The article covers the solution of the problem of building a fault-tolerant and trustworthy microprocessor systems of railway automation and remote control using diversity axiomatic bases. As a system under the study the microprocessor device, performing the calculation of rolling stock axes, are used. Based on the simulation tests the qualitative comparison of fault tolerance and trustworthy of such systems with and without considered diversity are carried out. The article presents an example of sequential increasing of diversity, according axiomatic-based approach. The considered steps are: separation of memory and registers, separation of addresses, separation of sets of commands of the microprocessor and the pro-tection of the software counter. It is also presents the formalization of conditions of diversity and the general cause failure protection, based on this. The example shows that diversity of axiomatic bases and self-testing of a common base solved the problem of dangerous failure detection. In this case the diversity solves the problem of detection of dangerous failures of diversity bases, and self-testing detects a maskable failures. It is also experimentally determined, that breakdown of a common base results in a general cause failures, and thus its mandatory control is justifi ed. It was found, that application of this approach accelerates the development for rising the software diversity. It was revealed, that during the design and development of diversity, it is possible to create diversity high-level abstractions, that allows to select the level of diversity abstraction. The article covers the particularities of widespread application of this approach for development and verifi cation of trustworthy and fault-tolerant systems.
fault tolerance, safety proof, diversity, formal methods, critical systems of data infrastructure, failure detection
1. Smith D. J. Safety Critical Systems Handbook. A Straightforward Guide to Functional Safety, IEC 61508 and Related Standards, Including Process IEC 61511 and Machinery IEC 62061 and ISO 13849 / D. J. Smith, Kenneth G. L. Simpson // Oxford, UK, Elsevier Ltd, 2010. - 270 p.
2. Parry G. W. Common Cause Failure Analysis: A Critique and Some Suggestions / G. W. Parry. - Gaithersburg, Maryland, USA, Reliability Engineering and System Safety, 1991. - Vol. 34. - Issue 3. - Pp. 309-326.
3. Neumann P. G. Computer-Related Risks / P. G. Neumann. - N.Y., USA, Addison-Wesley Professional, 1995. - 384 p.
4. Leveson N. Safeware: System Safety and Computers / N. Leveson. - N.Y., USA, Addison-Wesley, 1995. - 680 p.
5. Weil V. Professional Responsibility for Harmful Actions / V. Weil, B. Ferry. - Kendall Hunt, Dubuque, Iowa, 1984. - Pp. 402-411.
6. Sagan S. D. The Limits of Safety: Organizations, Accidents, and Nuclear Weapons / S. D. Sagan. - Princeton University Press, Princeton, N. J., 1993. - 302 p.
7. Bochkov K. A. Mikroprocessornye sistemy avtomatiki na zheleznodorozhnom transporte : ucheb. posobie / K. A. Bochkov, A. N. Kovriga, S. N. Harlap. - Gomel' : BelGUT, 2013. - 254 c.
8. Chen L. N-Version Programming: A Fault-Tolerance Approach to Reliability of Software Operation / L. Chen, A. Avizienis // FTCS-8: Proceedings of the Eighth Annual International Conference on Fault Tolerant Computing. - Toulouse, France, 1978. - Rp. 3-9.
9. Knight J. C. An Experimental Evaluation of the Assumption of Independence in Multiversion Programming / J. C. Knight, N. G. Leveson // IEEE Transactions on Software Engineering. - USA, N.J., 1986. - Vol. 12. - Issue 1. - Pp. 96-109. Standartizaciya i sertifikaciya 61 Avtomatika na transporte № 1, tom 2, mart 2016
10. Brilliant S. Analysis of Faults in an N-Version Software Experiment // IEEE Transactions on Software Engineering / S. Brilliant, J. C. Knight, N. G. Leveson. - Virginia Univ., Charlottesville, VA, USA, 1990. - Vol. 16. - Issue 2. - Pp. 238-247.
11. Brilliant S. The Consistent Comparison Problem in N-Version Programming / S. Brilliant, J. C. Knight, N. G. Leveson// IEEE Transactions on Software Engineering. - Virginia Commonwealth Univ., Richmond, VA, USA, 1989. - Vol. 15. - Issue 11. - Pp. 1481-1485.
12. Shubinskiy I. B. Funkcional'naya nadezhnost' informacionnyh sistem. Metody analiza / I. B. Shubinskiy. - Ul'yanovsk : Izd-vo zhurnala «Nadezhnost'», 2012. - 216 s.
13. Sivko B. V. Aksiomatiko-bazisnyy podhod dlya razrabotki bezopasnyh i otkazoustoychivyh sistem / B. V. Sivko // Avtomatika na transporte. - 2015. - T. 1. - № 4. - S. 381-399.
14. Sivko B. V. Diversitetnye aksiomaticheskie bazisy dlya razrabotki bezopasnyh i otkazoustoychivyh sistem / B. V. Sivko // Vestnik BelGUTa : Nauka i transport. - 2014. - № 1 (28). - C. 19-23.
15. Kirilenko A. G. Schetchiki osey v sistemah zheleznodorozhnoy avtomatiki i telemehaniki : ucheb. posobie / A. G. Kirilenko, A. V. Grusha. - Habarovsk : Izd-vo DVGUPS, 2003. - 75 s.
16. Sapozhnikov Val. V. Metody postroeniya bezopasnyh mikroelektronnyh sistem zheleznodorozhnoy avtomatiki / Val. V. Sapozhnikov, Vl. V. Sapozhnikov, H. A. Hristov, D. V. Gavzov. - M. : Transport, 1995. - 272 s.
17. Til'k I. G. Novye ustroystva avtomatiki i telemehaniki zheleznodorozhnogo transporta / I. G. Til'k. - Ekaterinburg : UrGUPS, 2010. - 168 s.
18. Martin B. PIC Microcontrollers An Introduction to Microelectronics / B. Martin. - Meppel, The Netherlands, Elsevier, 2nd edition, 2004. - 372 p.
19. GOST R MEK 61508-2-2012. Funkcional'naya bezopasnost' sistem elektricheskih, elektronnyh, programmiruemyh elektronnyh, svyazannyh s bezopasnost'yu. Ch. 2 : vvod v deystvie s 2013-08-01. - M., 2012.
20. RTM 32 CSh 1115842.01-94. Rukovodyaschiy tehnicheskiy material. Bezopasnost' zheleznodorozhnoy avtomatiki i telemehaniki. Metody i principy obespecheniya bezopasnosti mikroelektronnyh SZhAT. - SPb., 1994. - 119 s.
21. Harlap S. N. Razrabotka vysokonadezhnyh sistem na osnove metoda vzaimnoy proverki aksiomaticheskih bazisov / S. N. Harlap, B. V. Sivko // Nadezhnost'. - 2016. - № 1.
22. Bochkov K. A. Metody i sredstva dokazatel'stva funkcional'noy bezopasnosti mikroelektronnyh sistem zheleznodorozhnoy avtomatiki / K. A. Bochkov, S. N. Harlap, D. N. Shevchenko // Elektromagnіtna sumіsnіst' ta bezpeka na zalіznichnomu transportі. - Dnepropetrovsk : DNUZT, 2011. - № 2. - S. 73-81.
23. Bochkov K. A. Ocenka vremennyh parametrov funkcionirovaniya mikroprocessornyh ustroystv svyazi s ob'ektami sistem zheleznodorozhnoy avtomatiki i telemehaniki / K. A. Bochkov, S. N. Harlap, B. V. Sivko // Vestnik BelGUTa. Nauka i transport. - 2012. - № 2 (25). - S. 12-15.
