D. I. de Almeida Pereira
ABSTRACT
Despite the existence of new technologies, relay-based electrical circuits are still used in the majority of the Railway Interlocking Systems installations. Due to their safety-critical aspects, these systems must be safety-proved before their implementation and use. Although the railway standards strongly recommend the use of Formal Methods for the specification and proof of these systems, the literature is scarce in this regard. This article presents the results of using a process-based language, CSP, for the specification of the relay-based Railway Interlocking Systems. Differently from other approaches, our methodology allows the specification of transient states. As a result, it is possible to perform a stronger verification, including an investigation about the existence of state succession cycles, which are dangerous in such systems. An electrical circuit example with such problem is discussed and specified, demonstrating the need of our methodology for the safety proof of these systems.
- Jean-Raymond Abrial, Matthew Lee, David Neilson, P. Scharbach, and I Sørensen. 1991. The B-method. In International symposium of VDM Europe. Springer, 398--405.Google Scholar
- Roberto Cavada, Alessandro Cimatti, Sergio Mover, Mirko Sessa, Giuseppe Cadavero, and Giuseppe Scaglione. 2018. Analysis of Relay Interlocking Systems via SMT-based Model Checking of Switched Multi-Domain Kirchhoff Networks. In 2018 Formal Methods in Computer Aided Design (FMCAD). IEEE, 1--9.Google Scholar
- CENELEC. 2011. Railway Applications - Communication, signalling and processing systems-Software for railway control and protection systems. Std. European Committee for Electrotechnical Standardization.Google Scholar
- Dalay Israel de Almeida Pereira. 2020. Analysis and Formal Specification of Relay-based Railway Interlocking Systems. Ph.D. Dissertation. École Centrale de Lille.Google Scholar
- Dalay Israel de Almeida Pereira, David Deharbe, Matthieu Perin, and Philippe Bon. 2019. B-Specification of Relay-Based Railway Interlocking Systems Based on the Propositional Logic of the System State Evolution. In International Conference on Reliability, Safety, and Security of Railway Systems. Springer, 242--258.Google Scholar
- Shiladitya Ghosh, Arindam Das, Nirvik Basak, Pallab Dasgupta, and Alok Katiyar. 2017. Formal Methods for Validation and Test Point Prioritization in Railway Signaling Logic. IEEE Transactions on Intelligent Transportation Systems 18, 3 (March 2017), 678--689. Google ScholarDigital Library
- Thomas Gibson-Robinson, Philip Armstrong, Alexandre Boulgakov, and A.W. Roscoe. 2014. FDR3 --- A Modern Refinement Checker for CSP. In Tools and Algorithms for the Construction and Analysis of Systems (Lecture Notes in Computer Science), Erika Ábrahám and Klaus Havelund (Eds.), Vol. 8413. 187--201.Google Scholar
- K Mark Hansen. 1998. Formalising railway interlocking systems. In Nordic Seminar on Dependable Computing Systems. Citeseer, 83--94.Google Scholar
- Anne E Haxthausen, Andreas A Kjær, and Marie Le Bliguet. 2011. Formal development of a tool for automated modelling and verification of relay interlocking systems. In International Symposium on Formal Methods. Springer, 118--132.Google ScholarCross Ref
- Anne E Haxthausen, Marie Le Bliguet, and Andreas A Kjær. 2008. Modelling and verification of relay interlocking systems. In Monterey Workshop. Springer, 141--153.Google Scholar
- Anne Elisabeth Haxthausen, Hoang Nga Nguyen, and Markus Roggenbach. 2016. Comparing formal verification approaches of interlocking systems. In International Conference on Reliability, Safety, and Security of Railway Systems. Springer, 160--177.Google ScholarCross Ref
- Charles Antony Richard Hoare. 1978. Communicating sequential processes. Commun. ACM 21, 8 (1978), 666--677.Google ScholarDigital Library
- Phillip James, Andy Lawrence, Faron Moller, Markus Roggenbach, Monika Seisenberger, Anton Setzer, Karim Kanso, and Simon Chadwick. 2013. Verification of solid state interlocking programs. In International Conference on Software Engineering and Formal Methods. Springer, 253--268.Google Scholar
- Phillip James, Faron Moller, Hoang Nga Nguyen, Markus Roggenbach, Steve Schneider, and Helen Treharne. 2014. Techniques for modelling and verifying railway interlockings. International Journal on Software Tools for Technology Transfer 16, 6 (2014), 685--711.Google ScholarDigital Library
- T Pasquale, E Rosaria, M Pietro, O Antonio, and A Segnalamento Ferroviario. 2003. Hazard analysis of complex distributed railway systems. In 22nd International Symposium on Reliable Distributed Systems, 2003. Proceedings. IEEE, 283--292.Google ScholarCross Ref
- Roger Rétiveau. 1987. La signalisation ferroviaire. Presse de l'école nationale des Ponts et Chaussées.Google Scholar
- Steve Schneider. 2000. Concurrent and Real-time systems. John Wiley and Sons.Google Scholar
- Steve Schneider and Helen Treharne. 2005. CSP theorems for communicating B machines. Formal Aspects of Computing 17, 4 (2005), 390--422.Google ScholarDigital Library
- Walter Schon, Guy Larraufie, Gilbert Moens, and Jacques Pore. 2013. Railway Signalling and Automation. Vol. 1. LA VIE DU RAIL. https://www.xarg.org/ref/a/2918758485/Google Scholar
- Walter Schön, Guy Larraufie, Gilbert Moëns, and Jacques Poré. 2014. Railway Signalling and Automation. Vol. 3. LA VIE DU RAIL. https://www.xarg.org/ref/a/2918758647/Google Scholar
- Pengfei Sun. 2015. Model based system engineering for safety of railway critical systems. Ph.D. Dissertation. Ecole Centrale de Lille.Google Scholar
- Gregor Theeg. 2017. Railway signalling & interlocking international compendium. PMC Media House GmbH, BingenHamburg.Google Scholar
- PHJ Van Eijk. 1997. Verifying relay circuits using state machines. Logic Group Preprint Series 173 (1997).Google Scholar
- Junfeng Wang, Jungang Wang, Clive Roberts, and Lei Chen. 2015. Parallel Monitoring for the Next Generation of Train Control Systems. IEEE Transactions on Intelligent Transportation Systems 16, 1 (Feb. 2015), 330--338. Google ScholarDigital Library
- Kirsten Winter. 2002. Model checking railway interlocking systems. In Australian Computer Science Communications, Vol. 24. Australian Computer Society, Inc., 303--310.Google Scholar
Index Terms
- CSP specification and verification of relay-based railway interlocking systems
Recommendations
Compositional Verification of Railway Interlocking Systems
Model checking techniques have often been applied to the verification of railway interlocking systems, responsible for guiding trains safely through a given railway network. However, these techniques fail to scale to the interlocking systems controlling ...
Automated Verification of Signalling Principles in Railway Interlocking Systems
In this paper we present a verification strategy for signalling principles for the control of a railway interlocking system written in ladder logic. All translation steps have been implemented and tested on a real-world example of a railway interlocking ...
CSP Specification and Verification of a Relay-Based Railway Interlocking System
Formal Methods: Foundations and ApplicationsAbstractIn previous work, we have presented a methodology for the specification and verification of relay-based Railway Interlocking Systems (RIS) based on their transient states. By using CSP as formal support, it is possible to use a model checker in ...
Comments