Method for verifying redundancy of secure systems

Assignee

• Siemens Transportation S.A.S. · FR

Inventors

• Didier Essame · Le Plessis-Robinson, FR
• Philippe Forin · Montrouge, FR
• Benoit Fumery · Montrouge, FR

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F11/1654
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

A secure system has two computers that are intrinsically safe and implements a method for verifying the redundancy for the outputs where a very high level of safety is required. The method makes it possible to handle inconsistencies in the outputs of the two computers when they are working in redundant mode. Each computer receives the output states determined by the other computer and compares them to states calculated. A state of divergent operation is detected if the computers have determined two different states for a single output. If a divergence is detected for at least one output, the state of that output is determined by preventing any transition from a restrictive state to a permissive state.