Mats Boman, författare på Prover - Engineering a Safer World

Engineering in the age of AI and executable specifications

Mats Boman — Tue, 24 Mar 2026 11:45:20 +0000

Artificial intelligence is transforming engineering. Systems are designed faster, code is generated automatically, and prototypes can be produced in hours instead of months. Across industries, development cycles are compressing while system complexity continues to grow.

But acceleration creates a new challenge: understanding and control.

When systems are generated rapidly, whether by humans or AI, the limiting factor is no longer production capability. It is the ability to ensure that what has been built is correct, aligned with intent, and robust under all relevant conditions.

This is not only a safety issue. It is a systems engineering issue.

The real bottleneck: Clarity of intent

Many engineering failures do not originate in code. They originate in ambiguity:

Requirements that are open to interpretation
Assumptions that are not made explicit
Incomplete descriptions of system behavior

AI amplifies this problem. It can generate implementations quickly, but it cannot resolve intent ambiguities. If the requirement is unclear, the generated result will faithfully encode that uncertainty.

The solution is not slower development. It is stronger specification.

Precise, structured, machine-verifiable specifications create a stable foundation for accelerated engineering. They turn intent into something analyzable, testable, and enforceable.

Executable models as a tool for understanding

One of the most powerful shifts in modern engineering is the transformation of specifications into executable models.

When specifications are expressed in a formal, structured way, they can be transformed into digital representations of system behavior, executable models that simulate how the system should act.

This fundamentally changes the early phases of development.

Instead of validating understanding through review alone, teams can:

Execute scenarios against the intended behavior
Detect inconsistencies before implementation
Prototype system logic before committing to architecture
Align stakeholders around observable behavior

Executable models are not merely simulation tools. They are instruments for shared understanding. They reduce ambiguity at the source.

Conformance and validation in an automated world

As automation increases, so must verification rigor.
Whether logic is handwritten, configured, or AI-generated, it must conform to the original intent. Formalized specifications allow automated conformance checking between:

Requirements
Design
Implementations

This creates a closed loop in which generated artifacts can be systematically validated against defined behavior.

Verification and validation no longer depend solely on late-phase testing. They become continuous activities embedded in the development process.

The role of formal proof

Testing remains essential. But testing is inherently selective. It demonstrates that a system behaves correctly in tested scenarios, not that it behaves correctly in all scenarios.

Formal verification adds a fundamentally different dimension. Proving that defined properties always hold provides exhaustive logical coverage of the specified behavior.

This has two major effects:

It reduces reliance on extensive test campaigns for certain defect classes.
It strengthens the evidence base for safety, reliability, and correctness claims.

Formal proof does not replace engineering judgments. It augments it with mathematical certainty where it matters most.

In complex systems, particularly those developed with AI assistance, this level of rigor becomes a strategic advantage.

Engineering for both speed and confidence

The perceived tension between speed and rigor is a false dichotomy.

Strong specifications enable acceleration. Executable models enable early validation. Automated conformance checking maintains alignment. Formal proofs provide deep assurance. Together, they create a development process that is both faster and more controlled.

Prover’s methods support this paradigm by:

Transforming specifications into executable system models
Enabling early validation and prototyping
Providing automated conformance checking
Supporting formal verification to strengthen evidence and reduce excessive testing

The result is not only improved safety. It is improved understanding, improved predictability, and improved control over increasingly complex systems.

In the age of AI-driven engineering, the competitive edge will not belong to those who generate the most artifacts but to those who can demonstrate, with clarity and rigor, that their systems behave as intended.

Acceleration is inevitable. Assurance must be engineered.

Inlägget Engineering in the age of AI and executable specifications dök först upp på Prover - Engineering a Safer World.

How to successfully migrate existing interlocking systems to an open signaling solution

Mats Boman — Wed, 04 Jun 2025 11:08:41 +0000

mats.boman

In this guide you will learn:

Why now is the time to migrate – and what’s at risk if you wait
The 3-step process for safe, incremental migration using digital twins and formal methods
How to avoid vendor lock-in while improving safety, control, and scalability
How to simulate and verify upgrades before deployment
Tools and best practices to minimize disruptions and shorten project lead times
Real outcomes from a successful migration at Stockholm Metro (SL)

Yes please, send me the guide!

Table of Content

Introduction
The need for migrating old signaling systems to
modern open solutions based on COTS hardware

The purpose of the migration
Widespread use of old interlocking systems across Europe
What’s preventing migration?
What is the value of migration?
How to migrate old signaling systems to modern
open signaling solutions based on COTS hardware

A description of the signaling system
Introduction to the migration process
Purpose and effects of the migration process
The components of the migration process
Process for migration
Create digital twins
Specification of the system and subsystems
Process for upgrading
Safety assurance and approval
Other processes
Case: Stockholm Metro (SL)

Solution approach
Outcome and benefits
Your first step toward a migration project

Introduction

Why legacy signaling systems must evolve – and how to do it without disruption

As railway infrastructure ages across Europe, operators face a critical inflection point. Relay-based signaling systems, some nearly a century old, continue to direct train movements faithfully across thousands of kilometers of track. Yet beneath this reliability lies a growing challenge: the expertise to maintain these systems and access to spare parts needed to repair them.

This guide offers a practical roadmap for infrastructure managers to navigate the increasingly urgent transition from legacy signaling systems to modern, open solutions based on commercial off-the-shelf (COTS) hardware. You’ll discover how digital twins, formal methods, and structured migration processes can transform this complex challenge into a strategic opportunity that will enhance safety, reduce long-term costs, and the possibility to break free from vendor lock-in without disrupting your operations.

Whether you’re planning a complete system overhaul or taking incremental steps toward modernization, this guide provides the framework and real-world examples needed to secure your railway’s signaling future in an increasingly digital world.

The need for migrating old signaling systems to modern open solutions based on COTS hardware

Relay-based signaling systems have long been the backbone of railway operations. While experts predict these systems will remain in use far beyond 2030, a growing challenge is emerging: relay expertise and spare parts are rapidly disappearing. Many organizations face a critical knowledge gap, with limited documentation and resources. This is one of the main drivers for the need to start planning a migration project. Without action, the risk of losing essential know-how increases over time.

Fill out the form to read the full guide.

Inlägget How to successfully migrate existing interlocking systems to an open signaling solution dök först upp på Prover - Engineering a Safer World.

Relay Signaling Migration: The structured solution for railway signaling modernization

Mats Boman — Wed, 09 Apr 2025 08:12:34 +0000

Transforming legacy systems based on relays into future-ready railway operations

Prover is committed to engineering a safer world by enabling the railway industry to modernize confidently. Building on our expertise in Signaling Design Automation (SDA) and formal methods, we proudly introduce our solution: Relay Signaling Migration – a structured approach for transitioning relay-based interlocking systems to modern platforms based on open signaling.

The urgent need for migration

As legacy systems near the end of their lifecycle, reliable migration is more critical than ever. Relay-based interlocking systems have supported railway operations for decades, but maintaining them presents increasing challenges:

Loss of expertise: The industry faces a growing shortage of relay specialists
Parts scarcity: Essential components are becoming harder to source
Documentation gaps: Critical system knowledge is often incomplete or missing
Rising maintenance costs: Aging systems require more frequent intervention
Compatibility limitations: Integration with modern technologies is restricted
Safety concerns: Meeting current standards becomes increasingly difficult

Without the expertise of those who built these systems, migrating to a modern solution is no longer an option; it’s a necessity.

Why migration efforts often stall

Despite the clear need, many organizations struggle to begin the transition due to the following:

Insufficient legacy system documentation
Complex compliance requirements
Perceived migration complexity
Operational disruption concerns

The Prover solution: A three-step approach

Relay Signaling Migration eliminates these roadblocks by providing a systematic approach rooted in automation and formal verification:

Step 1: Forward engineering of existing systems

Capture system logic through diagram analysis
Create formal specifications of generic functionality
Document critical knowledge in structured formats

Step 2: Create digital twins and apply changes

Replicate legacy systems in digital environments
Test modifications safely before deployment
Validate changes without operational impact

Step 3: Transfer logic to an open platform

Generate or port logic to modern systems
Automate verification and validation
Ensure compliance with current safety standards

Key technologies enabling successful migration

Our solution leverages powerful tools that serve as the Signaling Design Automation platform developed specifically for these challenges:

Prover Extractor: Our advanced tool reads and analyzes circuit diagrams, creating accurate digital twins of existing relay-based systems
Prover Studio: A specialized Integrated Development Environment (IDE) used for modeling and formal specification creation.
Prover iLock is the cornerstone of specific application (SA) development. It provides a robust platform for configuration, simulation, and formal verification. This tool supports data preparation, code generation, and scenario-based simulation, ensuring that requirements are met with precision.
Prover Certifier: Certified for CENELEC EN 50128 and EN 50716 SIL 4 compliance, Prover Certifier automates the creation of safety evidence, ensuring full regulatory adherence. It validates safety properties using formal methods, providing comprehensive, traceable safety documentation essential for railway applications.

The long-term benefits of modern signaling

Migrating to an open signaling system yields numerous advantages:

Operational Efficiency: Real-time diagnostics and predictive maintenance reduce delays and manual labor
Scalability & Adaptability: Open platforms support evolving operational needs and future infrastructure growth
Compliance & Safety: Modern systems meet today’s standards, supporting secure and regulated operations
Cost Control: A phased, verified approach ensures project timelines and budgets stay on track

Your partner for railway transformation

The Prover solution Relay Signaling Migration is your blueprint for a controlled, secure, and future-proof transformation of relay-based interlocking systems. It brings together Prover’s deep expertise in formal verification and SDA to help railway operators meet modernization goals without compromising on safety, cost, or performance.

Whether you’re looking to preserve decades of system knowledge, reduce reliance on obsolete technology, or take the first step toward an open signaling future, Prover is ready to lead the way.

Contact Prover today to begin your structured migration journey.

Inlägget Relay Signaling Migration: The structured solution for railway signaling modernization dök först upp på Prover - Engineering a Safer World.

How to successfully migrate existing interlocking systems to an Open Signaling solution

Mats Boman — Mon, 10 Mar 2025 11:02:17 +0000

ONDEMAND WEBINAR

mats.boman

Recorded on April 9, 2025

Overcoming challenges with automation & digital twins

Interlocking systems based on relays and mechanics have reliably powered railway operations for decades, but with expertise disappearing and spare parts becoming scarce, the urgency to modernize is growing. While these systems may remain in use far beyond 2030, the risk of operational disruptions and compatibility challenges is increasing. How can rail operators ensure a smooth and secure transition to modern signaling solutions?

This webinar explores how Signaling Design Automation, digital twins, and formal methods can simplify the migration process in controlled steps. Our experts explain the step-by-step approach to transitioning from relay-based systems to an Open Signaling solution that minimizes risks, reduces costs, and ensures compliance.

Agenda:

Common barriers preventing migration and how to overcome them
Recommendation for how to take your first steps toward migration
How to do a migration in controlled steps enabling an Open Signaling solution
Examples of successful migration projects
Q&A with the experts

Yes please, send me the recording!

Speakers

Mats Boman
VP Business Development at Prover

Benjamin Blanc
Solutions Manager at Prover

Inlägget How to successfully migrate existing interlocking systems to an Open Signaling solution dök först upp på Prover - Engineering a Safer World.

The railway industry is transforming into more interoperable and vendor-independent solutions

Mats Boman — Tue, 03 Sep 2024 10:58:19 +0000

We notice an increasing interest in following other industries in transforming into open and interoperable solutions. This is a transformation from vendor-specific solutions, where software and hardware are integrated, and interfaces to other systems are proprietary, to interoperable solutions, where software and hardware are separated and standardized, simplifying the solutions’ ability to run in the cloud. This opens up for the use of standardized COTS-hardware also in the railway industry.

The current solutions for railway signaling

The backbone of safe and efficient railway operations lies in its signaling systems. Railway signaling systems control train movements, ensuring they travel safely and navigate the rail network without incidents. As trains are a vital component of global infrastructure—both for cargo transport and public transit—the reliance on advanced signaling systems to manage this signaling challenge is crucial.

The existing systems are based on vendor-specific hardware and software solutions that depend on each other from leading vendors.

The challenges with vendor-specific solutions are:

They are not interoperable with other systems
Drives cost for system integration, upgrades, and maintenance
It does not give control to the buyer but rather to the vendor
Will lock in the customer with one vendor

The transformation into open and interoperable solutions via COTS

The market wants to move towards digital and interoperable solutions. The use of COTS software and hardware is an enabler of this. An example of this trend is the initiative driven by Indra and Amey, which was announced in November 2023.

The Prover solution’s foundation is to enable the separation of software and hardware. This is done by providing a software solution for developing Digital Twins of the complete Rail Control System and automating all steps from tendering, development, safety verification, and maintenance.

The software solution runs on any hardware platform, including COTS platforms like:

HIMA
Schneider
Pilz
…

This leads to significant benefits like:

Lower costs and risks using digital twins
Reusability with open and standardized PLC languages, specifications, and interfaces
Customers will gain more control of the solution
Maintainability and interoperability over the life cycle

Signaling projects can be based on developing Digital Twins of the solution even before the tender phase. These digital twins will become the basis for the tender process, software development, testing, safety verification, and maintenance.

Implementation of open signaling solutions with COTS

There are two scenarios:

The need to migrate existing brownfield solutions
The need to effectively develop new greenfield solutions for new rail line projects

The process is divided into three steps:

Create a digital twin of the system
Define and specify the functionality of the new system based on formal methods
Generate code for the specific COTS hardware platform and verify safety

You can find more information here about interoperable COTS-based solutions and how to implement them for railway signaling.

Inlägget The railway industry is transforming into more interoperable and vendor-independent solutions dök först upp på Prover - Engineering a Safer World.

Create a technology-independent COTS solution for railway signaling

Mats Boman — Mon, 22 Apr 2024 14:18:53 +0000

RECORDED WEBINAR

mats.boman

Recorded on May 30, 2024

Join us as we explore the transformative potential of Commercial Off-The-Shelf (COTS) PLC solutions in the railway signaling market. This webinar, led by Prover’s experts Mats Boman and Benjamin Blanc, explains how COTS is not just a trend, but a strategic shift towards standardization and enhanced system interoperability. Discover how Prover contributes to this quest for independence, compatibility, and efficiency with COTS technologies. Learn about how to migrate existing interlocking systems.

Agenda:

Discover how COTS drives standardization and compatibility
Strategies for migrating current interlocking systems
Assess COTS compatibility with your future system strategies
Take practical steps toward a COTS-based strategy
Interactive Q&A: Insights from Prover Experts

Yes please, send me the recording!

Hosts

Benjamin Blanc
Solutions Manager, Prover

Mats Boman
VP Business Development, Prover

Inlägget Create a technology-independent COTS solution for railway signaling dök först upp på Prover - Engineering a Safer World.

If the railway was invented today, how would we manage our systems?

Mats Boman — Tue, 09 May 2023 06:35:21 +0000

Imagine that today is the day that the world is inventing the railway, and you are part of the steering committee. With access to all of the technology that this modern age has to offer, how would you choose to manage the systems, and which methods and solutions would you use?

There are some easy answers to these questions. But do we approach our current systems like this? Of course we don’t. We are stuck with existing technology, organizations and businesses. We will never be able to use the latest technology nor the most innovative solutions. There is an (un)natural process with many obstacles to overcome before a new technology can be introduced. Many obstacles can be traced back to man’s inability to adapt to new technology, adding the complexity of doing so in a safety environment, which the railway is. There are multitudes of guides and standards to address before you are allowed to use new technology in the rail context, many based on history which you need to respect.

But, for a moment, let us not consider those obstacles. Instead, let us ask, how would we like our rail system to be built and maintained today? And what, from this, can we adapt to in our current reality?

This blogpost is more about methods and solutions for managing and developing our systems than the actual devices or products they would use. Why? Because technology will change over time, and designing a system that is independent of the actual technology is key to making our rail solutions work for a long time.

Why do we need a railway system in the first place?

In other words, is this the transportation system we will have for all time? Possibly not. What will the value of transporting people and goods in “connected boxes” on rails be in the future? (Again, let us not get stuck with technological solutions.)

What we are trying to achieve in our railway systems is the safe transportation of people and goods on rails with specific conditions, such as low resistance between metal rails and metal wheels. Low resistance actually forms the basis of the business case for the very existence of railways; low energy consumption gives a better climate, higher speed, etc.

How hard can it be to safely move boxes on a predefined network of tracks? This is the solution we need to invent, and it’s not the hardest case for any engineer today. The ease of the challenge, or the underestimation and disrespect of the complexity in signaling, is actually one of the biggest hurdles to overcome when managing the introduction of a signaling system in a project. With or without knowledge, unknown challenges and uncertainties will arise that need to be managed. (Many of such hurdles arise from history, which are discussed in another blogpost that you can read here.)

Now, back to the solution.

Of course, if given the chance, engineers would use modeling and AI to support the innovation of a railway system. They would structure the innovation utilizing best practices from a system engineering perspective and use tool support. They would use several models to understand the innovation. Labs would be built to manage and evaluate the technical solutions. Real tracks, vehicles or products would be used only after all other possible means of analyzing and guaranteeing their function have been used. And, if we also include the maintainability and upgradability aspect, all operations would be logged and recycled back to all parts of the innovation.

This process, the system life cycle, would be automated with the generation of new versions that could be evaluated and controlled before being taken into revenue service. We would be in full control of all modules, communications, behaviors and interactions,both in operation and in digital form. We would have capabilities to evaluate and introduce new technology over time.

So, how far away are we from such a system? And where do we start?

Many of the steps that need to be taken to make this system a reality would involve accepting the challenge and acknowledging the complexity in today’s system. First, we need to be in control of our current system and its life cycle. One way to get there is to digitize our system data, create digital models and automate our processes.

Digitization is initially an uphill battle with upfront costs and payback later on. We can sometimes argue for direct effects from digitalization, but the greater return of investment will come in the future. Still, it is necessary in order to understand current relations between subsystems and to remove obstacles before introducing new system technology. At the same time, it could be done stepwise, system by system, with the acceptance that we will gradually upgrade our knowledge and will not realize the full effects until later—with the introduction of a new subsystem, technology or easier maintenance.

Digitization is initially a cost that pays off over time, if the digital system is introduced with the aim of developing over time.

Process automation is the key to being able to maintain the digital representation of our evolving system

When we are in control, we can actually start to simplify and become more efficient. Today’s systems are, in many ways, overly complicated by regulations (because we do not dare to remove anything from a safety system). Regulations are usually the last thing to change. Having extensive experience with a given technology and methods is one way to guarantee safety but, at the same time, it poses a barrier to innovation. Regulations should be focused on the end product in its own context, with qualitative requirements and quantitative measurements that are formalized–not as it is today, where the focus is on the development process which, contentiously, will evolve.

As a researcher, at KTH the department of Engineering Design, complexity and uncertainties once taught me, “complexity is not managed by adding requirements nor processes. It is managed by awareness and competences that continuously work to reduce the complexity.”

Being in control and continuously working with a system on all levels will create a sustainable system that is up to date. Knowledge will be kept by the system model, and system managers should direct resources towards means of improvement, not just towards keeping the system alive.

These principles mirror the ideas and background behind the development of digital twin technology, which you can read more about here.

About the author

Mats Boman has been working in the railway industry since 1999. His career started at Prover and, after switching gears to drive a consulting business within rail control system management and then serve as the CEO of the rail engineering company STHK, he recently returned to Prover as the Vice President of Business Development. Mats has a master’s degree in computer science from Uppsala University.

How safe and efficient are your rail control systems? Let’s find out!

Inlägget If the railway was invented today, how would we manage our systems? dök först upp på Prover - Engineering a Safer World.

What’s preventing us from overcoming complexity in rail signaling?

Mats Boman — Wed, 30 Nov 2022 09:26:19 +0000

Is safety built on history? Or are we creating a system that is too complex? Do we still need to learn from the past or is it time to look at new ways to manage our systems?

In my opinion, it is high time we adapt to the future and take action to remove old barriers and ways of managing our systems. In many places, rail systems have been operational for several decades and the system evolution has not kept up with the rest of the society. We are stuck with old technologies and methods for managing our systems. With time, we lose knowledge of our existing systems and risk losing control. Control that we try to reclaim by adding another layer of functions that enforce a new safety barrier.

Complexity has been snowballing since the beginning of rail history

Rail transport has been developing over the course of almost 200 years and it is still based upon the same foundation it started with: metal wheels against metal rails. It is a successful means of transportation in terms of energy and capacity, which also benefits the environment.

Railways have traditionally been introduced locally; that is, one stretch of rails at a time and with no or little interaction between them. However, the demands of today’s systems are completely different and initiatives, like ERTMS (European Rail Traffic Management System), are now being driven across the world to harmonize our railways and rail control systems. A task that requires finding our way through the mounting complexity which is threatening to derail our progress toward the digital age.

Even as the demand for greater harmonization and an integration of the rail system as a whole rises, the complexity of rail control systems continues to increase. Responsibility for the rail system is shared within the industry, and there is a clear conflict between traditional subsystem management and the need to achieve higher system level effects through modernization or digitalization.

The situation is so long gone that we cannot refer to one standard system, nor can we agree on what the next generation should look like. I’ve been working in the railway industry for over 20 years and my experience, together with countless discussions, leads me to believe that there are only three objects/components that we can agree upon: we have a train, a wayside, and a traffic management system. Opening any one of these “Pandora boxes” will create confusion—leading to questions like, ‘which components belong where, and what behaviors does each part have?’ The inside of these boxes have been shown to be specific to each system locally. This is one reason for the complexity that exists today, and remains a barrier we must overcome before we can manage our systems.

Symptoms of complexity

For an outsider, complexity in rail signaling is difficult to understand. Especially considering the easy task of automating the movement of a container on a fixed route in 2D when we, at the same time, live in a world of self-driving cars and autopilots in airplanes. But for us inside the industry, it is easier to decode.

Complexity in rail signaling is, in many ways, evidenced by continuous delays and budget overdrafts; for instance the continuous delayed introduction of ERTMS and termination of metro signaling contracts in e.g. Stockholm, Helsinki, London and Edmonton.

Upgrades and renewals of rail control systems often become overly complicated when new systems are to be integrated with existing subsystems. Unknown dependencies are discovered too late in renewal projects—or, even worse, during operation—and the loss of control is a fact. The complexity has been underestimated from all positions and by all actors.

The traditional management, with a linear mindset, does not have the necessary prerequisites to manage the uncertainties that come with complex systems, hopefully the need for new methods to meet our challenges is starting to be recognized.

The problem with governing a rail control system managed by old and new methods

The stepwise localized evolution of rail control systems has introduced a number of different technologies in small steps. Often, these technologies are shaped by experiences from the past and the requirement that the new system “behaves in the same way as before, but better.” This approach necessitates that one proves that the new system behaves just like the old one, which should be demonstrated using the same methods and techniques that have always been used. This is an understandable demand considering that rail control is a safety system; since we know that our existing system is safe, it is assuring to be able to turn back and recognize the old system in the new. For instance, today, it is still requested that computerized systems should be visualized as electrical relay systems because this is how it has always been done and is what can be understood.

As a result, we are now creating a governing system that is managed by both old and new methods. This further drives complexity and costs. It also restricts the positive effects that we would potentially get from a new system if it were allowed to utilize its best techniques and methods. As an example, in the railway field we still speak of computable power as a limitation. Hence, have we, in any way, allowed the computerized optimization of our systems?

Over the course of the evolution, we have tried to keep up with new technology and formulate new regulations, oftentimes not daring to remove old regulations that someone else put there before us for some unknown reason. All without managing or even understanding the consequences, including conflicts between new and old regulations. Again, this is understandable given that rail control is a safety system. But now complexity arises from the mixture of interwoven techniques and methods for a system that has been under evolution for decades and with components that, in many cases, are 50 years old. By tradition, it has always been safe to add requirements, but what is the process for removing requirements? It is unsafe and non-existent. And so, we add more requirements and, eventually, more complexity.

Unfair competition between new and existing technology

All of this leads to an unfair competition between new and existing technology. It is not required that existing technologies be proven to meet the latest regulations. Rather, they are proven in use via the “grandfather clause” and are evaluated using old measures.

To exemplify, let’s compare the modern elevator with the paternoster lift (the one without doors that never stops at floors, necessitating that you jump out). The paternoster lift will win when it comes to moving people compared to a modern elevator that stops to let people off. But, of course, it comes with a safety risk that we no longer accept today. A similar situation applies to railways. Still, we have old rail control systems in place that allow for much tighter train movements than would be allowed in any new system from a safety standpoint. Hence, while a new system might be safer, it could actually be a downgrade in terms of train capacity in dense locations. This is the case for the new ERTMS L2 versus existing ATP, due to calculations of braking curves.

This is one factor to consider in the calculation of cost efficiency when comparing an old system with a new one. The long system lifecycle of rail control systems will, locally, make comparison with the last historical introduction of a rail control system unfair.

With an unfair comparison, the business case for replacement or upgrades is not so attractive compared to lifetime extensions and maintenance. Again, we drive complexity by not keeping up with new technology or methods. In many instances, we have rail control systems with outdated technology that are managed only by a handful of senior, sometimes retired, experts and with few incitements for the new generation to learn about. Renewing systems can often be the last way out—an exit path forced by the aging of knowledge or technology.

Compared to modern computerized rail control systems, older mechanical or electrical systems have a longer lifecycle. We can see this is true just by calculating the individual components. In fact, this is what we often do and what we compare for an upgrade project. Just by calling it an upgrade or renewal “project”, we place ourselves in a corner. A project has, by definition, a start and an end. A project to be released and taken into revenue service on a specific day and with the target to meet one installation and only once. We tend to forget about the long life of a rail system and enforce all efforts to meet project oriented goals.

In almost all cases, new rail systems are more computerized than existing systems in revenue service. The railway has historically been treated as a construction or building. Naturally, the first mechanical or relay rail control system was managed under the construction process and related regulations. Our new computerized and embedded systems are still, in many cases, introduced under the same construction regulations instead of software principles.

The introduction of new rail control systems is often done in conjunction with extensions of tracks or other building upgrades. Signaling can become a smaller subproject that is managed as part of the rest of the building construction project. In comparison, construction parts and buildings can often come with essentially larger costs and with much more visible effects. The rail control system is expected to just adapt and work accordingly. The project team, with its suppliers, will strive to drive their processes in order to optimize towards this one installation and deadline. All efforts are at stake and focused on the original requirements, with little flexibility to adapt to new system needs or technology that have been invented over the often long project period of 10+ years, given the case that the project planning and requirements were formulated far earlier. Again, complexity presents a barrier to smaller sequential releases over time.

It’s time to remove barriers and adapt to the future

The above synopsis of the tangle we currently find ourselves can, of course, be seen as a rallied or naive simplification. But the reality is that we tend to focus more on the project at hand than its total lifecycle, both in terms of money and resources. Complexity is not taken into account and is hard to address using traditional methods. And in our failure to address it, the increasing complexity creates more vulnerability instead of robustness.

Is safety built on history? Or are we creating a system that is too complex? Do we still need to learn from the past or is it time to look at new ways to manage our systems? In my opinion, it is high time we adapt to the future and act to remove old barriers and ways of thinking.

Technology used to be a limitation. We are used to constructing our railways from technology. This is not (or should not) be the case anymore. Both fantasy and our reluctance to adapt to new technology are our limitations. Technology is used to execute the functionality of a rail system. Improving and optimizing the system functionality should be the key for future developments.

After all, we cannot compete with history if we are stuck with history.

About the author

Mats Boman has been working in the railway industry since 1999. His career started at Prover and, after switching gears to drive a consulting business within rail control system management and then serve as the CEO of the rail engineering company STHK, he recently returned to Prover as the Vice President of Business Development. Mats has a master’s degree in computer science from Uppsala University.

How safe and efficient are your rail control systems? Let’s find out!

Inlägget What’s preventing us from overcoming complexity in rail signaling? dök först upp på Prover - Engineering a Safer World.

Let’s meet at Innotrans and discuss the challenges faced in rail control projects

Mats Boman — Wed, 14 Sep 2022 09:31:49 +0000

On September 20-23, Prover will be at Innotrans 2022! Come join us in hall 11.2 stand 260 to discuss the typical challenges faced in the procurement and development of rail control projects. We will talk about how these can be mastered with a modern approach based on Signaling Design Automation (SDA) and the use of digital twins early in the projects, e.g. validation of requirements for implementability and verifiability.

Modernization of rail control systems is critical for transportation. However, delays in delivery, acceptance, and safety approvals are often major bottlenecks that have a highly negative impact on costs and schedules.

There is an obvious need to simplify the development and verification processes by implementing solutions that supply the industry with the tools and processes needed to meet the requirements and expectations of the end customers.

We have found that the recipe for a successful rail control project is threefold: focus on the requirement specifications, automate design and development, and apply formal and automated methods to prove that requirements are fulfilled.

This recipe generates high-quality systems with guaranteed safety, but also cuts your project time and costs in half. Digitalization paves the way for increased competition, reduced life cycle costs, and ultimately, a better customer experience with increased traffic capacity and fewer delays.

If you share our experience, let’s book a meeting at Innotrans! Please use the link below.

Book a meeting

Inlägget Let’s meet at Innotrans and discuss the challenges faced in rail control projects dök först upp på Prover - Engineering a Safer World.

Get in control of your rail control system

Mats Boman — Tue, 16 Aug 2022 15:39:48 +0000

RECORDED WEBINAR

mats.boman

How to get on top of your signaling projects using a digital twin and signaling design automation

Rail control systems are becoming more complex with increased demands for harmonization and overall integration. The rail system is a shared responsibility in the industry, with an underlying conflict between traditional subsystem management and the need to achieve effects on higher system-level by modernization (digitalization).

Upgrades and renewal of rail control systems often become overly complicated when the new systems are integrated with existing subsystems. Unknown dependencies are discovered late, resulting in a loss of control.

The complexity in rail signaling is shown in many ways with the continuous delays and overdraft in budgets, e.g. ERTMS and cancellations of metro signaling contracts.

It has been underestimated from all positions and by all actors, but today we sense a recognition of the need for new approaches to meet these challenges.

Agenda:

How to manage the complexity in rail control systems
Conflicts between traditional and new methods
Digital twin as a way to get in control of your systems
Signaling design automation supporting transition to new system
The business case for implementing a controlled process

Yes please, send me the recording!

Hosts

Mats Boman
VP Business Development, Prover

Inlägget Get in control of your rail control system dök först upp på Prover - Engineering a Safer World.