Safety cut-off method and device for output in three-mould redundancy safety computer

A safety computer, three-mode redundancy technology, applied in the direction of safety arrangement, redundancy in hardware for data error detection, response error generation, etc., can solve the problems of unsafe system output, casualties, dangerous operations, etc. Achieve the effect of avoiding loss of life and property, improving reliability and safety, and improving safety

Active Publication Date: 2007-10-03
TRAFFIC CONTROL TECH CO LTD
View PDF0 Cites 30 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, the situation of error accumulation must be considered: that is, if an error occurs in one module, if the system does not do any processing, another module will also have an error after a period of time, and the voting output obtained by the voter V will be the wrong output, or the system Can not work normally
This shows that if a module fails in the three-mode voting system, if its output maintains the original value or other values, no matter whether it is correct or not, it may cause the system output to be unsafe.
In a system with a higher safety level, an erroneous output under system failure may lead to dangerous operation, resulting in serious personal injury or property damage

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Safety cut-off method and device for output in three-mould redundancy safety computer
  • Safety cut-off method and device for output in three-mould redundancy safety computer
  • Safety cut-off method and device for output in three-mould redundancy safety computer

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0034] (1) Select the safety side of the output

[0035] The first step is to determine the state the output should be in when the system fails. For control systems, the safe side of the output can be set to the state after the energy is released. In a triple-mode redundant system, ground (logic "0") is selected as the output safety side. This selection is very important as it relates to the shutdown logic of the output safety shutdown circuit. That is to say, the output safety shutdown circuit described later is based on the precondition that logic "0" is the output safety side.

[0036] (2) Conditions for output safety shutdown

[0037] In the three-mode redundant safety computer, three groups of conditional signals for outputting safety shutdown are set for the three modules, one of which represents the judgment of the module on its own working state, and the other two represent the module’s response to the other two groups of modules. Judgment of working status. In th...

Embodiment 2

[0049] Fig. 1 exemplarily shows the principle of the safety shutdown method of the triple-mode redundant safety computer, and the block diagrams of each part will introduce the specific implementation in detail later.

[0050] The principle of power supply control of the safety shutdown circuit that controls the output of each module is shown in Figure 2(a)(b), which exemplarily shows the safety shutdown logic of the output power supply. The part to be turned off uses a relay (photoelectric, mechanical). The safety shutdown logic can adopt a serial-parallel structure or a parallel-serial structure, so that the safety and reliability of the system are guaranteed. At the same time, the safety shutdown logic can also be simplified to the circuit shown in Figure 2(c), at this time the safety index will not decrease, but the reliability index will decrease.

[0051] FIG. 3 shows a method for synthesizing multiple output safety shutdown condition signals into one output safety shut...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The present invention discloses a safe turn-off method for output in triple modular redundancy safety computer. Said invention mainly utilizes the safe turn-off condition signal outputted by triple modular redundancy safety computer to make judgement, and utilizes several groups of safe turn-off condition signals to make decision and judge that it has need of making safe turn-off or not. It is characterized by that said invention utilizes a change-over circuit from dynamic signal to level signal to generate turn-off signal, and can directly control the power supply of modular output safe turn-off circuit so as to implement safe turn-off output.

Description

technical field [0001] The invention relates to a safety shut-off method for the output of a triple-mode redundant safety computer, and is a control system for the safety output of the safety computer, especially in the fields of train operation control, nuclear power plant control, and the like, and also relates to the operation control of a maglev train. Background technique [0002] Triple Modular Redundancy (TMR), also known as two out of three, is currently the most commonly used fault-tolerant technology in secure computer systems. Triple-mode redundancy means that three modules with the same function perform the same operation at the same time, use the outputs of the three modules to make a large number of votes, and use most of the same outputs as the correct output of the triple-mode redundancy system. The system is based on the "minority obeys the majority" error correction principle, and is often referred to as a two-out-of-three system. [0003] Figure a is a bl...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G05B9/03G06F11/16
Inventor 马连川李开成袁磊
Owner TRAFFIC CONTROL TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap