【 摘 要 】

This paper presents a formal model-based methodology to support railway engineers in the design of safe electronic urban railway control systems. The purpose of our research is to overcome the deficiencies of existing traditional design methodologies, namely the incompleteness and the potential presence of contradictions in the system specification resulting from non-formal development techniques. We illustrate the application of the methodology via a case study of a tram-road level crossing protection system. It was chosen partly because it has a simple architecture and a small number of elements, thus it fits the scope limitations of this article. At the same time, it is suitable for presenting all essential features of our methodology. The proposed solution provides a specification/verification environment that facilitates the construction of correct, complete, consistent, and verifiable functional specifications during the development, while hiding all the formal method-related details from the railway engineers writing the specifications. Using this formal model-based methodology, a high-quality functional specification can be achieved, which is guaranteed to be more exhaustive and will contain fewer errors than traditional development.

【 授权许可】

CC BY   
© The Author(s) 2022

【 预 览 】

附件列表

Files	Size	Format	View
RO202305065301136ZK.pdf	5414KB	PDF	download
Fig. 1	79KB	Image	download
Fig. 6	1149KB	Image	download
Fig. 3	5655KB	Image	download
12888_2022_4322_Article_IEq1.gif	1KB	Image	download
Fig. 13	666KB	Image	download
12936_2022_4393_Article_IEq6.gif	1KB	Image	download
Fig. 1	293KB	Image	download
12888_2022_4322_Article_IEq5.gif	1KB	Image	download
12888_2022_4322_Article_IEq11.gif	1KB	Image	download
Fig. 7	1696KB	Image	download
12864_2022_9026_Article_IEq187.gif	1KB	Image	download
Fig. 4	141KB	Image	download
Fig. 5	197KB	Image	download
Fig. 6	172KB	Image	download
MediaObjects/12888_2022_4463_MOESM1_ESM.pdf	459KB	PDF	download
Fig. 5	525KB	Image	download
12951_2022_1749_Article_IEq8.gif	1KB	Image	download
MediaObjects/12888_2022_4467_MOESM1_ESM.docx	102KB	Other	download
Fig. 4	413KB	Image	download
Fig. 1	236KB	Image	download
13068_2022_2229_Article_IEq2.gif	1KB	Image	download
13068_2022_2229_Article_IEq3.gif	1KB	Image	download
Fig. 7	994KB	Image	download
Fig. 2	747KB	Image	download
Fig. 6	1402KB	Image	download
12888_2022_4137_Article_IEq2.gif	1KB	Image	download
Fig. 3	858KB	Image	download
Fig. 5	1959KB	Image	download
MediaObjects/40170_2022_299_MOESM2_ESM.docx	2894KB	Other	download
Fig. 4	2985KB	Image	download
Fig. 2	108KB	Image	download

【 图 表 】

Fig. 2

Fig. 4

Fig. 5

Fig. 3

12888_2022_4137_Article_IEq2.gif

Fig. 6

Fig. 2

Fig. 7

13068_2022_2229_Article_IEq3.gif

13068_2022_2229_Article_IEq2.gif

Fig. 1

Fig. 4

12951_2022_1749_Article_IEq8.gif

Fig. 5

Fig. 6

Fig. 5

Fig. 4

12864_2022_9026_Article_IEq187.gif

Fig. 7

12888_2022_4322_Article_IEq11.gif

12888_2022_4322_Article_IEq5.gif

Fig. 1

12936_2022_4393_Article_IEq6.gif

Fig. 13

12888_2022_4322_Article_IEq1.gif

Fig. 3

Fig. 6

Fig. 1

【 参考文献 】

• [1]
• [2]
• [3]
• [4]
• [5]
• [6]
• [7]
• [8]
• [9]
• [10]
• [11]
• [12]
• [13]
• [14]
• [15]
• [16]
• [17]
• [18]
• [19]
• [20]
• [21]
• [22]
• [23]
• [24]
• [25]
• [26]
• [27]
• [28]
• [29]
• [30]
• [31]
• [32]
• [33]
• [34]
• [35]
• [36]
• [37]
• [38]
• [39]
• [40]
• [41]
• [42]
• [43]
• [44]
• [45]
• [46]
• [47]
• [48]
• [49]
• [50]
• [51]
• [52]
• [53]
• [54]
• [55]
• [56]
• [57]
• [58]
• [59]
• [60]
• [61]
• [62]
• [63]
• [64]
• [65]