140 likes | 154 Views
This case study delves into the Eurocab railways signaling system, focusing on the safety protocol that ensures dependable communication for automatic train protection. It covers topics such as cyclic and event-driven communication, transmission redundancy, error-detecting and correcting codes, and more.
E N D
Industrial Automation Automation IndustrielleIndustrielle Automation Case Study: the Eurocab railways signaling Cas d'etude: signalisation ferroviaire Eurocab (ETCS) Studienfall: die Eurocab-Signalisierung Dr. Eschermann ABB Research Center, Baden, Switzerland
Overview Dependable Communication • 9.3.1 Cyclic and Event-Driven Communication (Revisited) • 9.3.2 Communication Availability and Safety (Persistency and Integrity) • Communication Hazards • Transmission Redundancy • Error-Detecting and Correcting Codes • Time Stamps, Sequence Numbers and Timeouts • Source and Sink Identification • 9.3.3 Example: Eurocab Safety Protocol
Example: Automatic Train Protection (ATP) TASK: Train speed £ maximal allowed speed. train speed braking curve computed by ATP system emergency braking by ATP system usual behavior of loco driver main signal advance signal
Simplified Structure of an ATP System • on-board system vital computer brake speed • track-side devices e.g. target speed, target distance
ATP Systems in Western Europe ASFA: Dimetronic ATB: ACEC Transport AWS: Westinghouse BACC: Ansaldo, SASIB KVB: GEC Alsthom EBICAB: ABB Signal Indusi, LZB: Siemens, SEL SELCAB: Alcatel SEL TBL: ACEC Transport TVM: CS Transport ZUB: Siemens
Safety ID for Vital Data comment item example value unique value for telegrams with given safety ID 0F11 characteristics for identification name of telegram measured_speed data + explicit safety fields length 256 bits periodic/sporadic periodic broadcast/point-to-point broadcast producer of the data source function SDM since data are broadcast sink function any number of telegrams that may be lost beforesafety reaction has to be initiated grace period 3 receiver check accuracy for time stamp time stamp interval - 1 ms, + 257 ms etc. ...
Time Stamp Characteristics Creation Resolution (¹ accuracy !): 1 ms Range (32 bits implicit+explicit): about 50 days Resolution gives upper bound on accuracy, but maximal accuracy does not have to be utilized today and by all units Checking Sequence check by comparison TS(i) ³ TS(i – 1) Age check by comparison LBTS(i) £ TS(i) £ UBTS(i) Acceptable window [LBTS(i)-TS(i), UBTS(i)-TS(i)] defines accuracy of age check. Window accounts for unknown effects of clock inaccuracy, clock drifts, transmission delays, etc. Can be tuned to exact telegram requirements (specified in Description Table for each Safety ID).