SlideShare a Scribd company logo

CS5032 Lecture 10: Learning from failure 2

Download as PPTX, PDF
John Rooksby
John Rooksby
EducationTechnology
1 of 18
LEARNING FROM FAILURE 2 DR JOHN ROOKSBY
IN THIS LECTURE This lecture will focus on how accidents and serious incidents are investigated and analysed • When do investigations happen? • How are they conducted? • What analytical methods are used?
INVESTIGATIONS Accidents and failures need to be investigated. • Investigations enable you to identify the (most likely) causes of accidents and failures • The causes and conditions leading up to accidents and incidents are often complex, and immediate reactions may be wrong • Investigations seek to uncover underlying causes, not just the immediate causes • Investigations should also address how future accidents can be avoided • In this context, investigations are primarily to prevent future occurrences than establish responsibility
INVESTIGATIONS The basic steps of an investigation are 1. Collection phase: Evidence, and facts are sought 2. Analysis phase: The evidence and facts are analysed and opinions invited from experts and other parties 3. Judgements phase: Judgements are made about the causes of an incident or accident and the associated responsibilities 4. Follow up: Recommendations should be made on how to stop similar problems happening again. In practice, the process will be iterative.
INVESTIGATIONS There are limitations on the investigation process. Investigations can be costly. • We may never know all the facts. With complex systems, it can be very hard or impossible to know everything that happened in the run up to an incident. In major accidents sources of evidence may be damaged or lost. • There will always be subjective views and uncertainties, especially around human actions. Judgements need to be made about the extent to which an incident can be investigated. Investigations often conclude with the “likely” or “probable” causes rather than a definitive version of events
WHO INVESTIGATES? The scope and emphasis of an investigation is likely to reflect the position of the investigator An investigator ought to be independent. • In practice, this can be hard to achieve. • Some industries have an official, independent investigation organisation • In the event of a major incident, a „public enquiry‟ may be used, in which the evidence and investigative process is made public and so open to scrutiny.
ANALYSIS The analysis phase of an investigation needs to explore and evaluate often complex information. Experts and specialists may need to be involved at this point. There is no standard method for analysing an accident, and continuing debate about how this is best done. Approaches include • Narrative approaches • Causal chains • Systems approaches
NARRATIVE APPROACHES All accident investigations will produce a narrative of some kind. Many reports are purely a narrative and a set of conclusions. A narrative is a written account of an incident or accident. • Producing this can be non-trivial because it can be difficult to structure events, many of which may have occurred simultaneously and many of which may have ambiguities, into a linear document. Producing a narrative is a key step in making sense of an incident Narrative accounts have serious limitations however. It is difficult to evaluate their depth and coverage, and they tend to „storify‟ complex events.
“ROOT CAUSE” APPROACHES Many approaches have been developed to systematically identify the root causes of an incident. These approaches are based on the idea that the immediate events in an incident are symptoms of a much deeper problem. Root cause analysis techniques usually express events as a chain. The chains often branch, and multiple chains can be synchronised to represent parallel events. • Examples: MORT (management oversight risk tree), FMEA (Failure mode and effects analysis) , Barrier analysis, WBA (Why-because Analysis)
“ROOT CAUSE” APPROACHES - LIMITATIONS The stopping problem • A causal chain could in theory go backwards indefinitely. The proximity problem • A root cause is often found to be something proximal to the accident (often a human operator). The causation problem • Hindsight and investigative biases frame particular actions in terms of their contributions to an outcome However, this does not mean that it is wrong to try to identify underlying causes Investigations usually refer to the “likely” or “probable” root causes
SYSTEMS METHODS Systems methods for accident analysis have come into use over the last decade. • From this perspective, accidents result from inadequate control or enforcement of safety-related constraints on the development, design, and operation of the systems. Systems methods emphasise controls over the system itself. This recognises that no system is inherently safe, and that systems (particularly socio-technical systems) adapt and change over time. • A key approach is STAMP (Systems-Theoretic Accident Model and Processes).
SYSTEMS METHODS Key criticisms of systems models • They are often used as a means of pursuing and attributing blame to high level people in an organisation • They can turn attention too far away from the actual design and implementation of the technology
HINDSIGHT AND FORESIGHT It is essential to learn from our mistakes, but we should not wait for accidents to happen before we try to improve the dependability of systems. How can we predict problems that may occur? How can we ensure systems are resilient to possible problems. Several of the methods mentioned in this lecture can be used to follow through the consequences of possible problems or failures. Predicting possible causes and consequences of failure, unless in very narrow circumstances, can involve many arbitrary decisions.
COLUMBIA http://en.wikipedia.org/wiki/Space_Shuttle_Columbia
INVESTIGATION The Columbia Accident Investigation Board was an independent board set up to analyse the Columbia disaster • 13 board members and many investigators • Investigation took around 5 months • Cost approximately 17 million dollars • 230 page report produced The proximal cause was fairly clear from the outset. The investigation sought to focus on underlying causes. • The investigation focused on organisational, historical, budgetary and political factors in the shuttle programme • The questions surrounded the issue that foam strikes were routinely ignored
KEY POINTS Investigations are important for learning from failures. Investigations often show that initial assumptions about the cause of an incident are wrong or partial. They aim to find underlying or “root” causes. All investigations involve some sort of judgement. Investigations should be as neutral as possible, but in practice this is difficult to achieve. There are many methods for analysing an incident or accident, and no single right way to do this.
FURTHER READING MAIB – Maritme Accident Investigation Branch • http://www.maib.gov.uk/home/index.cfm AAIB – Air Accidents Investigation Branch • http://www.aaib.gov.uk/home/index.cfm Columbia Accident Investigation Branch • http://caib.nasa.gov/

Recommended

critical incident technique for nursing
critical incident technique for nursingcritical incident technique for nursing
critical incident technique for nursing
Krupali Rudani
 
CS5032 Lecture 20: Dependable infrastructure 2
CS5032 Lecture 20: Dependable infrastructure 2CS5032 Lecture 20: Dependable infrastructure 2
CS5032 Lecture 20: Dependable infrastructure 2
John Rooksby
 
CS5032 Lecture 13: organisations and failure
CS5032 Lecture 13: organisations and failureCS5032 Lecture 13: organisations and failure
CS5032 Lecture 13: organisations and failure
John Rooksby
 
CS5032 Lecture 14: Organisations and failure 2
CS5032 Lecture 14: Organisations and failure 2CS5032 Lecture 14: Organisations and failure 2
CS5032 Lecture 14: Organisations and failure 2
John Rooksby
 
CS5032 Lecture 19: Dependable infrastructure
CS5032 Lecture 19: Dependable infrastructureCS5032 Lecture 19: Dependable infrastructure
CS5032 Lecture 19: Dependable infrastructure
John Rooksby
 
CS5032 Lecture 9: Learning from failure 1
CS5032 Lecture 9: Learning from failure 1CS5032 Lecture 9: Learning from failure 1
CS5032 Lecture 9: Learning from failure 1
John Rooksby
 
Testing Sociotechnical Systems: Passport Issuing
Testing Sociotechnical Systems: Passport IssuingTesting Sociotechnical Systems: Passport Issuing
Testing Sociotechnical Systems: Passport Issuing
John Rooksby
 
Testing Sociotechnical Systems: Heathrow Terminal 5
Testing Sociotechnical Systems: Heathrow Terminal 5Testing Sociotechnical Systems: Heathrow Terminal 5
Testing Sociotechnical Systems: Heathrow Terminal 5
John Rooksby
 

Recommended

critical incident technique for nursing
critical incident technique for nursingcritical incident technique for nursing
critical incident technique for nursing
Krupali Rudani
 
CS5032 Lecture 20: Dependable infrastructure 2
CS5032 Lecture 20: Dependable infrastructure 2CS5032 Lecture 20: Dependable infrastructure 2
CS5032 Lecture 20: Dependable infrastructure 2
John Rooksby
 
CS5032 Lecture 13: organisations and failure
CS5032 Lecture 13: organisations and failureCS5032 Lecture 13: organisations and failure
CS5032 Lecture 13: organisations and failure
John Rooksby
 
CS5032 Lecture 14: Organisations and failure 2
CS5032 Lecture 14: Organisations and failure 2CS5032 Lecture 14: Organisations and failure 2
CS5032 Lecture 14: Organisations and failure 2
John Rooksby
 
CS5032 Lecture 19: Dependable infrastructure
CS5032 Lecture 19: Dependable infrastructureCS5032 Lecture 19: Dependable infrastructure
CS5032 Lecture 19: Dependable infrastructure
John Rooksby
 
CS5032 Lecture 9: Learning from failure 1
CS5032 Lecture 9: Learning from failure 1CS5032 Lecture 9: Learning from failure 1
CS5032 Lecture 9: Learning from failure 1
John Rooksby
 
Testing Sociotechnical Systems: Passport Issuing
Testing Sociotechnical Systems: Passport IssuingTesting Sociotechnical Systems: Passport Issuing
Testing Sociotechnical Systems: Passport Issuing
John Rooksby
 
Testing Sociotechnical Systems: Heathrow Terminal 5
Testing Sociotechnical Systems: Heathrow Terminal 5Testing Sociotechnical Systems: Heathrow Terminal 5
Testing Sociotechnical Systems: Heathrow Terminal 5
John Rooksby
 
Reporting & Recording Investigations
Reporting & Recording Investigations Reporting & Recording Investigations
Reporting & Recording Investigations
GAURAV. H .TANDON
 
15.45 p.m. 16.30 p.m. - rca nhse
15.45 p.m. 16.30 p.m. - rca nhse15.45 p.m. 16.30 p.m. - rca nhse
15.45 p.m. 16.30 p.m. - rca nhse
PHEScreening
 
15.45 p.m. 16.30 p.m. - rca nhse
15.45 p.m. 16.30 p.m. - rca nhse15.45 p.m. 16.30 p.m. - rca nhse
15.45 p.m. 16.30 p.m. - rca nhse
PHEScreening
 
AEE Investigations 2009.ppt
AEE Investigations 2009.pptAEE Investigations 2009.ppt
AEE Investigations 2009.ppt
RAJATGUPTA124056
 
topic7.ppt
topic7.ppttopic7.ppt
topic7.ppt
Ronald Aranha
 
5.-accident-causation-theories-accident-reporting.pptx
5.-accident-causation-theories-accident-reporting.pptx5.-accident-causation-theories-accident-reporting.pptx
5.-accident-causation-theories-accident-reporting.pptx
ssuser1ecccc
 
Safe Operating Procudures
Safe Operating ProcuduresSafe Operating Procudures
Safe Operating Procudures
Light House Advertising
 
Accident investigation BY Muhammad Fahad Ansari 12IEEM14
Accident investigation BY Muhammad Fahad Ansari 12IEEM14Accident investigation BY Muhammad Fahad Ansari 12IEEM14
Accident investigation BY Muhammad Fahad Ansari 12IEEM14
fahadansari131
 
Incident investigation and Root Cause Analysis
Incident investigation and Root Cause AnalysisIncident investigation and Root Cause Analysis
Incident investigation and Root Cause Analysis
Heatherawarens
 
English Cause or Effects Essay Writing
English Cause or Effects Essay WritingEnglish Cause or Effects Essay Writing
English Cause or Effects Essay Writing
GuestHouse2
 
Accident Investigation Basics Training by Alteris
Accident Investigation Basics Training by AlterisAccident Investigation Basics Training by Alteris
Accident Investigation Basics Training by Alteris
Atlantic Training, LLC.
 
Accident inves
Accident invesAccident inves
Accident inves
prince saisolo
 
Accident Investigation Basics Training by Washington State Department of Labo...
Accident Investigation Basics Training by Washington State Department of Labo...Accident Investigation Basics Training by Washington State Department of Labo...
Accident Investigation Basics Training by Washington State Department of Labo...
Atlantic Training, LLC.
 
Accident Investigation
Accident InvestigationAccident Investigation
Accident Investigation
Chaudhry Hassan Ali
 
Safety Management Chapter 8
Safety Management Chapter 8Safety Management Chapter 8
Safety Management Chapter 8
Choi Kyung Hyo
 
Basic Accident Investigation 2016
Basic Accident Investigation 2016 Basic Accident Investigation 2016
Basic Accident Investigation 2016
Melinda Tarkington
 
Cross impact-analysis
Cross impact-analysisCross impact-analysis
Cross impact-analysis
A P
 
Module 6 - Multi-Incident Analysis Method
Module 6 - Multi-Incident Analysis MethodModule 6 - Multi-Incident Analysis Method
Module 6 - Multi-Incident Analysis Method
Canadian Patient Safety Institute
 
CS5032 Lecture 5: Human Error 1
CS5032 Lecture 5: Human Error 1CS5032 Lecture 5: Human Error 1
CS5032 Lecture 5: Human Error 1
John Rooksby
 
Module 4: Comprehensive analysis method
Module 4: Comprehensive analysis methodModule 4: Comprehensive analysis method
Module 4: Comprehensive analysis method
Canadian Patient Safety Institute
 
Designing apps lecture
Designing apps lectureDesigning apps lecture
Designing apps lecture
John Rooksby
 
Implementing Ethics for a Mobile App Deployment
Implementing Ethics for a Mobile App DeploymentImplementing Ethics for a Mobile App Deployment
Implementing Ethics for a Mobile App Deployment
John Rooksby
 

More Related Content

Similar to CS5032 Lecture 10: Learning from failure 2

5.-accident-causation-theories-accident-reporting.pptx
5.-accident-causation-theories-accident-reporting.pptx5.-accident-causation-theories-accident-reporting.pptx
5.-accident-causation-theories-accident-reporting.pptx
ssuser1ecccc
 
Accident Investigation Basics Training by Washington State Department of Labo...
Accident Investigation Basics Training by Washington State Department of Labo...Accident Investigation Basics Training by Washington State Department of Labo...
Accident Investigation Basics Training by Washington State Department of Labo...
Atlantic Training, LLC.
 
Safety Management Chapter 8
Safety Management Chapter 8Safety Management Chapter 8
Safety Management Chapter 8
Choi Kyung Hyo
 
CS5032 Lecture 5: Human Error 1
CS5032 Lecture 5: Human Error 1CS5032 Lecture 5: Human Error 1
CS5032 Lecture 5: Human Error 1
John Rooksby
 

Similar to CS5032 Lecture 10: Learning from failure 2 (20)

Reporting & Recording Investigations
Reporting & Recording Investigations Reporting & Recording Investigations
Reporting & Recording Investigations
 
15.45 p.m. 16.30 p.m. - rca nhse
15.45 p.m. 16.30 p.m. - rca nhse15.45 p.m. 16.30 p.m. - rca nhse
15.45 p.m. 16.30 p.m. - rca nhse
 
15.45 p.m. 16.30 p.m. - rca nhse
15.45 p.m. 16.30 p.m. - rca nhse15.45 p.m. 16.30 p.m. - rca nhse
15.45 p.m. 16.30 p.m. - rca nhse
 
AEE Investigations 2009.ppt
AEE Investigations 2009.pptAEE Investigations 2009.ppt
AEE Investigations 2009.ppt
 
topic7.ppt
topic7.ppttopic7.ppt
topic7.ppt
 
5.-accident-causation-theories-accident-reporting.pptx
5.-accident-causation-theories-accident-reporting.pptx5.-accident-causation-theories-accident-reporting.pptx
5.-accident-causation-theories-accident-reporting.pptx
 
Safe Operating Procudures
Safe Operating ProcuduresSafe Operating Procudures
Safe Operating Procudures
 
Accident investigation BY Muhammad Fahad Ansari 12IEEM14
Accident investigation BY Muhammad Fahad Ansari 12IEEM14Accident investigation BY Muhammad Fahad Ansari 12IEEM14
Accident investigation BY Muhammad Fahad Ansari 12IEEM14
 
Incident investigation and Root Cause Analysis
Incident investigation and Root Cause AnalysisIncident investigation and Root Cause Analysis
Incident investigation and Root Cause Analysis
 
English Cause or Effects Essay Writing
English Cause or Effects Essay WritingEnglish Cause or Effects Essay Writing
English Cause or Effects Essay Writing
 
Accident Investigation Basics Training by Alteris
Accident Investigation Basics Training by AlterisAccident Investigation Basics Training by Alteris
Accident Investigation Basics Training by Alteris
 
Accident inves
Accident invesAccident inves
Accident inves
 
Accident Investigation Basics Training by Washington State Department of Labo...
Accident Investigation Basics Training by Washington State Department of Labo...Accident Investigation Basics Training by Washington State Department of Labo...
Accident Investigation Basics Training by Washington State Department of Labo...
 
Accident Investigation
Accident InvestigationAccident Investigation
Accident Investigation
 
Safety Management Chapter 8
Safety Management Chapter 8Safety Management Chapter 8
Safety Management Chapter 8
 
Basic Accident Investigation 2016
Basic Accident Investigation 2016 Basic Accident Investigation 2016
Basic Accident Investigation 2016
 
Cross impact-analysis
Cross impact-analysisCross impact-analysis
Cross impact-analysis
 
Module 6 - Multi-Incident Analysis Method
Module 6 - Multi-Incident Analysis MethodModule 6 - Multi-Incident Analysis Method
Module 6 - Multi-Incident Analysis Method
 
CS5032 Lecture 5: Human Error 1
CS5032 Lecture 5: Human Error 1CS5032 Lecture 5: Human Error 1
CS5032 Lecture 5: Human Error 1
 
Module 4: Comprehensive analysis method
Module 4: Comprehensive analysis methodModule 4: Comprehensive analysis method
Module 4: Comprehensive analysis method
 

More from John Rooksby

CS5032 Lecture 2: Failure
CS5032 Lecture 2: FailureCS5032 Lecture 2: Failure
CS5032 Lecture 2: Failure
John Rooksby
 
CS5032 Lecture 6: Human Error 2
CS5032 Lecture 6: Human Error 2CS5032 Lecture 6: Human Error 2
CS5032 Lecture 6: Human Error 2
John Rooksby
 

More from John Rooksby (12)

Designing apps lecture
Designing apps lectureDesigning apps lecture
Designing apps lecture
 
Implementing Ethics for a Mobile App Deployment
Implementing Ethics for a Mobile App DeploymentImplementing Ethics for a Mobile App Deployment
Implementing Ethics for a Mobile App Deployment
 
Self tracking and digital health
Self tracking and digital healthSelf tracking and digital health
Self tracking and digital health
 
Digital Health From an HCI Perspective - Geraldine Fitzpatrick
Digital Health From an HCI Perspective - Geraldine FitzpatrickDigital Health From an HCI Perspective - Geraldine Fitzpatrick
Digital Health From an HCI Perspective - Geraldine Fitzpatrick
 
How to evaluate and improve the quality of mHealth behaviour change tools
How to evaluate and improve the quality of mHealth behaviour change toolsHow to evaluate and improve the quality of mHealth behaviour change tools
How to evaluate and improve the quality of mHealth behaviour change tools
 
Guest lecture: Designing mobile apps
Guest lecture: Designing mobile appsGuest lecture: Designing mobile apps
Guest lecture: Designing mobile apps
 
Talk at UCL: Mobile Devices in Everyday Use
Talk at UCL: Mobile Devices in Everyday UseTalk at UCL: Mobile Devices in Everyday Use
Talk at UCL: Mobile Devices in Everyday Use
 
Fitts' Law
Fitts' LawFitts' Law
Fitts' Law
 
Intimacy and Mobile Devices
Intimacy and Mobile DevicesIntimacy and Mobile Devices
Intimacy and Mobile Devices
 
Making data
Making dataMaking data
Making data
 
CS5032 Lecture 2: Failure
CS5032 Lecture 2: FailureCS5032 Lecture 2: Failure
CS5032 Lecture 2: Failure
 
CS5032 Lecture 6: Human Error 2
CS5032 Lecture 6: Human Error 2CS5032 Lecture 6: Human Error 2
CS5032 Lecture 6: Human Error 2
 

Recently uploaded

Making communications land - Are they received and understood as intended? we...
Making communications land - Are they received and understood as intended? we...Making communications land - Are they received and understood as intended? we...
Making communications land - Are they received and understood as intended? we...
Association for Project Management
 
Spellings Wk 3 English CAPS CARES Please Practise
Spellings Wk 3 English CAPS CARES Please PractiseSpellings Wk 3 English CAPS CARES Please Practise
Spellings Wk 3 English CAPS CARES Please Practise
AnaAcapella
 
Activity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdfActivity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdf
ciinovamais
 
The basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxThe basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptx
heathfieldcps1
 
Seal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptxSeal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptx
negromaestrong
 
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in DelhiRussian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
kauryashika82
 

Recently uploaded (20)

ICT role in 21st century education and it's challenges.
ICT role in 21st century education and it's challenges.ICT role in 21st century education and it's challenges.
ICT role in 21st century education and it's challenges.
 
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdfUGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
 
Introduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The BasicsIntroduction to Nonprofit Accounting: The Basics
Introduction to Nonprofit Accounting: The Basics
 
Making communications land - Are they received and understood as intended? we...
Making communications land - Are they received and understood as intended? we...Making communications land - Are they received and understood as intended? we...
Making communications land - Are they received and understood as intended? we...
 
Spellings Wk 3 English CAPS CARES Please Practise
Spellings Wk 3 English CAPS CARES Please PractiseSpellings Wk 3 English CAPS CARES Please Practise
Spellings Wk 3 English CAPS CARES Please Practise
 
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptxBasic Civil Engineering first year Notes- Chapter 4 Building.pptx
Basic Civil Engineering first year Notes- Chapter 4 Building.pptx
 
This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.
 
Mixin Classes in Odoo 17 How to Extend Models Using Mixin Classes
Mixin Classes in Odoo 17 How to Extend Models Using Mixin ClassesMixin Classes in Odoo 17 How to Extend Models Using Mixin Classes
Mixin Classes in Odoo 17 How to Extend Models Using Mixin Classes
 
Activity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdfActivity 01 - Artificial Culture (1).pdf
Activity 01 - Artificial Culture (1).pdf
 
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
Explore beautiful and ugly buildings. Mathematics helps us create beautiful d...
 
The basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptxThe basics of sentences session 3pptx.pptx
The basics of sentences session 3pptx.pptx
 
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptxSKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
SKILL OF INTRODUCING THE LESSON MICRO SKILLS.pptx
 
ComPTIA Overview | Comptia Security+ Book SY0-701
ComPTIA Overview | Comptia Security+ Book SY0-701ComPTIA Overview | Comptia Security+ Book SY0-701
ComPTIA Overview | Comptia Security+ Book SY0-701
 
Seal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptxSeal of Good Local Governance (SGLG) 2024Final.pptx
Seal of Good Local Governance (SGLG) 2024Final.pptx
 
Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)Accessible Digital Futures project (20/03/2024)
Accessible Digital Futures project (20/03/2024)
 
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in DelhiRussian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
Russian Escort Service in Delhi 11k Hotel Foreigner Russian Call Girls in Delhi
 
Unit-IV; Professional Sales Representative (PSR).pptx
Unit-IV; Professional Sales Representative (PSR).pptxUnit-IV; Professional Sales Representative (PSR).pptx
Unit-IV; Professional Sales Representative (PSR).pptx
 
Spatium Project Simulation student brief
Spatium Project Simulation student briefSpatium Project Simulation student brief
Spatium Project Simulation student brief
 
Understanding Accommodations and Modifications
Understanding Accommodations and ModificationsUnderstanding Accommodations and Modifications
Understanding Accommodations and Modifications
 
microwave assisted reaction. General introduction
microwave assisted reaction. General introductionmicrowave assisted reaction. General introduction
microwave assisted reaction. General introduction
 

CS5032 Lecture 10: Learning from failure 2

  • 2. IN THIS LECTURE This lecture will focus on how accidents and serious incidents are investigated and analysed • When do investigations happen? • How are they conducted? • What analytical methods are used?
  • 3. INVESTIGATIONS Accidents and failures need to be investigated. • Investigations enable you to identify the (most likely) causes of accidents and failures • The causes and conditions leading up to accidents and incidents are often complex, and immediate reactions may be wrong • Investigations seek to uncover underlying causes, not just the immediate causes • Investigations should also address how future accidents can be avoided • In this context, investigations are primarily to prevent future occurrences than establish responsibility
  • 4. INVESTIGATIONS The basic steps of an investigation are 1. Collection phase: Evidence, and facts are sought 2. Analysis phase: The evidence and facts are analysed and opinions invited from experts and other parties 3. Judgements phase: Judgements are made about the causes of an incident or accident and the associated responsibilities 4. Follow up: Recommendations should be made on how to stop similar problems happening again. In practice, the process will be iterative.
  • 5. INVESTIGATIONS There are limitations on the investigation process. Investigations can be costly. • We may never know all the facts. With complex systems, it can be very hard or impossible to know everything that happened in the run up to an incident. In major accidents sources of evidence may be damaged or lost. • There will always be subjective views and uncertainties, especially around human actions. Judgements need to be made about the extent to which an incident can be investigated. Investigations often conclude with the “likely” or “probable” causes rather than a definitive version of events
  • 6. WHO INVESTIGATES? The scope and emphasis of an investigation is likely to reflect the position of the investigator An investigator ought to be independent. • In practice, this can be hard to achieve. • Some industries have an official, independent investigation organisation • In the event of a major incident, a „public enquiry‟ may be used, in which the evidence and investigative process is made public and so open to scrutiny.
  • 7.
  • 8. ANALYSIS The analysis phase of an investigation needs to explore and evaluate often complex information. Experts and specialists may need to be involved at this point. There is no standard method for analysing an accident, and continuing debate about how this is best done. Approaches include • Narrative approaches • Causal chains • Systems approaches
  • 9. NARRATIVE APPROACHES All accident investigations will produce a narrative of some kind. Many reports are purely a narrative and a set of conclusions. A narrative is a written account of an incident or accident. • Producing this can be non-trivial because it can be difficult to structure events, many of which may have occurred simultaneously and many of which may have ambiguities, into a linear document. Producing a narrative is a key step in making sense of an incident Narrative accounts have serious limitations however. It is difficult to evaluate their depth and coverage, and they tend to „storify‟ complex events.
  • 10. “ROOT CAUSE” APPROACHES Many approaches have been developed to systematically identify the root causes of an incident. These approaches are based on the idea that the immediate events in an incident are symptoms of a much deeper problem. Root cause analysis techniques usually express events as a chain. The chains often branch, and multiple chains can be synchronised to represent parallel events. • Examples: MORT (management oversight risk tree), FMEA (Failure mode and effects analysis) , Barrier analysis, WBA (Why-because Analysis)
  • 11. “ROOT CAUSE” APPROACHES - LIMITATIONS The stopping problem • A causal chain could in theory go backwards indefinitely. The proximity problem • A root cause is often found to be something proximal to the accident (often a human operator). The causation problem • Hindsight and investigative biases frame particular actions in terms of their contributions to an outcome However, this does not mean that it is wrong to try to identify underlying causes Investigations usually refer to the “likely” or “probable” root causes
  • 12. SYSTEMS METHODS Systems methods for accident analysis have come into use over the last decade. • From this perspective, accidents result from inadequate control or enforcement of safety-related constraints on the development, design, and operation of the systems. Systems methods emphasise controls over the system itself. This recognises that no system is inherently safe, and that systems (particularly socio-technical systems) adapt and change over time. • A key approach is STAMP (Systems-Theoretic Accident Model and Processes).
  • 13. SYSTEMS METHODS Key criticisms of systems models • They are often used as a means of pursuing and attributing blame to high level people in an organisation • They can turn attention too far away from the actual design and implementation of the technology
  • 14. HINDSIGHT AND FORESIGHT It is essential to learn from our mistakes, but we should not wait for accidents to happen before we try to improve the dependability of systems. How can we predict problems that may occur? How can we ensure systems are resilient to possible problems. Several of the methods mentioned in this lecture can be used to follow through the consequences of possible problems or failures. Predicting possible causes and consequences of failure, unless in very narrow circumstances, can involve many arbitrary decisions.
  • 16. INVESTIGATION The Columbia Accident Investigation Board was an independent board set up to analyse the Columbia disaster • 13 board members and many investigators • Investigation took around 5 months • Cost approximately 17 million dollars • 230 page report produced The proximal cause was fairly clear from the outset. The investigation sought to focus on underlying causes. • The investigation focused on organisational, historical, budgetary and political factors in the shuttle programme • The questions surrounded the issue that foam strikes were routinely ignored
  • 17. KEY POINTS Investigations are important for learning from failures. Investigations often show that initial assumptions about the cause of an incident are wrong or partial. They aim to find underlying or “root” causes. All investigations involve some sort of judgement. Investigations should be as neutral as possible, but in practice this is difficult to achieve. There are many methods for analysing an incident or accident, and no single right way to do this.
  • 18. FURTHER READING MAIB – Maritme Accident Investigation Branch • http://www.maib.gov.uk/home/index.cfm AAIB – Air Accidents Investigation Branch • http://www.aaib.gov.uk/home/index.cfm Columbia Accident Investigation Branch • http://caib.nasa.gov/