Safety and Fault-Tolerance in Computer-Controlled Railway Signalling Systems

  • Katsuji Akita
  • Hideo Nakamura
Part of the Dependable Computing and Fault-Tolerant Systems book series (DEPENDABLECOMP, volume 4)


This paper presents safety and fault-tolerance technology of railway signalling controls. First,the type of faults to be handled and the required level of safety and reliability are given. Next,two types of microcomputer architectures with hardware redundancy are shown. Safety methods for a video display unit and data transmission are also given. Fault-tolerant system structures with triple-modular-redundancy, duplex and single,which have been applied to signalling systems in JR are also described. Further, software approach to fail-safety and fault-tolerance is discussed. Field data on 4 kinds of microcomputer-controlled signalling systems are shown. Since 1985 about 650 sets of fail-safe microcomputers have been operating in JR. An endangering failure has never occurred and the safe-side failure rate up to now including an initial error period has been in the order of 10−5 to 10−6/h.


Signalling System Redundant Structure Double Error Transient Error Operator Console 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. [1]
    K.Akita et al, “Computerized Interlocking System for Railway Signalling Control: SMILE”, IEEE Trans. on Industry Applications, IA-32, 4, p. 826 (1985).CrossRefGoogle Scholar
  2. [2]
    K.Akita et al, “Development of Computerized Interlocking SMILE”, Railway Technical Research Report, No.1361, p.82, in Japanese (1987).Google Scholar
  3. [3]
    A.Avizienis, “The N-Version Approach to Fault-Tolerant Software”, IEEE Trans. on Software Engineering, SE-11, 12, p.1491 (1985).CrossRefGoogle Scholar
  4. [4]
    L.Okumura et al, “The Software Structure of a Fail-Safe and Fault-Tolerant Computer for Railway Signalling Device”, Proc. of FTCS-11, p.56 (1981).Google Scholar
  5. [5]
    K.Kawakubo et al, “The Architecture of a Fail-Safe and Fault-Tolerant Computer for Railway Signalling Device”, Proc. of FTCS-10, p.372(1980).Google Scholar
  6. [6]
    T.Kumagai, “Microelectronic Alarm and Protection Control for Level Crossing Equipment”, Japanese Railway Engineering, 103, p. 18 (1987).Google Scholar
  7. [7]
    T.Sasaki, “Development of Electronic Blocking System”, ibid., 99, p. 16 (1986).Google Scholar
  8. [8]
    H.Nakamura, K.Akita, “Consideration of Synchronism for Tight-coupled Multiprocessor System”, T. IEE Japan, 108-C, 2, p. 135, in Japanese (1988).Google Scholar
  9. [9]
    D.Nordenfors, A.Sjoberg, “Computer-controlled Electronic Interlocking System, ERILOCK850”, Ericson Review, No.1 (1986).Google Scholar

Copyright information

© Springer-Verlag/Wien 1991

Authors and Affiliations

  • Katsuji Akita
    • 1
  • Hideo Nakamura
    • 1
  1. 1.Safety and Telecommunications Lab.Railway Technical Research InstituteHikaricho - Kokubunji-City - TokyoJapan

Personalised recommendations