Yang Li,Dongqin Feng

DOI: https://doi.org/10.1007/978-3-642-34528-9_86

2013-01-01

Abstract:Automatic train protection system (ATP) is the key safety-related system of train control system, so its safety reliability requirements are much higher. This article studies functional safety assessment (FSA) including function analysis, hazard identification, risk rank evaluation, risk reduction, and safety integrity verification during the development of carborne ATP. A risk rank evaluation method is proposed combining as low as reasonably practically (ALARP) criteria and risk matrix. Many safety defects of carborne ATP are found and then the design scheme is improved through FSA. The results of risk analysis software Isograph prove that carborne ATP meets the safety integrity level of its design goals at last.

Jing-chang WANG,Gen-cai CHEN

DOI: https://doi.org/10.3969/j.issn.1671-7147.2005.02.008

2005-01-01

Abstract:There are a lot of risks in the software developing process. To control the risk, the sorts of risk are defined from the software development and project management. The paper presents four main parts of risk identification and risk analysis. The risks during software development process and possible solutions are analyzed while the risk quantity method, parameter model and experience data are presented. According to these risk identification methods and every phase situation of software development, the strategy of risk control is proposed. About eighty percent risk can be identified and controlled in the statistic application.

Lian-chuan Ma,Dongmei Huang,Jian-cheng Mu,Yuan Cao

DOI: https://doi.org/10.2991/AIEA-16.2016.61

2016-11-12

Abstract:Commercial off-the-shelf (COTS) software and hardware components are widely used in the design of train control system. In order to satisfy the application requirements of the safety computer in train control system, it is necessary to analyze its safety properties. In this paper, a method of safety analysis for the safety computer is proposed. The safety properties of the safety computer in train control system are verified by establishing the system model of safety mechanism, and establishing a safety base in safety computer management units (SCMU), and measuring the safety of each part of the system step by step, and then establishing a safety chain. Finally, tests are carried out through a designed software fault injection tool to demonstrate the effectiveness of the proposed method.

Computer Science,Engineering

Vitalii Gaievskyi

DOI: https://doi.org/10.18664/1994-7852.204.2023.284024

2023-06-21

Collection of scientific works of the Ukrainian State University of Railway Transport

Abstract:The article examines the issues of improving the methodology for identification and assessment of the limits of existing risks of technical operation and maintenance of automated railway transport control systems, determining and classifying the level of severity of the consequences of failures for the further selection of appropriate risk management methods that will be applied in the development of innovative control systems of railway infrastructure transport. To resolve the issue, it is proposed to consider the effects of external factors and means of the system itself, which are designed to reduce risk in order to comply with a given level of functional safety using a risk-oriented approach. The main functions of risk are defined: protective, analytical, innovative, regulatory. The risk management process is based on the results of risk identification and assessment in order to reduce the consequences of dangerous factors and threats, based on the results of which a structural block diagram of the process was built using the principle "as low as reasonably achievable" (ALARP). 9 stages of risk management are defined: - risk assessment of potential consequences; - decision-making regarding risk and its acceptability; - development of measures to eliminate risks or reduce them to the lowest acceptable level; - determination of risk probabilities and completion of the table of risk probabilities - categories of the probability of occurrence of dangerous factors or threats; - assessment of the severity of their consequences and completion of the risk severity table with the definition of the severity category of the consequences of dangerous factors; - determination and classification of the level of severity of the consequences of train traffic control system failures; - assessment of risk acceptability using the risk assessment matrix and determination of risk acceptability indices; - risk assessment and decision-making regarding the acceptability or unacceptability of risks. - making a decision about the need to control the assessed risk. According to the results of the study, taking into account simplifications and assumptions, it was determined that the most vulnerable elements of the control system and timely and high-quality maintenance require identification and assessment of risks. That is, using statistical data on the failure of technical equipment on the one hand and statistical data on their technical maintenance, it is possible to calculate and assess risk levels and determine and classify the level of severity of the consequences of failures and the degree of their acceptability using quantitative and qualitative methods. The obtained results will be applied to the selection of appropriate risk management methods and further improvement of automated management systems by expanding their capabilities and providing them with additional functions.

Wenbo Zhang,Xiangkun Meng,Jianyuan Wang,Tieshan Li,Qihe Shan,Fei Teng

DOI: https://doi.org/10.1109/iccss53909.2021.9722016

2021-12-10

Abstract:Automatic crane is a complex system affected by the external environment and the internal components of the system, information fusion, software and hardware combination, and man-machine integration. The improvement of its automation and informatization proposes various challenges in the accident model construction and safety analysis. However, the safety analysis methods based on fault types consider that the occurrence of accidents is linear and ignore the correlation among components of the system. This paper adopts the system-theoretic accident model and process (STAMP) and system-theoretic process analysis (STPA) mode is to implement safety analysis of the automatic crane trolley running system (ACTRs). The paper starts from the identification of system-level losses and hazards, clarifies the function and internal logical control relationships of the system’s components, and then finds potential unsafe control actions (UCAs) and loss scenarios during the trolley running. The results show that the control requirements for the regular operation of the trolley running system can be analyzed in detail. Therefore, the STAMP/STPA can apply to the safety investigation of automatic cranes.

Jin Guo,Zhengguo Xu,Youxian Sun

DOI: https://doi.org/10.1080/00423114.2015.1102297

IF: 3.749

2015-01-01

Vehicle System Dynamics

Abstract:This paper focuses on the safety of railway vehicles. A new semi-active control strategy is proposed based on the skyhook control theory. In view of the main railway vehicle safety performance indicators, the new control strategy aims at reducing the derailment coefficient of railway vehicles by restraining the lateral vibrations of the bogie and the wheelset. Furthermore, to evaluate the improvement of the safety performance brought about by the new control strategy, a complete railway vehicle model is established using the ADAMS/Rail software package. In further co-simulations, five conventional control methods are compared with the proposed approach under the same conditions. Co-simulation results indicate that the new control strategy is effective in improving the safety performance of railway vehicles.

Lu Lu,Xu Zhengguo,Wang Wenhai,Sun Youxian

DOI: https://doi.org/10.13879/j.issn1000-7458.2010.05.022

2010-01-01

Abstract:The safety is one of the most important and fundamental requirements for train operation.As the key technical equipment for train monitoring,control,and scheduling,the reliability of train control systems (TCSs) is directly related to the safety of train operation.Fault diagnosis for TCSs is an important way to guarantee the reliability of TCSs.This paper made a review over TCSs fault diagnosis techniques.First,fault diagnosis methods for TCSs are classified and summarized.Then,some research achievements of TCSs fault prediction were summarized.Finally,some potential directions for future TCSs fault diagnosis research are pointed out.

XU Ming,YANG Xian-hui,CHEN Feng-hua

DOI: https://doi.org/10.3969/j.issn.1001-8360.2011.04.010

2011-01-01

Abstract:The paper analyses the position and function of communication in execution of the train safety-critical system and the requirements to be satisfied with the failure frequency of train safety-related communication.The failure principles and mechanism of the safety-related communication system are discussed.In view of the safety-related communication system established on the basis of the non-trusted transmission system,the influence of safety codes and transmission codes on the train control system SIL is argued.Uncertainty of electromagnetic,environmental and other interferences is the main factor to cause the fact that the safety-related communication system cannot satisfy the safety indexes.The online safety monitoring principles and methods are illustrated,the quantitative relationship between the lengths of safety codes and monitoring cycles is given.Thus,an efficient monitoring tool is provided to ensure that the safety-related communication system remains safe while the environments are changing or other interferences occur.

Qi Zhang,Yanhui Zhuang,Yuguang Wei,Hao Jiang,Hao Yang

DOI: https://doi.org/10.1155/2020/3158468

IF: 2.249

2020-02-01

Journal of Advanced Transportation

Abstract:In order to make safety risk assessment more accurately and more reasonably for high-speed railway station in China, this paper analyzes risk factors of fault tree and transfers the fault tree of risk accident into fuzzy petri net and then builds the FPN-FTA model by combining the dynamic weighting fuzzy petri net (FPN) and fault tree analysis (FTA) based on the latter. This paper simulates the FTA-FPN model with Stateflow of Matlab software. Then, it builds up a bi-objective risk control model, making the minimum safety risk level and minimum necessary cost as the objectives, and it designs discrete particle swarm optimization algorithm to solve the risk control model. Finally, this paper selects stampede accident of Shijiazhuang high-speed railway station as an example in case study for assessing stampede risk level and gets the risk control schemes for this station. The results verify the feasibility and validity of the model and algorithm.

transportation science & technology,engineering, civil

Yiqiang Wang,Xiaojun Wang,Shunming Hua

DOI: https://doi.org/10.4028/www.scientific.net/amm.37-38.939

2010-01-01

Applied Mechanics and Materials

Abstract:An automatic tool changer (ATC) is one of the most important subsystems of a computerized numerical control (CNC) lathe. The field failure analysis is very important to improve the reliability of the ATC. The structure and mechanism of an ATC is briefly introduced. Its brief reliability block diagram is set up. With this understanding, through the collection of the field failure data, a coding system to code failure data is devised and a failure analysis database of CNC lathes is accrued. The failure mode and cause are analyzed to indicate the weak subsystem of the ATC. Some suggestions on improving the reliability have been proposed.

Xin CHEN,Peng JIANG,Yi-Fan ZHANG,Chao HUANG,Yan ZHOU

DOI: https://doi.org/10.13328/j.cnki.jos.004780

2015-01-01

Abstract:The train control system is a safety-critical system. To assure its safety, it requires the testing process to cover all possible runs in its safety-critical scenarios. Existing methods of scenario modeling and test case generation cannot completely satisfy the requirement. The paper focuses on the methods of modeling safety-critical scenarios in train control system and the tools for automatically generating test cases for the system. UML activity diagram is extended with event-driven and time characteristic description mechanism to satisfy the requirement of modeling safety-critical scenarios. A simple path coverage criterion is also proposed to define the coverage of all possible runs in a scenario and a method is provided for automatic test case generation. The experiment on ground train control system shows the effectiveness and limitation of the proposed method.

Yong Qin,Hui Ma,Miao Du,Limin Jia

DOI: https://doi.org/10.18293/seke2015-160

2015-01-01

Abstract:In order to quantitatively and systematically explain the accident occur process and assess the risk for the complex system, this paper proposes a new accident-causing analysis model, i.e. perturbation-safety region (P-SR) model.In this model, the safety region definition is introduced for the quantitative description of the system safe status; also the change process of the system risk is analyzed.The four relative parts included in this model are described in details, such as the risk resource part, the perturbation part, the alarm and system change part, and the accident part.Finally, the proposed model is applied to railway transportation system, and the Wenzhou train collision is systematically analyzed, also the specified control measure for the train emergency dispatch is demonstrated.

Alessandro Baldassarra,Cristiano Marinacci,Stefano Ricci

DOI: https://doi.org/10.1016/j.trpro.2023.11.266

2023-01-01

Transportation Research Procedia

Abstract:The paper on typical rail operation hazards, such as Signal Passed at Danger (SPAD) and Failed Braking Application by Driver (FBAD). The protection against these hazards is normally by Automatic Train Protection (ATP) systems and emergency braking activation, operated by the onboard systems over a certain Minimum Release Speed (MRS). The determination of such speed is a key design parameter related with the achievable performances in terms of safety and capacity. The present research deal with a systematic analysis of the operational conditions potentially affecting the determination of such speed values by modelling the dynamics of the problem taking into account the features of the infrastructures (tracks layout, gradients, etc.), the vehicles (mass, braking performances, etc.) and the geography of signalling and ATP systems themselves. In fact, the position of main signals protecting the dangerous points (switches, level crossings, etc.) emerges as key player, affecting both the design and the operation of the systems.

Yansong Cheng,Zili Zhou,Rui Li,Jian Li,Jianqiang Wang,Xikai Pei

DOI: https://doi.org/10.1109/iccasit50869.2020.9368710

2020-01-01

Abstract:Air traffic control (ATC) automation system is used to maintain air flight order, ensure separation, prevent aircraft collision and ensure flight safety. It is one of the key equipment for air traffic control departments to implement air surveillance and command. In order to ensure the operational performance of the system, reliability prediction is needed in the design of the ATC system, and safety evaluation required in the operation process. This paper takes the general ATC system architecture as the research object, discusses the reliability prediction and safety evaluation model.

Abderraouf Boussif,Abhimanyu Tonk,Julie Beugin,Simon Collart Dutilleul

DOI: https://doi.org/10.1080/09617353.2023.2226965

2023-07-13

Safety and Reliability

Abstract:The level of automation in transportation systems is steadily on the rise, particularly in railways. However, this increase in automation implies a review of the previously established safety assessments, safety cases, and safety principles. Concretely, to ensure the overall safety of automated systems, it is crucial to provide conclusive assurance not only for their functional systems but also for any potential operational interactions that may arise unexpectedly. In this paper, we propose a risk assessment method to deal with the operational safety of the remote driving of freight trains. The established approach is based on the GAME principle (i.e. the French safety principle ' Globally at least equivalent '), which tends to assure the non-regression of the railway safety level. Firstly, the approach aims to perform a risk gap analysis with respect to driver's handbook procedures to identify the (operational) hazards and dangerous situations/scenarios generated by remote driving on the rail system. This analysis is completed by the identification of hazards due to the fact that the remote driving is not able to fully comply with the requirements of the driver's handbook. Then, the methodology is used to identify the risk control measures and the safety requirements to meet safety targets (i.e. maintaining the safety level at least equivalent to that obtained so far with in-cab driver). The obtained results are presented and structured in a table inspired by the preliminary operational hazards analysis (P-OHA) process.

Yangpeng Wang,Shun Yee Micheal Liu,Lokhin Cho,Kangkuen Lee,Hwayaw Tam

DOI: https://doi.org/10.1016/j.aap.2020.105935

Abstract:For rail transit systems, safety is one of the most important goals that need to be guaranteed. We build a method of railway system safety analysis based on the cusp catastrophe model. This method describes the continuous changing process of railway system safety and considers the emergent property of safety. This method solves the problem that the outputs of most static analysis methods of railway system safety do not have continuity and avoids the complex analysis process and heavy computation burden brought by using some dynamic models such as state transition models. The quantitative case study of the continuous changing process of system safety in the evolution process of the Yong-Wen railway accident shows that the visualized outputs obtained by using this method are consistent with the actual situation. This method has the potential to be applied in the real-time monitoring of railway system safety and the early warning of train accidents.

Xueqin Gao,Tao Shang,Da Li,Jianwei Liu

DOI: https://doi.org/10.1109/pst55820.2022.9851965

2022-01-01

Abstract:SCADA systems are one of the critical infrastructures and face many security threats. Attackers can control SCADA systems through network attacks, destroying the normal operation of the power system. It is important to conduct a risk assessment of security threats on SCADA systems. However, existing models for risk assessment using attack trees mainly focus on describing possible intrusions rather than the interaction between threats and defenses. In this paper, we comprehensively consider intrusion likelihood and defense capability and propose a quantitative risk assessment model of security threats based on attack countermeasure tree (ACT). Each leaf node in ACT contains two attributes: exploitable vulnerabilities and defense countermeasures. An attack scenario can be constructed by means of traversing the leaf nodes. We set up six indicators to evaluate the impact of security threats in attack scenarios according to NISTIR 7628 standard. Experimental results show the attack probability of security threats and high-risk attack scenarios in SCADA systems. We can improve defense countermeasures to protect against security threats corresponding to high-risk scenarios. In addition, the model can continually update risk assessments based on the implementation of the system’s defensive countermeasures.

Li HE,Mao-hua ZHONG,Yun-feng DENG

DOI: https://doi.org/10.3969/j.issn.1673-193x.2005.03.007

2005-01-01

Abstract:In our country, urban subway has come into a heated phase for the moment. The corresponding consideration on their traffic safety of is getting more and more important. In the paper, many years of urban rail transit accidents in and out of our country are analyzed by ways of statistical analysis. Then the risk factors of affecting urban subway, which exist in the period of trajectory construction, power supply system, vehicle control system, ventilat on system, water supply and drainage system, communication system, public engineering and assistant service, etc. are proposed and described in detail. It provides warranty for the safe running of urban rail transit.

Yong Wu,Liang-Yun Zhao,Ye-Xiang Jiang,Wei Li,Ye-Sheng Wang,Huan Zhao,Wei Wu,Xiong-Jian Zhang

DOI: https://doi.org/10.1155/2021/9915745

IF: 1.843

2021-09-11

Advances in Civil Engineering

Abstract:In recent years, the construction scale of urban rail transit project is still in a high growth stage. In addition, the geology and surrounding environment of crossing lines are complex, and all kinds of safety accidents are still in a high incidence stage. Based on the investigation and summary of safety risk events and their causes in urban rail transit engineering construction at home and abroad, this paper fully combines the current national security management policies, introduces the “dual control” concept of safety risk classification and hidden danger investigation, and develops the intelligent monitoring system platform for urban rail transit engineering construction based on advanced technologies such as intelligent Internet of Things, 3D visualization, and artificial intelligence. It realizes the intelligent collection and analysis of engineering field monitoring data, the dynamic early warning management of engineering risk sources, the process embedding “dual control” mechanism of safety risk and hidden danger investigation, the real-time supervision of large equipment operations such as shield and hoisting, and the real-time control of high-risk operation sections such as contact channels. At the same time, the traceability and assessment management of the safety supervision process are strengthened. The parties involved in the project can realize the synchronous sharing of information through the platform and improve the efficiency of on-site safety and quality control.

construction & building technology,engineering, civil

HUANG Quanan,SONG Jian,ZHANG Guosheng,LI Lei

DOI: https://doi.org/10.16511/j.cnki.qhdxxb.2010.11.016

2010-01-01

Abstract:To enhance the diagnostic and self-protected ability of automated mechanical transmission(AMT),and to improve the system reliability,this paper proposes a concept of the controller system safety.By way of system analysis method,the traditional development of hardware and software is changed to the design of system input,internal logic and output.The methods of circuit adaptive,fault rapid diagnosis,safety redundancy,sub-system replacement and open-loop fault-tolerant control were used to design the power management module,sensor signal processing,system internal control unit and actuators' driver,with an AMT controller developed,which is stable and controllable,adaptive to input environment and has limp-home and fail-safe characteristic.Laboratory experiments and road tests proved that the proposed design methods can improve the control performance of AMT and enhance the whole system stability and reliability.