R H I N O S Railway High Integrity Navigation Overlay System. RHINOS On Board Subsystem Reference Architecture

Similar documents
Joint Safety and Security Analysis for Complex Systems. Sergey Bezzateev, Natalia Voloshina, Petr Sankin

Efficient use of multi-constellation EGNOS for the European Train Control System

67. LEVEL TRANSITION FROM LEVEL NTC TO LEVEL 1 (SYSTEM VERSION 2.Y)

ETCS INTERFACE WITH THE EXISTING SIGNALLING SYSTEMS

The contribution of UNIFE: NGTC and STARS projects. Peter Gurník Technical Affairs Manager

Dimensioning and Engineering rules

INTERFACING ETCS WITH LEGACY CC-SYSTEMS TRACK - SIDE

AN ECONOMIC MODEL FOR THE EVALUATION OF DIFFERENT TECHNOLOGICAL SCENARIOS IN THE RAIL SECTOR

D5.3 EGNSS Target Performances to meet railway safety requirements

ANNEX. to the COMMISSION DECISION

ERTMS line certification using mobile diagnostic solutions. Vito Caliandro Product Line Manager, Signalling Solutions

UIC ERTMS Conference 2003

D3.5.4 Appendix: Dynamic ETCS Track Model. Use Case: Amsterdam- Utrecht ETCS L2 Reference Line

Interface 'G' Specification

Failure Modes, Effects and Diagnostic Analysis

Dimming actuators GDA-4K KNX GDA-8K KNX

Siemens Industry Online Support

With Export all setting information (preferences, user setttings) can be exported into a text file.

RADview-PC/TDM. Network Management System for TDM Applications Megaplex RAD Data Communications Publication No.

Line Information System (LIS) Reference and Training Manual Rev /01/12 Making information accessible, visible, understandable, and actionable.

Dimming actuators of the FIX series DM 4-2 T, DM 8-2 T

Contents INFORMATION FLOW TRACK - TRAIN

Outline. 1 Reiteration. 2 Dynamic scheduling - Tomasulo. 3 Superscalar, VLIW. 4 Speculation. 5 ILP limitations. 6 What we have done so far.

UCR 2008, Change 3, Section 5.3.7, Video Distribution System Requirements

Milestone Solution Partner IT Infrastructure Components Certification Report

Contactor Monitoring Relay CMD Cost-Effective Solution for Safe Machines

BAL Real Power Balancing Control Performance Standard Background Document

BAL Real Power Balancing Control Performance Standard Background Document

A SMART, SAFE AND SMOOTH FUTURE TELESTE FOR CITY TRANSPORT. Video security and passenger information solution for city transport

MICROMASTER Encoder Module

Detecting Bosch IVA Events with Milestone XProtect

CI-218 / CI-303 / CI430

Tebis application software

MWT-FM. Operation Manual. FM Single Channel Transmitter. man_mwtfm.

Model-based Autonomy for the Next Generation of Robotic Spacecraft. Define model-based autonomy. Describe model-based executive technology (Titan)

Rewrite of content supplied by client

Model- based design of energy- efficient applications for IoT systems

Company Overview. September MICROVISION, INC. ALL RIGHTS RESERVED.

An Effort to Create Multi-vender Environment for 100 Mb/s P2P optical Ethernet Access in Japan

FACILITIES STUDY MID AMERICAN TRANSMISSION SERVICE REQUESTS. OASIS Revision: 4

Design of Fault Coverage Test Pattern Generator Using LFSR

Timing Error Detection: An Adaptive Scheme To Combat Variability EE241 Final Report Nathan Narevsky and Richard Ott {nnarevsky,

Course 10 The PDH multiplexing hierarchy.

Tebis application software

Three large LCD cockpit concept for retrofit applications

Instruction manual. DALI Gateway art Installation manual

Sharif University of Technology. SoC: Introduction

Koester Performance Research Koester Performance Research Heidi Koester, Ph.D. Rich Simpson, Ph.D., ATP

Siemens Industry Online Support

OFI Optical Fiber Identifier User s Guide

SPG700 Multiformat Reference Sync Generator Release Notes

My XDS Receiver- Affiliate Scheduler

How to migrate a DCS without a plant shutdown? whitepaper

PLC Control Unit for a CSM-E Electrical Compact Clean Steam Generator

Implementation of a High-Speed Distribution Network Reconfiguration Scheme by Greg Hataway, Ted Warren, and Chris Stephens.

HYBRID CONCATENATED CONVOLUTIONAL CODES FOR DEEP SPACE MISSION

1. General principles for injection of beam into the LHC

FIBRE CHANNEL CONSORTIUM

NetterVibrotron SRF. Operating Instructions for. Series SRF. These operating instructions apply to. Netter Static Adjustable Frequency Control

International Civil Aviation Organization METEOROLOGY PANEL (METP) FIRST MEETING. Montréal, Canada, 20 to 24 April 2015

DB-x20 Digital Billboard

ASH - EOC-01. Ethernet Over Coax Adapter User Guide

O P E R A T I O N M A N U A L. RF-Reader. Stand-alone-Reader Leser 2plus with RS-232 interface

APM CALIBRATION PROCEDURE Rev. A June 3, 2015

AUDIOVISUAL COMMUNICATION

Commander 384. w w w. p r o l i g h t. c o. u k U S E R M A N U A L

Litile34 OPERATION MANUAL

LED DRIVERS. LQC4D-V1 4 channels. User Manual FEATURES

SWITCHED INFINITY: SUPPORTING AN INFINITE HD LINEUP WITH SDV

SIGNALING PRACTICES ON PROTOTYPE AND MODEL RAILROADS

One view. Total control. Barco OpSpace

KNX Dimmer RGBW - User Manual

Special Specification 6293 Adaptive Traffic Signal Control System

VISSIM TUTORIALS This document includes tutorials that provide help in using VISSIM to accomplish the six tasks listed in the table below.

User Guide UD51. Second encoder small option module for Unidrive. Part Number: Issue Number: 5.

Troubleshoot Small Form-Factor Pluggable (SFP)/Cable Issues

PACSystems* RX3i. Isolated Thermocouple Input Module, 6 Channels, IC695ALG306-EB Isolated Thermocouple Input Module, 12 Channels, IC695ALG312-EB

MULTIPLE TPS REHOST FROM GENRAD 2235 TO S9100

What can be learned from HERA Experience for ILC Availability

A Novel Study on Data Rate by the Video Transmission for Teleoperated Road Vehicles

ExtIO Plugin User Guide

EE201: Transmission Line Protection

Owners SW-LCD 2.0 Manual & Specifications

Welcome to the RE-1/RE-2 Programming Webinar

PEP-I1 RF Feedback System Simulation

SPG8000A Master Sync / Clock Reference Generator Release Notes

data and is used in digital networks and storage devices. CRC s are easy to implement in binary

Customized electronic part transport in the press shop siemens.com/metalforming

EC5415B. B-Tronic EasyControl. Assembly and Operating Instructions. Wall/hand-held transmitter, 15-channel, bidirectional

Design for Testability

Case analysis: An IoT energy monitoring system for a PV connected residence

Laboratory Exercise 7

Processor time 9 Used memory 9. Lost video frames 11 Storage buffer 11 Received rate 11

CEDES. Functional description CEDES 7-Segment Double Digit Indicator (CAN) Functional description 7-Segment Double Digit Indicator (CAN)

So much for OFCOM being the 'consumer champion' of the UK general public.

RADview-PC/TDM. Network Management System for TDM Applications Megaplex-2100/ RAD Data Communications Publication 06/03

Technical Note. Manufacturer: Elan g! DVR 7.0 OVERVIEW SUPPORTED FEATURES

How to Implement PoE in Your Harsh Industrial Environment

INSTALATION AND OPERATION MANUAL ABYSSAL OS Overlay Module Version 1.3

1995 Metric CSJ SPECIAL SPECIFICATION ITEM 6031 SINGLE MODE FIBER OPTIC VIDEO TRANSMISSION EQUIPMENT

Transcription:

R H I N O S Railway High Integrity Navigation Overlay System RHINOS On Board Subsystem Reference Architecture Salvatore Sabina (salvatore.sabina@ansaldo-sts.com, Ansaldo STS) - Rome, June 20th 22nd 2017

Outline ERTMS based on Virtual Balises: Architecture Requirements Safety Analysis Design Considerations Conclusions

ERTMS Based on Virtual Balises: Architecture To reduce the modifications to the existing ERTMS Standard, the identified solution preserves the existing ERTMS mechanisms to determine the Train Position, i.e. Balises and the related Functions associated with balises. Some physical balises can be replaced by virtual balises. Balise Transmission Module Functions Virtual Balise Reader Functions ETCS On-Board Functions / kernel ETCS On-Board

ERTMS Based on Virtual Balises: Architecture

ERTMS Based on Virtual Balises: Requirements Description of Other Requirements Response time - The delay between receiving of a balise message and applying the command requested in the balise message or the reaction associated with balise group must be less than 1 s. Management of Faults and Failures - If the On-board Transmission Equipment is not able to detect Balises, this condition must be reported to the ERTMS/ETCS Kernel. Schedule Adherence is the ability of a railway system of complying with the schedule of train running. A train is considered delayed when its delay exceed 1 min. The probability of having delay caused by ERTMS/ETCS failures must not be greater than 0.0027. The allowed average delay per train due to ERTMS/ETCS failures, at the end of an average trip of duration of 90 min., must not be greater than 10 minutes. ERTMS/ETCS Operational Availability Due to all the causes of failure, A 0 < 0.99973 Due to hardware failures and transmission errors, A 0 < 0.99984. Downtime, expressed in hours per year, is equal to (1- A 0 )*8760

ERTMS Based on Virtual Balises: Requirements Description of Other Requirements (cont.) Immobilising Failure A Hardware Failure which causes the system to be unable to safely control two or more trains: this is, a failure that causes two or more trains to be switched in on sight mode. MTBF-I ONB < 2.7*10 6 hours MTBF-I TRK < 3.5*10 8 hours. Service Failure - In the ERTMS/ETCS context, Service Failures can be identified as all the ERTMS/ETCS hardware failures which cause the nominal performance of one or more trains to be reduced and/or at most one train to be switched in on sight mode MTBF-S ONB < 3.0*10 5 hours MTBF-S TRK < 4.0*10 7 hours. A Minor Failure is a failure which results in excessive unscheduled maintenance and cannot be classified as Immobilising or Service Failure. MTBF-M ONB < 8.0*10 3 hours MTBF-M TRK < 1.0*10 5 hours.

ERTMS Based on Virtual Balises: Safety Analysis THR Onboard = 0.67*10-9 /h Onboard functions: ( trusted parts): 0.67*10-9 /h Onboard Kernel, ODO, TI, DMI, BTM, Onboard EUR, LTM 1.0*10-9 /h Onboard equipment THR Transmission = 0.67*10-9 /h THR Trackside = 0.67*10-9 /h Transmission functions: ( non-trusted parts): Trackside functions: ( trusted parts): 0.33*10-9 /h 0.33*10-9 /h 0.67*10-9 /h BTM, Onboard EUR, LTM EUB, Loop, Trackside EUR RBC Kernel, LEU, Trackside EUR 1.0*10-9 /h Trackside equipment

ERTMS Based on Virtual Balises: Safety Analysis The ETCS Hazardous Events associated with such transmission systems are: TRANS-BALISE 1 (Corruption); TRANS-BALISE 2 (Deletion); TRANS-BALISE 3 (Insertion); TRANS-OB/RADIO-1 (Corruption); TRANS-OB/RADIO-2 (Deletion); TRANS-OB/RADIO-3 (Insertion); TRANS-TS/RADIO-1 (Corruption); TRANS-TS/RADIO-2 (Deletion); TRANS-TS/RADIO-3 (Insertion);

ERTMS Based on Virtual Balises: Safety Analysis ETCS CORE HAZARD, THR=2.0*10-9 / h Transmission Hazards, THR Transmission =0.67*10-9 / h On-board Hazards, THR Onboard =0.67*10-9 / h Trackside Hazards, THR Trackside =0.67*10-9 / h Eurobalise Transmission System Hazard, THR BTX Radio Transmission System Hazard, THR RTX negligible Corruption Insertion Deletion

ERTMS Based on Virtual Balises: Safety Analysis Based on the Standard Reference Mission Profile and on the following assumptions: No Cold Movement Detector; A balise group, which contains information that if it is missed could lead to a hazardous consequence, consists of a minimum of two balises. When reliance is placed on the detection of unlinked balise groups for the announcement of Temporary Speed Restrictions, it is required that two separate balise groups are used each with a minimum of two balises. In addition, the analysis has assumed that TSRs will be set by RBC only.

ERTMS Based on Virtual Balises: Safety Analysis THR TRANS-BALISE-2 R NoLinking = (2 * 0,001) * (24l IP + l ONB ) 3.3 * 10-10 h -1 = 2*10-3 * (24l IP + l ONB ) 1.6 * 10-7 h -1 = (24l IP + l ONB ) R NoLinking = (1.6 * 1) * (24l IP + 0.025l ONB ) 3.3 * 10-10 h -1 = 1.6 * (24l IP + 0.025l ONB ) 2 * 10-10 h -1 = (24l IP + 0.025l ONB ) R NoLinking = (2 * 0.001) * (24l IP + l ONB ) 3.3 * 10-10 h -1 = 2*10-3 * (24l IP + l ONB ) Operational Considerations Operational moves prior to the establishment of linking Non-linked balise groups in a generally linked network Moves which negate linking Note The scenario about the entry into an ETCS area from an unfitted area assumes that unfitted area has no ATP. This is a very conservative scenario. The worst case is for conventional lines. This high demanding THR can be avoided in Level 2 by managing TSRs via RBC only. 1,6 * 10-7 h -1 = (24l IP + l ONB )

ERTMS Based on Virtual Balises: Safety Analysis Main Conclusions RBC Additional Functional Block Virtual Balise Reader Functional Block Target for RBC Confirms Incorrect Along-Track Position of Train The THR for confirmation of the Along-Track Position of the Train is: THR = 0.5 * 10-9 dangerous failures per hour Target for RBC Confirms Incorrect Track The THR for confirmation of the track by the RBC is: THR = 0.5 * 10-9 dangerous failures per hour Target for Virtual Balise Group Detected at Erroneous Location The overall THR for virtual balise group detected at erroneous location (unbounded along-track positioning error) is: THR = 0.5 * 10-9 dangerous failures per hour

Virtual Balise Reader: Design Considerations Virtual Balise Reader ODO Info GNSS Antenna GNSS RX GNSS Algo Railways RAIM Application SW & FSM Virtual Balise Detection LDS Mng Augmentation Integrity Balise Telegram (user Bits) & ERTMS/ETC S (EVC, Odometry, Radio Mng) On Board Constituent

Virtual Balise Reader: Design Considerations GNSS Algo, Railways RAIM and Virtual Balise Detection must be implemented on a CENELEC Safe Platform; A smart and efficient VBD implementation leads to the deletion of some conservative assumptions as well as the reduction of the probability of BTM-H1 (on-board deletion); The use of the Cold Movement Detector leads to the reduction of the number of SoMs with Position Unknown or Invalid; Some Trackside information about the train path available on-board leads to the reduction of the probability of cross-talk hazardous events; Smart and Effective Railways RAIM & Odometry Cross Checks allows the detection & exclusion of wrong GNSS PVT.

Conclusions The development of the new functional blocks (i.e. Virtual Balises Reader on On-Board, Augmentation and Position Verification on RBC) based on CMD, Advanced Railway RAIM, Odometry Cross Checks, Trackside Signaling information can relax THRs associated with GNSS; Track Discrimination is still a critical feature that requires the support of other signaling technologies; Virtual Balise Reader (inclusive of GNSS Algo and Advanced Railway RAIM) must be implemented on a CENELEC Safe Platform.

2024 © artsdocbox.com Privacy Policy | Terms of Service | Feedback