocking System, in addition to study the interlocking principles and to have a reasonable background in computer based architecture we have to learn from the state-of-the-art of the existent railways vendor’s proposal. To cover the topic, this report brings together all the main aspects which relate to a choice of ones of the most used Interlocking Systems in Europe. This include the overall architecture, fault resilience policy, software used to implement the main functions and to interact with railway operators. Being SIL4 classified systems, they have some commonly features such as: the development process have to follow V&V model; formal methods to specification, validation, verification is mandatory. It is also noticed that the interlocking logic – the core issue - is generally an abstract model of the relay circuit due the well-established railway’s engineering knowledge.
    [Show full text]