CN106094629A - A kind of two functional safety controllers taking a framework - Google Patents

A kind of two functional safety controllers taking a framework Download PDF

Info

Publication number
CN106094629A
CN106094629A CN201610487426.3A CN201610487426A CN106094629A CN 106094629 A CN106094629 A CN 106094629A CN 201610487426 A CN201610487426 A CN 201610487426A CN 106094629 A CN106094629 A CN 106094629A
Authority
CN
China
Prior art keywords
chip
data
safe
mcu
safe mcu
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201610487426.3A
Other languages
Chinese (zh)
Other versions
CN106094629B (en
Inventor
俞凌
卢铭
丁鹏
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Etrol Oil And Gas Technology Co ltd
Original Assignee
BEIJING ANKONG TECHNOLOGY Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by BEIJING ANKONG TECHNOLOGY Co Ltd filed Critical BEIJING ANKONG TECHNOLOGY Co Ltd
Priority to CN201610487426.3A priority Critical patent/CN106094629B/en
Publication of CN106094629A publication Critical patent/CN106094629A/en
Application granted granted Critical
Publication of CN106094629B publication Critical patent/CN106094629B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B19/00Programme-control systems
    • G05B19/02Programme-control systems electric
    • G05B19/04Programme control other than numerical control, i.e. in sequence controllers or logic controllers
    • G05B19/042Programme control other than numerical control, i.e. in sequence controllers or logic controllers using digital processors
    • G05B19/0421Multiprocessor system
    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B2219/00Program-control systems
    • G05B2219/20Pc systems
    • G05B2219/24Pc safety
    • G05B2219/24182Redundancy

Landscapes

  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Engineering & Computer Science (AREA)
  • Automation & Control Theory (AREA)
  • Safety Devices In Control Systems (AREA)
  • Hardware Redundancy (AREA)

Abstract

This application discloses a kind of two functional safety controllers taking a framework, it is capable of high reliability and safety.It includes the first safe MCU chip (U1), second safe MCU chip (U2), one dual port RAM chip (U3), four isolated can transceiver (U4, U5, U6, U7), a station address reads chip (U8), the first temperature acquisition chip (U9), second temperature acquisition chip (U10), two hot plug chips (U11, U12), a redundancy chip (U13), first power management chip (U14), second source managing chip (U15).

Description

A kind of two functional safety controllers taking a framework
Technical field
The invention belongs to the technical field of industrial process control system functional safety product, particularly relate to a kind of two and take a frame The functional safety controller of structure.
Background technology
In the conventional design the highest to safety, a lot of modules or circuit board are all to complete data by a MCU The function processed, this MCU may detect the fault of board other circuit internal, but when this only MCU occurs During fault, MCU itself oneself may not know fault, and continues to send data or the order of mistake, and this is in safety Higher occasion will result in serious consequence.At this moment it is accomplished by two MCU or more MCU, board internal circuit is entered Row compares, and jointly completes the task that safety is higher.
Summary of the invention
The technical problem to be solved in the present invention is the defect overcoming prior art, it is provided that a kind of two take the function peace of a framework Full controller, it is capable of high reliability and safety.
The technical scheme solving the problems referred to above is: this two take the functional safety controller of a framework, and it includes the first peace Full MCU chip (U1), the second safe MCU chip (U2), a dual port RAM chip (U3), four isolated can transceivers (U4, U5, U6, U7), station address reading chip (U8), the first temperature acquisition chip (U9), the second temperature acquisition chip (U10), Two hot plug chips (U11, U12), a redundancy chip (U13), the first power management chip (U14), second source manages Chip (U15);
Two hot plug chips provide the monitoring of respective input 5V and respective overcurrent protection respectively, and redundancy chip makes two Road 5V becomes a road 5V;First power management chip give two safe MCU chips (U1, U2), a dual port RAM chip (U3), Four isolated can transceivers (U4, U5, U6, U7), station address reading chip (U8), the first temperature acquisition chip (U9), the Two temperature acquisition chip (U10) power supplies;Second source managing chip powers to the 1.2V of two safe MCU chips (U1, U2), is The 5V of system input gives four isolated can transceivers (U4, U5, U6, U7), the first power management chip (U14), and second source manages Chip (U15) is powered;Two safe MCU chips (U1, U2) are connected with dual port RAM chip (U3) by EMIF interface respectively;Two Individual isolated can transceiver is coupled with CAN1 control unit interface and the CAN2 control unit interface of the first safe MCU chip (U1);Separately Two isolated can transceivers are coupled with CAN1 control unit interface and the CAN2 control unit interface of the second safe MCU chip (U2); Station address is read chip (U8) and is connected by IIC interface and a safe MCU chip;First temperature acquisition chip (U9) passes through IIC interface and a safe MCU chip are connected;Second temperature acquisition chip (U10) is by SPI interface and another safe MCU Chip is connected.
The present invention is by power safety protection, MCU module, CAN communication, station address reading, temperature acquisition, it is possible to realize height Reliability and safety.
Accompanying drawing explanation
Fig. 1 is the circuit block diagram that two according to the present invention take the functional safety controller of a framework.
Detailed description of the invention
As it is shown in figure 1, this two take the functional safety controller of a framework, it includes the first safe MCU chip (U1), the Two safe MCU chips (U2), a dual port RAM chip (U3), four isolated can transceivers (U4, U5, U6, U7), ground, a station Chip (U8) is read in location, the first temperature acquisition chip (U9), the second temperature acquisition chip (U10), two hot plug chips (U11, U12), a redundancy chip (U13), the first power management chip (U14), second source managing chip (U15);
Two hot plug chips provide the monitoring of respective input 5V and respective overcurrent protection respectively, and redundancy chip makes two Road 5V becomes a road 5V;First power management chip give two safe MCU chips (U1, U2), a dual port RAM chip (U3), Four isolated can transceivers (U4, U5, U6, U7), station address reading chip (U8), the first temperature acquisition chip (U9), the Two temperature acquisition chip (U10) power supplies;Second source managing chip powers to the 1.2V of two safe MCU chips (U1, U2), is The 5V of system input gives four isolated can transceivers (U4, U5, U6, U7), the first power management chip (U14), and second source manages Chip (U15) is powered;Two safe MCU chips (U1, U2) are connected with dual port RAM chip (U3) by EMIF interface respectively;Two Individual isolated can transceiver is coupled with CAN1 control unit interface and the CAN2 control unit interface of the first safe MCU chip (U1);Separately Two isolated can transceivers are coupled with CAN1 control unit interface and the CAN2 control unit interface of the second safe MCU chip (U2); Station address is read chip (U8) and is connected by IIC interface and a safe MCU chip;First temperature acquisition chip (U9) passes through IIC interface and a safe MCU chip are connected;Second temperature acquisition chip (U10) is by SPI interface and another safe MCU Chip is connected.
The present invention is by power safety protection, MCU module, CAN communication, station address reading, temperature acquisition, it is possible to realize height Reliability and safety.
It addition, input two-way 5V power supply from adapter, respectively 5V1 and 5V2,5V1,5V2 are respectively through hot plug chip (U11, U12) becomes 5V_H1,5V_H2,5V_H1 and 5V_H2 forms a road 5V power supply, through first by redundancy chip (U13) Power management chip (U14) is changed into 3.3V, is changed into 1.2V through second source managing chip (U15).Hot plug chip has Have the functions such as overvoltage monitoring, under-voltage monitoring, overcurrent protection, make 5V power supply in normal working range, if not normally In the range of, will be switched off the nmos switch that hot plug chip is controlled, if it occur that cross stream, also also can disconnect it by hot plug chip The nmos switch controlled, it is ensured that circuit below will not be damaged.
It addition, the present invention uses safe MCU, it has a multiple diagnostic method: 1, and internal double-core lock-step compares;2, internal ECC;3, internal BIST self-inspection;4, the diagnostic method such as voltage and clock supervision.This MCU has passed through SIL3 certification, and diagnosis covers Rate 90%.
The 1OO2 of MCU, refers to the design and uses two safe MCUs, i.e. RM48L952 (U1) and RM48L952 (U2).
First safe MCU chip (U1) obtains the data of the second safe MCU chip (U2) by dual port RAM chip (U3), Second safe MCU chip (U2) obtains the data of the first safe MCU chip (U1), the first safety by dual port RAM chip (U3) MCU chip (U1) compares oneself data and the data obtained from the second safe MCU chip (U2), the second safe MCU chip (U2) oneself data and the data obtained from the first safe MCU chip (U1) are compared, after continuing executing with after more consistent Program, if less consistent, two MCU chip will report an error, and stops code below and performs.
It addition, base and the house dog of band time window when being with band independence outside MCU chip, come execution and the crystal oscillator of monitoring programme Drift, if there being the program of a MCU chip to perform to make a mistake or crystal oscillator drifts about, another MCU chip will be examined Find this fault, thus take failure to safety principle, will not outwards export any data and control command.
It addition, by CAN1 bus and CAN2 bus and I/O module communication, use 4 CAN transceiver to realize bus redundancy Communication mechanism;First safe MCU chip (U1) receives and sends an isolated can Transceiver Data by CAN1 bus, and first Safe MCU chip (U1) receives and sends an isolated can Transceiver Data by CAN2 bus;Second safe MCU chip (U2) receiving and send an isolated can Transceiver Data by CAN1 bus, the second safe MCU chip (U2) is total by CAN2 Line receives and sends an isolated can Transceiver Data.
RM48L952 (U1) and RM48L952 (U2) can by bus and I/O module communication, be the most all CAN1 or Person CAN2, it is also possible to by different buses and I/O module communication, CAN1 and CAN2, say as follows is that two different buses are led to News.The data of ADM3053 (U4) enter RM48L952 (U1) by CAN1 controller, and the data of ADM3053 (U7) pass through CAN2 Controller enter RM48L952 (U2), ADM3053 (U5) and ADM3053 (U6) hot backup redundancy, the data of RM48L952 (U1) with The data of RM48L952 (U2) are decided by vote by CY7C024AV (U3), if voting is consistent, then report host computer or on-the-spot work Cheng Shizhan;The data CAN2 controller of ADM3053 (U5) enters RM48L952 (U1), and the data of ADM3053 (U6) can be passed through CAN1 controller enters RM48L952 (U2), ADM3053 (U4) and ADM3053 (U7) hot backup redundancy, the number of RM48L952 (U1) Decided by vote by CY7C024AV (U3) according to the data with RM48L952 (U2), if voting is consistent, then report host computer or existing Field engineer station;
Master control receive host computer or field engineer station order after, the data of the RM48L952 (U1) of master control and Data CY7C024AV to be passed through (U3) of RM48L952 (U2) are decided by vote, and after voting is consistent, just issue corresponding I/O module. If data are inconsistent, directly abandoning these data it is considered to be there is communication failure, two MCU can report an error, simultaneously will not Perform program below, thus take failure to safety principle, will not outwards export any data and control command.
It addition, station address data are considered the data that safety is relevant, it to be used the framework of 1OO2, ensure The reliability of data and safety.Reader station address is: the first safe MCU chip (U1) is read by IIC interface reader station address The data of coring sheet (U8), the second safe MCU chip (U2) reads 5 low and high level signals, the first safe MCU chip (U1) The data of data and the second safe MCU chip (U2) are decided by vote by dual port RAM chip (U3), if read two data Ratio is more consistent, it is believed that be correct station address, continues executing with code below, if less consistent, then it is assumed that it is wrong, Two MCU can report an error, and is not carried out program below, thus takes failure to safety principle, will not outwards export any number According to and control command.
It addition, scene temperature collection is considered the data that safety is relevant, it to be used the framework of 1OO2, protect The reliability of card data and safety.First safe MCU chip (U1) reads the first temperature acquisition chip (U9) by IIC interface Data, the second safe MCU chip (U2) reads temperature acquisition chip the second temperature acquisition chip (U10) by SPI interface Data, the data of the first safe MCU chip (U1) and the data of the second safe MCU chip (U2) pass through dual port RAM chip (U3) Decide by vote, if read two scopes that data allow in error, it is believed that be correct temperature acquisition, continue executing with after Code, if error not allow scope, then it is assumed that being wrong, two MCU can report an error, and is not carried out journey below Sequence, thus take failure to safety principle, will not outwards export any data and control command.
It addition, safe MCU chip is RM48L952 chip, dual port RAM chip is CY7C024AV chip, and isolated can is received and dispatched Device is ADM3053 chip, and it is PCF8574APW chip that station address reads chip, and the first temperature acquisition chip is LM75AIMME core Sheet, the second temperature acquisition chip is ADT7302ARTZ chip, and hot plug chip is LTC4231IUD chip, and redundancy chip is LTC4353IDE chip, the first power management chip is LM2852XMXA-3.3 chip, and second source managing chip is LM2852XMXA-1.2 chip.
The above, be only presently preferred embodiments of the present invention, and the present invention not makees any pro forma restriction.This area Those of ordinary skill it should be understood that every technical spirit according to the present invention any simply repairing that above example is made Change, equivalent variations and modification, the most still belong to the protection domain of technical solution of the present invention.

Claims (8)

1. the functional safety controller taking a framework, it is characterised in that: it includes the first safe MCU chip (U1), the Two safe MCU chips (U2), a dual port RAM chip (U3), four isolated can transceivers (U4, U5, U6, U7), ground, a station Chip (U8) is read in location, the first temperature acquisition chip (U9), the second temperature acquisition chip (U10), two hot plug chips (U11, U12), a redundancy chip (U13), the first power management chip (U14), second source managing chip (U15);
Two hot plug chips provide the monitoring of respective input 5V and respective overcurrent protection respectively, and redundancy chip makes two-way 5V Become a road 5V;First power management chip give two safe MCU chips (U1, U2), a dual port RAM chip (U3), four Isolated can transceiver (U4, U5, U6, U7), a station address reads chip (U8), the first temperature acquisition chip (U9), the second temperature Degree acquisition chip (U10) power supply;Second source managing chip powers to the 1.2V of two safe MCU chips (U1, U2), and system is defeated The 5V entered gives four isolated can transceivers (U4, U5, U6, U7), the first power management chip (U14), second source managing chip (U15) power supply;Two safe MCU chips (U1, U2) are connected with dual port RAM chip (U3) by EMIF interface respectively;Two every CAN1 control unit interface and the CAN2 control unit interface of the first safe MCU chip (U1) it is coupled with from CAN transceiver;Another two Isolated can transceiver is coupled with CAN1 control unit interface and the CAN2 control unit interface of the second safe MCU chip (U2);Stand ground Location is read chip (U8) and is connected by IIC interface and a safe MCU chip;First temperature acquisition chip (U9) is connect by IIC Mouth is connected with a safe MCU chip;Second temperature acquisition chip (U10) passes through SPI interface and another safe MCU chip phase Even.
The most according to claim 1 two functional safety controllers taking a framework, it is characterised in that: input two from adapter Road 5V power supply, respectively 5V1 and 5V2,5V1,5V2 become 5V_H1,5V_H2,5V_ respectively through hot plug chip (U11, U12) H1 and 5V_H2 forms a road 5V power supply by redundancy chip (U13), is changed into 3.3V through the first power management chip (U14), It is changed into 1.2V through second source managing chip (U15).
The most according to claim 1 two functional safety controllers taking a framework, it is characterised in that: the first safe MCU core Sheet (U1) obtains the data of the second safe MCU chip (U2) by dual port RAM chip (U3), and the second safe MCU chip (U2) leads to Crossing dual port RAM chip (U3) and obtain the data of the first safe MCU chip (U1), the first safe MCU chip (U1) compares oneself Data and the data obtained from the second safe MCU chip (U2), the second safe MCU chip (U2) compares the data of oneself and from The data that one safe MCU chip (U1) obtains, will continue executing with program below after more consistent, if less consistent, two Individual MCU chip will report an error, and stops code below and performs.
The most according to claim 1 two functional safety controllers taking a framework, it is characterised in that: it is with outside MCU chip Base and the house dog of band time window during band independence, come the execution of monitoring programme and the drift of crystal oscillator, if there being a MCU chip Program execution makes a mistake or crystal oscillator drifts about, and another MCU chip will check this fault, thus takes fault to pacify Full principle, will not outwards export any data and control command.
The most according to claim 1 two functional safety controllers taking a framework, it is characterised in that: by CAN1 bus and CAN2 bus and I/O module communication, use 4 CAN transceiver to realize bus redundancy communication mechanism;First safe MCU chip (U1) Receiving and send an isolated can Transceiver Data by CAN1 bus, the first safe MCU chip (U1) is connect by CAN2 bus Receive and send an isolated can Transceiver Data;Second safe MCU chip (U2) by CAN1 bus receive and send one every From CAN transceiver data, the second safe MCU chip (U2) receives and sends an isolated can transceiver number by CAN2 bus According to.
The most according to claim 1 two functional safety controllers taking a framework, it is characterised in that: the first safe MCU core Sheet (U1) reads the data of chip (U8) by IIC interface reader station address, and the second safe MCU chip (U2) reads 5 height Level signal, the data of the first safe MCU chip (U1) and the data of the second safe MCU chip (U2) pass through dual port RAM chip (U3) decide by vote, if read two data are more consistent, it is believed that be correct station address, continue executing with generation below Code, if less consistent, then it is assumed that being wrong, two MCU could report an error, and is not carried out program below, thus takes Failure to safety principle, will not outwards export any data and control command.
The most according to claim 1 two functional safety controllers taking a framework, it is characterised in that: the first safe MCU core Sheet (U1) reads the data of the first temperature acquisition chip (U9) by IIC interface, and the second safe MCU chip (U2) is connect by SPI Mouth reads the data of temperature acquisition chip the second temperature acquisition chip (U10), the data and second of the first safe MCU chip (U1) The data of safe MCU chip (U2) are decided by vote by dual port RAM chip (U3), if read two data allow in error Scope, it is believed that be correct temperature acquisition, continue executing with code below, if error not allow scope, then it is assumed that Being wrong, two MCU can report an error, and is not carried out program below, thus takes failure to safety principle, will not outwards export Any data and control command.
The most according to claim 1 two functional safety controllers taking a framework, it is characterised in that: safe MCU chip is RM48L952 chip, dual port RAM chip is CY7C024AV chip, and isolated can transceiver is ADM3053 chip, and station address reads Chip is PCF8574APW chip, and the first temperature acquisition chip is LM75AIMME chip, and the second temperature acquisition chip is ADT7302ARTZ chip, hot plug chip is LTC4231IUD chip, and redundancy chip is LTC4353IDE chip, the first power supply Managing chip is LM2852XMXA-3.3 chip, and second source managing chip is LM2852XMXA-1.2 chip.
CN201610487426.3A 2016-06-28 2016-06-28 A kind of two take the functional safety controller of a framework Active CN106094629B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610487426.3A CN106094629B (en) 2016-06-28 2016-06-28 A kind of two take the functional safety controller of a framework

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610487426.3A CN106094629B (en) 2016-06-28 2016-06-28 A kind of two take the functional safety controller of a framework

Publications (2)

Publication Number Publication Date
CN106094629A true CN106094629A (en) 2016-11-09
CN106094629B CN106094629B (en) 2019-06-21

Family

ID=57214968

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610487426.3A Active CN106094629B (en) 2016-06-28 2016-06-28 A kind of two take the functional safety controller of a framework

Country Status (1)

Country Link
CN (1) CN106094629B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113014359A (en) * 2021-04-15 2021-06-22 浙江奉天电子有限公司 IPCL (Internet protocol chip language) three-party communication system based on UART (Universal asynchronous receiver/transmitter)

Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH05136767A (en) * 1991-11-12 1993-06-01 Mitsubishi Electric Corp Redundancy processing controller
US6157585A (en) * 1998-06-30 2000-12-05 Hyundai Electronics Industries Co., Ltd. Redundancy circuit and method of ferroelectric memory device
JP2001256070A (en) * 2000-03-13 2001-09-21 Yokogawa Electric Corp Redundant processor
CN102096401A (en) * 2010-12-22 2011-06-15 北京昊图科技有限公司 Redundant and fault-tolerant safety instrument control system based on fieldbus and ARM (advanced RISC machines)
WO2011117155A1 (en) * 2010-03-23 2011-09-29 Continental Teves Ag & Co. Ohg Redundant two-processor controller and control method
CN103399546A (en) * 2013-07-26 2013-11-20 杭州和利时自动化有限公司 Method and system for controlling triple redundancy
CN103729150A (en) * 2014-01-14 2014-04-16 浪潮电子信息产业股份有限公司 Method for processing Write Hole in memory array
CN203643761U (en) * 2013-12-19 2014-06-11 上海新华控制技术集团科技有限公司 Triple redundancy concurrent control module
CN104648660A (en) * 2013-11-22 2015-05-27 中国航空工业集团公司西安飞机设计研究所 Airplane dual-redundancy digital type undercarriage retraction/extension controller
CN104808572A (en) * 2015-03-13 2015-07-29 沈阳中科博微自动化技术有限公司 High-integrity PLC controller based on function safety
CN105279049A (en) * 2015-06-16 2016-01-27 康宇星科技(北京)有限公司 Method for designing triple-modular redundancy type fault-tolerant computer IP core with fault spontaneous restoration function
CN105527898A (en) * 2015-12-21 2016-04-27 浙江中控技术股份有限公司 Triplex controller communication system and method

Patent Citations (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH05136767A (en) * 1991-11-12 1993-06-01 Mitsubishi Electric Corp Redundancy processing controller
US6157585A (en) * 1998-06-30 2000-12-05 Hyundai Electronics Industries Co., Ltd. Redundancy circuit and method of ferroelectric memory device
JP2001256070A (en) * 2000-03-13 2001-09-21 Yokogawa Electric Corp Redundant processor
WO2011117155A1 (en) * 2010-03-23 2011-09-29 Continental Teves Ag & Co. Ohg Redundant two-processor controller and control method
CN102096401A (en) * 2010-12-22 2011-06-15 北京昊图科技有限公司 Redundant and fault-tolerant safety instrument control system based on fieldbus and ARM (advanced RISC machines)
CN103399546A (en) * 2013-07-26 2013-11-20 杭州和利时自动化有限公司 Method and system for controlling triple redundancy
CN104648660A (en) * 2013-11-22 2015-05-27 中国航空工业集团公司西安飞机设计研究所 Airplane dual-redundancy digital type undercarriage retraction/extension controller
CN203643761U (en) * 2013-12-19 2014-06-11 上海新华控制技术集团科技有限公司 Triple redundancy concurrent control module
CN103729150A (en) * 2014-01-14 2014-04-16 浪潮电子信息产业股份有限公司 Method for processing Write Hole in memory array
CN104808572A (en) * 2015-03-13 2015-07-29 沈阳中科博微自动化技术有限公司 High-integrity PLC controller based on function safety
CN105279049A (en) * 2015-06-16 2016-01-27 康宇星科技(北京)有限公司 Method for designing triple-modular redundancy type fault-tolerant computer IP core with fault spontaneous restoration function
CN105527898A (en) * 2015-12-21 2016-04-27 浙江中控技术股份有限公司 Triplex controller communication system and method

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113014359A (en) * 2021-04-15 2021-06-22 浙江奉天电子有限公司 IPCL (Internet protocol chip language) three-party communication system based on UART (Universal asynchronous receiver/transmitter)

Also Published As

Publication number Publication date
CN106094629B (en) 2019-06-21

Similar Documents

Publication Publication Date Title
CN205068381U (en) A secure computer platform for track traffic
CN101807076B (en) Duplication redundancy fault-tolerant high-reliability control system having synergistic warm standby function based on PROFIBUS field bus
CN111352338B (en) Dual-redundancy flight control computer and redundancy management method
CN102981431B (en) Nuclear power station diversity protection system hardware framework based on FPGA
CN201909961U (en) Redundancy control system
CN110376876B (en) Double-system synchronous safety computer platform
CN106444553B (en) Scattered acquisition driving system based on two-by-two-out-of-two architecture
CN106740992A (en) It is a kind of to be based on two and multiply the two five-wire system turnout drive systems for taking two frameworks
CN111831507B (en) TCMS-RIOM control unit with safety level design
CN108073105A (en) Safety PLC device and implementation method based on isomery dual processor redundancy structure
CN105760241A (en) Exporting method and system for memory data
CN106527115A (en) One-out-of-two redundancy control system and multiple voting method thereof
CN105550076B (en) Image splicing control system and redundant hot backup method thereof
CN106094629A (en) A kind of two functional safety controllers taking a framework
CN103929424A (en) Hardware and software combined two-out-three safety data processing and arbitration method and device thereof
CN101504540A (en) Control system and method for safe and intelligent I/O combination system
CN103779943A (en) Battery management system of electric car
CN101397020B (en) Intelligent acquisition driving device
CN104810808B (en) A kind of multibus protection exit arbitrates fault-tolerance approach
CN203996282U (en) A kind of equipment of transporting rail circuit information
CN106648998A (en) Safety computer system based on CMC chip
CN207557715U (en) A kind of controller suitable for Complex spatial framework
CN109709849A (en) Single-chip microcontroller safety operating control method and device
CN201867791U (en) Vehicle-mounted ATP safety computer used for track traffic
CN105529827B (en) A kind of Intelligent region intrusion defense video Auxiliary Processing Unit

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CP03 Change of name, title or address
CP03 Change of name, title or address

Address after: 644000 Building 9, Jinrun Industrial Park, Xuzhou District, Yibin City, Sichuan Province

Patentee after: Sichuan Security Control Technology Co.,Ltd.

Address before: 100095 building 6, yard 9, Dijin Road, Haidian District, Beijing

Patentee before: BEIJING ECHO TECHNOLOGIES Co.,Ltd.

TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20220923

Address after: Room 101-10, 4th Floor, Building 5, Yard 9, Dijin Road, Haidian District, Beijing 100089

Patentee after: BEIJING ETROL OIL AND GAS TECHNOLOGY Co.,Ltd.

Address before: 644000 Building 9, Jinrun Industrial Park, Xuzhou District, Yibin City, Sichuan Province

Patentee before: Sichuan Security Control Technology Co.,Ltd.