Validation process for railway interlocking systems

Bonacchi, Andrea; Fantechi, Alessandro; Bacherini, Stefano; Tempestini, Matteo

doi:10.1016/j.scico.2016.04.004

Cited by 17 publications

(15 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…All technical rules presented herein are based on the Norwegian infrastructure manager's regulations. 4 The goal of the consistency checking is to confirm that no inconsistencies exist, in which case no further information is required, or to find inconsistencies and present them in a way that allows the user to understand the error and to adjust their design accordingly. Rules are therefore expressed negatively, as rule violations, so that a query corresponding to the rule is empty whenever the rule is consistent with the design, or the query contains counterexamples to the rule when they exist.…”

Section: Rule Violations Representationmentioning

confidence: 99%

“…This suggests that the details of object placement at one station seldom influence the object placements at another station. Such locality of properties has been earlier exploited by other railway verification approaches, e.g., [23] or [4]. Bonacchi et al [4], in particular use locality to split model checking problems into smaller pieces, and using topology data to optimize variable ordering in BDD-based verification.…”

Section: Incremental Verificationmentioning

confidence: 99%

“…Such locality of properties has been earlier exploited by other railway verification approaches, e.g., [23] or [4]. Bonacchi et al [4], in particular use locality to split model checking problems into smaller pieces, and using topology data to optimize variable ordering in BDD-based verification. For incremental Datalog verification, locality of rules would mean that predicates which depend on graph connectedness would have a bound on the search depth needed to update results after a single object's change.…”

Section: Incremental Verificationmentioning

confidence: 99%

See 2 more Smart Citations

Efficient verification of railway infrastructure designs against standard regulations

Luteberget

Johansen

2017

Form Methods Syst Des

View full text Add to dashboard Cite

In designing safety-critical infrastructures s.a. railway systems, engineers often have to deal with complex and large-scale designs. Formal methods can play an important role in helping automate various tasks. For railway designs formal methods have mainly been used to verify the safety of so-called interlockings through model checking, which deals with state change and rather complex properties, usually incurring considerable computational burden (e.g., the state-space explosion problem). In contrast, we focus on static infrastructure models, and are interested in checking requirements coming from design guidelines and regulations, as usually given by railway authorities or safety certification bodies. Our goal is to automate the tedious manual work that railway engineers do when ensuring compliance with regulations, through using software that is fast enough to do verification on-the-fly, thus being able to be included in the railway design tools, much like a compiler in an IDE. In consequence, this paper describes the integration into the railway design process of formal methods for automatically extracting railway models from the CAD railway designs and for describing relevant technical regulations and expert knowledge as properties to be checked on the models. We employ a variant of Datalog and use the standardized "railway markup language" railML as basis and exchange format for the formalization. We developed a prototype tool and integrated it in industrial railway CAD software, developed under the name RailCOMPLETE . This on-the-fly verification tool is a help for the engineer while doing the designs, and is not a replacement to other more heavy-weight software like for doing interlocking verification or capacity analysis. Our tool, through the export into railML, can be easily integrated with these other tools. We apply our tool chain in a Norwegian railway project, the upgrade of the Arna railway station.

show abstract

Section: Rule Violations Representationmentioning

confidence: 99%

Section: Incremental Verificationmentioning

confidence: 99%

Section: Incremental Verificationmentioning

confidence: 99%

See 1 more Smart Citation

Efficient verification of railway infrastructure designs against standard regulations

Luteberget

Johansen

2017

Form Methods Syst Des

View full text Add to dashboard Cite

show abstract

“…This principle has been exploited in [22] to define domain-oriented optimisation of the variable ordering in a BDD-based verification. Locality can be used also for slicing, as suggested in [3,9,8,1]: the idea is to consider only the portion of the model that has influence on the property to be verified, by a topological selection of interested track elements (therefore closely related to the cone of influence of the property): this allows for a much more efficient verification of the single property, but comes at the price of repeating the slicing and the verification for every property, and of separately checking that verifying slices does actually imply the satisfaction of desired properties for the whole system. Nevertheless, it appears that when automated, this process can offer significant time and memory savings.…”

Section: Compositionalitymentioning

confidence: 99%

Compositional Verification of Interlocking Systems for Large Stations

Fantechi

Haxthausen

Macedo

2017

Software Engineering and Formal Methods

View full text Add to dashboard Cite

Abstract. Railway interlocking systems are responsible to grant exclusive access to a route, that is a sequence of track elements, through a station or a network. Formal verification that basic safety rules regarding exclusive access to routes are satisfied by an implementation is still a challenge for networks of large size due to the exponential computation time and resources needed. Some recent attempts to address this challenge adopt a compositional approach, targeted to track layouts that are easily decomposable into sub-networks such that a route is almost fully contained in a sub-network: in this way granting the access to a route is essentially a decision local to the sub-network, and the interfaces with the rest of the network easily abstract away less interesting details related to the external world. Following up on previous work, where we defined a compositional verification method that started considering routes that overlap between sub-networks in interlocking systems governing a multi-station line, we attack the verification of large networks, which are typically those in main stations of major cities, and where routes are very intertwined and can hardly be separated into sub-networks that are independent at some degree. At this regard, we study how the division of a complex network into sub-networks, using stub elements to abstract all the routes that are common between sub-networks, may still guarantee compositionality of verification of safety properties.

show abstract

“…In order to verify the feasibility of the integrated system scheme, referencing the verification method of train control system and interlocking system [9][10][11], on the simulation platform of the rail traffic signal system with the existing interlocking system, the software has been used to simulate the control function of the area integrated controller, and the concrete control process is carried out as shown in Figure 3. The experimental interface is developed by VC++6.0 program, as shown in Figure 4, and urban rail transit main track signal layout is selected as the reference computer simulation design.…”

Section: Simulationmentioning

confidence: 99%

Integration Research of Communication Based Train Control and Computer Interlocking in Urban Rail Transit

Lin¹,

Li²,

Zeng³

et al. 2017

dtetr

View full text Add to dashboard Cite

Abstract. By analyzing the interface information of CBTC and computer interlocking, the process of train control was abstracted as a closed-loop control model based on communication mode of train-to-train. Considering the whole fail-safe of the integrated signal system, designed four operating modes that would have strong compatibility. Through software simulation, the model tested its the validation and the integration proved its feasibility. The results indicate that this kind of integration can be available in the signal system of urban rail transit.

show abstract

Validation process for railway interlocking systems

Cited by 17 publications

References 12 publications

Efficient verification of railway infrastructure designs against standard regulations

Efficient verification of railway infrastructure designs against standard regulations

Compositional Verification of Interlocking Systems for Large Stations

Integration Research of Communication Based Train Control and Computer Interlocking in Urban Rail Transit

Contact Info

Product

Resources

About