The Model-Driven openETCS Paradigm for Secure, Safe and Certifiable Train Control Systems

Jan Peleska, Johannes Feuser, Anne Elisabeth Haxthausen

    Research output: Chapter in Book/Report/Conference proceedingBook chapterResearchpeer-review


    A novel approach to managing development, verification, and validation artifacts for the European Train Control System as open, publicly available items is analyzed and discussed with respect to its implications on system safety, security, and certifiability. After introducing this so-called model-driven openETCS approach, a threat analysis is performed, identifying both safety and security hazards that may be common to all model-based development paradigms for safety-critical railway control systems, or specific to the openETCS approach. In the subsequent sections state-of-the-art methods suitable to counter these threats are reviewed, and novel promising research results are described. These research results comprise domain-specific modeling, model-based code generation in combination with automated object code verification and explicit utilization of virtual machines to ensure containment of security hazards.
    Original languageEnglish
    Title of host publicationRailway Safety, Reliability and Security: Technologies and System Engineering
    Number of pages31
    PublisherIGI global
    Publication date2012
    ISBN (Print)9781466616431
    ISBN (Electronic)9781466616448
    Publication statusPublished - 2012


    Dive into the research topics of 'The Model-Driven openETCS Paradigm for Secure, Safe and Certifiable Train Control Systems'. Together they form a unique fingerprint.

    Cite this