Sara Månsson, författare på Prover - Engineering a Safer World

COTS – A key enabler of open signaling

Sara Månsson — Wed, 10 Dec 2025 11:50:00 +0000

From closed systems to open standards

Across the railway industry, many infrastructure managers are still operating relay-based signaling systems. They work – but maintaining them is costly, spare parts are disappearing, and the expertise required to service them is becoming harder to find. At the same time, demands for higher capacity, improved safety, and faster modernization are growing. Increasing train traffic, automation initiatives, and stricter safety standards are accelerating this transformation.

To move forward, the industry needs to shift from proprietary, vendor-specific systems to open and standardized architectures. This is the foundation of open signaling – which promotes interoperability and vendor independence for the next generation of railway signaling systems. At the heart of this transformation lies COTS – Commercial Off-The-Shelf components.

What COTS means for railway signaling

COTS refers to standard, industrial components – such as PLCs or I/O systems – that are already available on the market. The term originates from the software industry and refers to ready-made, industrial solutions that can be integrated with minimal customization. Unlike proprietary hardware developed for a single supplier’s platform, COTS enables signaling systems to be built on open, accessible technology.

For the railway sector, this brings several advantages:

Flexibility: Hardware can be replaced or upgraded without redesigning the entire system.
Vendor independence: Infrastructure managers are no longer locked into one supplier.
Cost efficiency: Using standard components reduces lifecycle and procurement costs.
Scalability: Systems can be deployed and adapted more easily across networks.

But more importantly, COTS is not just about cost or convenience – it’s what makes open signaling technically and commercially possible.

Prover’s role – safety through formal methods

Using COTS in signaling introduces new opportunities, but also new challenges. Especially when it comes to how safety is demonstrated. If signaling hardware becomes open and interchangeable, and the signaling principles are moved to software, then much of the safety validation must move to software too.

Experience from modernization projects shows that using digital twins is an effective way to manage this transition. Digital twins allow infrastructure managers to test, validate, and verify the principles behind new COTS-based systems before deployment – ensuring full safety integrity throughout the process. Prover’s use of formal methods, i.e., mathematical proof-based verification, ensures that safety-critical software behaves exactly as intended, regardless of the underlying hardware platform.

With this approach, operators can safely adopt COTS-based systems while maintaining the same rigorous safety assurance as in traditional, proprietary systems.

Migration: from relay to open architecture

For many infrastructure managers, the journey starts with migration. Moving from aging relay-based systems to COTS-based platforms is often the first practical step toward open signaling.

A concrete example is the Stockholm Metro modernization, where Prover and partner Cactus introduced COTS-based PLCs while retaining existing relay interlockings. Using a five-step migration process supported by digital twins, the project achieved a smooth transition to a modernized architecture – reusing proven logic and ensuring safety through formal verification. This approach reduces risk, ensures continuity, and creates a future-proof foundation for digital evolution. Read more about Relay Signaling Migration here.

Open signaling – a shared vision for the industry

Open signaling is not a product; it’s a concept and a way of thinking. By combining open interfaces, standardized hardware (COTS), and formally verified software, the railway industry can build signaling systems that are:

Software-driven, through verified logic
More efficient, through shared standards
More sustainable, through reduced lifecycle complexity

Prover’s contribution to open signaling is to make this vision practical – transforming safety-critical verification into a digital, automated process that supports an open and innovation-driven railway ecosystem. Read about the Open Signaling Initiative here.

Shaping the future of railway signaling

COTS is more than a hardware choice, it’s a catalyst for change in railway signaling modernization. It enables the shift from closed, proprietary systems to open, future-proof architectures where flexibility, safety, and innovation coexist. Together with open signaling principles, COTS paves the way for a modern and future-ready railway infrastructure. And with Prover’s expertise in safety verification and signaling software, the industry can move forward with confidence – building signaling systems that are open, interoperable, and safe by design.

Inlägget COTS – A key enabler of open signaling dök först upp på Prover - Engineering a Safer World.

Software formal verification in the context of CENELEC EN 50716: from model to sign-off verification

Sara Månsson — Fri, 21 Nov 2025 14:28:09 +0000

RECORDED WEBINAR

Sara Mansson

As rail control software gets more complex, the real challenge is to ensure that implementations meet safety and functional requirements efficiently and convincingly. EN 50716 (the successor to EN 50128/EN 50657) sets the software development and verification expectations for railway applications, clarifying how formal methods and tool qualification contribute to a robust safety case. This session takes a practitioner’s view of applying that framework to real systems and on‑board functions.

We’ll walk through a repeatable assurance workflow: capture requirements as verifiable properties, model behavior in HLL and its sequential extension sHLL, use model checking to explore relevant executions, and establish auditable conformity between specification and implementation. We’ll illustrate the approach using Prover’s toolchain (HLL/sHLL, Prover PSL, Prover Certifier) to make the approach concrete, while maintaining the emphasis on methods, evidence, and governance that can be adopted in any environment.

Agenda:

EN 50716 in practice. What changed from EN 50128/EN 50657, specifically regarding the role of formal methods within the lifecycle, and what auditors expect in terms of tool classification and evidence.
A pragmatic formal‑assurance workflow. From property‑driven requirements to HLL/sHLL models, Prover PSL model‑checking, traceability, and preparation of sign‑off evidence.
Software conformity by proof. How proof‑producing sign‑off with a T2‑qualified engine (e.g., Prover Certifier) demonstrates alignment between specification and implementation for SIL‑classed applications.
Quality & efficiency gains. Ways to shorten verification cycles, raise coverage beyond testing, and catch defects earlier—without disrupting your current development process.

Yes please, send me the recording!

Speakers

Benjamin Blanc
Solutions Manager at Prover

Inlägget Software formal verification in the context of CENELEC EN 50716: from model to sign-off verification dök först upp på Prover - Engineering a Safer World.

AI, a key enabler for Signaling Design Automation

Sara Månsson — Thu, 09 Oct 2025 15:02:07 +0000

RECORDED WEBINAR

Sara Mansson

Recorded on November 5, 2025

At Prover, we address the demand for cost-efficient rail control delivery through Signaling Design Automation (SDA), based on Formal Methods. SDA is also central to the Open Signaling Initiative, promoting open, modular, and interoperable signaling systems.

With recent advances in AI, we can make SDA more accessible to the rail control community. Adoption challenges often lie in digitizing data, managing requirements, and mastering the technologies. Our goal is to simplify SDA and Formal Methods. In this webinar, we demonstrate how AI enables us to achieve this.

Agenda:

The vision for how AI will change the development of safe rail control systems
Introduction to Signaling Design Automation and Formal Methods
AI use cases in Signaling Design Automation
Demonstration: Requirement engineering with AI in Prover Studio
Interactive Q&A with Prover’s AI and product experts

Yes please, send me the recording!

Speakers

Gunnar Smith
Chief Product Officer at Prover

Fei Niu
AI Innovation Lead at Prover

Inlägget AI, a key enabler for Signaling Design Automation dök först upp på Prover - Engineering a Safer World.

How to deliver 100% safe and compliant rail control systems without time delay

Sara Månsson — Thu, 14 Aug 2025 12:54:21 +0000

RECORDED WEBINAR

Sara Mansson

Recorded on September 10, 2025

As digital rail control systems evolve, so do the challenges in validating their safety. Manual testing and reviews are no longer sufficient; they are expensive, slow, and can’t guarantee complete safety. Meanwhile, the cost of missed errors or late-stage discoveries can cause severe project delays or system failures.

Prover’s Formal Safety Verification solution enables a faster, more efficient, and more reliable way to ensure your system meets all safety requirements. It is mathematically proven, highly automated, and compliant with CENELEC standards.

Watch this webinar to learn how formal methods can help you avoid costly project delays, eliminate safety gaps, and streamline your certification process.

What you will learn:

Why traditional verification approaches struggle with today’s complex rail systems
What formal safety verification is and how it works
How to use model-based development and mathematical proof to ensure 100% requirement coverage
How Prover’s new solution enables early issue detection, automation, and certified safety evidence
Real-world results from leading metros, railways, and signaling suppliers.

Yes please, send me the recording!

Speakers

Gunnar Smith
Chief Product Officer at Prover

Daniel Fredholm
Senior Consultant at Prover

Inlägget How to deliver 100% safe and compliant rail control systems without time delay dök först upp på Prover - Engineering a Safer World.