Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Software Updates for Non-Critical Components in a Doubly Safety-Critical Distributed System

A software and key technology, the redundancy applied in hardware is used for data error detection, security arrangement, transmission system, etc., which can solve problems such as consumption and achieve the effect of avoiding failure.

Active Publication Date: 2017-07-11
SIEMENS MOBILITY GMBH
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Special problems thus arise when the data device belongs to a safety-critical system equipped with safety-related and non-safety-related software, which must be type-checked before it can be used and (for example in the operation of interlocking systems device or train safety system) must be licensed in a costly procedure
Changes to the software are no longer permitted after this

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Software Updates for Non-Critical Components in a Doubly Safety-Critical Distributed System

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0015] The figure shows a first data device 1 , which can be an operating computer of a train safety system. The first data device 1 contains licensed, security-relevant software 2 . A reference data device 4 is connected via a data connection 3 to the first data device 1 , which is likewise equipped with licensed, safety-related software 2 .

[0016] The first data device 1 is connected via a data channel 5 and the reference data device 4 via a further data channel 6 to a comparison device 7 whose function is controlled in the train safety system by an interlock not shown or by another safety device. oriented comparator assumes.

[0017] For the further description of the method according to the invention it is assumed that the settings just described are subject to type checking and authorization in this state. If the arrangement is then provided with additional software 8 , for example in the form of a virus protection program, software modification of the reference data ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a method for operating a safety-critical system with at least one first data device (1) and at least one reference data device (4), the first data device having a licensed safety-related The reference data device has the same licensed security-related software (2). In the method, at least one first data device (1) is assigned at least one non-safety-related additional software (8, 9, 10) after a type check of the system and at least one reference data device (4) is disabled software modification. Before outputting the data information (D) of the safety technology aspect, by means of a comparison device (7) the output information (A1, Ar) of at least one first data device (1) and at least one reference data device (4) is checked with respect to Consistency of safety-related software (2) and output of safety-related data (D) if consistent.

Description

Background technique [0001] It has proven to be extremely difficult or almost impossible to operate a data device, for example a personal computer, in such a way that the data device can be operated without determining safety hazards. Special problems thus arise when the data device belongs to a safety-critical system equipped with safety-related and non-safety-related software, which must be type-checked before it can be used and (for example in the operation of interlocking systems device or train safety system) must be licensed in a costly procedure. Changes to the software are no longer permitted thereafter. According to the prior art, this is even monitored automatically and such systems are automatically stopped after a change has been detected. If after inspection and licensing of such systems it becomes necessary to introduce non-safety-relevant software into such systems by means of upgrades or patches, either the licensed, identifiable software must be used or the ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): B61L27/00G05B9/00G05B19/00G06F11/07G06F11/16G06F21/57G06F21/74H04L1/22H04L29/08H04L29/06
CPCB61L27/00G06F11/07G06F11/16G06F21/57G06F21/74H04L1/22H04L63/12B61L15/0063G06F11/1641B61L27/30B61L27/60G06F8/65G06F11/368
Inventor 延斯·布拉班德
Owner SIEMENS MOBILITY GMBH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com