Fault tree analysis control system

Bums and Hazzan demonstrated tlie use of event tree and fault tree analysis in tlie study of a potential accident sequence leading to a toxic vapor release at an industrial chemical process plant. The initiator of tlie accident sequence studied is event P, the failure of a plant programmable automatic controller. Tliis event, in conjunction willi the success or failure of a process water system (a glycol cooling system) mid an operator-manual shutdown of tlie distillation system produced minor, moderate, or major release of toxic material as indicated in Fig. 21.4.1. The symbols W, G, O represent tlie events listed ... 

In Section 21.4 tlie effects of the release of toxic vapors were considered in connection witli an accident sequence initiated by the failure of a plant programmable automatic controller. In tliis study, event tree analysis and fault tree analysis led to identification of tlie glycol cooling system circulation pumps as components meriting high priority for inspection. 

Process Hazards Analysis. Analysis of processes for unrecognized or inadequately controlled hazards (see Hazard analysis and risk ASSESSMENT) is required by OSHA (36). The principal methods of analysis, in an approximate ascending order of intensity, are what-if checklist failure modes and effects hazard and operability (HAZOP) and fault-tree analysis. Other complementary methods include human error prediction and cost/benefit analysis. The HAZOP method is the most popular as of 1995 because it can be used to identify hazards, pinpoint their causes and consequences, and disclose the need for protective systems. Fault-tree analysis is the method to be used if a quantitative evaluation of operational safety is needed to justify the implementation of process improvements. 

Topics Include methods lor calculating damage resulting from the physical effects of accidental releases, using risk assessment Information to specify safety control systems, fault tree analysis, hazards of trace substances, warehouse fires, human exposure to process systems, and solutions to human factor problems. 

Instrumentation and Control (I C) systems are very often subject of probabilistic examination either within separate structural reliability analysis or Probabilistic Safety Assessment of a whole technological complex (e.g. Nuclear Power Plant). Use of programmable components in the design of these systems represents a challenge and utilizes the methods, which have been developed for components with a different behaviour. The typical method used for above mentioned examination is Fault Tree Analysis (FTA) (Vesely et al., 1981). The way of software faults modelling within Fault Trees vary a lot between particular models and there is no generally accepted modelling technique. 

Domenech et al., in press presents an approach to integrate CCP effectiveness assessment into predictive modeling based on the performance of the coupled control-monitoring system. Following this focus, this paper shows in an appHcation example of honey, how to aggregate control cells, using a model based on fault tree analysis. This structure allows integrating the main parameters of one step and its control in order to know... 

Where mass limits are the main defense against criticality, assay and inventory records arc the important control measures. Fault tree analysis shows where the most effective point of application for an assay system is to cover several areas with one system. This is done by tracing the source of an overbatch to the lowest level cause, which often is the same for different areas. For complex facilities with many interacting process areas, fault tree analysis can be a most valuable tool of the safety professional. 

Because so much of aviation is controlled by people, human factor analysis tools are at the heart of the aviation industry. Different types of human factors analyses are used in air navigation, such as air traffic control, crew resource management in the cockpit, and even appropriate design and maintenance of aircraft systems. Fault tree analysis, fault hazard analysis, FMEA, and different probabilistic risk tools are also used in the detailed design of safety critical subsystems. 

Fault Tree Analysis (FTA) is a well known and effective method for analyzing hardware systems 1-3. This paper describes a possible use of FTA in a software embedded system for temperature control. The analysis is first applied to the hardware and software systems but concentrates on the software section afterwards, two critical events were detected by FTA and steps were taken to overcome them. Although this work describes a specific situation it can be applied to many control systems. 

Similar to fault tree analysis, this works from a selected initiating evenF, such as a pressure control failure. It is, basically, a systematic representation of all the possible states of the processing system conditional to the specific initiating event and relevant for a certain type of outcome, e.g. a pollution incident or a major fire. 

System safety is a discipline which identifies potential hazards and provides controls and certain counter measures by applying several safety assessment methods. System safety requires equipment MTBF data and FMECA Report findings in order to complete the Fault Tree Analysis (FTA)s and System Safety Assessments (SSA)s. A FMECA may be used to supplement the FTA by providing a complementary list of failure effects from the bottom up. 

Fault tree analysis (FTA), failure modes and effect analysis (FMEA), and the Markov method are the examples of methods that can be used in both safety and reliability fields. The FTA method was developed in the early 1960s for analyzing the safety of rocket launch control systems, and FMEA was developed in the early 1950s for analyzing the reliability of engineering systems. 

In practice, most of the ground-based ATC barriers are implemented by the same controllers and equipment items so the barriers are not independent, and methods such as Fault Tree Analysis (FTA) are needed to apportion both success and failure targets to individual subsystems within the overall ATM system. 

A number of analysis techniques such as fault tree analysis, real-time logic and timed petri-nets are being used in limited contexts. However, system wide techniques that allow consideration of the control system rather than just of the software in isolation require further development. 

RISKMAN is an integrated Microsoft Windows , personal computer software system for [H. i forming quantitative risk analysis. Used for PSAs for aerospace, nuclear power, and chemical [iroccsses, it has five main modules Data Analysis, Systems Analysis, External Events Analysis, Event Tree Analysis, and Important Sequences. There are also modules for software system maintenance, backup, restoration, software updates, printer font, and page control. PEG has also integrated the fault tree programs CAFTA, SETS, NRCCUT, and IRRAS into RISKMAN. 

Accident investigations, when the events and physical causes are not obvious, often make use of a hazard analysis technique, such as fault trees, to create scenarios to consider. STPA can be used for this purpose. Using control diagrams of the physical system, scenarios can be generated that could lead to the lack of enforcement... 

ABSTRACT Reliability analysis of complex systems is complicated by several factors. The possible unreliability of logistic support elements may lead to decrease of performance of the system being supported. As a result both systems must be considered in a single model. However, the simultaneous setting of all structural parameters (e.g. redundancy, repair shop capacity) and control variables (e.g. spare part inventory levels, maintenance policy parameters, repair job priorities, time redundancy) is mathematically a hard problem. That is why this paper describes FTTD modeling technique for handling these difficulties. Moreover, the application example of tram network performance is described. Fault tree with time dependencies model for the presented example and its analysis is discussed. 

In 1985, the American Institute of Chemical Engineers (AIChE) initiated a project to produce the Guidelines for Hazard Evaluation Procedures. This document, prepared by Battelle, includes many system safety analysis tools. Even though frequently identified as hazard and operability (HazOp) programs, the methods being developed by the petrochemical industry to use preliminary hazard analyses, fault trees, failure modes, effects, and criticality analyses, as well as similar techniques to identify, analyze, and control risks systematically, look very much like system safety efforts tailored for the petrochemical industry (Goldwaite 1985). 

Are there documents that provide comprehensive analysis of all potential safety and health hazards of the worksite Are there documents that provide both the analysis of potential safety and health hazards for each new facility, equipment, material, or process and the means for eliminating or controlling snch hazards Does documentation exist outlining the step-by-step analysis of hazards in each part of each job, so that yon can clearly discern the evolution of decisions on safe work procedures If complicated processes exist, with a potential for catastrophic impact from an accident but low probability of such accident (as in nnclear power or chemical production), are there documents analyzing the potential hazards in each part of the process and the means to prevent or control them If there are processes with a potential for catastrophic impact from an accident but low probability of an accident, have analyses such as fault tree or what if been documented to ensure sufficient backup systems for worker protection in the event of multiple control failures ... 

---