Log in News & Media | Downloads | Corporate | Careers | Legal Notes
(215) 542-9575
sales@menmicro.com

D602 - PowerPC Safe Computer

6U CompactPCI

The D602 is a 6U, CompactPCI COTS computer, certifiable up to SIL 4 and DAL-A, with triple redundancy for functional safety on a single board to achieve fail-operational, fault-tolerant behavior.

  • D602 Product ImageD602 with PMC slot 2 customized for AFDX PMC (shown with heat sink)
  • D602 Product ImageD602 with PMC slot 2 customized for AFDX PMC (shown with two PMCs and heat sink)
  • D602 Product Image
  • D602 Product Image

Main Features

  • 3x PowerPC 750 (lockstep mode), 3x 512 MB DDR RAM
  • Fail-operational, fault-tolerant behavior
  • Fail-safe and fail-silent board architecture
  • Clustering of two D602 to raise availability
  • Board management, BITE
  • SEU (radiation) tolerant
  • Certifiable up to SIL 4 (with report from TÜV SÜD) and DAL-A
  • Developed according to RTCA DO-254, EN 50129 and IEC 61508
  • EN 50155 compliance
  • Up to -40 to +70°C with qualified components
  • Convection or conduction cooling
D602 Product Image

Technical Data

CPU
  • 3x PowerPC 750 CL
    • Scalable performance
    • 1 GHz processor core frequency
    • Superscalar
    • Classic PowerPC FPU, MMU
    • CPU bus to FPGA: 100-MHz/64-bit
  • Lock-step operation
    • All CPUs do the same thing at the same time
    • 2-out-of-3 voting in FPGA with CPU bus clock speed (100MHz)
    • Software-assisted resynchronization
    • No functional interruption in case of an SEU inside the CPU
  • Chipset
    • North- and Southbridge realized in FPGA
Memory
  • 2x 32 kB L1 cache, 1MB L2 cache integrated in each CPU
  • 3 independent ranks of 512MB DDR SDRAM system memory, FPGA-controlled
    • 100MHz memory bus frequency (32 bit)
    • Up to 800 MB/s
    • 2-out-of-3 voting in FPGA
    • Scrubbing to prevent accumulation of SEU
    • No functional interruption in case of an SEU inside the memory
  • 2 independent ranks of 256MB Flash, FPGA-controlled
    • Primary and backup Flash ranks contain the same data, auto-selection by boot loader
    • ECC protection
  • 1MB FRAM
    • ECC protection
  • 4KB serial EEPROM for production data (serial number etc.)
I/O
  • All I/O realized in FPGA and available at rear I/O
  • Sextuple UART
    • E.g., for communication with other D602
    • Data rates up to 460,800 Baud for each channel
    • Handshake lines: none
  • RS232 UART
    • Data rates up to 460,800 Baud
    • 2x 256 Byte transmit/receive buffer
    • Handshake lines: none
  • PCI bus
  • I²C bus
Mezzanine Slots
Two PMC slots
  • 32 bit/33 MHz, 3.3V V(I/O)
  • PMC slot 1 with rear I/O (revisions -02 and later)
Miscellaneous
  • Voltage monitoring
  • Temperature monitoring
  • Watchdog
  • Reset signal control
  • Control of redundant power supplies
  • Sleep mode
    • Lowers power consumption in case of primary power supply interruption
    • Power failure indicated through signals from backplane
    • Supports power interruptions specified in Airbus directive ABD0100.1.9
    • CPUs and memory can be put into sleep mode
  • Redundant clock generation
  • Connection with second D602 possible (with special backplane)
    • Control of shared outputs
    • Exchange of state information
    • BMC and 6x UART link
CompactPCI Bus
  • Compliance with CompactPCI Core Specification PICMG 2.0 R3.0
  • System slot
  • 32-bit/33-MHz PCI-to-PCI bridge
  • V(I/O): +3.3V
Electrical Specifications
  • Dual power input from CompactPCI bus, uninterrupted (EN50155, Class S1)
    • 3.3V (-5%/+5%)
    • 5V (-3%/+5%)
    • Standard backplane supplies both input rails with power
    • Continued operation if one power input fails (or is not present)
    • Separate power supplies for the three CPUs and the three main memory ranks
  • Supply voltage/power consumption:
    • 30W
    • 15W in sleep mode
Mechanical Specifications
  • Dimensions: conforming to CompactPCI specification for 6U boards
  • Front panel: 4HP with ejector
  • Weight: 640g (with heat sink)
Environmental Specifications
  • Temperature range (operation):
    • 1-slot models: -40..+55°C (qualified components), temperature classes T1, T2, and TX inside buildings, or in containers with temperature control for signalling equipment, according to EN 50125-3, table 2
    • 2-slot models: -40..+70°C (qualified components), temperature classes T1, T2, and T3 for equipment onboard rolling stock, according to EN 50125-1, table 2
    • Airflow: min. 2 m/s
  • Temperature range (storage): -40..+85°C
  • Relative humidity (operation): max. 95% non-condensing
  • Relative humidity (storage): max. 95% non-condensing
  • Altitude: -300m to +2,000m (EN50124, Class AX)
  • Compliant to EN50125-1, meeting requirements of EN61373, Cat. 1, Class B and Classes GTX, GL3 for rolling stock
    • Shock: 50 m/s², 30 ms (EN 61373)
    • Vibration (function): 1 m/s², 5 Hz - 150 Hz (EN 61373)
    • Vibration (lifetime): 7.9 m/s², 5 Hz - 150 Hz (EN 61373)
  • For signalling equipment, a distance of 3m from the track bed is required
  • Protection class IP00 (EN50124, Category PD1)
  • Conformal coating on request
  • All components soldered
MTBF
  • 46 000 h @ 40°C according to MIL.HDBK-217FN2 with modifications.
    • Weighted mean figure for 65% operation in AIC (air inhabited cargo) and 35% operation in GF (ground fixed) conditions
  • 312 437 h @ 40°C according to IEC/TR 62380 (RDF 2000)
  • 430 705 h for continuous operation @ 25°C according to IEC/TR 62380 (RDF 2000)
Safety
  • Erroneous behavior of CPU/memory subsystem < 1E-8 / h
    • Considering hardware failures and worst-case SEU environment
  • PCB manufactured with a flammability rating of 94V-0 by UL recognized manufacturers
EMC Conformity
  • EN55011 (radiated emission disturbances - rolling stock)
  • EN 61000-6-4 (radiated emission disturbances - signalling equipment)
  • EN 61000-4-3 (electromagnetic field immunity)
  • EN61000-4-2 (electrostatic discharge immunity)
  • EN61000-4-8 (power - frequency magnetic field)
  • EN61000-4-9 (pulsed magnetic field)
BIOS
MENMON
Software Support
  • VxWorks, VxWorks/Cert
  • PikeOS

Options

Mezzanine Slots
PMC slot 2 customized for AFDX PMC (rear I/O only)
Real-time Clock
Buffered by GoldCap
Environmental Specifications
Temperature range (operation):
  • -40..+70°C (8HP front panel with convection cooling or 4HP front panel with conduction cooling)
Cooling Concept
Also available with conduction cooling in MEN CCA frame
Some of these options may only be available for large volumes.
Please ask our sales staff for more information.

Ordering Information

Standard D602 Models
02D602-03

3x PowerPC 750CL, 1 GHz, 3x 512 MB DRAM, 2x 256 MB Flash, 1 MB FRAM, 2 standard PMC slots, 4 HP board, convection cooling (airflow 2 m/s), -40 to +50°C with qualified components

Miscellaneous Accessories
05P000-01

25 mounting screw sets to fix PMC/XMC modules on carrier boards

08AE33-00

A602/D602 debug adapter to connect debug terminal, JTAG equipment and Freescale CodeTest Probe, -40 to +85°C with qualified components

Related Hardware
08CT14-00
CT14 - Transition Module for D602

Rear I/O adapter D602 without front panel; with RS232, PMC rear I/O, 6x DEX UART, BMCX, AFDX, debug signals, -40..+85°C with qualified components

Details
15P511-00
P511 - Dual Fast Ethernet PMC

Dual Fast Ethernet, 2 Ethernet cores, 6 GPIO signals, front I/O, for convection cooled systems, -40..+85°C with qualified components

Details
Certification Packages
23X602-00

SIL 4 railway certification package according to EN 5012x for A602/D602

This product is designed to work under PikeOS by SYSGO. The PikeOS BSP has been certified according to DO-178B DAL-B and EN 50128 SIL 4 together with the D602. PikeOS is a real-time operating system for use in safety and mission-critical systems. For more information please contact www.sysgo.com.

Software

VxWorks
10D602-60

VxWorks BSP (MEN) for A602 and D602

In addition, this product is supported by Wind River's market-specific OS products VxWorks 653, VxWorks DO-178B and VxWorks 61508. These are certifiable platforms for use in safety and mission-critical systems. For more information and product support please contact MEN or Wind River.

PikeOS

This product is designed to work under PikeOS by SYSGO. The PikeOS BSP has been certified according to DO-178B DAL-B and EN 50128 SIL 4 together with the D602. PikeOS is a real-time operating system for use in safety and mission-critical systems. For more information please contact www.sysgo.com.

Firmware/BIOS
MENMON is an MEN firmware/BIOS for PowerPC platforms.
14D602-00

MENMON (Firmware) for D602 (object code)

System Examples

Train Protection System

Safe electronic interlocking system for train protection


Application Examples

Advanced Train Management System

The safety-critical computer system is based on a CompactPCI - CompactPCI Serial hybrid configuration and is certifiable up to SIL 4.


Train Protection with SIL 4 Computer

A future-oriented application for train protection, like computer controlled interlocking blocks and other wayside equipment, integrates a safe computer for SIL 4 operation with complete redundancy at board level.