An experimental evaluation of the assumption of independence in multiversion programming
IEEE Transactions on Software Engineering
The Use of Self Checks and Voting in Software Error Detection: An Empirical Study
IEEE Transactions on Software Engineering
Implementing fault-tolerant services using the state machine approach: a tutorial
ACM Computing Surveys (CSUR)
Replica determinism in distributed real-time systems: a brief survey
Real-Time Systems
Modeling software design diversity: a review
ACM Computing Surveys (CSUR)
Dependability of COTS Microkernel-Based Systems
IEEE Transactions on Computers - Special issue on fault-tolerant embedded systems
Choosing Effective Methods for Design Diversity - How to Progress from Intuition to Science
SAFECOMP '99 Proceedings of the 18th International Conference on Computer Computer Safety, Reliability and Security
Assessment of the Reliability of Fault-Tolerant Software: A Bayesian Approach
SAFECOMP '00 Proceedings of the 19th International Conference on Computer Safety, Reliability and Security
Reflections on Industry Trends and Experimental Research in Dependability
IEEE Transactions on Dependable and Secure Computing
Robustness of modular multi-layered software in the automotive domain: a wrapping-based approach
ETFA'09 Proceedings of the 14th IEEE international conference on Emerging technologies & factory automation
Automated software diversity for hardware fault detection
ETFA'09 Proceedings of the 14th IEEE international conference on Emerging technologies & factory automation
Robustness of automotive applications using reflective computing: lessons learnt
Proceedings of the 2011 ACM Symposium on Applied Computing
Safety demonstration and software development
SAFECOMP'07 Proceedings of the 26th international conference on Computer Safety, Reliability, and Security
| Hi-index | 0.00 |
Since the beginning of the century, Alcatel Austria* acts as one main supplier for railway signalling products in Austria. In 1985, Alcatel Austria started with the development of the electronic interlocking system Elektra. In order to meet the stringent safety requirements for railway interlocking applications, a two channel system based on design diversity has been developed. High availability and reliability are achieved by using actively triplicated redundancy with on-line recovery. In 1989, the first system was put into operation. Currently, about 15 railway interlocking systems are in operation and further installations are ongoing. This paper presents the fault tolerance mechanisms used for design faults as well as physical faults. Further it discusses the experience gained with these concepts.