城市轨道交通列车控制系统与云边计算适配性分析
邹宏峰
Compatibility Analysis of Urban Rail Transit Train Control System and Cloud-Edge Computing
ZOU Hongfeng
-
作者信息:上海电气集团交通自动化系统有限公司, 201206, 上海
-
Affiliation:Shanghai Electric Trusted & Safe Transportation Limited Company, 201206, Shanghai, China
-
关键词:
-
Key words:
-
DOI:10.16037/j.1007-869x.20241491
-
中图分类号/CLCN:U4
-
栏目/Col:通信信号
摘要:
[目的]针对传统城市轨道交通列车控制系统单一依赖“故障-安全”原则的局限性,通过引入云边计算技术,探索其满足SIL4安全等级标准的可行性,并从运行安全、运营安全及网络安全三个维度提升系统动态风险防控能力与综合效能。[方法]基于故障动态传播特性分析,结合风险转嫁理论,构建了包含同质或异质风险转移的多维安全评估模型;通过对比分析EN 50126标准风险矩阵的局限性,提出了增加可控性和动态传播性的四维评估框架;结合云边计算技术特性,系统分析了平台层、数据层、边缘层和业务层的安全威胁及应对策略。[结果及结论]云边计算通过算力弹性扩展与分布式冗余架构可满足SIL4标准要求;识别出数据与计算单元解耦、安全迁移策略、分布式故障检测三大关键技术挑战;提出了基于虚拟化接口的统一访问控制策略。研究为构建“云-边-端”协同的新型列车控制系统提供了理论依据和技术路径,所提出的四维安全评估框架和分层防护策略可有效提升系统整体安全性。
Abstracts:
[Objective] To address the limitations of traditional urban rail transit train control systems that solely rely on the “fault-safety” principle, the feasibility of meeting the SIL4 standard is explored by introducing the cloud-edge computing technology, attempting to enhance the system′s dynamic risk prevention, control capabilities and overall efficiency from three dimensions: operational safety, operational safety, and cyber security. [Method] Based on an analysis of fault dynamic propagation characteristics and combined with the risk transfer theory, a multi-dimensional security assessment model including homogeneous or heterogeneous risk transfer is constructed. By comparing and analyzing the limitations of the risk matrix in standard EN 50126, a four-dimensional assessment framework that adds controllability and dynamic propagation is proposed. Combined with the characteristics of cloud-edge computing technology, the security threats and countermeasures at the platform layer, data layer, edge layer and business layer are systematically analyzed. [Result & Conclusion] Cloud-edge computing can meet SIL4 standard requirements through computing power elastic expansion and distributed redundant architecture; the decoupling of data and computing units, secure migration strategies, and distributed fault detection three key technical challenges are identified; a unified access control strategy based on virtualization interfaces is proposed. The research provides a theoretical basis and technical path for building a new type of train control system with “cloud-edge-end” collaboration. The proposed four-dimensional security assessment framework and hierarchical protection strategy can effectively enhance the overall system security.
过刊浏览
资料下载
友情链接