SlideShare a Scribd company logo

Ryschk wow

N
NASAPMC
TechnologyBusiness
1 of 16
Download to read offline
Poppet Learnings Chris singer Deputy Director Engineering MSFC Mike Ryschkewitsch, NASA Chief Engineer PM Challenge February 10, 2010
FCV Timeline •On November 14, 2008 during the launch of STS-126, flight controllers monitoring data during the ascent noted an unexpected hydrogen flow increase from one of the shuttle’s main engines. •The likely causes of the malfunction were either an electrical failure or a mechanical failure, which might have resulted from a broken valve. • At least on paper the consequences could be really bad •Over-presurization of the LH2 tank •Starvation of the turbopump leading to catastrophic overspeed •The shuttle touched down at Edwards Air Force Base on November 30 after unfavorable weather conditions at Kennedy Space Center (KSC). •This delayed work until December 12, when the shuttle was ferried back to KSC aboard a specially equipped 747. •The next launch, STS-119, was scheduled for February 12, 2009. STS-119 to launch prior to mid March so that it would not interfere with the March 26 mission of the Russian Soyuz to transport the Expedition 19 crew to the ISS and avoid impacts to the long term manifest, crew safety and consumable margins. •A x-ray taken December 19 showed evidence of a problem with a poppet in the valve. Inspection determined that a fragment had broken off the poppet, the first time such a problem had occurred during flight. In 27 years, the shuttle program had never experienced a valve failure like this.
A Tough Technical Problem • Analysis of the cracked valve showed that the failure resulted from high-cycle fatigue. – This raised the question if STS-126 had presented an unusual environment, or if another valve was likely to break in flight due to fatigue-related damage. – What was the likelihood of another broken valve? – What would be the worst-case consequences of a break? – Need to determine the probable size and the maximum size of a loose particle, understand how it would move through the propulsion system, and what the system could tolerate without experiencing a potentially catastrophic rupture in its lines. • Several teams worked on the problem from multiple angles, including materials, structural dynamics, computational fluid dynamics (CFD), and fracture mechanics. The initial efforts relied on visual inspection and a number of non-destructive evaluation (NDE) techniques, – Electron microscopy could only discover small cracks after the poppet was polished, however, and that polishing invalidated the flight certification of the hardware even as it provided greater ability to inspect it. – One NDE technique that was initially dismissed was the use of an eddy current system because the size of the probe head was too large for the hardware.
February 3, 2009: Flight Readiness Review #1 • Significant work remained to be done before sound flight rationale could be established. – three different lines of impact testing to learn more about whether a particle would puncture the propulsion line. – material properties of the flight hardware and the impact of particles striking the material at a certain velocity and orientation – test stand that fired particles through a full-scale mock-up of the propulsion system within the External Tank and a similar effort focusing on the Orbiter part of the system near the flow control valve FCV exit. – Computational fluid dynamics (CFD) analysts improved their characterizations of the environment inside the propulsion line --velocity and spin and probable path – Fracture analysis to understand the release mechanism – Systems safety analysis to understand consequences
February 20, 2009: Flight Readiness Review #2 • Re-synching the team - understanding the risks and what we new – session lasted nearly fourteen long hours, and the outcome was not clear until the end. – more of a technical review than typical Flight Readiness Review – Different people had different opinions about what the data meant, and they were able to voice that in that forum with enthusiastic debate – Significant discussions about all technical attributes – Significant discussions about the risks in other areas if we didn’t fly • Determination that we didn’t know enough yet about either the likelihood or the consequence to understand the flight risk or understand the risk balance • “One of the key tenets of flight rationale that most individuals and organizations were looking for was a maximum bound on the potential particle release size. “
Picking up the challenge • At the end of the second FRR people were drained and it wasn’t clear that we could come to resolution quickly. • Gerstenmaier -“Rather than make the decision to go move somewhat arbitrarily at this point based on the data, I decided to go ahead and kick it back to the team, give them the action, see what they can go do and see how it comes out.” • The team attitude shifted ‘We cannot let this opportunity go by us if there is any responsible, technical way to fly this. What can we do? We will not accept not being able to make this window—we will find a way to do this and still be able to stand up and say ‘this is technically right.’ • The testing and analysis continued on all fronts. At the peak, roughly one thousand people were working to solve the problem.
Breaking through • “One of the key tenets of flight rationale that most individuals and organizations were looking for was a maximum bound on the potential particle release size. This action had been in work for some time, but proved to be a difficult problem to solve. We knew this answer was important and would play hand in hand with the other elements of flight rationale especially in understanding the consequence and risk of release,” -- John McManamen. • MSFC and JSC NDE experts developed a variant of the eddy current technique that could “see” small cracks without polishing • Fracture analysis team used all the previous results plus the new NDE insights to determine the maximum likely particle size • Combined results allowed understanding of the likelihood and consequences and an acceptable flight rationale
March 6, 2009: Flight Readiness Review #3 • Bryan O’Connor – “We had a great deal of understanding of not only what we knew about, but what we didn’t know about. We had a good understanding of the limits of our knowledge as much as possible, whereas before we didn’t know what those were.” – Test data and analyses had been thoroughly vetted – NDE allowed for crack screening – Testing and analysis showed the likelihood of liberation – Maximum particle size was understood – Effects on the plumbing was understood – Consequences of a plumbing rupture were understood • Problem was handled in an end to end probabilistic sense – – No one piece of “killer” data but each part allowed understanding of the risk associated with it and the uncertainty of the understanding • STS-119 was approved to proceed to launch and after delays due to unrelated problems launched safely on March 15, 2009.
Timeline of key events and developments.
Takeaways • “Learning how to create some alternate trade space for this very disciplined engineering rigorous community is an art, but it’s definitely worth doing. We fly complex systems and the rigor usually works, but sometimes we have to have a little different trade space. It takes some special people who have some multi-discipline experience to be able to start creating that trade space.” -- Chris Singer, Deputy Director of Engineering, Marshall Space Flight Center • Steve Altemus thought Koshti’s NDE efforts exemplified the engineering curiosity that NASA needs to succeed, and he viewed it as an engineering leadership responsibility to create an environment in which new and diverse ideas could receive a fair hearing. “It’s important to recognize that we’re not always the smartest one in the room, that perhaps there’s somebody over there in the corner of the room, and that we have to pull out of them what their thoughts are, because they’ve got the answer. He had the answer.”
Takeaways • Bill McArthur, Safety and Mission Assurance Manager for the Space Shuttle at the time, said, “The fact that people were willing to stand up and say ‘We just aren’t ready yet,’ is a real testament to the fact that our culture has evolved so that we weren’t overwhelmed with launch fever, and people were willing to tell Bill Gerstenmaier, ‘No, we’re no-go for launch.’” • As the participants filed out of the meeting, Joyce Seriale-Grush said to Mike Ryschkewitsch, “This was really hard and I’m disappointed that we didn’t have the data today, but it feels so much better than it used to feel, because we had to say that we weren’t ready and people listened to us. It didn’t always used to be that way.”
Takeaways • “As a leader, it’s my responsibility to create an environment that is open to ideas and diverse perspectives, to say, ‘Hey, I’m not necessarily the smartest guy, show me what you know,’ and then be able to act on it and get an audience so that the broader community understands there’s a good solution out there.” - Steve Altemus, Director of Engineering, Johnson Space Center • You have to worry that your team might play “clump ball” – When the team is focused on a really tough problem, what else is out there that we are not watching? • The context of other risks is important but can’t be the overwhelming driver – It was important to know what risks were being pushed to other places but they can’t be allowed to drive the conclusion to rationalization as opposed to rationale
Takeaways • “The one thing I would take away from this effort is that NASA can solve any problem if the right experts are involved and that Centers with different perspectives and cultures can work extremely well together. To have developed flight rationale for this problem with only a one month delay to the STS-119 mission, while preserving the rest of the manifest was truly an amazing feat by this incredibly talented team. In retrospect, as the Orbiter Project Manager, I should have enlisted the assistance of the materials experts from the MSFC much earlier in the process, since ultimately they had the proper expertise to deal with high cycle fatigue. Additionally, we should have established a better mechanism for establishing communication of fast developing information from the beginning of this failure investigation so that the entire team could remain equally informed.” - Steve Stich, Orbiter Project Manager
Takeaways • Leaders must actively create “space” for safe communication – May be small groups –virtual or physical – May be expectation in large groups that discourse and disagreement are not only OK but needed • When people are made to feel they own the problem, you get not only constructive dialogue but increased commitment to finding a way forward • “Gerst [FRR chairman Bill Gerstenmaier] was absolutely open. He never tried to shut them [the participants] down. Even though he could probably tell this wasgoing to take a long time, he never let the clock of the day appear to be something that he was worried about. I thought, that’s bad in one way, it says we’re probably going to have a long day, but it’s good in another, and that says that you don’t have the chairman of this panel putting undo pressure on people to sit down or be quiet,” - Bryan O’Connor .
Takeaways • Two months after the completion of the mission, Bill Gerstenmaier, Associate Administrator for Space Operations spoke to students at Massachusetts Institute of Technology (MIT) about the flow control valve issue. In an email to Shuttle team members, he shared a video of the lecture and wrote, "I am in continue to learn mode. There is always room to improve.” “I had better be empowering and I had better be motivating folks to stay hungry…to keep digging, keep looking, and figure out what the heck is really going on if I want a good decision.”

Recommended

Rickover’s Legacy: Secrets of the Nuclear Navy’s Success
Rickover’s Legacy: Secrets of the Nuclear Navy’s SuccessRickover’s Legacy: Secrets of the Nuclear Navy’s Success
Rickover’s Legacy: Secrets of the Nuclear Navy’s Success
Leonam Guimarães
 
Charles.armstrong
Charles.armstrongCharles.armstrong
Charles.armstrong
NASAPMC
 
Mulugeta
MulugetaMulugeta
Mulugeta
NASAPMC
 
Rittweger2012 02-22 rittweger orlando ipmc
Rittweger2012 02-22 rittweger orlando ipmcRittweger2012 02-22 rittweger orlando ipmc
Rittweger2012 02-22 rittweger orlando ipmc
NASAPMC
 
Hunter.h.shinn.s
Hunter.h.shinn.sHunter.h.shinn.s
Hunter.h.shinn.s
NASAPMC
 
Krishen
KrishenKrishen
Krishen
NASAPMC
 
Haudan.jim
Haudan.jimHaudan.jim
Haudan.jim
NASAPMC
 
Pisano
PisanoPisano
Pisano
NASAPMC
 

Recommended

Rickover’s Legacy: Secrets of the Nuclear Navy’s Success
Rickover’s Legacy: Secrets of the Nuclear Navy’s SuccessRickover’s Legacy: Secrets of the Nuclear Navy’s Success
Rickover’s Legacy: Secrets of the Nuclear Navy’s Success
Leonam Guimarães
 
Charles.armstrong
Charles.armstrongCharles.armstrong
Charles.armstrong
NASAPMC
 
Mulugeta
MulugetaMulugeta
Mulugeta
NASAPMC
 
Rittweger2012 02-22 rittweger orlando ipmc
Rittweger2012 02-22 rittweger orlando ipmcRittweger2012 02-22 rittweger orlando ipmc
Rittweger2012 02-22 rittweger orlando ipmc
NASAPMC
 
Hunter.h.shinn.s
Hunter.h.shinn.sHunter.h.shinn.s
Hunter.h.shinn.s
NASAPMC
 
Krishen
KrishenKrishen
Krishen
NASAPMC
 
Haudan.jim
Haudan.jimHaudan.jim
Haudan.jim
NASAPMC
 
Pisano
PisanoPisano
Pisano
NASAPMC
 
Druker
DrukerDruker
Druker
NASAPMC
 
Olson,john$isecg overview olson pmc v go
Olson,john$isecg overview olson pmc v goOlson,john$isecg overview olson pmc v go
Olson,john$isecg overview olson pmc v go
NASAPMC
 
B sherwood dmc_cleese
B sherwood dmc_cleeseB sherwood dmc_cleese
B sherwood dmc_cleese
NASAPMC
 
Calfee
CalfeeCalfee
Calfee
NASAPMC
 
Sheives.tom
Sheives.tomSheives.tom
Sheives.tom
NASAPMC
 
Hartford.wayne wh1
Hartford.wayne wh1Hartford.wayne wh1
Hartford.wayne wh1
NASAPMC
 
Schiable
SchiableSchiable
Schiable
NASAPMC
 
Ortiz.james
Ortiz.jamesOrtiz.james
Ortiz.james
NASAPMC
 
James.lewis
James.lewisJames.lewis
James.lewis
NASAPMC
 
Gaskins.tom
Gaskins.tomGaskins.tom
Gaskins.tom
NASAPMC
 
Carol daniele
Carol danieleCarol daniele
Carol daniele
NASAPMC
 
Lengyel.david
Lengyel.davidLengyel.david
Lengyel.david
NASAPMC
 
Baize,lionel pm challenge cnes
Baize,lionel pm challenge cnesBaize,lionel pm challenge cnes
Baize,lionel pm challenge cnes
NASAPMC
 
Ivatury.raju
Ivatury.rajuIvatury.raju
Ivatury.raju
NASAPMC
 
Michel izygon
Michel izygonMichel izygon
Michel izygon
NASAPMC
 
Ibm.robinson
Ibm.robinsonIbm.robinson
Ibm.robinson
NASAPMC
 
Simpkins patrick
Simpkins patrickSimpkins patrick
Simpkins patrick
NASAPMC
 
Gaydar.michael
Gaydar.michaelGaydar.michael
Gaydar.michael
NASAPMC
 
Cathy claunch
Cathy claunchCathy claunch
Cathy claunch
NASAPMC
 
Nieberding.joe
Nieberding.joeNieberding.joe
Nieberding.joe
NASAPMC
 
The Challenger Disaster A Case-study in Engineering Ethics.docx
The Challenger Disaster A Case-study in Engineering Ethics.docxThe Challenger Disaster A Case-study in Engineering Ethics.docx
The Challenger Disaster A Case-study in Engineering Ethics.docx
mamanda2
 
Investigation on Columbia space shuttle disaster
Investigation on Columbia space shuttle disasterInvestigation on Columbia space shuttle disaster
Investigation on Columbia space shuttle disaster
Mahmudul Hasan Rifat
 

More Related Content

Viewers also liked

Olson,john$isecg overview olson pmc v go
Olson,john$isecg overview olson pmc v goOlson,john$isecg overview olson pmc v go
Olson,john$isecg overview olson pmc v go
NASAPMC
 
B sherwood dmc_cleese
B sherwood dmc_cleeseB sherwood dmc_cleese
B sherwood dmc_cleese
NASAPMC
 
Sheives.tom
Sheives.tomSheives.tom
Sheives.tom
NASAPMC
 
Hartford.wayne wh1
Hartford.wayne wh1Hartford.wayne wh1
Hartford.wayne wh1
NASAPMC
 
Schiable
SchiableSchiable
Schiable
NASAPMC
 
Ortiz.james
Ortiz.jamesOrtiz.james
Ortiz.james
NASAPMC
 
James.lewis
James.lewisJames.lewis
James.lewis
NASAPMC
 
Gaskins.tom
Gaskins.tomGaskins.tom
Gaskins.tom
NASAPMC
 
Carol daniele
Carol danieleCarol daniele
Carol daniele
NASAPMC
 
Lengyel.david
Lengyel.davidLengyel.david
Lengyel.david
NASAPMC
 
Baize,lionel pm challenge cnes
Baize,lionel pm challenge cnesBaize,lionel pm challenge cnes
Baize,lionel pm challenge cnes
NASAPMC
 
Ivatury.raju
Ivatury.rajuIvatury.raju
Ivatury.raju
NASAPMC
 
Michel izygon
Michel izygonMichel izygon
Michel izygon
NASAPMC
 
Ibm.robinson
Ibm.robinsonIbm.robinson
Ibm.robinson
NASAPMC
 
Simpkins patrick
Simpkins patrickSimpkins patrick
Simpkins patrick
NASAPMC
 
Gaydar.michael
Gaydar.michaelGaydar.michael
Gaydar.michael
NASAPMC
 
Cathy claunch
Cathy claunchCathy claunch
Cathy claunch
NASAPMC
 
Nieberding.joe
Nieberding.joeNieberding.joe
Nieberding.joe
NASAPMC
 

Viewers also liked (20)

Druker
DrukerDruker
Druker
 
Olson,john$isecg overview olson pmc v go
Olson,john$isecg overview olson pmc v goOlson,john$isecg overview olson pmc v go
Olson,john$isecg overview olson pmc v go
 
B sherwood dmc_cleese
B sherwood dmc_cleeseB sherwood dmc_cleese
B sherwood dmc_cleese
 
Calfee
CalfeeCalfee
Calfee
 
Sheives.tom
Sheives.tomSheives.tom
Sheives.tom
 
Hartford.wayne wh1
Hartford.wayne wh1Hartford.wayne wh1
Hartford.wayne wh1
 
Schiable
SchiableSchiable
Schiable
 
Ortiz.james
Ortiz.jamesOrtiz.james
Ortiz.james
 
James.lewis
James.lewisJames.lewis
James.lewis
 
Gaskins.tom
Gaskins.tomGaskins.tom
Gaskins.tom
 
Carol daniele
Carol danieleCarol daniele
Carol daniele
 
Lengyel.david
Lengyel.davidLengyel.david
Lengyel.david
 
Baize,lionel pm challenge cnes
Baize,lionel pm challenge cnesBaize,lionel pm challenge cnes
Baize,lionel pm challenge cnes
 
Ivatury.raju
Ivatury.rajuIvatury.raju
Ivatury.raju
 
Michel izygon
Michel izygonMichel izygon
Michel izygon
 
Ibm.robinson
Ibm.robinsonIbm.robinson
Ibm.robinson
 
Simpkins patrick
Simpkins patrickSimpkins patrick
Simpkins patrick
 
Gaydar.michael
Gaydar.michaelGaydar.michael
Gaydar.michael
 
Cathy claunch
Cathy claunchCathy claunch
Cathy claunch
 
Nieberding.joe
Nieberding.joeNieberding.joe
Nieberding.joe
 

Similar to Ryschk wow

The Challenger Disaster A Case-study in Engineering Ethics.docx
The Challenger Disaster A Case-study in Engineering Ethics.docxThe Challenger Disaster A Case-study in Engineering Ethics.docx
The Challenger Disaster A Case-study in Engineering Ethics.docx
mamanda2
 
Rodney rocha
Rodney rochaRodney rocha
Rodney rocha
NASAPMC
 
Rodney rocha
Rodney rochaRodney rocha
Rodney rocha
NASAPMC
 
Nasa tragedies and lessons
Nasa tragedies and lessonsNasa tragedies and lessons
Nasa tragedies and lessons
pkmarvel
 
Challenger final release
Challenger final releaseChallenger final release
Challenger final release
mickmonte
 
CS5032 Lecture 13: organisations and failure
CS5032 Lecture 13: organisations and failureCS5032 Lecture 13: organisations and failure
CS5032 Lecture 13: organisations and failure
John Rooksby
 
Groupthink_lecutre_final
Groupthink_lecutre_finalGroupthink_lecutre_final
Groupthink_lecutre_final
Steve Shore
 
52352main contour
52352main contour52352main contour
52352main contour
Pedro León
 
LEO final presentation 2012
LEO final presentation 2012LEO final presentation 2012
LEO final presentation 2012
Dmitry Tseitlin
 
GroupthinkSteve Shore, MBA, PMP, CSSGBPress to advance .docx
GroupthinkSteve Shore, MBA, PMP, CSSGBPress to advance .docxGroupthinkSteve Shore, MBA, PMP, CSSGBPress to advance .docx
GroupthinkSteve Shore, MBA, PMP, CSSGBPress to advance .docx
shericehewat
 
Testing Hyper-Complex Systems: What Can We Know? What Can We Claim?
Testing Hyper-Complex Systems: What Can We Know? What Can We Claim?Testing Hyper-Complex Systems: What Can We Know? What Can We Claim?
Testing Hyper-Complex Systems: What Can We Know? What Can We Claim?
TechWell
 
Engl3355 case analysis group 6
Engl3355 case analysis group 6Engl3355 case analysis group 6
Engl3355 case analysis group 6
Aneth Sanchez
 
Ess.robert
Ess.robertEss.robert
Ess.robert
NASAPMC
 

Similar to Ryschk wow (20)

The Challenger Disaster A Case-study in Engineering Ethics.docx
The Challenger Disaster A Case-study in Engineering Ethics.docxThe Challenger Disaster A Case-study in Engineering Ethics.docx
The Challenger Disaster A Case-study in Engineering Ethics.docx
 
Investigation on Columbia space shuttle disaster
Investigation on Columbia space shuttle disasterInvestigation on Columbia space shuttle disaster
Investigation on Columbia space shuttle disaster
 
Rodney rocha
Rodney rochaRodney rocha
Rodney rocha
 
Rodney rocha
Rodney rochaRodney rocha
Rodney rocha
 
Nasa tragedies and lessons
Nasa tragedies and lessonsNasa tragedies and lessons
Nasa tragedies and lessons
 
Reality and Nature . . . The Challenger Disaster Revisited
Reality and Nature . . . The Challenger Disaster RevisitedReality and Nature . . . The Challenger Disaster Revisited
Reality and Nature . . . The Challenger Disaster Revisited
 
Columbia ccm assignment
Columbia ccm assignmentColumbia ccm assignment
Columbia ccm assignment
 
Challenger final release
Challenger final releaseChallenger final release
Challenger final release
 
Pellucidar
PellucidarPellucidar
Pellucidar
 
CCPS- Lessons From Serious Incidents.ppt
CCPS- Lessons From Serious Incidents.pptCCPS- Lessons From Serious Incidents.ppt
CCPS- Lessons From Serious Incidents.ppt
 
CS5032 Lecture 13: organisations and failure
CS5032 Lecture 13: organisations and failureCS5032 Lecture 13: organisations and failure
CS5032 Lecture 13: organisations and failure
 
Groupthink_lecutre_final
Groupthink_lecutre_finalGroupthink_lecutre_final
Groupthink_lecutre_final
 
52352main contour
52352main contour52352main contour
52352main contour
 
Space Shuttle Columbia Disaster Review
Space Shuttle Columbia Disaster ReviewSpace Shuttle Columbia Disaster Review
Space Shuttle Columbia Disaster Review
 
Leo final presentation
Leo final presentationLeo final presentation
Leo final presentation
 
LEO final presentation 2012
LEO final presentation 2012LEO final presentation 2012
LEO final presentation 2012
 
GroupthinkSteve Shore, MBA, PMP, CSSGBPress to advance .docx
GroupthinkSteve Shore, MBA, PMP, CSSGBPress to advance .docxGroupthinkSteve Shore, MBA, PMP, CSSGBPress to advance .docx
GroupthinkSteve Shore, MBA, PMP, CSSGBPress to advance .docx
 
Testing Hyper-Complex Systems: What Can We Know? What Can We Claim?
Testing Hyper-Complex Systems: What Can We Know? What Can We Claim?Testing Hyper-Complex Systems: What Can We Know? What Can We Claim?
Testing Hyper-Complex Systems: What Can We Know? What Can We Claim?
 
Engl3355 case analysis group 6
Engl3355 case analysis group 6Engl3355 case analysis group 6
Engl3355 case analysis group 6
 
Ess.robert
Ess.robertEss.robert
Ess.robert
 

More from NASAPMC

Bejmuk bo
Bejmuk boBejmuk bo
Bejmuk bo
NASAPMC
 
Baniszewski john
Baniszewski johnBaniszewski john
Baniszewski john
NASAPMC
 
Yew manson
Yew mansonYew manson
Yew manson
NASAPMC
 
Wood frank
Wood frankWood frank
Wood frank
NASAPMC
 
Wood frank
Wood frankWood frank
Wood frank
NASAPMC
 
Wessen randi (cd)
Wessen randi (cd)Wessen randi (cd)
Wessen randi (cd)
NASAPMC
 
Vellinga joe
Vellinga joeVellinga joe
Vellinga joe
NASAPMC
 
Trahan stuart
Trahan stuartTrahan stuart
Trahan stuart
NASAPMC
 
Stock gahm
Stock gahmStock gahm
Stock gahm
NASAPMC
 
Snow lee
Snow leeSnow lee
Snow lee
NASAPMC
 
Smalley sandra
Smalley sandraSmalley sandra
Smalley sandra
NASAPMC
 
Seftas krage
Seftas krageSeftas krage
Seftas krage
NASAPMC
 
Sampietro marco
Sampietro marcoSampietro marco
Sampietro marco
NASAPMC
 
Rudolphi mike
Rudolphi mikeRudolphi mike
Rudolphi mike
NASAPMC
 
Roberts karlene
Roberts karleneRoberts karlene
Roberts karlene
NASAPMC
 
Rackley mike
Rackley mikeRackley mike
Rackley mike
NASAPMC
 
Paradis william
Paradis williamParadis william
Paradis william
NASAPMC
 
Osterkamp jeff
Osterkamp jeffOsterkamp jeff
Osterkamp jeff
NASAPMC
 
O'keefe william
O'keefe williamO'keefe william
O'keefe william
NASAPMC
 
Muller ralf
Muller ralfMuller ralf
Muller ralf
NASAPMC
 

More from NASAPMC (20)

Bejmuk bo
Bejmuk boBejmuk bo
Bejmuk bo
 
Baniszewski john
Baniszewski johnBaniszewski john
Baniszewski john
 
Yew manson
Yew mansonYew manson
Yew manson
 
Wood frank
Wood frankWood frank
Wood frank
 
Wood frank
Wood frankWood frank
Wood frank
 
Wessen randi (cd)
Wessen randi (cd)Wessen randi (cd)
Wessen randi (cd)
 
Vellinga joe
Vellinga joeVellinga joe
Vellinga joe
 
Trahan stuart
Trahan stuartTrahan stuart
Trahan stuart
 
Stock gahm
Stock gahmStock gahm
Stock gahm
 
Snow lee
Snow leeSnow lee
Snow lee
 
Smalley sandra
Smalley sandraSmalley sandra
Smalley sandra
 
Seftas krage
Seftas krageSeftas krage
Seftas krage
 
Sampietro marco
Sampietro marcoSampietro marco
Sampietro marco
 
Rudolphi mike
Rudolphi mikeRudolphi mike
Rudolphi mike
 
Roberts karlene
Roberts karleneRoberts karlene
Roberts karlene
 
Rackley mike
Rackley mikeRackley mike
Rackley mike
 
Paradis william
Paradis williamParadis william
Paradis william
 
Osterkamp jeff
Osterkamp jeffOsterkamp jeff
Osterkamp jeff
 
O'keefe william
O'keefe williamO'keefe william
O'keefe william
 
Muller ralf
Muller ralfMuller ralf
Muller ralf
 

Recently uploaded

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Orbitshub
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Victor Rentea
 

Recently uploaded (20)

Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...
 
Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..Understanding the FAA Part 107 License ..
Understanding the FAA Part 107 License ..
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
AI+A11Y 11MAY2024 HYDERBAD GAAD 2024 - HelloA11Y (11 May 2024)
AI+A11Y 11MAY2024 HYDERBAD GAAD 2024 - HelloA11Y (11 May 2024)AI+A11Y 11MAY2024 HYDERBAD GAAD 2024 - HelloA11Y (11 May 2024)
AI+A11Y 11MAY2024 HYDERBAD GAAD 2024 - HelloA11Y (11 May 2024)
 
Vector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptxVector Search -An Introduction in Oracle Database 23ai.pptx
Vector Search -An Introduction in Oracle Database 23ai.pptx
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
Spring Boot vs Quarkus the ultimate battle - DevoxxUK
Spring Boot vs Quarkus the ultimate battle - DevoxxUKSpring Boot vs Quarkus the ultimate battle - DevoxxUK
Spring Boot vs Quarkus the ultimate battle - DevoxxUK
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024
 

Ryschk wow

  • 1. Poppet Learnings Chris singer Deputy Director Engineering MSFC Mike Ryschkewitsch, NASA Chief Engineer PM Challenge February 10, 2010
  • 2. FCV Timeline •On November 14, 2008 during the launch of STS-126, flight controllers monitoring data during the ascent noted an unexpected hydrogen flow increase from one of the shuttle’s main engines. •The likely causes of the malfunction were either an electrical failure or a mechanical failure, which might have resulted from a broken valve. • At least on paper the consequences could be really bad •Over-presurization of the LH2 tank •Starvation of the turbopump leading to catastrophic overspeed •The shuttle touched down at Edwards Air Force Base on November 30 after unfavorable weather conditions at Kennedy Space Center (KSC). •This delayed work until December 12, when the shuttle was ferried back to KSC aboard a specially equipped 747. •The next launch, STS-119, was scheduled for February 12, 2009. STS-119 to launch prior to mid March so that it would not interfere with the March 26 mission of the Russian Soyuz to transport the Expedition 19 crew to the ISS and avoid impacts to the long term manifest, crew safety and consumable margins. •A x-ray taken December 19 showed evidence of a problem with a poppet in the valve. Inspection determined that a fragment had broken off the poppet, the first time such a problem had occurred during flight. In 27 years, the shuttle program had never experienced a valve failure like this.
  • 3.
  • 4. A Tough Technical Problem • Analysis of the cracked valve showed that the failure resulted from high-cycle fatigue. – This raised the question if STS-126 had presented an unusual environment, or if another valve was likely to break in flight due to fatigue-related damage. – What was the likelihood of another broken valve? – What would be the worst-case consequences of a break? – Need to determine the probable size and the maximum size of a loose particle, understand how it would move through the propulsion system, and what the system could tolerate without experiencing a potentially catastrophic rupture in its lines. • Several teams worked on the problem from multiple angles, including materials, structural dynamics, computational fluid dynamics (CFD), and fracture mechanics. The initial efforts relied on visual inspection and a number of non-destructive evaluation (NDE) techniques, – Electron microscopy could only discover small cracks after the poppet was polished, however, and that polishing invalidated the flight certification of the hardware even as it provided greater ability to inspect it. – One NDE technique that was initially dismissed was the use of an eddy current system because the size of the probe head was too large for the hardware.
  • 5. February 3, 2009: Flight Readiness Review #1 • Significant work remained to be done before sound flight rationale could be established. – three different lines of impact testing to learn more about whether a particle would puncture the propulsion line. – material properties of the flight hardware and the impact of particles striking the material at a certain velocity and orientation – test stand that fired particles through a full-scale mock-up of the propulsion system within the External Tank and a similar effort focusing on the Orbiter part of the system near the flow control valve FCV exit. – Computational fluid dynamics (CFD) analysts improved their characterizations of the environment inside the propulsion line --velocity and spin and probable path – Fracture analysis to understand the release mechanism – Systems safety analysis to understand consequences
  • 6. February 20, 2009: Flight Readiness Review #2 • Re-synching the team - understanding the risks and what we new – session lasted nearly fourteen long hours, and the outcome was not clear until the end. – more of a technical review than typical Flight Readiness Review – Different people had different opinions about what the data meant, and they were able to voice that in that forum with enthusiastic debate – Significant discussions about all technical attributes – Significant discussions about the risks in other areas if we didn’t fly • Determination that we didn’t know enough yet about either the likelihood or the consequence to understand the flight risk or understand the risk balance • “One of the key tenets of flight rationale that most individuals and organizations were looking for was a maximum bound on the potential particle release size. “
  • 7. Picking up the challenge • At the end of the second FRR people were drained and it wasn’t clear that we could come to resolution quickly. • Gerstenmaier -“Rather than make the decision to go move somewhat arbitrarily at this point based on the data, I decided to go ahead and kick it back to the team, give them the action, see what they can go do and see how it comes out.” • The team attitude shifted ‘We cannot let this opportunity go by us if there is any responsible, technical way to fly this. What can we do? We will not accept not being able to make this window—we will find a way to do this and still be able to stand up and say ‘this is technically right.’ • The testing and analysis continued on all fronts. At the peak, roughly one thousand people were working to solve the problem.
  • 8. Breaking through • “One of the key tenets of flight rationale that most individuals and organizations were looking for was a maximum bound on the potential particle release size. This action had been in work for some time, but proved to be a difficult problem to solve. We knew this answer was important and would play hand in hand with the other elements of flight rationale especially in understanding the consequence and risk of release,” -- John McManamen. • MSFC and JSC NDE experts developed a variant of the eddy current technique that could “see” small cracks without polishing • Fracture analysis team used all the previous results plus the new NDE insights to determine the maximum likely particle size • Combined results allowed understanding of the likelihood and consequences and an acceptable flight rationale
  • 9. March 6, 2009: Flight Readiness Review #3 • Bryan O’Connor – “We had a great deal of understanding of not only what we knew about, but what we didn’t know about. We had a good understanding of the limits of our knowledge as much as possible, whereas before we didn’t know what those were.” – Test data and analyses had been thoroughly vetted – NDE allowed for crack screening – Testing and analysis showed the likelihood of liberation – Maximum particle size was understood – Effects on the plumbing was understood – Consequences of a plumbing rupture were understood • Problem was handled in an end to end probabilistic sense – – No one piece of “killer” data but each part allowed understanding of the risk associated with it and the uncertainty of the understanding • STS-119 was approved to proceed to launch and after delays due to unrelated problems launched safely on March 15, 2009.
  • 10. Timeline of key events and developments.
  • 11. Takeaways • “Learning how to create some alternate trade space for this very disciplined engineering rigorous community is an art, but it’s definitely worth doing. We fly complex systems and the rigor usually works, but sometimes we have to have a little different trade space. It takes some special people who have some multi-discipline experience to be able to start creating that trade space.” -- Chris Singer, Deputy Director of Engineering, Marshall Space Flight Center • Steve Altemus thought Koshti’s NDE efforts exemplified the engineering curiosity that NASA needs to succeed, and he viewed it as an engineering leadership responsibility to create an environment in which new and diverse ideas could receive a fair hearing. “It’s important to recognize that we’re not always the smartest one in the room, that perhaps there’s somebody over there in the corner of the room, and that we have to pull out of them what their thoughts are, because they’ve got the answer. He had the answer.”
  • 12. Takeaways • Bill McArthur, Safety and Mission Assurance Manager for the Space Shuttle at the time, said, “The fact that people were willing to stand up and say ‘We just aren’t ready yet,’ is a real testament to the fact that our culture has evolved so that we weren’t overwhelmed with launch fever, and people were willing to tell Bill Gerstenmaier, ‘No, we’re no-go for launch.’” • As the participants filed out of the meeting, Joyce Seriale-Grush said to Mike Ryschkewitsch, “This was really hard and I’m disappointed that we didn’t have the data today, but it feels so much better than it used to feel, because we had to say that we weren’t ready and people listened to us. It didn’t always used to be that way.”
  • 13. Takeaways • “As a leader, it’s my responsibility to create an environment that is open to ideas and diverse perspectives, to say, ‘Hey, I’m not necessarily the smartest guy, show me what you know,’ and then be able to act on it and get an audience so that the broader community understands there’s a good solution out there.” - Steve Altemus, Director of Engineering, Johnson Space Center • You have to worry that your team might play “clump ball” – When the team is focused on a really tough problem, what else is out there that we are not watching? • The context of other risks is important but can’t be the overwhelming driver – It was important to know what risks were being pushed to other places but they can’t be allowed to drive the conclusion to rationalization as opposed to rationale
  • 14. Takeaways • “The one thing I would take away from this effort is that NASA can solve any problem if the right experts are involved and that Centers with different perspectives and cultures can work extremely well together. To have developed flight rationale for this problem with only a one month delay to the STS-119 mission, while preserving the rest of the manifest was truly an amazing feat by this incredibly talented team. In retrospect, as the Orbiter Project Manager, I should have enlisted the assistance of the materials experts from the MSFC much earlier in the process, since ultimately they had the proper expertise to deal with high cycle fatigue. Additionally, we should have established a better mechanism for establishing communication of fast developing information from the beginning of this failure investigation so that the entire team could remain equally informed.” - Steve Stich, Orbiter Project Manager
  • 15. Takeaways • Leaders must actively create “space” for safe communication – May be small groups –virtual or physical – May be expectation in large groups that discourse and disagreement are not only OK but needed • When people are made to feel they own the problem, you get not only constructive dialogue but increased commitment to finding a way forward • “Gerst [FRR chairman Bill Gerstenmaier] was absolutely open. He never tried to shut them [the participants] down. Even though he could probably tell this wasgoing to take a long time, he never let the clock of the day appear to be something that he was worried about. I thought, that’s bad in one way, it says we’re probably going to have a long day, but it’s good in another, and that says that you don’t have the chairman of this panel putting undo pressure on people to sit down or be quiet,” - Bryan O’Connor .
  • 16. Takeaways • Two months after the completion of the mission, Bill Gerstenmaier, Associate Administrator for Space Operations spoke to students at Massachusetts Institute of Technology (MIT) about the flow control valve issue. In an email to Shuttle team members, he shared a video of the lecture and wrote, "I am in continue to learn mode. There is always room to improve.” “I had better be empowering and I had better be motivating folks to stay hungry…to keep digging, keep looking, and figure out what the heck is really going on if I want a good decision.”