Yang Li,Dongqin Feng

DOI: https://doi.org/10.1007/978-3-642-34528-9_86

2013-01-01

Abstract:Automatic train protection system (ATP) is the key safety-related system of train control system, so its safety reliability requirements are much higher. This article studies functional safety assessment (FSA) including function analysis, hazard identification, risk rank evaluation, risk reduction, and safety integrity verification during the development of carborne ATP. A risk rank evaluation method is proposed combining as low as reasonably practically (ALARP) criteria and risk matrix. Many safety defects of carborne ATP are found and then the design scheme is improved through FSA. The results of risk analysis software Isograph prove that carborne ATP meets the safety integrity level of its design goals at last.

Hu Jianbo,Zheng Lei,Xu Shukui

DOI: https://doi.org/10.21629/jsee.2018.06.20

IF: 1.363

2018-01-01

Journal of Systems Engineering and Electronics

Abstract:The wheel brake system safety is a complex problem which refers to its technical state, operating environment, human factors, etc., in aircraft landing taxiing process. Usually, professors consider system safety with traditional probability techniques based on the linear chain of events. However, it could not comprehensively analyze system safety problems, especially in operating environment, interaction of subsystems, and human factors. Thus, we consider system safety as a control problem based on the system-theoretic accident model, the processes (STAMP) model and the system theoretic process analysis (STPA) technique to compensate the deficiency of traditional techniques. Meanwhile, system safety simulation is considered as system control simulation, and Monte Carlo methods are used which consider the range of uncertain parameters and operation deviation to quantitatively study system safety influence factors in control simulation. Firstly, we construct the STAMP model and STPA feedback control loop of the wheel brake system based on the system functional requirement. Then four unsafe control actions are identified, and causes of them are analyzed. Finally, we construct the Monte Carlo simulation model to analyze different scenarios under disturbance. The results provide a basis for choosing corresponding process model variables in constructing the context table and show that appropriate brake strategies could prevent hazards in aircraft landing taxiing.

automation & control systems,engineering, electrical & electronic,operations research & management science

Bulut Ozan Ceylan,Çağlar Karatuğ,Emre Akyuz,Yasin Arslanoğlu,Georgios Boustras

DOI: https://doi.org/10.1016/j.ssci.2023.106232

IF: 6.392

2023-06-29

Safety Science

Abstract:This paper is aimed to propose a hybrid accident analysis framework for complex engineering systems based on methods of the systems theoretic accident model and process (STAMP), failure modes and effects analysis (FMEA), and analytic hierarchy process (AHP). Within the scope of the proposed model, initially, an accident is qualitatively analyzed by identifying safety constraints, constructing a hierarchical control process, and specifying links between unsafe activities. As a second step, failure modes, their causes, and their consequences are determined. Lastly, the risk scores of each failure mode are calculated by analysis of obtained expert judgments. In this step, as different from the conventional FMEA, results are calculated based on the weight scores that are found according to the AHP approach of each accident factor. For the demonstration stage, a real case study is performed to present the effectiveness of the strategy. It is observed that the proposed approach allows analyzing the accident more specifically by defining each relationship between factors and root causes corresponding to the accident and prioritizing them based on the weights, which are assigned according to the accident's nature. In addition, it may be adapted for different complex engineering systems as well as it is a suitable and useful model for the accident analysis associated with smart ship concepts.

engineering, industrial,operations research & management science

Hossein Ebrahimi,Esmaeil Zarei,Marzieh Ansari,Alireza Nojoumi,Rasoul Yarahmadi

DOI: https://doi.org/10.1016/j.ssci.2024.106445

IF: 6.392

2024-02-08

Safety Science

Abstract:This paper presents a novel framework that combines the Systems-Theoretic Accident Model and Processes (STAMP) with Decision Making Trial and Evaluation Laboratory (DEMATEL) and Fuzzy logic to achieve a quantitative non-linear accident analysis methodology. The proposed methodology consists of two primary stages. Firstly, a qualitative analysis of a fatal accident is conducted using STAMP. The accident's control structure is constructed, and unsafe control actions (UCAs) are pinpointed. Secondly, the Fuzzy-DEMATEL approach is employed to quantify and determine the relationships between different control levels. A diverse pool of experts' opinions is leveraged to assess the impact of each control level on others and accident scenarios. The findings reveal that various interactions between Operation, HSE, Business, Contracting, Firefighting, and Management levels contributed to the occurrence of the accidents. The integrated approach not only addressed qualitative nature of STAMP, but also elucidates the cause-effect relationships among control levels. The significance of this study lies in its ability to not only analyze past accidents but also proactively examine the system and identify hazardous control levels before accidents occur. By prioritizing control levels and understanding their interconnections, organizations can implement targeted safety measures to prevent accidents and enhance overall system reliability and resilience. Its effectiveness in quantifying data, identifying unsafe control actions, and establishing cause-effect relationships make it a valuable tool for enhancing safety in various complex socio-technical systems beyond the process industry.

engineering, industrial,operations research & management science

G. Shen,X. J. Zhang,X. L. Tang,S. T. Wang,D. Xiang

DOI: https://doi.org/10.1201/9781351174664-119

2018-01-01

Abstract:Crane is the supporting equipment in the construction of engineering projects, thus ensuring its safe operation has become an important work. The critical load-bearing part, steel structure, in case of failure can affect reliable operation of the whole crane. Therefore, steel structure is chosen as the study object. First of all, we construct the testing system and data-integration platform to collect running data. Then, the article focuses on establishing the index system of safety assessment, determining the weight of each index based on the Analytic Hierarchy Process (AHP), and obtaining the membership matrix by utilizing the Fuzzy Theory. On this basis, we evaluate the safety level of its current state, and further express the possibility of each safety level occurring by probability form. Finally, we introduce the parameter, transition probability between different safety states, and build the model predicting future safety state of steel structure.

Asim Abdulkhaleq,Stefan Wagner,Daniel Lammering,Hagen Boehmert,Pierre Blueher

DOI: https://doi.org/10.48550/arXiv.1703.03657

2017-03-10

Software Engineering

Abstract:Safety has become of paramount importance in the development lifecycle of the modern automobile systems. However, the current automotive safety standard ISO 26262 does not specify clearly the methods for safety analysis. Different methods are recommended for this purpose. FTA (Fault Tree Analysis) and FMEA (Failure Mode and Effects Analysis) are used in the most recent ISO 26262 applications to identify component failures, errors and faults that lead to specific hazards (in the presence of faults). However, these methods are based on reliability theory, and they are not adequate to address new hazards caused by dysfunctional component interactions, software failure or human error. A holistic approach was developed called STPA (Systems-Theoretic Process Analysis) which addresses more types of hazards and treats safety as a dynamic control problem rather than an individual component failure. STPA also addresses types of hazardous causes in the absence of failure. Accordingly, there is a need for investigating hazard analysis techniques like STPA. In this paper, we present a concept on how to use STPA to extend the safety scope of ISO 26262 and support the Hazard Analysis and Risk Assessments (HARA) process. We applied the proposed concept to a current project of a fully automated vehicle at Continental. As a result, we identified 24 system- level accidents, 176 hazards, 27 unsafe control actions, and 129 unsafe scenarios. We conclude that STPA is an effective and efficient approach to derive detailed safety constraints. STPA can support the functional safety engineers to evaluate the architectural design of fully automated vehicles and build the functional safety concept.

He Chen,Bokai Xuan,Peng Yang,Haiyong Chen

DOI: https://doi.org/10.1007/s11071-019-05318-6

IF: 5.741

2019-11-01

Nonlinear Dynamics

Abstract:Safety requirements are becoming increasingly important for various industrial production processes. Even though many facilities have been designed and used to ensure safety, the occurrence of some unexpected situations is still unavoidable. Therefore, suitable strategies should be designed in industry to deal with emergency situations. In this paper, we propose an emergency braking method for the commonly used overhead crane system to avoid accidents, such as collisions, when an unexpected situation occurs. Different from the typical industrial braking methods that stop the trolley immediately, the proposed method is designed considering payload swing suppression during the braking process, making the braking process safer. Additionally, the important payload safety limit is theoretically ensured. In particular, the detailed controller is designed by using the passivity property and the barrier Lyapunov function technique. Then, the convergence of the closed-loop system is proved using Lyapunov stability theory together with LaSalle's invariance principle. Furthermore, various experiments are implemented on a self-built overhead crane test bed that validate the effectiveness of this method.

engineering, mechanical,mechanics

Xianhui Yang,Ming Xu,Yao Cheng

DOI: https://doi.org/10.1109/3CA.2010.5533881

2010-01-01

Abstract:The automatic train control system (ATC) is the safety critical system (SCS). Based on the revised parts of the ATC, this paper analyzes the risks which may be triggered by the parts of modification. The paper follows the international standard of railway function safety, and describes the relevant requirements and basic methods. From the basic structure of the ATC, the required safety integrity level (SIL) of each part of the system is discussed. The paper concludes the methods for risk analysis and evaluation in the modified system. They contain hazard identification, hazard validation, consequence analyzing, the methods for determining risk category, hazard severity, possible hazard frequency, stages for dividing risks and recommended management for eliminate and alleviate risks. Those results of the revised system were analyzed by using lists of hazard identification, hazard influence and hazard liber. And risk monitoring is implemented by using the hazard liber. © 2010 IEEE.

Lian-chuan Ma,Dongmei Huang,Jian-cheng Mu,Yuan Cao

DOI: https://doi.org/10.2991/AIEA-16.2016.61

2016-11-12

Abstract:Commercial off-the-shelf (COTS) software and hardware components are widely used in the design of train control system. In order to satisfy the application requirements of the safety computer in train control system, it is necessary to analyze its safety properties. In this paper, a method of safety analysis for the safety computer is proposed. The safety properties of the safety computer in train control system are verified by establishing the system model of safety mechanism, and establishing a safety base in safety computer management units (SCMU), and measuring the safety of each part of the system step by step, and then establishing a safety chain. Finally, tests are carried out through a designed software fault injection tool to demonstrate the effectiveness of the proposed method.

Computer Science,Engineering

Zhenning Zhao,Wei Dong,Xinya Sun,Na Wu

DOI: https://doi.org/10.1109/safeprocess45799.2019.9213310

2019-01-01

Abstract:Aiming at the characteristics of various fault risks, difficulty in quantifying risk factors and complex fault propagation mechanism of subway train traction system, in this paper, the typical faults frequently occurring in subway traction system is studied and the dynamic risk analysis and evaluation method of metro traction system is proposed. The fault event that the traction motor is difficult to operate normally due to the breakdown of the front end support capacitor of the traction inverter system is selected. By extracting the relevant characteristic quantity in the risk chain, the probability of the traction motor failure due to the breakdown of the support capacitor of the inverter system is obtained. The risk imp act combined with the relevant factors of metro op eration and maintenance is assessed using cluster analysis method. The proposed method takes the quantitative characteristic of fault risk propagation into account, and can overcome the problems that risks are difficult to quantify in traditional risk analysis methods.

Guangshuang Ge,Liangliang Sun,Yan Fu Li

DOI: https://doi.org/10.1109/issrew55968.2022.00087

2022-01-01

Abstract:Autonomous delivery vehicles (ADVs) are derivatives of autonomous driving technology. With the rapid development of autonomous driving technology and the rapid rise in demand for terminal logistics and distribution, ADVs have gradually entered commercial operation in many cities, thus it brings higher requirements to the reliability of ADVs. Because of bill of material (BOM) cost pressure, most autopilot sensors and domain controllers of ADVs are not strictly follow passenger vehicle standards and regulations, the ADVs' reliability is very critical. The traditional methods of process hazard analysis (PHA) e.g. HAZOPs, FMEAs, FT A, etc., use a system divide approach. The to be analyzed system is breaking down into component level, and the risks or hazard of each component are analyzed separately. The two important assumptions of the traditional methods are: 1. the system's properties are not changed when it is broken down into component level; 2. the accidents are caused by component failures. However, in an ADV, the system becomes complex since the system effects may be missed, and this assumption is questionable; further, an ADV accidents can happen even there is no component failure. The system level hazard analysis cannot be fully determined only at the component level, but out of interactions of systems. Systems Theoretic Process Analysis (STP A) is a structured system level approach to analyze hazard. Based on the premise that accidents happen when the control is inadequate or lost, STPA approach decodes hazards related not only to component failures, but also to design errors, flawed controller requirements, interaction failures, human errors, and other errors. In this paper, the STPA method is used to analyze various risks and hazards of ADVs, and finally construct an abnormality monitoring system for autonomous driving sensors. Engineering practice shows that this method can effectively monitor the abnormality of sensor data links.

Liangliang Sun,Yan-Fu Li,Enrico Zio

DOI: https://doi.org/10.1115/1.4051940

2022-01-01

Abstract:As autonomous vehicle (AV) intelligence for controllability continues to develop, involving increasingly complex and interconnected systems, the maturity level of AV technology increasingly depends on the systems reliability level, also considering the interactions among them. Hazard analysis is typically used to identify potential system risks and avoid loss of AV system functionality. Conventional hazard analysis methods are commonly used for traditional standalone systems. New hazard analysis methods have been developed that may be more suitable for AV system-of-systems complexity. However, a comprehensive comparison of hazard analysis methods for AV systems is lacking. In this study, the traditional hazard analysis methods, hazard and operability (HAZOP) and failure mode and effects analysis (FMEA), as well as the most recent methods, like functional resonance analysis method (FRAM) and system-theoretic process analysis (STPA), are considered for implementation in the automatic emergency braking system. This system is designed to avoid collisions by utilizing the surrounding sensors to detect objects on the road, warning drivers with alerts about any collision risk, and actuating automatic partial/full braking through calculated adaptive braking deceleration. The objective of this work is to evaluate the methods with the unified theory of acceptance and use of technology (UTAUT) approach, in terms of their applicability to AV technologies. The advantages of HAZOP, FMEA, FRAM, and STPA, as well as the possibility of combining them to achieve systematic risk identification in practice, are discussed.

Asim Abdulkhaleq,Stefan Wagner,Nancy Leveson

DOI: https://doi.org/10.48550/arXiv.1612.03109

2016-12-09

Software Engineering

Abstract:Formal verification and testing are complementary approaches which are used in the development process to verify the functional correctness of software. However, the correctness of software cannot ensure the safe operation of safety-critical software systems. The software must be verified against its safety requirements which are identified by safety analysis, to ensure that potential hazardous causes cannot occur. The complexity of software makes defining appropriate software safety requirements with traditional safety analysis techniques difficult. STPA (Systems-Theoretic Processes Analysis) is a unique safety analysis approach that has been developed to identify system hazards, including the software-related hazards. This paper presents a comprehensive safety engineering approach based on STPA, including software testing and model checking approaches for the purpose of developing safe software. The proposed approach can be embedded within a defined software engineering process or applied to existing software systems, allow software and safety engineers integrate the analysis of software risks with their verification. The application of the proposed approach is illustrated with an automotive software controller.

Yin Junjia,Aidi Hizami Alias,Nuzul Azam Haron,Nabilah Abu Bakar

DOI: https://doi.org/10.1109/access.2024.3453929

IF: 3.9

2024-09-10

IEEE Access

Abstract:Hoisting is essential for large-scale construction projects, including urban viaducts, high-rise buildings, and undersea tunnels. However, this critical process is subject to frequent safety accidents in China, which result in many casualties and asset losses. The lack of a practical risk framework has contributed to poor safety management in this field. Most of the limited risk frameworks in this field focus only on the direct causes leading to accidents, ignoring the systematic and complex nature of lifting risks. In this study, a new risk framework for lifting is constructed by combining the STAMP (Systems-Theoretic Accident Model and Processes) theory and the quantitative analysis capability of the PLS-SEM (Partial Least Squares Structural Equation Modeling) to effectively identify, assess, and manage various potential risks in the lifting construction process. The factors were then analyzed for importance through the independence weight coefficient method. The study found that "Failure to conduct pre-operational inspections of lifting equipment and rigging components," "Physical or mental impairment of operators, such as intoxication or distraction," and "The hoisting program was not prepared under the actual working conditions at the project site and did not adequately plan for emergencies," were the factors with the top 3 highest weight. Ultimately, the framework is validated by 200 real cases from 2019 to 2024 in China. This proposed STAMP-HC framework can accurately identify the risk transfer paths in accidents, and the results of risk factor weighting can also provide a reference for risk management, with the potential to be extended to other countries.

computer science, information systems,telecommunications,engineering, electrical & electronic

Yun Chen,Qin Zeng,Xiazhong Zheng,Bo Shao,Lianghai Jin

DOI: https://doi.org/10.1016/j.ssci.2021.105578

IF: 6.392

2021-11-01

Safety Science

Abstract:Tower crane is one of the most widely used equipment on the construction sites, but followed by a high accident rate. How to prevent the tower crane operation accident has already been an urgent mission. Although researchers carried out a number of studies about accident causes analysis, monitoring technology and structural mechanics analysis, one of the important gaps is that crane stakeholders and supervision bodies, as the components of a holistic crane safety system, were neglected, resulting in that the prevention of tower crane accidents is seldom solved fundamentally. To bridge these gaps, this paper takes the main stakeholders involved in the tower crane operation, namely, the tower crane users (TCU), the responsible party for repair (RPR) and the responsible party for supervisor (RPS), as research objects. A tripartite evolutionary game model is established. The accident risk perception of each stakeholder is considered in the proposed model and an accident preference coefficient is used to express the important factor. The evolution laws of safety strategy selection of the stakeholders are revealed by solving the proposed model. The numerical simulation is applied to verify the rationality of the solution results of the model. The results find that when the sum of penalty amount and safety reward performance is greater than the safety input cost, RPS, RPR and TCU will adopt the favorable safety supervision strategies of tower crane operation; the accident risk perception of RPR has a greater impact on the evolution and the strategy stability of the three stakeholders.

engineering, industrial,operations research & management science

Zhenhao Zhang,Wenbiao Li,Jianyu Yang

DOI: https://doi.org/10.3846/jcem.2021.14108

2021-02-10

Journal of Civil Engineering and Management

Abstract:There are many factors leading to construction safety accident. The rule presented under the influence of these factors should be a statistical random rule. To reveal those random rules and study the probability prediction method of construction safety accident, according to stochastic process theory, general stochastic process, Markov process and normal process are respectively used to simulate the risk-accident process in this paper. First, in the general-random-process-based analysis the probability of accidents in a period of time is calculated. Then, the Markov property of the construction safety risk evolution process is illustrated, and the analytical expression of probability density function of first-passage time of Markov-based risk-accident process is derived to calculate the construction safety probability. In the normal-process-based analysis, the construction safety probability formulas in cases of stationary normal risk process and non-stationary normal risk process with zero mean value are derived respectively. Finally, the number of accidents that may occur on construction site in a period is studied macroscopically based on Poisson process, and the probability distribution of time interval between adjacent accidents and the time of the nth accident are calculated respectively. The results provide useful reference for the prediction and management of construction accidents.

engineering, civil

Ji Ge,Yu-Yuan Zhang,Kai-Li Xu,Ji-Shuo Li,Xi-Wen Yao,Chun-Ying Wu,Shuang-Yuan Li,Fang Yan,Jin-Jia Zhang,Qing-Wei Xu

DOI: https://doi.org/10.48550/arXiv.2105.04340

2021-05-10

Abstract:Major accidents (e.g., the Space Shuttle Challenger disaster in the USA, the Bhopal Disaster in India, Fukushima nuclear accident in Japan, Tianjin Port fire and explosion accident in China) have occurred all over the world. Safety scientists are always trying to understand why these accidents happened and how to prevent these accidents. Accident models and theories form the basis for many safety research fields and practices such as investigation of accidents, design of a safer system and decision making on safety related field. There is no universally accepted model with useful elements relating to understanding accident causation, although many accident causation models exist. Based on STAMP and RMF, we proposed a new theory named the Interaction Theory of Hazard-Target System (ITHTS) that incorporate human, organisational and technological characteristics in the same framework. Accident analysis methods provide the necessary information to analysis the accident in a specific setting. In order to solve the issues that current accident analysis methods still face, we proposed a new systemic accident analysis method based on ITHTS and STPA. We choose Tianjin Port fire and explosion accident in China as a case study to demonstrate the viability of the Interaction Theory of Hazard-target System and the applicability of the new accident analysis method. It is concluded that ITHTS can explain the phenomena in safety practice and the new accident analysis method can be application in the explanation and analysis of major accident.

Systems and Control

Qi Zhang,Yanhui Zhuang,Yuguang Wei,Hao Jiang,Hao Yang

DOI: https://doi.org/10.1155/2020/3158468

IF: 2.249

2020-02-01

Journal of Advanced Transportation

Abstract:In order to make safety risk assessment more accurately and more reasonably for high-speed railway station in China, this paper analyzes risk factors of fault tree and transfers the fault tree of risk accident into fuzzy petri net and then builds the FPN-FTA model by combining the dynamic weighting fuzzy petri net (FPN) and fault tree analysis (FTA) based on the latter. This paper simulates the FTA-FPN model with Stateflow of Matlab software. Then, it builds up a bi-objective risk control model, making the minimum safety risk level and minimum necessary cost as the objectives, and it designs discrete particle swarm optimization algorithm to solve the risk control model. Finally, this paper selects stampede accident of Shijiazhuang high-speed railway station as an example in case study for assessing stampede risk level and gets the risk control schemes for this station. The results verify the feasibility and validity of the model and algorithm.

transportation science & technology,engineering, civil

Longlong He,Ruiyu Pan,Yafei Wang,Jiani Gao,Tianze Xu,Naqi Zhang,Yue Wu,Xuhui Zhang

DOI: https://doi.org/10.3390/math12071109

IF: 2.4

2024-04-08

Mathematics

Abstract:In the face of the increasing complexity of risk factors in the coal mining transportation system (CMTS) during the process of intelligent transformation, this study proposes a method for analyzing accidents in CMTS based on fault tree analysis (FTA) combined with Bayesian networks (BN) and preliminary hazard analysis (PHA). Firstly, the fault tree model of CMTS was transformed into a risk Bayesian network, and the inference results of the fault tree and Bayesian network were integrated to identify the key risk factors in the transportation system. Subsequently, based on the preliminary hazard analysis of these key risk factors, corresponding rectification measures and a risk control system construction plan are proposed. Finally, a case study was carried out on the X coal mine as a pilot mine to verify the feasibility of the method. The application of this method effectively identifies and evaluates potential risk factors in CMTS, providing a scientific basis for accident prevention. This research holds significant importance for the safety management and decision making of coal mine enterprises during the process of intelligent transformation and is expected to provide strong support for enhancing the safety and reliability of CMTS.

mathematics

Antonio Javier Nakhal Akel,Giulio Di Gravio,Lorenzo Fedele,Riccardo Patriarca

DOI: https://doi.org/10.3390/infrastructures7070090

2022-06-30

Infrastructures

Abstract:Post mortem incident investigations are vital to prevent the occurrence of similar events and improve system safety. The increasing interactions of technical, human and organizational elements in modern systems pose new challenges for safety management, demanding approaches capable of complementing techno-centric investigations with social-oriented analyses. Hence, traditional risk analysis methods rooted in event-chain reactions and looking for individual points of failure are increasingly inadequate to deal with system-wide investigations. They normally focus on an oversimplified analysis of how work was expected to be conducted, rather than exploring what exactly occurred among the involved agents. Therefore, a detailed analysis of incidents beyond the immediate failures extending towards socio-technical threats is necessary. This study adopts the system-theoretic accident model and process (STAMP) and its nested accident analysis technique, i.e., causal analysis based on systems theory (CAST), to propose a causal incident analysis in the railway industry. The study proposes a hierarchical safety control structure, along with system-level safety constraints, and detailed investigations of the system’s components with the purpose of identifying physical and organizational safety requirements and safety recommendations. The analysis is contextualized in the demonstrative use of a railway case. In particular, the analysis is instantiated for a 2011 incident in the United Kingdom (UK) railway system. Hence, the CAST technique requires information regarding incidents, facts and processes. Therefore, the case study under analysis provided the information to analyze the accidents based on system theory, in which the results of the analysis prove the benefits of a CAST application to highlight criticalities at both element- and system-level, spanning from component failure to organizational and maintenance planning, enhancing safety performance in normal work practices.