新一代列车控制系统中主备开关安全计算机的正式验证

2017 7th IEEE International Symposium on Microwave, Antenna, Propagation, and EMC Technologies (MAPE) Pub Date : 2017-10-01 DOI:10.1109/MAPE.2017.8250817

Shi Yu, Lian-chuan Ma, Yuan Cao

{"title":"新一代列车控制系统中主备开关安全计算机的正式验证","authors":"Shi Yu, Lian-chuan Ma, Yuan Cao","doi":"10.1109/MAPE.2017.8250817","DOIUrl":null,"url":null,"abstract":"The next generation of train-control safety computer is designed as double-redundant systems as safety-critical system. Due to the complexity of the safety computer logic, the active-standby switching between the two subsystems involves multiple state transition under several different conditions. The correctness of the switching process needs to be confirmed by formal verification. In this paper, the UML is used to establish the model and the NuSMV is used to formalize the model. An analysis of multiple-faults situation and the dual-hoststate is carried out. According to the result of model checking, an improvement was proposed to optimize the switching process.","PeriodicalId":320947,"journal":{"name":"2017 7th IEEE International Symposium on Microwave, Antenna, Propagation, and EMC Technologies (MAPE)","volume":"379 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Formal verification of active-standby switchingon safety computer in next generation train control system\",\"authors\":\"Shi Yu, Lian-chuan Ma, Yuan Cao\",\"doi\":\"10.1109/MAPE.2017.8250817\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The next generation of train-control safety computer is designed as double-redundant systems as safety-critical system. Due to the complexity of the safety computer logic, the active-standby switching between the two subsystems involves multiple state transition under several different conditions. The correctness of the switching process needs to be confirmed by formal verification. In this paper, the UML is used to establish the model and the NuSMV is used to formalize the model. An analysis of multiple-faults situation and the dual-hoststate is carried out. According to the result of model checking, an improvement was proposed to optimize the switching process.\",\"PeriodicalId\":320947,\"journal\":{\"name\":\"2017 7th IEEE International Symposium on Microwave, Antenna, Propagation, and EMC Technologies (MAPE)\",\"volume\":\"379 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-10-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2017 7th IEEE International Symposium on Microwave, Antenna, Propagation, and EMC Technologies (MAPE)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/MAPE.2017.8250817\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 7th IEEE International Symposium on Microwave, Antenna, Propagation, and EMC Technologies (MAPE)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MAPE.2017.8250817","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

下一代列车控制安全计算机被设计成双冗余系统作为安全关键系统。由于安全计算机逻辑的复杂性，两个子系统之间的主备切换涉及多种不同条件下的多次状态转换。切换过程的正确性需要通过形式验证来确认。本文采用UML建立模型，采用NuSMV对模型进行形式化。对多故障情况和双主机状态进行了分析。根据模型校核结果，提出了优化切换过程的改进方案。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Formal verification of active-standby switchingon safety computer in next generation train control system

The next generation of train-control safety computer is designed as double-redundant systems as safety-critical system. Due to the complexity of the safety computer logic, the active-standby switching between the two subsystems involves multiple state transition under several different conditions. The correctness of the switching process needs to be confirmed by formal verification. In this paper, the UML is used to establish the model and the NuSMV is used to formalize the model. An analysis of multiple-faults situation and the dual-hoststate is carried out. According to the result of model checking, an improvement was proposed to optimize the switching process.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2017 7th IEEE International Symposium on Microwave, Antenna, Propagation, and EMC Technologies (MAPE)

自引率

0.00%

发文量