基于三取二冗余容错架构的数字逻辑单元设计  

作　　者：尹智勇 都业林 张哲 赵春燕 黄涛 YIN Zhiyong;DU Yelin;ZHANG Zhe;ZHAO Chunyan;Huang Tao(CRRC Dalian Co.,Ltd.,Dalian 116022,China;Guangzhou Yunda Intelligent Technology Co.,Ltd.,Guangzhou 510330,China)

机构地区：[1]中车大连机车车辆有限公司,辽宁大连116022 [2]广州运达智能科技有限公司,广东广州510330

出　　处：《自动化仪表》2024年第4期24-29,共6页Process Automation Instrumentation

基　　金：国家重大技术装备攻关工程基金资助项目(2019CCA027)。

摘　　要：针对新一代轨道车辆控制系统的高可靠、高安全、高冗余、高集成等要求,为了使车载计算机在复杂运行环境下快速、准确、高效地完成网络传输、数据计算和输出控制,设计了基于三取二冗余容错架构的数字逻辑单元(DLU),并在软件的配合下实现了对车辆关键控制电路的安全服役功能。该控制单元采用三取二冗余控制策略。程序采用抢占式多任务实时操作的控制逻辑。系统采用电源模块、信号采集模块、信号输出模块和处理器模块并行启动和运算电路。输出采用具有自反馈校正的同步校验信号机制。通过可用性和安全性这两个方面的综合对比分析,验证了三取二架构DLU在正常运行下基本功能的实现和在失效模式下对系统运行保护的冗余切换功能。在发生单个或多个故障时,三取二架构不仅确保了系统控制的完整性和可靠性,而且最大限度保障了系统资源的可用性。该设计为DLU在车辆的实际应用中提供了利用率高和满足高安全等级的可行设计方案。Aiming at the requirements of high reliability,high safety,high redundancy and high integration of the new generation of rail vehicle control system,in order to enable the on-board computer to quickly,accurately and efficiently complete the network transmission,data computation and output control under the complex operating environment,the digital logic unit(DLU) based on three-take-two redundancy fault-tolerant architecture has been designed,and under the cooperation of the software,it realizes the safety of the vehicle's key control circuits in service function.The control unit adopts a three-take-two redundant control strategy.The program adopts the control logic of preemptive multi-task real-time operation.The system uses power supply modules,signal acquisition module,signal output module and processor module to start and operate circuits in parallel.The outputs use a synchronized calibration signal mechanism with self-feedback correction.Through a comprehensive and comparative analysis of 2 aspects,availability and safety,the realization of the basic functions of the three-take-two architecture DLU under normal operation and the redundant switching function for system operation protection in the failure mode are verified.In the event of single or multiple failures,the three-take-two architecture not only ensures the integrity and reliability of system control,but also maximizes the availability of system resources.This design provides a feasible design solution for DLU to be utilized in practical vehicle applications with high utilization rate and meet high safety levels.

关 键 词：轨道车辆控制系统 数字逻辑单元 三取二 冗余容错 表决策略 故障导向安全 

分 类 号：TH86[机械工程—仪器科学与技术]