DOCSLIB.ORG

FAA/EUROCONTROL ATM Safety Techniques and Toolbox

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
FAA/EUROCONTROL ATM Safety Techniques and Toolbox FAA/EUROCONTROL ATM Safety Techniques and Toolbox Safety Action Plan-15 EUROCONTROL Issue 2 October 3rd, 2007 Version 2.0 i 3/10/07 Table of Contents Summary 3 1.0 Objective 4 2.0 Organization of Report 4 3.0 Review of Safety Initiatives 4 3.1 EUROCONTROL Safety Assessment Methodology Initiative 4 3.2 FAA NAS Modernization System Safety Program Initiative 5 3.3 FAA/EUROCONTROL Safety Assessment Methodology Joint Initiative 5 3.4 Selection of techniques in this report 6 4.0 Overview of Safety Assessment 7 5.0 Overview of Toolbox of techniques 19 6.0 Analysis of Toolbox of techniques 28 7.0 Examples of Applications 124 8.0 Additional Information 128 9.0 Toolbox references 129 Appendix A – Analytic Techniques Supporting Analysis of flight-recorded data (FOQA, ASAP), radar-track data (PDARS), and textual data (e.g., ASRS and ASAP) 140 Appendix B - Acronyms/Abbreviations 162 Appendix C – Participants 164 Version 1.0 ii 27/10/04 Summary This document contains some of the best safety assessment techniques currently available for Air Traffic Management applications, based on the joint experience of the FAA and EUROCONTROL 1 and based on a review of more than 500 safety techniques as used in nine different industries. The result is a set of twenty-seven techniques that can be used by safety practitioners and managers to evaluate and improve safety in Air Traffic Management. The document begins by outlining a simplified eight-stage safety assessment approach and then provides the required safety assessment techniques in a consistent template format. This template format answers basic questions such as where the technique comes from, and its maturity and life cycle stage applicability, as well as more detailed insights into the technique's process and data requirements, and practical and theoretical advantages and disadvantages. The overall approach in this document is biased towards concept design and development phases, since the significant and fast-evolving changes ongoing today in ATM represent the major driver for system safety assessment. Nevertheless, most of the techniques can be (and often are) just as easily applied to existing systems. A good number of the techniques themselves deal with Human Factors and human error aspects of safety, as the human element is a critical determinant of safety in current and future ATM, and cannot be ignored in safety assurance activities. Some outline examples of actual safety assessment approaches using these techniques are provided to show how techniques may be selected from the toolbox. Lastly, some key web addresses and supporting information are given for those who require further information. 1 These two organisations would also like to acknowledge the invaluable support of other organisations including NASA, NLR, CENA, and NATS (UK). Version 2.0 3 3/10/07 1.0 Objective The globalization of ATM systems demands that common safety techniques or tools be identified to support a more efficient interoperability of safety analysis. The objective of this report is to summarize and discuss both common and unique FAA and EUROCONTROL safety techniques. These safety techniques are those judged to be the best currently available. The safety techniques identified in this report are enablers to develop safety material identified in the FAA’s System Safety Management Program (SSMP) or EUROCONTROL Safety Assessment Methodology (SAM). Additionally, this report attempts to increase awareness of these techniques to assist safety practitioners in the air traffic community in conducting their respective safety analysis activities. Moreover, this report will attempt to provide guidance to analysis teams in the selection of effective and applicable techniques. The application of common safety techniques will allow ATM service providers to leverage their skills, knowledge, and experience with respect to global operations and systems. Safety management across ATM systems will therefore improve as safety practitioners implement common techniques, terms, and results. This report is the first major attempt to evolve a common inter-operable safety approach. 2.0 Organization of Report The report begins with a brief safety assessment initiative history of both service providers (FAA & EUROCONTROL) ATM. Section 4.0 provides an overview of a generic system safety assessment methodology, introducing a eight stage safety process and techniques. Section 5.0 provides a matrix of techniques to assist in initial tool selection. Section 6.0 presents twenty-seven selected techniques, each in a consistent template format. Section 7.0 provides five case studies showing that techniques may be consolidated and used together in an integrated fashion to answer safety questions. Section 8.0 briefly considers future developments in the Toolbox, and Section 8.0 the References for the techniques in the Toolbox. Appendix A provides some further templates for tools used to support detailed analysis of flight data, radar-track data, and text data analysis. Appendix B contains a list of acronyms and abbreviations used in this report. 3.0 Review of Safety Initiatives (EUROCONTROL & FAA) 3.1 EUROCONTROL Safety Assessment Methodology Initiative EUROCONTROL is an organization concerned with the safety of European ATM, and aims to support and harmonize approaches across different European Member States. EUROCONTROL has a vision of future ATM that includes many new airspace and advanced controller-tool concepts, and aims to ensure that this future vision is at least as Version 1.0 4 27/10/04 safe, and preferably safer, than current levels in Europe, even given projected significant increases in air traffic volume. In 2002-4 EUROCONTROL therefore undertook a major review of more than 500 safety assessment techniques from nine different industries [Review of techniques for SAM, 2004]. These techniques ranged from ‘traditional’ techniques examining hardware reliability to techniques focusing on human behavior and software safety. The purpose of the Safety Methods Survey project was to make an as complete inventory as possible and to identify from these the techniques and methods (including those developed in other domains and industries such as nuclear, chemical, telecommunication, railways, software design, but excluding commercially available tools) for its formal Safety Assessment Methodology (SAM) applications. From the inventory of more than 500 techniques, a selection was made that appeared most relevant to support the SAM in the short term (with minimal adaptation). In this report the selection of techniques for integration in the FAA tools has been based on broader criteria and this resulted into the selection of fifteen techniques from the ones selected for SAM on the short term, and a similar number of additional techniques. EUROCONTROL aims to ensure a high degree of safety in the Agency’s activities and a formal and systematic approach to safety management with the implementation of a Safety Management System (SMS). Local SMSs in the different Service Business Units (SBUs) and Operational Service Units (OSUs) of the Agency that adequately relate to the safety criticality of the activities and functions are being implemented. Additionally, a process is ongoing to adapt the Agency SMS to the activities at the Experimental Centre for the development of new ATM concepts. 3.2 FAA NAS Modernization System Safety Program Initiative The FAA System Safety Management Program (SSMP) and System Safety Handbook (SSH) for the acquisition of new systems, establishes a plan to ensure system safety is effectively integrated into NAS (National Airspace Structure) Modernization. The SSMP and SSH identify various hazard identification techniques and provide specifics on how to apply these techniques to ATM systems. The FAA’s Air Traffic Organization (ATO) has been evolving towards a Safety Management System (SMS). The SMS provides guidance to the service provider to ensure hazards to the operation, system, and/or procedures are identified in a systematic, disciplined manner implementing defined hazard analysis tools. The SMS identifies various safety techniques (included in Table 1) to ensure that whoever performs the hazard analyses shall select the tool that is most appropriate for the type of system being evaluated. 3.3 FAA/EUROCONTROL Safety Assessment Methodology Joint Initiative Both the FAA and EUROCONTROL have been working to maintain and improve the effectiveness of safety assessment. In April 2003, these two organizations identified the Version 1.0 5 27/10/04 roles, responsibilities, tasks and deliverables with respect to Coordinating Safety R&D, Understanding System Safety, and Assessing and Improving Safety as outlined in the FAA/EUROCONTROL R&D Committee Safety Action Plan (AP-15). This current report represents one of the first major outputs from this Action Plan. Its primary target audience is safety practitioners and safety managers in ATM, but it should also be useful for informing project and program managers developing future ATM concepts, and managers and safety personnel at operational facilities who need to manage the safety of existing operations. 3.4 Selection of techniques in this report In order to obtain a techniques toolbox, which is the main aim of the current report, the EUROCONTROL inventory of over 500 techniques has been used again as a starting point. However, the current criteria for selection from these 500+ are slightly different than in [Review of techniques for SAM, 2004], namely: • The technique should be currently in use; • The technique is judged by the AP15 group as being of value; • The technique is missing in the 500+ review, but satisfies the first two criteria. This resulted in a list of 27 selected techniques. For these techniques this report provides explanatory material in the form of a template, and these 27 are listed below (in alphabetical order of their best known acronym): 1. Air-MIDAS 2. Air Safety Database 3. ASRS (Aviation Safety Reporting System) 4. Bias & Uncertainty Assessment 5. Bow-Tie Analysis 6. CCA (Common Cause Analysis) 7. Collision Risk Models 8. ETA (Event Tree Analysis) 9. External Events Analysis 10.
Load more

Recommended publications
  • Vol. 81 Thursday, No. 174 September 8, 2016 Pages 61973–62352
    Vol. 81 Thursday, No. 174 September 8, 2016 Pages 61973–62352 OFFICE OF THE FEDERAL REGISTER VerDate Sep 11 2014 22:15 Sep 07, 2016 Jkt 238001 PO 00000 Frm 00001 Fmt 4710 Sfmt 4710 E:\FR\FM\08SEWS.LOC 08SEWS sradovich on DSK3GMQ082PROD with FRONT MATTER WS II Federal Register / Vol. 81, No. 174 / Thursday, September 8, 2016 The FEDERAL REGISTER (ISSN 0097–6326) is published daily, SUBSCRIPTIONS AND COPIES Monday through Friday, except official holidays, by the Office PUBLIC of the Federal Register, National Archives and Records Administration, Washington, DC 20408, under the Federal Register Subscriptions: Act (44 U.S.C. Ch. 15) and the regulations of the Administrative Paper or fiche 202–512–1800 Committee of the Federal Register (1 CFR Ch. I). The Assistance with public subscriptions 202–512–1806 Superintendent of Documents, U.S. Government Publishing Office, Washington, DC 20402 is the exclusive distributor of the official General online information 202–512–1530; 1–888–293–6498 edition. Periodicals postage is paid at Washington, DC. Single copies/back copies: The FEDERAL REGISTER provides a uniform system for making Paper or fiche 202–512–1800 available to the public regulations and legal notices issued by Assistance with public single copies 1–866–512–1800 Federal agencies. These include Presidential proclamations and (Toll-Free) Executive Orders, Federal agency documents having general FEDERAL AGENCIES applicability and legal effect, documents required to be published Subscriptions: by act of Congress, and other Federal agency documents of public interest. Assistance with Federal agency subscriptions: Documents are on file for public inspection in the Office of the Email [email protected] Federal Register the day before they are published, unless the Phone 202–741–6000 issuing agency requests earlier filing.
    [Show full text]
  • Analysis of Factors
    SYSTEM SAFETY ASSESSMENT COURSE June 2017 COMMON CAUSE FAILURES, PARTICULAR RISKS AND ZONAL SAFETY ANALYSIS R.G.W. Cherry & Associates Limited 2017. All rights reserved - 1 - SYSTEM SAFETY ASSESSMENT COURSE June 2017 1 Common Cause Failures Common Cause Failures are often the limiting factor on the integrity of complex systems, and yet they are often overlooked in the safety assessment process. In this module consideration is given to the various forms of Common Cause Failures that have the potential for compromising the reliability of aircraft systems and the possible methods for identifying them during the design process. 1.1 THEORY V PRACTICE It is normally expected that if the probability of failure of one channel in a given period is X and there are N channels, any of which may achieve the intended function, then the probability of all channels failing is: XN …………………. Equation 1 The impact of Common Cause Failures on an aircraft electrical power generation system was assessed from a study carried out by Hawker Siddeley Aviation in the 1970s. The study was carried out on an in-service aircraft that had three otherwise independent electrical power generation channels. For this aircraft, the average failure rate for each of the channels was found to be approximately: 9.5 x 10-4 per flight Now if the aircraft had only two electrical power generation channels then the probability of both failing due to independent causes might be expected to be :- (9.5 x 10-4)2 per flight = 9 x 10-7 per flight (approx.) And for the three-channel system: (9.5 x 10-4)3 per flight = 8.6 x 10-10 per flight (approx.) However, when the in-service record for the subject aircraft was investigated it was found that multi-channel failures occurred at a much greater frequency than predicted by this simple theoretical approach.
    [Show full text]
  • A Zonal Safety Analysis Methodology for Preliminary Aircraft Systems and Structural Design
    A Zonal Safety Analysis Methodology for Preliminary Aircraft Systems and Structural Design Chen, Z. and Fielding, J. P. School of Aerospace, Transport and Manufacturing, Cranfield University ABSTRACT Zonal Safety Analysis (ZSA) is a major part of the civil aircraft safety assessment process described in Aerospace Recommended Practice 4761 (ARP4761). It considers safety effects that systems/items installed in the same zone (i.e. a defined area within the aircraft body) may have on each other. Although the ZSA may be conducted at any design stage, it would be most cost-effective to do it during preliminary design, due to the greater opportunity for influence on system and structural designs and architecture. The existing ZSA methodology of ARP4761 was analysed but it was found to be more suitable for detail design rather than preliminary design. The authors therefore developed a methodology that would be more suitable for preliminary design and named it the Preliminary Zonal Safety Analysis (PZSA). This new methodology was verified by means of the use of a case-study, based on the NASA N3-X project. Several lessons were learnt from the case study, leading to refinement of the proposed method. These lessons included focusing on the positional layout of major components for the zonal safety inspection, and using the Functional Hazard Analysis (FHA)/Fault Tree Analysis (FTA) to identify system external failure modes. The resulting PZSA needs further refinement, but should prove to be a useful design tool for the preliminary design process. _____________________________________ INTRODUCTION This paper outlines the development of a methodology, hereafter referred to as the Preliminary Zonal Safety Historically, system safety analysis was primarily based Analysis (PZSA).
    [Show full text]
  • E U R Op E a N a V Ia T Ion S a F E T Y a G E Nc Y an N U Al
    ANNUAL SAFETY RECOMMENDATIONS REVIEW 2016 SAFETYANNUAL RECOMMENDATIONS EUROPEAN AVIATION SAFETY AVIATION EUROPEAN AGENCY EUROPEAN AVIATION SAFETY AGENCY SAFETY ANALYSIS AND RESEARCH DEPARTMENT Designed in Luxembourg Strategy & Safety Management Directorate Safety Intelligence & Performance Department Annual Safety Recommendations Review 2016 Disclaimer: Neither the European Aviation Safety Agency, nor any person acting on behalf of the European Aviation Safety Agency is responsible for the use which might be made of the following information. The Annual Safety Recommendations Review is produced by the European Aviation Safety Agency (EASA). This edition provides an overview of the safety recommendations that have been addressed to EASA in 2016. It also presents the replies produced during the year. This annual review aims at providing a feedback on the follow-up given to safety recommendations in the con- text of openness, transparency and accountability that characterises the European Public Administration. Apart from its safety related information character, this review is also expected to provide relevant information related to raised safety concerns, both for EASA itself, as well as its stakeholders, including the European public. © European Aviation Safety Agency, 2016. All rights reserved. Proprietary document. Printed copies are not controlled. Confirm revision status through the EASA-Internet site: www.easa.europa.eu. 2016 Annual Safety Recommendations Review PAGE 3 Foreword by the Executive Director I am pleased to introduce the 10th edition of the Annual Safety Recommendations Review, which provides infor- mation on the activity of the Agency in 2016 in the field of safety investigation and follow-up. In addition, the review highlights a range of safety issues and the Agency’s safety improvement efforts that are of interest to the European Aviation Community and the public.
    [Show full text]
  • TEMPLATE CRYSTAL DELIVERABLE Use Case Descriptions
    PROPRIETARY RIGHTS STATEMENT THIS DOCUMENT CONTAINS INFORMATION, WHICH IS PROPRIETARY TO THE CRYSTAL CONSORTIUM. NEITHER THIS DOCUMENT NOR THE INFORMATION CONTAINED HEREIN SHALL BE USED, DUPLICATED OR COMMUNICATED BY ANY MEANS TO ANY THIRD PARTY, IN WHOLE OR IN PARTS, EXCEPT WITH THE PRIOR WRITTEN CONSENT OF THE CESAR CONSORTIUM THIS RESTRICTION LEGEND SHALL NOT BE ALTERED OR OBLITERATED ON OR FROM THIS DOCUMENT. THE RESEARCH LEADING TO THESE RESULTS HAS RECEIVED FUNDING FROM THE EUROPEAN UNION’S SEVENTH FRAMEWORK PROGRAM (FP7/2007-2013) FOR CRYSTAL – CRITICAL SYSTEM ENGINEERING ACCELERATION JOINT UNDERTAKING UNDER GRANT AGREEMENT N° 332830 AND FROM SPECIFIC NATIONAL PROGRAMS AND / OR FUNDING AUTHORITIES. CRitical SYSTem Engineering AcceLeration Use – Case Definition Simulation for PRA D210.010 D210.010 Simulation for PRA DOCUMENT INFORMATION Project CRYSTAL Grant Agreement No. ARTEMIS-2012-1-332830 Deliverable Title Simulation for PRA Deliverable No. D210.010 Dissemination Level CO Nature R Document Version V01.02 Date 2014-01-29 Contact Odile Laurent Organization A-F Phone + 33 5 61 18 12 76 E-Mail [email protected] Version Nature Date Page V01.02 R 2014-01-29 2 of 42 D210.010 Simulation for PRA AUTHORS TABLE Name Company E-Mail Odile Laurent A-F [email protected] Hélène Moutier A-F [email protected] REVIEW TABLE Version Date Reviewer V01.00 2013-12-20 Hélène Moutier V01.01 2014-01-13 Jean-Luc Johnson V01.01 2014-01-20 Ralf Bogusch CHANGE HISTORY Pages Version Date Reason for Change Affected V01.00 2013-12-16 Initial version V01.01 2013-12-20 Internal review 13,14,15,18,31,38 V01.02 2014-01-22 External reviews Version Nature Date Page V01.02 R 2014-01-29 3 of 42 D210.010 Simulation for PRA CONTENT 1 INTRODUCTION .....................................................................................................................................................
    [Show full text]
  • Aircraft Fire Protection
    Applied Science Ingenieurbüro Dieter Scholz Seevering 53 D - 21629 Neu Wulmstorf Aircraft Fire Protection Dieter Scholz April 2006 Report prepared for Minimax GmbH & Co KG Industriestraße 10/12 D - 23840 Bad Oldesloe Aircraft Fire Protection 2 Table of Contents page Abbreviations ............................................................................................................ 4 1 Setting the Scene ........................................................................................................ 5 2 Introduction to Aircraft Systems ............................................................................ 7 2.1 Aircraft Systems General ............................................................................................ 7 2.2 Definitions .................................................................................................................. 9 2.3 Breakdown ................................................................................................................ 10 2.4 Certification .............................................................................................................. 12 2.5 Safety and Reliability ............................................................................................... 13 2.6 Mass .......................................................................................................................... 18 2.7 Power ........................................................................................................................ 21 2.8 Costs and
    [Show full text]
  • Annual Safety Recommendations Review 2011 FINAL
    European Aviation Safety Agency Safety Analysis and Research Department Executive Directorate 2011 Annual Safety Recommendations review Executive Directorate- Safety Analysis and Research Page 1/114 © European Aviation Safety Agency, 20 10 . All rights reserved. Proprietary document. Printed copies are not controlled. Confirm revision status through the EASA-Internet/Intranet. 2011 Annual Safety Recommendations review Document ref. Status Date Contact name and address for enquiries: European Aviation Safety Agency Safety Analysis and Research Postfach 10 12 53 50452 Köln - Germany Information on EASA is available at: www.easa.europa.eu Disclaimer : Neither the European Aviation Safety Agency, nor any person acting on behalf of the European Aviation Safety Agency is responsible for the use which might be made of the following information. Authorisation : Name Signature Date Prepared Dominique Verdoni 05/03/2012 Reviewed 1 Bernard Bourdon 27/03/2012 Reviewed 2 Authorised John Vincent 27/03/2012 Executive Directorate- Safety Analysis and Research Page 2/114 © European Aviation Safety Agency, 20 10 . All rights reserved. Proprietary document. Printed copies are not controlled. Confirm revision status through the EASA-Internet/Intranet. Table of Contents 1 Introduction ................................................................................................................ 5 2 Overview of Safety Recommendations in 2011 ................................................................ 6 2.1 Safety recommendations received in 2011 ..............................................................
    [Show full text]
  • Explanatory Note to TCDS EASA.A.110 – Airbus 380 - Issue 03
    Explanatory Note to TCDS EASA.A.110 – Airbus 380 - Issue 03 This annex to the EASA TCDS IM.A.110 was created to publish selected special conditions / deviations / equivalent safety findings that are part of the applicable certification basis: Table of Contents: Certification Review Items: B-01 SC & IM: Stalling and scheduled operating speeds ....................................................................3 B-02 SC: Motion and Effect of Cockpit Control .................................................................................9 B-04 SC &IM: Static Directional, Lateral and Longitudinal Stability and Low energy awareness ..10 B-05 SC: Flight envelope protection ..................................................................................................13 B-06 SC: Normal load factor limiting system ....................................................................................15 B-10 SC: Human factor evaluation of novel features in the flight deck ............................................16 B-15 SC: Soft Go Around mode ........................................................................................................17 C-01 SC & IM: Crashworthiness of Large Aircraft Structures ..........................................................19 C-02 SC: Discrete Gust ......................................................................................................................21 C-03 SC & IM : Loading conditions for multi-leg landing gear ........................................................22 C-04 SC: Undercarriage
    [Show full text]
  • TEMPLATE CRYSTAL DELIVERABLE Use Case Descriptions
    PROPRIETARY RIGHTS STATEMENT THIS DOCUMENT CONTAINS INFORMATION, WHICH IS PROPRIETARY TO THE CRYSTAL CONSORTIUM. NEITHER THIS DOCUMENT NOR THE INFORMATION CONTAINED HEREIN SHALL BE USED, DUPLICATED OR COMMUNICATED BY ANY MEANS TO ANY THIRD PARTY, IN WHOLE OR IN PARTS, EXCEPT WITH THE PRIOR WRITTEN CONSENT OF THE CESAR CONSORTIUM THIS RESTRICTION LEGEND SHALL NOT BE ALTERED OR OBLITERATED ON OR FROM THIS DOCUMENT. THE RESEARCH LEADING TO THESE RESULTS HAS RECEIVED FUNDING FROM THE EUROPEAN UNION’S SEVENTH FRAMEWORK PROGRAM (FP7/2007-2013) FOR CRYSTAL – CRITICAL SYSTEM ENGINEERING ACCELERATION JOINT UNDERTAKING UNDER GRANT AGREEMENT N° 332830 AND FROM SPECIFIC NATIONAL PROGRAMS AND / OR FUNDING AUTHORITIES. CRitical SYSTem Enginieering AcceLeration Use Case Definition Airbus-Germany Environmental Control Systems D201.011 Environmental Control D201.011 Systems DOCUMENT INFORMATION Project CRYSTAL Grant Agreement No. ARTEMIS-2012-1-332830 Deliverable Title Environmental Control Systems Deliverable No. D201.011 Dissemination Level CO Nature R Document Version V1.0 Date 2014-01-29 Contact Dietmar Sander Organization A-G Phone +49 40 743 64199 E-Mail [email protected] Version Nature Date Page V01.00 R 2014-01-29 2 of 35 Environmental Control D201.011 Systems AUTHORS TABLE Name Company E-Mail Dietmar Sander Airbus Operations GmbH [email protected] Arne Rosenbohm Airbus Operations GmbH [email protected] Mathias Maruhn Airbus Operations GmbH [email protected] REVIEW TABLE Version Date Reviewer 0.2 24.1.2014 Andreas Mitschke – Airbus Group Innovations 0.2 24.1.2014 Thomas Kuhn – Fraunhofer IESE CHANGE HISTORY Pages Version Date Reason for Change Affected 0.1 20.9.2013 Initial Description all 0.2 20.12.2013 Draft Version all 1.0 29.1.2014 First Version after review all Version Nature Date Page V01.00 R 2014-01-29 3 of 35 Environmental Control D201.011 Systems CONTENT 1 INTRODUCTION .....................................................................................................................................................
    [Show full text]
  • Common Cause Failures, Particular Risks and Zonal Safety Analysis
    SYSTEM SAFETY ASSESSMENT COURSE 9th May 2012 COMMON CAUSE FAILURES, PARTICULAR RISKS AND ZONAL SAFETY ANALYSIS R.G.W. Cherry & Associates Limited 2012. All rights reserved - 1 - SYSTEM SAFETY ASSESSMENT COURSE 9th May 2012 1 Common Cause Failures Common Cause Failures are often the limiting factor on the integrity of complex systems, and yet they are often overlooked in the safety assessment process. In this module consideration is given to the various forms of Common Cause Failures that have the potential for compromising the reliability of aircraft systems and the possible methods for identifying them during the design process. 1.1 THEORY V PRACTICE It is normally expected that if the probability of failure of one channel in a given period is X and there are N channels, any of which may achieve the intended function, then the probability of all channels failing is: XN …………………. Equation 1 The impact of Common Cause Failures on an aircraft electrical power generation system was assessed from a study carried out by Hawker Siddeley Aviation in the 1970s. The study was carried out on an in-service aircraft that had three otherwise independent electrical power generation channels. For this aircraft, the average failure rate for each of the channels was found to be approximately: 9.5 x 10 -4 per flight Now if the aircraft had only two electrical power generation channels then the probability of both failing due to independent causes might be expected to be :- (9.5 x 10 -4)2 per flight = 9 x 10 -7 per flight (approx.) And for the three-channel system: (9.5 x 10 -4)3 per flight = 8.6 x 10 -10 per flight (approx.) However, when the in-service record for the subject aircraft was investigated it was found that multi-channel failures occurred at a much greater frequency than predicted by this simple theoretical approach.
    [Show full text]
  • Cranfield University
    Cranfield University G. James Sweers Methodology for the design assurance of aircraft lightning protection systems continued airworthiness. School of Engineering Aerospace Engineering Group PhD Thesis Academic Year 2009-2010 Supervisor: Professor J.P. Fielding September 2010 This thesis is submitted in partial fulfillment of the requirements for the Degree of Doctor of Philosophy. © Cranfield University, 2008. All rights reserved. No Part of this publication may be reproduced without the written permission of the copyright holder. Abstract This thesis describes a new approach to lightning protection components design by incorporating the use of multiple data sources, aircraft environmental threats models and component characteristics to determine if the component design meets the continued airworthiness requirements. This innovative aircraft lightning protection component design methodology examines critical component characteristics and evaluates these characteristics for long term survivability given known environmental design data. Use of in-service data, test data, material sciences and detailed component construction produces predictive results and provides inputs for the design community. A simple case of non-active lightning protection components was used to validate this methodology, concluding that certain design degradation mitigations are necessary to improve the continued airworthiness performance. Following this validation, the methodology was exercised by several case studies using actual design data from a large transport aircraft. The case studies provide for understanding how the methodology can be applied and showed that value was produced in creating design optimizations for the protection components. The case studies also proved that the methodology could be applied to different lightning protection designs spanning from structural design protection components to systems infrastructure transport elements and wiring.
    [Show full text]
  • POLITECNICO DI TORINO Repository ISTITUZIONALE
    POLITECNICO DI TORINO Repository ISTITUZIONALE Digital Twin: towards the integration between System Design and RAMS assessment through the Model–Based Systems Engineering Original Digital Twin: towards the integration between System Design and RAMS assessment through the Model–Based Systems Engineering / Brusa, Eugenio. - In: IEEE SYSTEMS JOURNAL. - ISSN 1932-8184. - ELETTRONICO. - (2020), pp. 1-12. Availability: This version is available at: 11583/2842332 since: 2020-08-05T10:56:01Z Publisher: IEEE Published DOI:10.1109/JSYST.2020.3010379 Terms of use: openAccess This article is made available under terms and conditions as specified in the corresponding bibliographic description in the repository Publisher copyright IEEE postprint/Author's Accepted Manuscript ©2020 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collecting works, for resale or lists, or reuse of any copyrighted component of this work in other works. (Article begins on next page) 28 September 2021 1 Digital Twin: towards the integration between System Design and RAMS assessment through the Model–Based Systems Engineering Eugenio Brusa least more expensive, when failures are considered, and some Abstract —The design of a safety-critical system requires an refinements of RAMS requirements are needed [5]. effective prediction of its reliability, availability, maintainability In system design, a holistic approach is currently applied, and safety (RAMS). Anticipating the RAMS analysis at the since it is developed through the requirement, functional and concept design helps the designer in the trade-off of the system physical analyses.
    [Show full text]