Tool support for checking railway interlocking designs

The development of railway interlocking systems is currently very labour-intensive. Specialists develop the interlocking design for a particular area and manually check for completeness and consistency. The interlocking is implemented in either software or using electrical relays. The interlocking has to be tested against the safety requirements for signalling systems, i.e., the signalling principles.The whole process can be supported by various tools, ranging from editors to animators. In this paper we focus on exploiting model checking to automatically check the design with respect to safety. The main concerns of this technique are the problem size and the efficiency of available tools. We have investigated both of these problems: seeking to work with a minimal model of the interlocking design and to improve efficiency of the model-checking process by exploiting domain knowledge of our particular application.

[1]  Kenneth L. McMillan,et al.  Symbolic model checking , 1992 .

[2]  Rance Cleaveland,et al.  Modeling and Verifying Distributed Systems Using Priorities: A Case Study , 1996, Softw. Concepts Tools.

[3]  Fausto Giunchiglia,et al.  NUSMV: A New Symbolic Model Verifier , 1999, CAV.

[4]  Stefania Gnesi,et al.  Proving Safety Properties for Embedded Control Systems , 1996, EDCC.

[5]  E. Allen Emerson,et al.  Temporal and Modal Logic , 1991, Handbook of Theoretical Computer Science, Volume B: Formal Models and Sematics.

[6]  Neil J. Robinson,et al.  Modelling Large Railway Interlockings and Model Checking Small Ones , 2003, ACSC.

[7]  Sérgio Vale Aguiar Campos,et al.  Symbolic Model Checking , 1993, CAV.

[8]  Neil J. Robinson,et al.  Automatic generation and verification of design specifications , 2001 .

[9]  Steve King,et al.  Towards an Integrated Model Checker for Railway Signalling Data , 2002, FME.

[10]  Randal E. Bryant,et al.  Graph-Based Algorithms for Boolean Function Manipulation , 1986, IEEE Transactions on Computers.

[11]  Neil J. Robinson,et al.  7.1.4 Automatic Generation and Verification of Design Specifications for Railway Signalling Applications , 2001 .

[12]  Cindy Eisner,et al.  Using Symbolic Model Checking to Verify the Railway Stations of Hoorn-Kersenboogerd and Heerhugowaard , 1999, CHARME.

[13]  Edmund M. Clarke,et al.  Model Checking , 1999, Handbook of Automated Reasoning.

[14]  Jim Davies,et al.  The Mechanical Verification of Solid State Interlocking Geographic Data , 1997 .

[15]  Rance Cleaveland,et al.  Priorities for Modeling and Verifying Distributed Systems , 1996, TACAS.

[16]  Diego Latella,et al.  An automatic SPIN validation of a safety critical railway control system , 2000, Proceeding International Conference on Dependable Systems and Networks. DSN 2000.

[17]  Edmund M. Clarke,et al.  Symbolic Model Checking: 10^20 States and Beyond , 1990, Inf. Comput..

[18]  In-Ho Moon,et al.  Border-Block Triangular Form and Conjunction Schedule in Image Computation , 2000, FMCAD.