Reliabilityengineeringandsystemsafety
Reliability Engineering and System Safety 100 (2012) 8–18
Contents lists available at SciVerse ScienceDirect
Reliability Engineering and System Safety journal homepage: www.elsevier.com/locate/ress
Verification of the safety communication protocol in train control system using colored Petri net$
Chen Lijie a,n, Tang Tao a, Zhao Xianqiong a, Eckehard Schnieder b a b
State Key Laboratory of Rail Traffic Control and Safety, Beijing Jiaotong University, Beijing, China
Institute for Traffic Safety and Automation Engineering, Technical University Braunschweig, Germany
a r t i c l e i n f o
a b s t r a c t
Article history:
Received 6 May 2011
Received in revised form
15 November 2011
Accepted 3 December 2011
Available online 21 December 2011
This paper deals with formal and simulation-based verification of the safety communication protocol in
ETCS (European Train Control System). The safety communication protocol controls the establishment of safety connection between train and trackside. Because of its graphical user interface and modeling flexibility upon the changes in the system conditions, this paper proposes a composition Colored Petri
Net (CPN) representation for both the logic and the timed model. The logic of the protocol is proved to be safe by means of state space analysis: the dead markings are correct; there are no dead transitions; being fair.
Further analysis results have been obtained using formal and simulation-based verification approach. The timed models for the open transmit system and the application process are created for the purpose of performance analysis of the safety communication protocol. The models describe the procedure of data transmission and processing, and also provide relevant timed and stochastic factors, as well as time delay and lost packet, which may influence the time for establishment of safety connection of the protocol. Time for establishment of safety connection of the protocol in normal
Contents lists available at SciVerse ScienceDirect
Reliability Engineering and System Safety journal homepage: www.elsevier.com/locate/ress
Verification of the safety communication protocol in train control system using colored Petri net$
Chen Lijie a,n, Tang Tao a, Zhao Xianqiong a, Eckehard Schnieder b a b
State Key Laboratory of Rail Traffic Control and Safety, Beijing Jiaotong University, Beijing, China
Institute for Traffic Safety and Automation Engineering, Technical University Braunschweig, Germany
a r t i c l e i n f o
a b s t r a c t
Article history:
Received 6 May 2011
Received in revised form
15 November 2011
Accepted 3 December 2011
Available online 21 December 2011
This paper deals with formal and simulation-based verification of the safety communication protocol in
ETCS (European Train Control System). The safety communication protocol controls the establishment of safety connection between train and trackside. Because of its graphical user interface and modeling flexibility upon the changes in the system conditions, this paper proposes a composition Colored Petri
Net (CPN) representation for both the logic and the timed model. The logic of the protocol is proved to be safe by means of state space analysis: the dead markings are correct; there are no dead transitions; being fair.
Further analysis results have been obtained using formal and simulation-based verification approach. The timed models for the open transmit system and the application process are created for the purpose of performance analysis of the safety communication protocol. The models describe the procedure of data transmission and processing, and also provide relevant timed and stochastic factors, as well as time delay and lost packet, which may influence the time for establishment of safety connection of the protocol. Time for establishment of safety connection of the protocol in normal
References: [3] G.W, C.H. Control system safety evaluation and reliability. US: ISA, 1998. [6] Bukowski, J.V. A comparison of techniques for computing PFD average. in: Reliability and Maintainability Symposium, 2005