Automatic Fare Collection System (AFC) Solution

Solution Overview

The Automatic Fare Collection System (AFC) is an automated system that utilizes professional knowledge such as computers, statistics, and finance to achieve the entire process of ticket sales, ticketing, billing, charging, statistics, clearing and settlement, and operation management of rail transit. It is the guarantee of the economic source of rail transit. The AFC system transmits signals collected from terminal devices to the computer center for clearing through Ethernet, and finally transmits them to the rail transit ACC system for clearing through the core network.

The central network of this plan consists of servers, core layer 3 switches, and workgroup layer 2 switches, forming a dual network with primary and backup redundancy connections. The various terminal devices in the center of the line are converged on the core layer 3 switches through star shaped connections, and then cascaded to the backbone ring network. The backbone network between stations is redundantly connected using a 1000Mbps fiber optic ring network.

Station terminal system: Group the station terminal equipment according to the left and right sides of the hall, connect them to the Feichang series network management industrial Ethernet switches, and then connect their fiber optic interfaces to the optical ports on the core switches to form a redundant ring network.

Station computer system: An industrial switch is used to aggregate the various devices in the system in a star shaped connection and then cascade them with the core switch. Enable data to communicate with each other through the station backbone network and the line center system.

Line center computer system: This system is the central system of the entire line, responsible for unified supervision of information from various stations and uploading it to the rail transit clearing center. Therefore, the central computer system of the line adopts two industrial Ethernet switches to redundantly interconnect servers, storage, and communication servers in a network structure of one primary and one backup.

Maintenance Center and Training Simulation System: The maintenance work area system is responsible for the equipment maintenance and training work of the entire station. We use three Feichang 100Mbps industrial Ethernet switches to cascade the equipment of the maintenance center, training and simulation system, and maintenance work area to the core ring network of the station, so as to communicate with the line center.

System Topology Diagram

System Requirements

By implementing the "Rail Transit AFC System Detection and Protection Design", we aim to completely eliminate potential information security risks caused by system connections from three aspects: information security management, operation and maintenance, and technology, ensuring the safe and stable operation of rail transit and preventing information security incidents.

1. Overall protection

The information security protection of rail transit AFC system should be planned and implemented as a whole, and a comprehensive, in-depth and progressiveness information security guarantee system of rail transit AFC system should be established from multiple perspectives, such as physics, network, host, application and data security involved in management, technology and operation.

2. Regional isolation

Divide the rail transit AFC system network based on factors such as business importance, category, and function, and implement it according to the principle of "vertical layering and horizontal partitioning". Then, necessary security isolation and protection measures are taken between different systems, layers, and partitions to detect, control, and protect the data flow and business operations between them.

3. Real time monitoring

A comprehensive information security system cannot do without real-time control of the information security status, and implementing "prevention before incidents, control after incidents, and improvement after incidents" is one of the core contents of the system's information security guarantee system.

4. Host control

Implement centralized security configuration and monitoring audits for important hosts and terminals in the central control part of the rail transit AFC system, to detect and contain security hazards from the source.

5. Operation and maintenance guarantee

The implementation of system information security policies, strategies, systems, and protective measures relies on the effective operation of management and technical measures. Operation and maintenance are not only key activities that connect management and technology, but also effective support for their implementation.

Product Recommendation

8-port (4+4) 100Mbps rail mounted network management industrial switch

9-port (6+3) 100Mbps rail type network management industrial switch

Features of the Solution

>Adopting an industrial grade redundant ring network and implementing the Huashu Communication industrial grade redundant ring network protocol Super Ring, the self-healing time is less than 20ms, effectively ensuring fast self-healing of the transmission network in case of link failures

>Industrial grade design, protection against impact, vibration, and extreme working environments

>Fanless design, dual power supply, with a fault free working time of over 200000 hours

>Support routing protocols for communication with external networks

>Supports wide temperature range of -40~75 ℃ and high EMC protection level

>Supports multiple redundant ring protection protocols, such as STP/RSTP, MSTP, Super Ring, and IEC62439-6 (DRP)