Skip to main content
SpringerLink
Log in

Analysing an autonomous tramway positioning system with the Uppaal Statistical Model Checker

  • Original Article
  • Published:
Formal Aspects of Computing

Abstract

The substitution of traditional occupancy detecting sensors with an Autonomous Positioning System (APS) is a promising solution to contain costs and improve performance of current tramway signalling systems. APS is an onboard system using satellite positioning and other inertial platforms to autonomously estimate the position of the tram with the needed levels of uncertainty and protection. However, autonomous positioning introduces, even in absence of faults, a quantitative uncertainty with respect to traditional sensors. This paper investigates this issue in the context of an industrial project: a model of the envisaged solution is proposed, and it is analysed using Uppaal Statistical Model Checker. A novel model-driven hazard analysis approach to the exploration of emerging hazards is proposed. The analysis emphasises how the virtualisation of legacy track circuits and on-board satellite positioning equipment may give rise to new hazards, not present in the traditional system.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Similar content being viewed by others

References

  1. Arcaini P, Kofroň J, Ježek P (2020) Validation of the hybrid ERTMS/ETCS level 3 using spin. Int J Softw Tools Technol Transf 22(3):265–279

  2. Agha G, Palmskog K (2018) A survey of statistical model checking. ACM Trans Model Comput Simul 28(1):6:1–6:39

  3. Arenis SF, Vujinovic M, Westphal B (2020) On implementable timed automata. In: Formal techniques for distributed objects, components, and systems—40th IFIP WG 6.1 international conference, FORTE 2020, held as part of the 15th international federated conference on distributed computing techniques, DisCoTec 2020, Valletta, Malta, June 15–19, 2020, proceedings,

  4. Basile D (2021) Repository for reproducing the experiments. https://github.com/davidebasile/faoc2020

  5. Behrmann G, David A, Larsen KG, Håkansson J, Pettersson P, Yi W, Hendriks M (2006) UPPAAL 4.0. In: Proceedings of the 3rd international conference on the quantitative evaluation of sysTems (QEST’06). IEEE, pp 125–126

  6. Bulychev P, David A, Larsen KG, Legay A, Li G, Poulsen DB (2013) Rewrite-based statistical model checking of WMTL. In: Qadeer S, Tasiran S (eds) Runtime verification—revised selected papers of the 3rd international conference on runtime verification (RV’12), volume 7687 of lecture notes in computer science. Springer, pp 260–275

  7. Basile D, Fantechi A, Rucher L, Mandò G (2019) Statistical model checking of hazards in an autonomous tramway positioning system. In: Reliability, safety, and security of railway systems. Modelling, analysis, verification, and certification—third international conference, RSSRail 2019, Lille, France, June 4–6, 2019, proceedings, pp 41–58

  8. Basile D, Di Giandomenico F, Gnesi S (2017) Dependable dynamic routing for urban transport systems through integer linear programming. In: FantechiA, Lecomte T, Romanovsky AB(eds)Reliability, safety, and security of railway systems. Modelling, analysis, verification, and certification—second international conference,RSSRail 2017, Pistoia, Italy,November 14–16, 2017, proceedings, volume 10598 of lecture notes in computer science. Springer, pp 221–237

  9. Barbot B, Haddad S, Picaronny C (2012) Coupling and importance sampling for statistical model checking. In: Flanagan C, König B (eds) Tools and algorithms for the construction and analysis of systems, volume 7214 of LNCS. Springer, pp 331–346

  10. Berger U, James P, Lawrence A, Roggenbach M, Seisenberger M (2018) Verification of the European rail traffic management system in real-time maude. Sci Comput Program 154:61–88

  11. Bartholomeus M, Luttik B, Willemse T (2018) Modelling and analysing ERTMS hybrid level 3 with the mCRL2 toolset. In: Howar F, Barnat J (eds) Proceedings of the 23rd international conference on formal methods for industrial critical systems (FMICS’18), volume 11119 of LNCS. Springer

  12. Beugin J, Marais J (2012) Simulation-based evaluation of dependability and safety properties of satellite technologies for railway localization. Transp Res C-Emerg 22:42–57

  13. Boulanger JL (2015) Tool qualification. In: CENELEC 50128 and IEC 62279 Standards, chap. 9. Wiley, pp 287–308

  14. Basile D, ter Beek MH, Ciancia V (2018) Statistical model checking of amoving block railway signalling scenario with UPPAAL SMC—experience and outlook. In: Leveraging applications of formal methods, verification and validation. Verification—8th international symposium, ISoLA 2018, Limassol, Cyprus, November 5–9, 2018, proceedings, Part II, pp 372–391

  15. Basile D, ter Beek MH, Ferrari A, Legay A (2019) Modelling and analysing ERTMS L3 moving block railway signalling with simulink and UPPAAL SMC. In: Formal methods for industrial critical systems—24th international conference, FMICS 2019, Amsterdam, The Netherlands, August 30–31, 2019, proceedings, pp 1–21

  16. Basile D, ter Beek MH, Legay A (2020) Strategy synthesis for autonomous driving in a moving block railway system with UPPAAL stratego. In: Formal techniques for distributed objects, components, and systems—40th IFIPWG 6.1 international conference, FORTE 2020, held as part of the 15th international federated conference on distributed computing techniques, DisCoTec 2020, Valletta, Malta, June 15–19, 2020, proceedings, pp 3–21

  17. Ceccarelli A, Basile D, Bondavalli A, Falai L, Fantechi A, Ferrari S, Mandò G, Nostro N, Rucher L (2019) The SISTER approach for verification and validation: a lightweight process for reusable results. In: Computer safety, reliability, and security—SAFECOMP 2019 workshops, ASSURE, DECSoS, SASSUR, STRIVE, and WAISE, Turku, Finland, September 10, 2019, proceedings, pp 185–197

  18. Cappart Q, Limbrée C, Schaus P, Quilbeuf J, Traonouez L-M, Legay A (2017) Verification of interlocking systems using statistical model checking. In: HASE. IEEE, pp 61–68

  19. Cunha A, Macedo N (2020) Validating the hybrid ERTMS/ETCS level 3 concept with Electrum. Int J Softw Tools Technol Transf 22(3):281–296

  20. Dghaym D, Dalvandi M, Poppleton M, Snook C (2020) Formalising the hybrid ERTMS level 3 specification in iUML-B and Event-B. Int J Softw Tools Technol Transf 22(3):297–313

  21. David A, Larsen KG, Legay A, Mikučionis M, Poulsen DB (2015) Uppaal SMC tutorial. Int J Softw Tools Technol Transf 17(4):397–415

  22. Ericson CA et al (2015) Hazard analysis techniques for system safety. Wiley, Hoboken

  23. El-Rahman S, Attiya A, Mamoud H, Kader H (2018) Passive rfid tag for railway application. Open J Antennas Propag 06:15–24

  24. ESA (2018) Navipedia - Integrity. https://gssc.esa.int/navipedia/index.php/Integrity#Protection_Level, page last edited July

  25. European Committee for Electrotechnical Standardization (2010) CENELEC EN 50159—railway applications—communication, signalling and processing systems—safety-related communication in transmission systems

  26. European Committee for Electrotechnical Standardization (2011) CENELEC EN 50128—railway applications—communication, signalling and processing systems—Software for railway control and protection systems, 01 06

  27. European Committee for Electrotechnical Standardization (2017) CENELEC EN 50126-1—railway applications—the specification and demonstration of reliability, availability, maintainability and safety (RAMS)—part 1: generic RAMS process, 01 10

  28. European Committee for Electrotechnical Standardization (2017) CENELEC EN 50126-2—-Railway applications—the specification and demonstration of reliability, availability, maintainability and safety (RAMS)—part 2: systems approach to safety, 01 10

  29. Fantechi A(2019) Connected or autonomous trains? In: Reliability, safety, and security of railway systems. Modelling, analysis, verification, and certification—third international conference, RSSRail 2019, Lille, France, June 4–6, 2019, proceedings, pp 3–19

  30. Falco G, Nicola M, Falletti E (2018) An HW-in-the-loop approach for the assessment of GNSS local channel effects in the railway environment. In: Proceedings of the 31st International technical meeting of the Satellite Division of The Institute of Navigation (ION GNSS+ 2018). Institute of Navigation, pp 3463–3477

  31. Geisler S, Haxthausen AE (2021) Stepwise development and model checking of a distributed interlocking system using raise. Form Asp Comput 33(1):87–125

  32. Glynn PW, Iglehart DL (1989) Importance sampling for stochastic simulations. Manag Sci 35(11):1367–1392

  33. Groves PD, Jiang Z, Rudi M, Strode P (2013) A portfolio approach to NLOS and multipath mitigation in dense urban areas. In: Proceedings of the 26th international technical meeting of the Satellite Division of The Institute of Navigation (ION GNSS+ 2013). Institute of Navigation, pp 3231–3247

  34. Garavel H, ter Beek MH, van de Pol J (2020) The 2020 expert survey on formal methods. In: ter Beek MH, Ničković D (eds) Proceedings of the 25th international conference on formal methods for industrial critical systems (FMICS’20), volume 12327 of LNCS Springer, pp 3–69

  35. Hili N, Dingel J, Beaulieu A (2017) Modelling and code generation for real-time embedded systems with uml-rt and papyrus-rt. In: Proceedings of the 39th international conference on software engineering companion, ICSE-C ’17. IEEE Press, pp 509–510

  36. Tomas Hotzel E, Ken P, Golightly D, Palacin R (2021) Modelling train driver behaviour in railway co-simulations. In Cleophas L, Massink M (eds) Software engineering and formal methods. SEFM 2020 collocated workshops. Springer International Publishing, Cham, pp 249–262

  37. Haxthausen AE, Hede K (2019) Formal verification of railway timetables - using the UPPAAL Model Checker. In: From software engineering to formal methods and tools, and back, volume 11865 of LNCS, pp 433–448

  38. Huang J, Lv J, Feng Y, Luo Z, Liu H, Chai M (2020) A novel method on probability evaluation of zc handover scenario based on smc. In: Qian J, Liu H, Cao J, Zhou D (eds) Robotics and rehabilitation intelligence. Springer Singapore, Singapore, pp 319–333

  39. Hansen D, Leuschel M, Körner P, Krings S, Naulin T, Nayeri N, Schneider D, Skowron F (2020) Validation and real-life demonstration of ETCS hybrid level 3 principles using a formal B model. Int J Softw Tools Technol Transf 22(3):315–332

  40. Jegourel C, Larsen KG, Legay A, Mikučionis M, Poulsen DB, Sedwards S (2016) Importance sampling for stochastic timed automata. In: Fränzle M, Kapur D, Zhan N(eds) Dependable software engineering: theories, tools, and applications. Springer International Publishing, Cham, pp 163–178

  41. Kouzapas D, Dardha O, Perera R, Gay SJ (2016) Typechecking protocols with mungo and stmungo. In: Proceedings of the 18th international symposium on principles and practice of declarative programming, PPDP ’16. Association for Computing Machinery, New York, NY, USA, pp 146–159

  42. Karra SL, Larsen KG, FL, Srba J (2019) Safe and time-optimal control for railway games. In: RSSRail, volume 11495 of LNCS, pp 106–122

  43. Legrand C, Beugin J, Conrard B,Marais J, BerbineauM, El-Miloudi E (2015) Approach for evaluating the safety of a satellitebased train localisation system through the extended integrity concept. In: Proceedings of ESREL 2015—European safety and reliability conference

  44. Larsen KG, Lorber F, Nielsen B (2018) 20 years of UPPAAL enabled industrial model-based validation and beyond. In: Leveraging applications of formal methods, verification and validation. industrial practice—8th international symposium, ISoLA 2018, Limassol, Cyprus, November 5–9, 2018, proceedings, Part IV, pp 212–229

  45. Legay A, Lukina A, Traonouez LM, Yang J, Smolka SA, Grosu R (2019) Statistical model checking. In: Steffen B, Woeginger GJ (eds) Computing and software science: state of the art and perspectives, volume 10000 of LNCS. Springer, pp 478–504

  46. Larsen KH, Mikucionis M, Taankvist JH (2015) Safe and optimal adaptive cruise control. In: Correct system design, volume 9360 of LNCS, pp 260–277

  47. Laursen PL, Trinh VAT, Haxthausen AE (2020) Formal modelling and verification of a distributed railway interlocking system using uppaal. In: Margaria T, Steffen B (eds) Leveraging applications of formal methods, verification and validation: applications. Springer International Publishing, Cham, pp 415–433

  48. Li R, Yin J, Zhu H (2020) Modeling and analysis of rabbitmq using uppaal. In: 020 IEEE 19th international conference on trust, security and privacy in computing and communications (TrustCom), pp 79–86

  49. Mammar A, Frappier M, Tueno Fotso SJ, Laleau R (2020) A formal refinement-based analysis of the hybrid ERTMS/ETCS level 3 standard. Int J Softw Tools Technol Transf 22(3):333–347

  50. Nardone R, GentileU, Benerecetti M, Peron A, Vittorini V, Marrone S, Mazzocca N (2016) Modeling railway control systems in Promela. In: Artho C, Ölveczky PC (eds) Formal techniques for safety-critical systems—revised selected papers of the 4th international workshop on formal techniques for safety-critical systems (FTSCS’15), volume 596 of communications in computer and information science. Springer, pp 121–136

  51. Oortwijn W, Huisman M (2019) Formal verification of an industrial safety-critical traffic tunnel control system. In: Ahrendt W, Tapia Tarifa SL (eds) Integrated formal methods. Springer International Publishing, pp 418–436

  52. Puch S, Fränzle M, Gerwinn S (2018) Quantitative risk assessment of safety-critical systems via guided simulation for rare events. In: Margaria T, Steffen B (eds) Leveraging applications of formal methods, verification and validation. Verification. Springer International Publishing, Cham, pp 305–321

  53. Peleska J, Krafczyk N, Haxthausen AE, Pinger R (2019) Efficient data validation for geographical interlocking systems. In: Reliability, safety, and security of railway systems. Modelling, analysis, verification, and certification—third international conference, RSSRail 2019, Lille, France, June 4–6, 2019, proceedings, pp 142–158

  54. Rispoli F, Castorina M, Neri A, Filip A, Di Mambro G, Senesi F (2013)Recent progress in application of GNSS and advanced communications for railway signaling. In: Proceedings of the 23rd international conference radioelektronika (RADIOELEKTRONIKA 2013). IEEE, pp 13–22

  55. Shift2Rail Joint Undertaking (2015) Multi-Annual Action Plan, 26 November. http://ec.europa.eu/research/participants/data/ref/h2020/other/wp/jtis/h2020-maap-shift2rail_en.pdf.

  56. Shokri-Manninen F, Tsiopoulos L, Vain J, Waldén M (2020) Integration of iUML-B and UPPAAL timed automata for development of real-time systems with concurrent processes. In: Raschke A, Méry D, Houdek F (eds) Rigorous state-based methods. Springer International Publishing, pp 186–202

  57. Shokri-Manninen F, Vain J, Waldén M (2020) Formal verification of colreg-based navigation of maritime autonomous systems. In: de Boer F, Cerone A (eds) Software engineering and formal methods. Springer International Publishing, Cham, pp 41–59

  58. ter Beek MH, Gnesi S, Knapp A (2018) Formal methods for transport systems. Int J Softw Tools Technol Transf 20(3)

  59. Thamilselvam B, Kalyanasundaram S, Panduranga Rao MV (2019) Coordinated intelligent traffic lights using UPPAAL stratego. In: COMSNETS. IEEE, pp 789–794

Download references

Acknowledgements

This work has been funded by the Tuscany Region project POR FESR 2014-2020 SISTER “SIgnaling & Sensing Technologies in Railway application”.

Author information

Authors and Affiliations

  1. Institute of Information Science and Technologies “Alessandro Faedo” - ISTI, National Research Council, Pisa, Italy

    Davide Basile

  2. Department of Information Engineering, University of Florence, Florence, Italy

    Alessandro Fantechi

  3. Thales Italia S.p.A., Florence, Italy

    Luigi Rucher & Gianluca Mandò

Authors
  1. Davide Basile
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Alessandro Fantechi
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Luigi Rucher
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Gianluca Mandò
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Davide Basile.

Additional information

Jim Woodcock, Alessandro Fantechi and Anne Haxthausen

Publisher’s Note

Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.

Rights and permissions

Reprints and permissions

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Basile, D., Fantechi, A., Rucher, L. et al. Analysing an autonomous tramway positioning system with the Uppaal Statistical Model Checker. Form Asp Comp 33, 957–987 (2021). https://doi.org/10.1007/s00165-021-00556-1

Download citation

  • Received:

  • Revised:

  • Accepted:

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1007/s00165-021-00556-1

Keywords

Search

Navigation