The central key element of this open architecture is the PACY middleware developed by MEN. It handles communication between the application software and the security I/O cards, which are also part of the MTCS family.
In contrast to existing solutions that use a fixed and inflexible hardware/software configuration, MEN's Modular Train Control System (MTCS) opens the essential interfaces between control electronics and user applications. The MTCS CPU software architecture isolates "insecure" and secure domains to save costs and application development and certification time.
The PACY middleware handles communication between the CPU, the specific custom application software, and the secure I/O cards. As a transparent abstraction layer, PACY manages the execution of application commands, independent of the I/O that needs to be controlled.
The FSOE (Security over EtherCAT) protocol integrated into PACY is responsible for the secure transmission and protection of data, known as the "Black Channel."
PACY can be described as a module-based framework, and as such, it opens all interfaces. This allows for flexible expansion via individual, customized modules and communication with any C application.
In addition to separate SIL 4 certifications for the F75P security CPU card and the secure QNX operating system, SIL 4 certification according to EN 50128 will also be available for PACY, including the corresponding documentation. Further information will be provided at the upcoming InnoTrans.
MTCS offers a modular solution for rolling stock and track control systems, already SIL 4 certified across all its components: hardware, software, and middleware.
