Beijing Rail Transit Command Center All-in-One Card System Application Case
chrispeng [ad_1]
1.1 Project introduction
The Beijing Rail Transit Command Center project is a building for dispatching and commanding, ticketing management, clearing and settlement, R&D training, etc., for 14 subway lines, including subway lines 5, 4, 10, and Olympic branch lines. Complex. The project is located in Xiaoying area in the north of Chaoyang District, east of Asian Games Village and south of Wunan Road. Datun Station of Metro Line M5 is located in the southeast of the site, with a distance of about 1 km. The total construction area of the project is about 59,521 square meters, with eleven floors above ground and two floors underground.
After the establishment of the Beijing Rail Transit Command Center, it will coordinate the transportation plan of the city’s rail transit network from the perspective of networked operation and management, and be responsible for the preparation of emergency plans. The command center will also undertake the summary and statistical analysis of rail transit network operation information, participate in rail transit construction, organize the formulation of relevant technical standards, management norms and business rules, and realize barrier-free transfers between multiple lines.
The “One Card” system project of the Rail Transit Command Center Building mainly includes:
1). There are 640 access control points and 28 keyboard card readers.
2). Consumption of 5 POS machines.
3). The patrol management system uses an online patrol of 70 points.
4). The long-distance parking lot management system is 1 in and 1 out.
5). Set up 2 sets of visitor management systems.
6). 3 sets of body inspection system (including touch screen and handheld PDA inspection).
7). One integrated management platform and one certification center each.
1.2 Difficulty analysis of requirements of this project
As the command and dispatch center and financial settlement center of Beijing Rail Transit, it must have excellent operational management and rapid emergency response capabilities. Therefore, the design of each system must be of high standards and strict requirements. Let’s talk about the demand characteristics and difficulty analysis of this project from the design perspective of the smart card system:
The requirements of a true all-in-one card: the traditional independent access control, attendance, consumption, parking lot and other system designs do not meet the requirements of this project. In the past, the all-in-one card, that is, each system shared a card, but the data was not interlinked, and it was just a “formal” all-in-one card, which could not meet the requirements of on-site service. This building needs to build a true all-in-one card system with data interconnection.
Satisfy the requirements of a large-scale system card: The building has a large number of system points, including more than 600 access points. In such a large-scale system, how to reduce the delay of uploading event information and meet the requirements of real-time A major difficulty in engineering.
Meeting the requirements of digital security: At present, security technology is shifting from the analog era to the digital era. In the digital security environment, how to integrate and link the all-in-one card system is another challenge in the design of the all-in-one card system of this project.
Meet the requirements of “centralized management, decentralized authorization”: At present, most of the card system equipment management and authorization management are integrated, but this building is different. The equipment and monitoring of the card system are managed by the owner in a unified manner, because the occupants of this building With relatively independent authorization management, how to ensure that each user unit has its own independent authorization management of time, place, and characters is a major test of the versatility of access control and all-in-one card management platform management software.
Satisfy the requirements of scalability: There is also a second phase of this project. The access control card system of this project should be able to smoothly extend to the future system, or necessary integration, this is a higher rationality for the network structure of the access control card Require.
Meet the requirements of IBMS integration: The access control card system of this project must have a convenient interface design to exchange information with the building’s intelligent general platform, fire protection system, and e-government system. This puts forward more comprehensive technical requirements for the design of the smart card.
Satisfy the secondary requirements of local technology development: The card selection of this project is not independent and requires the use of “transit card” cards. Therefore, the card planning of this system needs to be redesigned according to the card planning of “transit card”. In addition, the access control, consumption, parking lot, etc. of the smart card system are all for management. In the case that the building management rules have not yet been issued, the software of this building requires secondary development.
1.3 Features of the project design
1. ICMS integrated card integration platform Yichuang Technology Co., Ltd. (010-82601155-501), with funding from the Ministry of Science and Technology and the Beijing Municipal Science and Technology Commission Innovation Fund, successfully developed a set of ICMS (Integrated Card Manage System) integrated card integration platform. A unique mature system. Yichuang Technology is also the largest domestic equipment supplier for the smart card market for governments, enterprises and institutions. This solution adopts the intelligent all-in-one card integration platform to complete the linkage with the video, alarm, and fire-fighting systems, which is a significant feature of the design.
2). The network access controller based on TCP/IP, the traditional single RS485, or the improved dual RS485, RS485+TCP/IP network converter system networking mode, do not conform to the large-scale access control system’s real-time data response, protocol Standardized requirements.
This solution adopts the access control controller with the direct connection function of the TCP/IP network interface, thus ensuring the real-time uploading of events and the standardization of the protocol, which is also in line with the development trend of the access control system technology. It is an important feature of this design.
3). The video linkage based on TCP/IP conforms to the development trend of digital security. The CCTV monitoring of this building adopts the new technology of the digital monitoring system, and the access control system in this design has the support of digital video server (encoder) Function, together with the digital monitoring system to realize the dual data exchange function from the equipment protocol layer to the software database layer. This is a technology that most access control systems do not currently have. This is another highlight of this program.
4). Modularization technology based on workflow In order to realize the management idea of ”centralized management and decentralized authorization”, we adopted modularization technology based on workflow. The so-called workflow is to abstract work tasks into a process, and each process is decomposed For several task blocks. In this way, the customer-oriented modular design idea can easily meet the real use environment of customers.
5). Five-layer network architecture based on the platform. The network architecture is divided into five layers: execution layer, field controller, regional controller, subsystem management layer, central server and integrated platform, which is suitable for all-in-one card systems of any scale. Its “1+X” modular application system structure is more conducive to the integration, expansion and upgrade of the all-in-one card system! Linkage and data sharing with other security, building control, fire control, ERP, e-government and other systems.
1.3.1 Features of the real one-card system
One card: All internal personnel are equipped with an identification card, which is used for identity confirmation and electronic payment in all internal life and work activities.
Number 1: All personnel have their own unique personnel number, which is fixed and unchanged. Even if the card is damaged or lost, there is no need to change the personnel number. You only need to associate the replaced card chip number with the personnel number in the database.
One database: In order to prevent data loss, data disaster, and data collapse, the all-in-one card system data is stored uniformly by a high-performance server. And through the dual-system hot backup technology to ensure data security.
One center: In order to prevent the inconvenience and data inconsistency caused by multiple issuance and cancellation of multiple times. In the one-card multi-purpose system, there is only one card issuing center. Once the card issuing center is registered, management opportunities for each application subsystem are automatically generated.
One platform: The one-card system is set on an integrated platform, responsible for the management and interrelation of internal subsystems, and can also be linked with other security systems and building control systems.
1.3.2 The composition of the command center all-in-one card system
The network of the rail transit command center is divided into office network and special security network. The internal ERP and other office software, card issuance center, consumption, and attendance management systems are all integrated in the office network, and the one-card integrated server, visitors, access control, parking lot and video The monitoring subsystems are integrated in the security dedicated network, and the office network and the security network realize data exchange and data sharing between the two networks through the gateway.
At present, the internationally advanced management model adopts a flat structure and a matrix management model. In order to adapt to this management system, the integrated mode of the one-card integrated system should adopt a parallel processing distributed system. In a distributed system, the processors of the central management (each processors refer to the workstations of the access control subsystem, parking subsystem, attendance subsystem, visitor sub-management, and identity verification system) are equal, not master-slave Relationship. But all processors in this level must follow the principles established by the distributed operating system. This mode of work is called autonomy of mutual cooperation.
The specific implementation of the integrated system for the all-in-one card includes network integration and platform integration.
Network integration
The entire system network is divided into five levels: the first level is the core central server system and integration platform; the second level is the management layer of the card system composed of TCP/IP protocol Ethernet, that is, each system workstation; The level structure is the regional control layer composed of TCP/IP protocol Ethernet (small card system can be omitted, and the management layer is directly connected to the field control layer); the fourth level structure is TCP/IP protocol Ethernet or industrial bus protocol The field control layer composed of RS485; the fifth-level structure is the execution layer composed of field terminal equipment.
Platform integration
All software modules are based on a unified system plan and a unified basic platform. The modules should be seamlessly connected together, and they fully support business processes that span multiple subsystem boundaries in a coordinated and consistent manner.
The main components of the software system all appear in the form of object-oriented components, and the system supports dynamic attachment and dynamic disassembly of components. Component-based software systems can be compared to building blocks. On the one hand, component-based software systems are conducive to the progressive development of the system, and on the other hand, they are beneficial to the scalability and scalability of the system.
All data of the “One Card” system are stored in the central database and the local database, so as to realize the information exchange and sharing between all subsystems. Adopting the design principle of “data concentration, application distribution”, the overall performance has been greatly improved compared with independent and decentralized systems.
1.4 Access control system design
1.4.1 Access control system requirements
Security (access control) requirements: in the TCC dispatching hall, TCC system computer room, TCC/ACC/communication system maintenance room, system maintenance test room, emergency handling room, simulation test platform room, spare parts room, TCC system work area, training room, Call center, business information editing room, men’s and women’s lounge, shift room, director’s office, command center manager’s room, command center manager assistant, conference room 1, conference room 2, conference room 3, conference room 4, visitor reception room 1 , Visitor reception room 2, TCC archives room, communication room, TCC/ACC/communication system network management center, communication system work area, communication spare parts room, communication archives room, power supply room with access control.
1.4.2 Access control system function
1.4.3 Composition of access control system
The access control system is composed of an access control controller, a card reader, an electric lock, an exit button and an access control management software. The communication between the computer and the controller uses DES64 encryption to ensure data security.
1) The access controller uses a TCP/IP interface, which can be directly connected to the LAN in the building.
2) There are 2 basic models of access controllers: access control with 2 doors (M2N-IP) and 4 doors (M4N-IP).
3) The card reader adopts UNIO 607, the keyboard reader adopts UNIO708, and the reader adopts PHILIPS non-contact IC card technology.
4) All one-way doors use high-quality magnetic locks, the opening and closing force of the magnetic locks is not less than 250KG, and all two-way doors use high-quality electric bolt locks.
1.5 Interface design with other BMS systems
The all-in-one card system is only a subsystem of the intelligent building management system (BMS), and the BMS also includes other subsystems. These subsystems need to share information through the interface system and form a linkage mechanism.
Yichuang’s integrated management system for all-in-one card exchanges and linkages with external data, and is divided into equipment layer and data layer information exchange according to the scope of event response, so as to achieve linkage.
1). Information exchange interface of the system data layer
The system data layer refers to the interface at the operating system, network and database management system and application system level. Because the technical design we use on this layer is in compliance with international standards and industrial standards, such as using UNIX, WINDOWS, TCP/ IP protocol and SQL standard database query and retrieval tool. The “One Card” system can interface with other weak current systems and other types of database systems through the SQL SERVER database or through ODBC conversion. Therefore, the interface at this layer will be the connection between the One Card system and the BMS or the connection between the BMS and the One Card system. It is smooth.
The information exchange of the data layer supports multiple forms: DDE, ODBC, OPC, XML.
2). Information exchange interface of the system equipment layer
The exchange and linkage modes of the device layer include: dry node, serial communication (dynamic connection via API protocol or DLL), TCP and UDP Socket.
The exchange between control equipment and control equipment generally adopts: dry node, COM port communication (dynamic connection through API protocol or DLL).
The exchange between the control device and the management machine generally adopts: COM port communication (dynamic connection via API protocol or DLL), TCP and UDP Socket.
3). IC card planning interface
The IC card is provided by the owner, and the IC provided by the owner adopts the ISO/IEC 14443 Tape A standard Mifare 1 card.
In the card provided by the owner, some areas may have been occupied by others, such as the “Bus Card”, or reserved for future use. Therefore, we will actively cooperate with the owner to plan and design the card in accordance with the IC card standard provided by the owner!
4). Interface with fire fighting system
It can be connected with the fire-fighting system through the hardware system and adopts the linkage control of the defense area power supply. The locks of the access control system are all powered off, which is sufficient to ensure the needs of fire-fighting safety.
The linkage between the “all-in-one card” system and the fire protection system is mainly based on software linkage. Depending on the different characteristics of the fire fighting system, it adopts COM port communication (dynamic connection via API protocol or DLL), IP and UDP Socket, OPC. Local areas, such as fire passages, can use dry joint hard linkage.
5). Interface with monitoring and alarm system
Interface information content: After the central management server of the “One Card” system manages the alarm information of the workstation in the system, it transmits the emergency alarm event number to the monitoring and alarm system.
6). Interface mode
The central management server of the “One Card” system and the digital monitoring and alarm system adopt data layer information exchange, and ODBC is the first choice.
The central management server of the “One Card” system and the simulation system monitoring and alarm system adopt the form of information exchange at the device level, and the communication between the COM port and the matrix host (dynamic connection via API protocol or DLL) is the first choice!
7). Linkage function
After the monitoring and alarm system receives the alarm information of the “all-in-one card” system, according to the type of alarm event and the area where the alarm occurs, it starts the associated camera, PTZ, lens and other camera system equipment in the area where the alarm occurs, and controls these equipment to be prefabricated in advance The program operation of the monitoring center monitors the alarm occurrence area. At the same time, the multimedia workstation of the monitoring center alarms, the monitoring system matrix switching system transmits the alarm area image to the video display/recording equipment of the monitoring center, and starts the video recording equipment of the monitoring center.
[ad_2]
