1 Satisfiability Testing in the Railway Industry Simon Chadwick Head of Research Westinghouse Rail Systems Limited, Chippenham, UK SAT2009 Twelfth International.

Slides:



Advertisements
Similar presentations
Create a Detailed CTC Machine Model with JMRI/PanelPro
Advertisements

For Personal Use Only This presentation contains copyrighted material. PLEASE DO NOT COPY OR DUPLICATE. NOT FOR COMMERCIAL USE. For Personal Use Only This.
1 The 2-to-4 decoder is a block which decodes the 2-bit binary inputs and produces four output All but one outputs are zero One output corresponding to.
SCORT/TRB Rail Capacity Workshop - Jacksonville Florida1 1  A Primer on Capacity Principles  New Technologies  Public Sector Needs 22 September
Chapter 1: Introduction 1 ©2000, John Wiley & Sons, Inc. Nise/Control Systems Engineering, 3/e Chapter 1 Introduction.
Signals Refresher Training. S.O.C. Signals In this clinic, we will be reviewing the basic signal aspects we use on the S.O.C. We will be seeing various.
Signal Basics. Signals: –Allow for safe operation of trains – protecting your train, other trains, and the equipment –Lets the railroad operate more efficiently.
Lift Safety EZ Up 10’ Lift. Training Objectives  Identify lift hazards  Understand OSHA equipment requirements  Know how to inspect equipment  Take.
Rexroth IndraDrive Integrated Safety Technology
CE 515 Railroad Engineering Line-haul Operations Source: Armstrong Ch 13 “Transportation exists to conquer space and time -”
Materials developed by K. Watkins, J. LaMondia and C. Brakewood Rail Capacity Unit 3: Measuring & Maximizing Capacity.
Federal Motor Vehicle Safety Standards. Applicability Each standard of this part applies to all motor vehicles or items of motor vehicle equipment manufactured.
October 2008 International Rail Safety Conference 2008 Denver, Colorado, USA.
Objective: To provide practical guide lines accepted in the Industry, Engineering information and thumb rules for engineers, designers and operating people.
Location of Signals. Considerations for Location of Signals Braking Distance Overlaps Isolation Simultaneous Reception.
Signal Control Circuit
Introduction to ControlLogix Function Block
CE 515 Railroad Engineering
CPN'09, Aarhus, Denmark, October 19-21, 2009 Verification of Railway Interlocking Tables using Coloured Petri Nets * Somsak Vanit-Anunchai
Delivers top speed of 90 mph in North Wales for first time Partnership funding £500k Welsh Assembly, circa £1m Railtrack Major investment in track, signalling,
CE 515 Railroad Engineering Communications & Signals Source: Armstrong Ch 7, AREMA Ch. 7 “Transportation exists to conquer space and time -”
SISTEMA Example Two. Schneider Electric – Areva D Acquisition – June Example 2: Safe stopping of a PLC-driven drive with emergency stop – Category.
May 20, 2008 Train Detection 1 Train Detection Systems Mid-States Highway-Rail Grade Crossing Safety Conference Session 4 Use of New Technology for Highway-Rail.
INTRODUCTION 1 What word comes to your mind to describe “ The attempt by two objects to occupy the same space at the same moment in time”
PLC: Programmable Logical Controller
 Classes of trains  Fundamental principles of track authority  Impact of power/ton ratios  Drivers of dispatch priority 22 September 2010 SCORT/TRB.
Tuen Mun – Yuen Long LRT Traffic Control System 20 th April 2007 Prepared by Michael Chiu P26180/PS/PS PPT/LLH/13APR05.
© North Slope Training Cooperative—revised All rights reserved. Alaska Safety Handbooks Course Number NSTC-04 Revised 11–2010.
Peter Gurník, Oldřich Trégl Satellite based train location.
Flexible, Modular Interlocking Systems for a modern railway network
Control Technology and Automation
Engineering Change to Improve the Efficiency of OTMR Maintenance Image © HaslerRail By Jamie Adamson, Engineering Graduate, First ScotRail.
Next stop, History station Devon C. Floyd 6/7  As you know trains are the most dependable form of transportation we know today.  The reason why I chose.
THINK*PAIR*SHARE Why do you think the chances of a collision are greater at an intersection than at any other point on the roadway? (Your answer should.
Working Party on Rail Transport – 63rd session Geneva, 18 November 2009 EUROPEAN COMMISSION.
Fatal Risk Working Group - Working at Height Martin White - Head of Birse Rail.
1 PTC 101 A primer for PTC PTC 101 A primer for PTC.
Centralised Traffic Control Working On Dhamra line of ECoR
RAILWAY INDUSTRY TRAIN PLANNING LEVEL 2 TRAINING Module 3 – Signalling Principles.
PROGRAMMABLE LOGIC CONTROLLER “ FUNDAMENTALS OF LOGIC…”
ROLE OF SIGNALLING IN RAILWAYS
AUTOMATIC RAILWAY GATE CONTROLLING AND TRACK SWITCHING
PRESENTATION ON THE TOPIC By: Rahul agarwal. INTRODUCTION  Overload protection circuit are required in inverters and uninterrupted power supplies to.
INTERFACING ETCS WITH LEGACY CC-SYSTEMS TRACK - SIDE.
A new fail-safe principle for railway signaling
CE2303 Railway Engineering
ERTMS Strategy Group Agenda Item 3 – Key Strategic Issues 11 th April th April 2006.
ANAX PROJECTS & DEVELOPMENT PRIVATE LIMITED  ANAX Projects & Development Pvt. Ltd. is leading Industrial automation training from last seven years and.
Maharishi Arvind INSTITUTE OF ENGINEERING & TECHNOLOGY JAIPUR.
DB AG, , Dr. Schulte-Werning ROSA Rail Optimisation Safety Analysis.
George Stephenson. EARLY LIFE George Stephenson was born on 9 June His home was at Wylam, near Newcastle-upon-Tyne. Near where he lived there were.
UNIT IV TRACK CONSTRUCTION. POINTS AND CROSSINGS Point and Crossings are peculiar arrangement used in permanent way to guide the vehicle for directional.
An overview of I&C Systems in APR 1400 Parvaiz Ahmed Khand December 28, 2007.
// Eating the Elephant ETCS Requirements for GB railway.
Positive Train Control
Cambrian Lessons Learnt
Guide for the application of CSM design targets (CSM DT)
Poushali Pal AMIEEE, M. Tech in Information Technologies
Track circuit reliability assessment for preventing railway accidents
OVERVIEW: POSITIVE TRAIN CONTROL (ptc)
ECET 105 Innovative Education--snaptutorial.com
Whistle and Horn Semaphore and Signal Lights
Lesson 19: PLC Programming Techniques
Designed-in Logic to Ensure Safety of Integration and Field Engineering of Large Scale CBTC Systems Author: Fenggang Shi.
Rule Book Updates December 2018
A Trusted Safety Verifier for Process Controller Code
Binary Adder/Subtractor
*Supported by National Research Council of Thailand
Presentation transcript:

1 Satisfiability Testing in the Railway Industry Simon Chadwick Head of Research Westinghouse Rail Systems Limited, Chippenham, UK SAT2009 Twelfth International Conference on Theory and Applications of Satisfiability Testing

2 Contents Introduction Railways and Safety The Story of Signalling Where Signalling meets SAT Some final thoughts

3 Introduction WRSL Westinghouse Rail Systems Limited Part of Invensys Rail Group Part of Invensys plc

4 Introduction

5

6 Railways and Safety First railway? Stockton & Darlington Railway Opened 27 th September 1825

7 Railways and Safety First railway accident? William Huskisson ( ) Killed during the opening of the Liverpool and Manchester Railway, 15 th September 1830.

8 Railways and Safety Incremental rule building Accident Investigation Changes Improvement Apply for 150 years:

9 Railways and Safety Causes of Accidents Many causes: –Civil engineering failure –Failure of train –Failure of operators –Failure of signalling system

10 Railways and Safety Railway Signalling assumes… Rails intact Civil engineering intact Trains intact

11 Contents Introduction Railways and Safety The Story of Signalling Where Signalling meets SAT Some final thoughts

12 To maintain the safety of trains by: 1.Maintaining a safe distance between following trains on the same track 2.Safeguarding the movement of train at junctions and crossings 3.Regulating the passage of trains according to service density and speed required 4.Ensuring safety of trains in the event of equipment failure The Story of Signalling What is signalling for?

13 STOP PROCEED The Story of Signalling Early Signalling

14 Regulation of train by time Controlled by Policemen No standard time Electrical Telegraph Block Instrument Absolute Block Working The Story of Signalling Time Interval Working

15 The Story of Signalling Semaphore Signals

16 Block Section Station Limits Signal Box Distant Signal Home SignalStarter Signal Direction of travel Station Block Section The Story of Signalling Basic Signalling

17 Block Section Station Limits Signal Box Distant Signal Home Signal Starter Signal Direction of travel Station Block Section Outer Home Signal Overlap The Story of Signalling Outer Home Signal

18 The Story of Signalling Four Aspect Signalling

19 The Story of Signalling Four Aspect Signalling

20 The Story of Signalling Four Aspect Signalling

21 The Story of Signalling Four Aspect Signalling

22 The Story of Signalling Four Aspect Signalling

23 The Story of Signalling Four Aspect Signalling

24 The Story of Signalling Four Aspect Signalling

25 The Story of Signalling Four Aspect Signalling

26 The Story of Signalling Four Aspect Signalling

27 The Story of Signalling Four Aspect Signalling

28 The Story of Signalling Four Aspect Signalling

29 The Story of Signalling Four Aspect Signalling

30 The Story of Signalling Four Aspect Signalling

31 The Story of Signalling Four Aspect Signalling

32 The Story of Signalling Four Aspect Signalling

33 The Story of Signalling Four Aspect Signalling

34 The Story of Signalling Four Aspect Signalling

35 The Story of Signalling Four Aspect Signalling

36 The Story of Signalling Interlocking and Control Centre Interlocking Control System Train detection inputs Point control outputs Point detection inputs Signal lamp outputs Lamp proving inputs

37 The interlocking is the safety device for the signalling equipment. It will not allow an unsafe condition to occur It ensures that all train movements are protected The design of the interlocking is the responsibility of principle design Engineers who must incorporate very strict rules. The design is independently checked and tested. The Story of Signalling Interlocking Principles

38 The Story of Signalling Mechanical Interlocking

39 The Story of Signalling Relay Interlocking

40 The Story of Signalling Solid State Interlocking (SSI)

41 Put WESTLOCK photo here The Story of Signalling Solid State Interlocking WESTLOCK

42 The Story of Signalling Lever Frame Control System

43 Cowlairs The Story of Signalling Control Panel

44 The Story of Signalling Large Control Panel

45 The Story of Signalling Electronic Control Centres

46 Contents Introduction Railways and Safety The Story of Signalling Where Signalling meets SAT Some final thoughts

47 Where Signalling Meets SAT Signalling meets SAT at the interlocking The interlocking can be seen as a logic engine

48 Interlocking Control System Train detection inputs Point control outputs Point detection inputs Signal lamp outputs Lamp proving inputs Where Signalling Meets SAT At the Interlocking

49 Where Signalling Meets SAT If N = number inputs Then 2 N combinations of inputs are possible BUT… can have internal stored states So, order of combinations of inputs matters BUT… can have timers So, duration of combinations of inputs matter

50 Where Signalling Meets SAT I can express the behaviour of an interlocking as a set of Boolean equations One of the interlocking products used by WRSL uses Ladder Logic I can express safety rules about my interlocking as generic rules I can use SAT theory to demonstrate that my interlocking logic meets the safety rules

51 Where Signalling Meets SAT WESTRACE Ladder Logic

52 Where Signalling Meets SAT At the Interlocking P123TATBTCTDTE TGTH S1S2 S3 Example rules - general 1.Points should not be moved if the track is occupied 2.Signals can only show proceed aspect if the track is clear for route set Example rules - specific 1.Points P123 should not be moved if track TC is occupied 2.If route is set S1 to S3, signal can only show proceed if tracks TC, TG are clear, plus TH if overlap

53 Where Signalling Meets SAT Specific Interlocking Logic Signalling Designer Generic Safety Rules Specific Safety Requirements Instancing Specific Railway Layout Satisfiable? This is the hard bit! Are the safety properties complete?

54 Where Signalling Meets SAT WRSL and IRG research P123TATBTCTDTE TGTH S1S2 S3 WRSL is working with Swansea University to enhance our understanding of satisifiability testing, and understand how it can be applied to railway interlocking systems. WRSL is also working with Prover Technology to evaluate use of their proof technology with Invensys Rail WESTRACE interlockings.

55 Contents Introduction Railways and Safety The Story of Signalling Where Signalling meets SAT Some final thoughts

56 Final thoughts High Speed Trains European Rail Traffic Management System (ERTMS)

57 Final thoughts High speed trains If you are driving one of these… you need cab signalling!

58 Final thoughts ERTMS ERTMS = European Rail Traffic Management System Interoperability across Europe Signalling and Automatic Train Protection on the train Interlocking is still required – but…

59 Final thoughts Size and Complexity Over time: Signalling systems have got more complex Scope of individual system components has got larger We have reached the limits of traditional approaches Question: Has size/complexity of modern safety systems exceeded ability of human understanding? If the answer is “Yes” then we need practical applications of technologies such as SAT!

60 Thankyou! Thankyou

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.