Driver Machine Interface (DMI) is a slave unit of the train onboard computer (EVC) in the ERTMS-ATC system. The SAFEDMI project aimed at the development of DMI which fulfills the requirements of Safety Integrity Level 2 according to the CENELEC development standards. Formal methods were successfully applied in the quantitative evaluation of the DMI. This paper presents an overview of these methods applied for the evaluation of the architecture, the wireless communication protocol, and the detection codes and residual errors.
Formal methods in the evaluation of a safe driver-machine interface / I. Majzik; A. Bondavalli; S. Klapka; T.K. Madsen; D. Iovino. - STAMPA. - (2008), pp. 313-320. (Intervento presentato al convegno Symposium on Formal Methods for Automation and Safety in Railway and Automotive Systems (FORMS/FORMAT 2008) tenutosi a Budapest, Hungary nel 09-10 October 2008).
Formal methods in the evaluation of a safe driver-machine interface
BONDAVALLI, ANDREA;
2008
Abstract
Driver Machine Interface (DMI) is a slave unit of the train onboard computer (EVC) in the ERTMS-ATC system. The SAFEDMI project aimed at the development of DMI which fulfills the requirements of Safety Integrity Level 2 according to the CENELEC development standards. Formal methods were successfully applied in the quantitative evaluation of the DMI. This paper presents an overview of these methods applied for the evaluation of the architecture, the wireless communication protocol, and the detection codes and residual errors.
| File | Dimensione | Formato | |
|---|---|---|---|
|
39776.pdf
Accesso chiuso
Tipologia:
Versione finale referata (Postprint, Accepted manuscript)
Licenza:
Tutti i diritti riservati
Dimensione
202.65 kB
Formato
Adobe PDF
|
202.65 kB | Adobe PDF | Richiedi una copia |
I documenti in FLORE sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
