The MEN SIL 4 Safety ATMS Advanced Train Management System will provide the rail industry of Australia with significantly upgraded capabilities.
The new nationwide system includes functions like provision of the precise location of trains both front and rear, provision of switch settings and automatic route clearances, replacement of trackside signaling with in-locomotive displays of authorities to drivers and enforcement of authorities on each locomotive if a train is at risk of exceeding its authority.
The safety-critical computer system which partitions the vital and non-vital applications in one single platform is built to a high degree with standard COTS products. It is based on a CompactPCI® - CompactPCI® Serial hybrid configuration and is certifiable up to SIL 4. The critical part runs on the VxWorks® CERT safe operating system and consists of one or two D602 safe computers, designed for deterministic operation and offering extensive BITE features. The three PowerPC® processors run in lockstep mode with 2oo3 voting implemented in FPGA and software-assisted resynchronisation, while its triple-redundant dynamic memory automatically corrects hardware faults.
Ethernet is integrated via a P511 PMC, binary I/O is added using the M66 M-Module™. The non-critical part of the system consists of two F19P Intel® Core™ CompactPCI® PlusIO SBCs, connecting to a F301 CompactPCI® Ethernet switch, four G501 CompactPCI® Serial hard disk shuttles with 500 GB SATA HDDs each, and running Linux.