New Requirements Elicited from Accidents of Train Control System Simulated by Modelica

Although train control system (TCS) is regarded relatively safe, accidents still happened from time to time. In this paper, we propose a simulation based approach to elicit new requirements from accidents and then modify the TCS to provide a more reliable and safer system. A Modelica system model is constructed to describe the structure and interactions of TCS according to the continuous behavior and discrete fault event of TCS devices. A Modelica accident model is also defined based on the system model in order to predict accidents. These Modelica models are simulated in Open Modelica until all scenarios (paths) are covered. By analyzing the simulation results which indicate the causes of accidents, we elicit new requirements, and modify the original system model. Simulation is used again to show that these modifications could effectively avoid such accidents. A case study is provided to validate our approach.

[1]  Paolo Traverso,et al.  Formal Specification and Validation of a Vital Communication Protocol , 1999, World Congress on Formal Methods.

[2]  Sanjit A. Seshia,et al.  Combining requirement mining, software model checking and simulation-based verification for industrial automotive systems , 2016, 2016 Formal Methods in Computer-Aided Design (FMCAD).

[3]  Vasant Honavar,et al.  A Software Fault Tree Approach to Requirements Analysis of an Intrusion Detection System , 2002, Requirements Engineering.

[4]  Peter A. Fritzson,et al.  Principles of object-oriented modeling and simulation with Modelica 2.1 , 2004 .

[5]  Clifton A. Ericson,et al.  Event Tree Analysis , 2005 .

[6]  Didier Buchs,et al.  Perspectives in the Use of Coloured Petri Nets for Risk Analysis and Accident Modelling , 2003 .

[7]  Paolo Traverso,et al.  Formal Specification and Development of a Safety-Critical Train Management System , 1999, SAFECOMP.

[8]  Wan Chul Yoon,et al.  An accident causation model for the railway industry: Application of the model to 80 rail accident investigation reports from the UK , 2013 .

[9]  Yu Lu,et al.  Timed Fault Tree Models of the China Yongwen Railway Accident , 2014, 2014 8th Asia Modelling Symposium.

[10]  Vasilis Fthenakis,et al.  Hazard and operability (HAZOP) analysis. A literature review. , 2010, Journal of hazardous materials.

[11]  Nune Ravi Sankar,et al.  Modified approach for prioritization of failures in a system failure mode and effects analysis , 2001 .

[12]  Michael Tiller,et al.  Introduction to Physical Modeling with Modelica , 2001 .

[13]  Alessandro Cimatti,et al.  Industrial Applications of Model Checking , 2000, MOVEP.