Clearsy System Engineering - fersil-railway.com©s... · Alstom and Siemens to develop ATP Safety critical systems . FERSIL I CLEARSY’S RAILWAY PRODUCTS Confidential and proprietary

FERSIL I CLEARSY’S RAILWAY PRODUCTS

Confidential and proprietary information – Property of Clearsy

1

u

[email protected]

Clearsy

System Engineering Provides safety critical systems and software

Fersil: Clearsy’s railway products

q

8 FEVRIER 2012

Paris

Lyon

Aix www.FERSIL.FR

www.FERSIL-RAILWAY.COM

V1.3



2

u Company Profile

SME created in 2001

100 engineers & PhDs

Located in Paris, Aix en Provence and Lyon

Partnership with five factories to provide industrial equipments

New: Partnership with RATP (Paris Metro) to adapt and

distribute RATP systems and components

Partnership with companies to add new technologies and new

products



3

u ClearSy

Defines new specific safety systems, adapts its system to

specific requirements

Provides safety critical systems SIL2 to SIL4

Provides safety critical software SIL2 to SIL4

Uses the formal B method to develop it

Provides the safety cases

Develops the software development toolkit: Atelier B, used by

Alstom and Siemens to develop ATP Safety critical systems



4

u ClearSy’s Fields of expertise

Software and systems mathematically proved (B method)

Safety cases using IEC 61508 and EN 50126,128,129 standards

Safety critical architecture design

Electronic Fail Safe design

Safety critical electronic hardware design and development

Safe magnetic train track transmission

Safety critical software architecture design and development

Safety critical software and hardware commissioning

In depth knowledge of railway standards and rules

Signaling, CBTC, interlocking, rolling stocks rules and standards

Safety “black sheep” designer, Safety quick development specialist



5

u Design, implementation and certification

of safety critical systems and software



6

u Railway Customers



7

u ClearSy Develops and Distributes

Safety Critical Systems and Products u OPENING AND CLOSING PLATFORM SCREEN DOORS SIGNALING SYSTEMS

u TRACK SAFETY MONITORING

u EMBEDDED SYSTEM TO DETECT PLATFORM

u GAP FILLER BETWEEN PLATFORM AND TRAIN DOORS

u AUTOMATIC TRAIN STOP – SPEED CONTROL SYSTEM

u HOT BOX AND WHEEL DETECTOR, DRAGGING EQUIPMENT DETECTOR

u DISTRIBUTED SAFETY I/O NETWORK

u HIGH-PERFORMANCE RAILWAY OPERATION SCADA DATA LOGGER

u FAIL SAFE RELAYS

u AXLE COUNTERS

B Formal Method Tool u ATELIER B, TO PRODUCE MATHEMATICALLY PROVEN SAFETY

SOFTWARE SYSTEMS



8

u DOF1: SIL3/4 Safety critical screen doors

control system – Paris Metro Line 1

Opening and closing platform screen doors system

Safety critical SIL3 system

Deployed on Paris Metro line 1 before driverless railway

metro cars start up revenue service

SIL4 authorization of the train doors opening and closing



9

u

TITRE NIVEAU-1

u SOUS-TITRE (niveau 2)

Texte Texte texte …

DOF1: SIL 3 Safety Critical Screen

Doors control System

In operation since 2011 in Paris subway line 1

SIL3: PSD Opening and closing control

SIL4: Correct Train Side doors Enable



10

u COPP: SIL 3 Safety Critical Screen Doors

control System on Paris Metro line 13



Safe train-track communication

13 stations

Included in the Automatic Turnback system

Controls the presence of the train stopped at the station, in the

correct zone



11

u COPP: SIL 3 Safety Critical Screen Doors

control System on Paris Metro line 13

On board and track side equipment



12

u COPP System – Station overview



13

u COPPILOT: SIL 3 Safety Critical Screen Doors

control Coppilot System on Sao Paolo line 2&3



Detection system

System does not require any onboard element



14

u COPPILOT: SIL 3 Safety Critical Screen

Doors control System on Sao Paolo line 2&3

This system uses only track side equipment



15

u Coppilot detail

Door zone surveillance



16

u DIL: SIL 3 Platform gap safety

monitoring system

GAP SAFETY MONITORING

PARIS Line 1, safety critical system

System to detect a person in the gap zone between

platform door and train door



17

u Flexible gap filler between platform and

door edge on Paris Metro line 1 and Lyon

Gap filler prevents accidental fall if a person steps

between platform and train

Paris Line 1 & Lyon

Fixed on the platform

“Fusible” devices



18

u SIL2 KFS - Automatic Train Stop (ATS) (Certifer Certificate ECI1462/0004-1 - 12/14/2009)

Apply emergency brake control if the train overruns a

restrictive signal



19

u SIL2 KFS – Automatic Train Stop

(ATS)

Emergency brake controlled !! French Valenciennes tramway

French Lyon Tram train



20

u KFS Beacon linked with signal



21

u On board stop signal sensor

mounting



22

u KPVA Train speed independent control system

installed on all Paris Metro lines (RATP PATENT)

AVOID TRAIN OVERSPEED



23

u DRF : Steel wheel presence sensor

TRAIN DETECTION POINT

Wheel steel

Flange

Sensor

Bracket

Rail



24

u DRF MP: Steel wheel presence sensor

- Wheel Distance = 70 mm

Detect steel wheel

presence up to 70

mm

Tyre Wheel

steel

Flange

Sensor

Zk24 M

Bracket

Rail



25

u SIL4 Axle Counter - TÜV certificate

SAFETY TRAIN DETECTION

SIL4 certificate for multi zone counter system

Similar Function as a track circuit



26

u SIL2 GAPS: To measure the Train-

Platform gap - operating on ALSTOM Train STI PMR

The system measures the gap between the train and the

platform edge



27

u GAPS detail



28

u SAS: public address system in

operation on ALSTOM Train - STI PMR



29

u SIL 4 Safety Critical Relays

Safety vital Relays

SIL4 Safety critical relay RS4

Small case (97*90*23mm)

Simplified wiring

2NO 2NC

24Vdc and 72 Vdc command

SIL4 Vital signaling relay CRIS

NS1 compatible

Signaling relay

Electronic version in rack

Relays with safety contacts guaranteed to open

Certifer Certificate

ECI_8349 - 25/04/2013



30

u SATURN

New distributed safety I/O network

Mixed SIL2 and SIL4 remote I/O, embedded and trackside

Safety wiring reduced

Response time: 2 to 3 ms, Data rates: 12 Mbits/s over 100 m

IO

IO IO

IO

Ethernet

GATEWAY

GATEWAY

PWR BT

PWR

Output device

Input device

EXAMPLE

REDUDANCY

Mio SIL4

SIL2

SIL0 IO

GATEWAY



31

u Hot box and hot wheel detector

Dragging equipment detection

Partnership with Progress Rail (Caterpillar Company)

Dragging equipment

detection

Hot Box and hot wheel detector :



32

u High-performance

railway operation SCADA data logger

Real-time supervision of large complex

systems (PLC, digital I/O devices, …)

Collection and archiving of input data

Real-time calculation and archiving of alarms

Extend on demand the range of any supported

devices and protocols

Provides Data and Alarms in HMI, Modbus, OPC

RATP line 1 on 3 stations (DIL): PLC and

laserscan datas

Sao Paulo Monorail line 15 (Coppilot): Modbus

IP, Laserscan datas, video (13 stations)

Caracas Los Teques line (6 stations) (Coppilot):

PLC, Modbus IP server (export to Scada)

Honolulu Line (21 stations): IO board, RS485

(ATC), Modbus RTU (Doors Control Unit)

DIL HMI example



33

u High-performance

railway operation SCADA data logger



34

u R&D: New Clearsy’s products

SIL4 Train location

Autonomous tag with location code, no crosstalk guaranteed

Emitter – RFID principle – safety protocol

Magnetic communication – 12 cm – 150 km/h

Safety Track monitoring

Detects falling passenger on track

Activate an alarm to stop the train when a falling

passenger is detected, SIL 2 to 4, System is

available with or without redundancy



35

u

Panama

Ningbo

Taichung Malaga

Toronto



36

u Contact

www.fersil-railway.com

[email protected]

Documents

Clearsy System Engineering - fersil-railway.com©s... · Alstom and Siemens to develop ATP Safety critical systems . FERSIL I CLEARSY’S RAILWAY PRODUCTS Confidential and proprietary