Fault Tree Analysis system integrators

A systems hazards analysis (SHA) is a systematic and comprehensive search for and evaluation of all significant failure modes of facility systems components that can be identified by an experienced team. The hazards assessment often includes failure modes and effects analysis, fault tree analysis, event tree analysis, and hazards and operability studies. Generally, the SHA does not include external factors (e.g., natural disasters) or an integrated assessment of systems interactions. However, the tools of SHA are valuable for examining the causes and the effects of chemical events. They provide the basis for the integrated analysis known as quantitative risk assessment. For an example SHA see the TOCDF Functional Analysis Workbook (U.S. Army, 1993-1995). 

System reliability models, 1932-1937 fault tree analysis, 1936-1937 reliability block diagram, 1933-1936 Systems for Integrating Manufacturing... 

A system is a collection of components in a defined architecture with the sole purpose of accomplishing that system s function (refer to Fig. 3.1). The functional failure probability of that function is determined by the integrity of the constituent components as well as the logic of the systems architecture. The more complex the system, the more there is a need for an in-depth analysis technique to identify all possible combinations of failure that could result in loss of the system s integrity. The Fault Tree Analysis (FTA) is such a technique. A fault tree shows graphically, by means of a specified notation, the logical relationship between a particular system failure and all its contributing causes. 

The fault tree analysis describes a hazardous top event and the basic event which maybe leads to such a top event in a top-down method. The methods are dev-ided in static fault tree analysis and dynamic fault tree analysis. The static fault tree analysis describes the system top event in static way. In further steps it is not possible to describe functional system redundancy with this static Fault Tree Analysis (FTA). Especially if cold and hot spares are integrated or if triggers are used, the static fault tree analysis is unsatisfying these requirements. Therefore it is more suitable to use the extended Dynamic Fault Tree Analysis. The DIFTree (Dynamic Innovative Fault Tree) software package could be a helpful tool for the system development... 

Domenech et al., in press presents an approach to integrate CCP effectiveness assessment into predictive modeling based on the performance of the coupled control-monitoring system. Following this focus, this paper shows in an appHcation example of honey, how to aggregate control cells, using a model based on fault tree analysis. This structure allows integrating the main parameters of one step and its control in order to know... 

Some government organizations require or apply system safety methods for construction projects. A project may require selective use of methods. Organizations apply system safety in some construction projects. Included are the Nuclear Regulatory Commission, the Department of Defense and its service agencies, the Federal Aviation Administration and others. Some projects may simply require use of preliminary hazard analysis that leads to a site safety plan for a project. Complex facilities that integrate specialized equipment into the project may require failure mode and effects analysis or even fault tree analysis. 

It has become quite popular to integrate timed Petri-Nets with software fault tree analysis. You can use the Petri-Net to describe the system architecture and then switch to software fault trees to describe the hazards in the system and the events that lead to that top event and keep switching back and forth to analyze the software safety of the system. 

ISA Standard, Safety Instrumented Functions (SIF)— Safety Integrity Level (SIL) Evaluation Techniques Part 3 Determining the SIL of a SIF via Fault Tree Analysis, TR84.00.02-2002, Part 3, 2002. ISA-The Instrumentation, Systems, and Automation Society. Research Triangle Park, NC. 

We can then state that a general tactic for mitigating hazards is to use fault tree analysis to show that their maximum probability of occurrence does not exceed that established for their severity level, and that the integrity level of the system software is at least that required for the given severity level. We can state this as a generalized axiom (with variables) as follows. 

Both the integrative model by Smillie Ayoub (1975) and the deviation concept by Kjellen (1984a) connect the general systems theory to the sequencing and energy models of accident causation. They encompass technical, organizational and human components of the system. Various methods of system safety analysis (e.g. fault tree analysis, incidental factor analysis) support the identification of technical and human deviations as well as the analysis of the conditions and consequences of these deviations. From the discussion of near misses and conflicts it became clear that frameworks of accident causation should cover all kinds of incidents, thus becoming frameworks of incidents. 

RISKMAN is an integrated Microsoft Windows , personal computer software system for [H. i forming quantitative risk analysis. Used for PSAs for aerospace, nuclear power, and chemical [iroccsses, it has five main modules Data Analysis, Systems Analysis, External Events Analysis, Event Tree Analysis, and Important Sequences. There are also modules for software system maintenance, backup, restoration, software updates, printer font, and page control. PEG has also integrated the fault tree programs CAFTA, SETS, NRCCUT, and IRRAS into RISKMAN. 

INTEGRATION WITH HARDWARE ANALYSIS. The error probabilities obtained from the quantification procedure are incorporated in the overall system fault trees and event trees. 

Fault trees are very diverse and can be used in many ways. They are one of my most favorite safety analysis tools. I have used them for such diverse activities as understanding integrity management of an upstream oil pipeline system, employee and management actions taken during a plutonium spill at a laboratory, and the Sydney, Australia, Waterfall rail accident investigation. 

Over the next several years, the PRA was detailed to the point it included detailed fault trees of the mechanical, electrical, and instrumentation and control systems and the scope was expanded to include shutdown, fire, flood events, and large release frequency and off-site dose quantifications. Core damage frequency PRA was supported by extensive plant thermal-hydraulic analysis to justify success criteria. Extensive testing and thermal-hydrauUc analysis, to support containment integrity during core melt sequences, underpirmed the large release PRA. 

ABSTRACT In most cases, Model Based Safety Analysis (MBSA) of critical systems focuses only on the process and not on the control system of this process. For instance, to assess the dependability attributes of power plants, only a model (Fault Tree, Markov chain. ..) of the physical components of the plant (pumps, steam generator, turbine, alternator. ..) is used. In this paper, we claim that for repairable and/or phased-mission systems, not only the process but the whole closed-loop system Proc-ess/Control must be considered to perform a relevant MBSA. Indeed, a part of the control functions aims to handle the dynamical mechanisms that change the mission phase as well as manage repairs and redundancies in the process. Therefore, the achievement of these mechanisms depends on the functional/dysfunctional status of the control components, on which these functions are implemented. A qualitative or quantitative analysis method which considers both the process and the control provides consequently more realistic results by integrating the failures of the control components that may lead to the non-achievement of these mechanisms. This claim is exemplified on an industrial study case issued from a power plant. The system is modeled by a BDMP (Boolean logic Driven Markov Process), assuming first that the control components are faultless, i.e. only the faults in the process are considered, and afterwards that they may fail. The minimal cut sequences of the system are computed in both cases. The comparison of these two sets of minimal cut sequences shows the benefit of the second approach. 

ABSTRACT Technological advancements in area of sensor-based online maintenance systems have made the possibility of repairing some failed safety support systems of Nuclear Power Plants (NPP) such as electrical supply, I C systems, ventilation systems. However, the possibility of repair during accident situation is yet to be included into PSA level-1. Therefore, this paper presents a scheme of PSA level-1 by implementing an integrated method of Repairable Event Tree (RET) and Repairable Fault Tree (RET) analysis. The Core Damage Frequency (CDF) is calculated from consequence probabilities of the RET. An initiating event of Decay Heat Removal (DHR) systems of ASTRID reactor is analyzed. The proportionate CDFs estimated with repair and without repair have been compared and found that the recoveries can reduce CDF. In sum, this paper attempts to deal with the possibility of repair of some safety systems in PSA and its impacts on CDF of the NPP. 

In effect, workers are treated as being components in a system, just like equipment items. Hence the THERP analysis can be integrated into probabilistic risk assessment (PRA) analyses—particularly fault and event trees—topics that are discussed in depth in Process Risk and Reliability Management. A THERP analysis is most effective when the tasks are routine and proceduralized, and when the persons involved are not under stress. 

---