SlideShare a Scribd company logo

John Stoop_Aviation safety and risk A historical perspective.pdf

Μ
Μανούσος Τραχαλάκης

This document discusses the history and evolution of aviation safety. It covers major accidents like the Hindenburg and Tenerife disasters. It examines how safety investigations and risk assessment have expanded in scope over time to consider more technical failures, human factors, and systemic deficiencies. The roles of international safety institutions are also outlined. The document argues that safety is now an integrated part of the entire aviation system.

Engineering
1 of 77
Download to read offline
Aviation safety and risk A historical perspective John Stoop
Aviation, a special case?  High tech and cutting edge performance: hostile operating environment, high level playing field  Public confidence: A Citizens’Right and Society’s Duty  Business continuity: Zero Defect and First Time Right:  Beyond the 10*-7 likelyhood: low probability, major consequences  Anticipating a systems leap in performance: +50% performance, -50% impact while maintain safety performance A new role for safety investigations?  If we start killing our passengers, we are on the wrong track: restoring public faith after accidents  Identifying system and knowledge deficiencies
Hindenburg
De Havilland Comet
Tenerife
TWA 800
Bijlmermeer crash
Concorde
Finding the haystack before the needle
Lessons learned but also: Lessons forgotten?
History of safety assessment Expanding the scope  Technical failures (1850): transport, rail, aviation, shipping  Probability of failure (1950): process industry, statistical likelyhood  Human factors (1970): space, medical, risk management  Systemic learning (1990): life cycle approach, business continuity  Governance and control (2000): resilience, security Debates and focus  A shift from technical via managerial to policy and governance  Integral or integrated: intermodal or international?  One Size Fits All: transport, process, nuclear?
Luchthaven gebouw Schiphol 1928 London Melbourne race DC-2 1934 1928 In 1930: Heinrich’s Iceberg 1 1932 Domino Stones Modelling aviation safety
Aviation in 1960: jet engines Carvair cargo plane First flight DC 8 30 may 1958 Lockheed Electra The turboprop age Risk = frequency * con Risk = Human error
Aviation in 1970: hyjackings Edwards 1972: SHELL model Dawson Fields Brussels EnglishChannel
Aviation in 1990 MD 11 Glass cockpits Swiss Cheese model
Safety is integrated in the aviation system Safety institutions  Sectorial arrangements: ICAO Annex 13  International legislation: EU Directives 94/56/EC and 2003/42/EC  Certification and regulations: FAR/JAR  National legislation and regulations  ISASI  FSF  IATA  IFALPA
ICAO Annex 13 The purposes of Annex 13 are threefold:  standardise accident/incident reporting procedures  establish procedures that ensure participation of experts in the investigation  ensure rapid dissemination of important safety and airworthiness information
Stock prise Flight control problems Financial and image control prob New indicators Impact at different recurs
Perception Interpretation Framing
Bigger and larger, towards conceptual limits
and beyond
The ultimate flying experience
Engineering design Product safety Operations Service provision Event investigation Systemic and knowledge deficiencies Research Knowledge deficiencies Systemic deficiencies Engineering design methodologie Socio-technical Socio-organizational Technology development Standards KB Engineering Modeling Testing Simulation Performance assessment Value Engineering Serious gaming Policy analysis Decisionmaking Fact finding data acquisition Forensics Data mining Processmining Product certification Requirement assessment RAMS CostBenefitAnalysis Environmental ImpactAssessment Closing the life cycle
From reliable towards available Transport specific demands  7/24 available  Open access  Time and space independent  Public transport function  Immediate demand supply synchronization Available= reliable + safety Conflicting interests: safety, economy and environment
Expanding constraints
Do the usual suspects suffice: Who is to blame?
Pilots: heros or slaves? Air India: 15% wage reduction RyanAir: Colgan Air: Fatigue and work cycles Pilots RyanAir: Fuel policy is life threatening Deep rooted culture of fear
Air China pilots warn fight safety underthreat by unequalpay and lack of rest Flight Safety Information April 21, 2014
Hero or Villain?
But also opiniating issues ‘public perceptions’ ‘framing the debate’
Mockups, a common reconstruc TWA 800 Lockerbie Swissair 111
Dutch Safety Board Independent inves
A terrorist attack?
Aviation since the millenium: a comprehensive and specific framework Core notions and concepts:  International institutional frameworks: ICAO, EASA, FSF, ISASI, ITSA  Accident and incident investigation methodology: empirical evidence  Precautionary measures: Good Airmanship, Standard Operating Procedures  Safety Management Systems: operators, airports, governance oversight  Victim and family assistance: legally based, organised by the flight numbers  R & D Networks and programs: Horizon 2050 Engineering Design Methodology:  Knowledge Based Engineering  Value Engineering  Multidisciplinary Design Optimization  Technologically innovative and disruptive concepts
Conclusi es
Nothing left but - Residual risks: LOC-I, CFIT, RE? - Maintaining present levels: SMS, safety oversight? - Fighting complacency: training, proficiency, recovery? Or new notions? - Higher order systems drivers: business models, Minsky - Intuition, emotion and empathy: Slovic and Kahneman - Innovation: 5th generation aircraft, composites, new configurations, new business models And a new context?
Modern safety and risk assessment Precautionar principle  First control then comprehend  From oversight to insight The New View  Human performance makes systems safe  Investigative also from a user’s perspective Requires a specific methodology  no metaphors but modelling  Human performance in their socio- technical environment
uncertainty Problem: Performance Solution: Quantification/calculat ion Conventional Engineering Best practices Problem: Information Solution: Analysis/techological innovation ScientificResearch and Development Problem: Disagreement Solution: Coercion/discussion Managing/mediation forensicsciences Problem:Knowledge and consent Solution: Precaution/Crisis handling Architecture System Integration Certain Uncertain Knowledge Values Agreement Contested
Rol van de ingenieur- ontwerper: prospectie en preventie  Garanderen zorg en borg in vroege fasen systeemontwerp en – ontwikkeling  Reduceren onzekerheden  Integreren maatschappelijke waarden in discussie en afwegingen  Variation selection en voorkeursoplossingen (Vincenti: optimaliseren prestaties, reduceren onzekerheden, identificeren eigenschappen)  Rol van innovatie: principes, aannames, vereenvoudigingen, design trade-offs  Ethiek en professioneel oordeel: prestatie indicatoren, maatschappelijke waarden
41
Catastrophic accidents
Wheel rim failure mechanism
A third system dimension Accident investigation Causes Static Systems approach: Predefined properties Dynamic System behavior: Emergent properties Accident committees Organisation al theories Chaos-/complexity theory Suppressi on of deviations Feedback and manageme nt Feed-forward anticipation towards control and change Focus shift towards system Focus shift towards process Third dimension: Dynamic system behaviour Second dimension: Systemice deficiencies First dimension: Type event
Process flow chart system history design adaptation recovery t=0 point of impact resilience A1 A2 B1 B2 C1 C2 B3 Actor 1 Actor 2 Actor 3
Look for the investigator among the researchers
Critical design options: the B777 example - no metal but composites - flexible forms - from flying tubes to flying ballrooms - integrated functionalities within a monocoque - higher cabine pressure: improved comfort, higher altitudes - climate control: temperature,acoustics, freeze drying - bleed air engines: heating and propulsion apu’s - fire resistant materials - implementation of maintenance and automated control - political financing - custom build and user participation rather than line production - daylight economy: traveltime and distance per day - alternativesin transport mode: TGV, congested automobile transport - strategic choices in locating airports: catchment areas - from hub-spoketowardsfree flight - role of urban an spatial planning in developing networks and airport sites
Critical design options: a technological analysis of aircraft concepts  Single function allocation: - stability and control - propulsion - fuselage - aerofoils - landing gear  Generations of derivates: - slender wings, reduced drag - aero elasticity - maintenance - fatigue  Two generations of designers - generating concepts - maturing and optimizing concepts
From airworthy towards flightworthy
Objectivity and transparancy  Focus not on blame ‘’Bad-apple Theory’’  Deal with complexity and system dynamics: ‘’No more cheese please’’ Is there a ‘’Good Apple-Theory’’ ? Forensisc approaches: = a broad range of disciplines and the = ability to pursue several lines of investigation simultaneously. The method of dimensions: - structure - culture - contents - context
How to reduce complex problems Collect facts Compose event Identify change variables S ynchronize system vectors Using algorithms To create transparency
DC: transfer of risk  Minimizing costs and accountabilities  Transfer of focus from design to operations  Hidden deficienciesare conceiled  Safety is excluded from the PoR  Degraded from business value to operational cost  Separating occupational, process and product safety
DBFM: managing risk  Safety focus is crossing life cycles  Safety explicit in PoR  Integral safety: combining all safety aspects  Focus on guaranteeing availability:fines, accountabilities  Responsibilities are with the consession holder/operator  Safety becomes a strategicasset in risk management across economic life cycle
Risk management Managing risk by:  Redundancy in critical components  Quantitative failure prediction: FMECA  Knowledgeable of failure mechanism: FTA  Simulation: scale models  Accident and event analysis Cooperation: public private partnerships • Openes and transparency • Sharing information • Oversight: role architect and prioritizing issues
1954 De Havilland Comet 1962 Harmel en 1977 Tenerife 1979 Mt Erebus 199 2 Bijl mer 2000 Enschede 200/2001 Volendam 1996 Eindho ven 11/9 2001 WTC 11/4 2004 Madrid 193 7 Aviat ion 1956- 1999 Rail 1977- 1997 Road 1999- 2005 DTSB 200 5 DSIB Events 1870 Shipping Evolutionary development of TSB’s Producti on means Design deficienci es Human behaviour Survivability Managem ent Compan y Public governance Compa ny Society Maintenan ce Ageing System deficiencies Impact Statements New systems Major Projects ICT applications Separate technical from judicial Multimoda l investigati ons Multisector al investigati ons Crisis and emergency management Citizens’ Right Society’s Duty Independ ent investigati ons Organisa tion Victims Rescue and emergenc y After care Percepti on Blame/liab ility Foc us Mot to Professio nal learning Societal learning Goa l Technical failure Deviation s System deficiencies Public confidence Knowled ge domains Systems engineeri ng Knowledg e infrastruct ure Knowled ge deficien cies Socio-tecnical systems design Mod e
But has the pendulum swung too far? Proximal factors Remote factors
Changes in the methods and practices A continuous debate: Focus is shifting from blame to responsibility, from compliance to competences Independence and international agencies Multimodal or sectoral Knowledge or perception, awareness based? Are industrial sectors comparable? Similarities: international context with common characteristics Differences: new entrants in the market, interoperability, new technologies, role victim organisations Role of investigations pivotal: coping with both public faith, technology and market changes, serving three functions simultaneously
What? How? Why? A retrospective process WHAT? HOW? WHY? Unsafe acts Local workplace factors Organisational factors Losses Hazards Defences Latent condition pathways Causes Investigation
Integrating Person & System Patients Individual mindfulness Collective mindfulness Healthcare system Resilience Local risk awareness Turbulent interface between carers and patients ‘Harm absorbers’ Activities Frontlinehealthcare professionals Management
Ever-widening search for the ‘upstream’ factors Individuals Workplace Organisation Regulators Society at large
Echoed in many hazardous domains Zeebrugge Dryden Chernobyl Young, NSW Barings Clapham Challenger King’s X Piper Alpha Columbia
New interdependencies  Planned obsolencence: maintain oversight over life cycle components, materials, technologies  Short term changes in public and political perception of societal values  Feedback from reality instead of pre- emptive manufacturing quality control and certification  Privatisation of collective, societal values: public services as corporate commodity  Sensor and information technology dependency: ICT and monopolies as commercial assets  Democratic participation: actor involvement in strategic decision making, trusts and kartels
1900 Root cause Accident prone 1930 Domino Iceberg 196 0 HAZOP FMEA Fault tree 1980 STEP THERP FMECA MORT Hufacs 1990 RCA HEAT TRIPOD CREAM MERMOS TRACE 2000 Fram Stamp Accimap ISIM 2010 JustCulture New View Forensic Engineering Resilience Hollnagel An ever expanding scala of approaches Safety analysis methods
The DCP diagram: an engineering design framework and a multi-actor perspective Design Control design development construction operationdemolition goal function form Practice micro meso macro the design-axis: innovation the system level axis: integrati on the life cycle-axis: coordination © J.A. Stoop 1996
Societal challenges for safety 1/2  Increasing growth: anticipating doubling traffic volume, Safer Skies initiative  Law of diminishing returns: flattening the accident frequency curve  Linear modeling of risk by R=p*c denies exposure and conditional probability  Actor dependent risk perception: variance across stakeholders  consequences are not only measured in terms of Technical Safety, but also in terms of Prosecution and Liability, Public Safety and Victim Care and Compensation, creating potential conflicts of interest
Societal challenges for safety 2/2  Design and development assurance requires: = human performance is a dominant design issue = validation of safety assumptions in design and modification = safety data management and analysis = capture, sharing, dissemination and evaluation of lessons learned = no compromising of safety during repair and maintenance = timely detection and oversight of critical safety errors  Certification, Operations and Maintenance focuses on a/c as principal component, but: = rare events have a high public/political profile and a critical impact on acceptance = prevention is the focus: zero defect and first time right = ATM, airports, environment are to be incorporated in the overall safety assessment
Acknowledges a specific role for safety Boards: problem providers for knowledge developers reconstruction analysisrecommendationmonitoring scientific support fact finding - Development and testing of models and theories accident - marks and wreckage parts - recorders - certification - maintenance - procedures - operations Post scene On scene and post scene Safety Board Investigation Agency
Critical design options of aircraft concepts  Technological evolution - from fabric and steel tubes towards aluminium monocoques - from radial/line engines towards jet engines - from ‘flying crates’ to cylindrical fuselages - from flying in the weather towards pressurized cabins - from dead weight control surfaces towards lift inducing fuselages - from all-metal towards composite materials - S-curve in technological development: 60 years of rise, 60 years of decline  Incremental adaptation leads to replacement, innovation and optimization  Shifting emphasis from aircraft towards airports and traffic control, multifunctional and integral design of subsystems
De Havilland Comet
Boulton Paul Defiant
17,4 17,6 17,8 18 18,2 18,4 18,6 18,8 19 19,2 19,4 19,6 0 1000000 2000000 3000000 4000000 5000000 6000000 7000000 1-11-2010 2-11-2010 3-11-2010 4-11-2010 5-11-2010 6-11-2010 7-11-2010 8-11-2010 9-11-2010 10-11-2010 11-11-2010 Airbus Volume Open High Low Close 2,6 2,65 2,7 2,75 2,8 2,85 2,9 2,95 3 0 10000000 20000000 30000000 40000000 50000000 60000000 70000000 80000000 Qantas Volume Open High Low Close 500 520 540 560 580 600 620 640 660 680 0 5000000 10000000 15000000 20000000 25000000 30000000 35000000 1-11-2010 2-11-2010 3-11-2010 4-11-2010 5-11-2010 6-11-2010 7-11-2010 8-11-2010 9-11-2010 10-11-2010 11-11-2010 Rolls Royce Volume Open High Low Close Share prices, impact on higher recur A new dimension in safety performance indicators Decrease share price (lower close than open price)
We’re not the KGB. We’re not the Gestapo,” said Robert Benzon, who led the National Transportation Safety Board’s investigation. “We’re the guys with the white hats on.” The film, scheduled for release in theatres on Friday, portrays Tom Haueter, who was the NTSB’s head of major accident investigations at the time and is now a consultant, said he fears the movie will discourage pilots and others from fully co- operating with the board in the future. “There is a very good chance,” said Haueter, “that there is a segment of the And destroying a reputation The problem with ‘Sully’ Real life investigators object to portrayal in ‘Sully’ movie September 8, 2016
A dedicated scientific basis Forensic sciences: (conform a combined definition of Carper, Barnett en Noon): Forensicsciences comprise of the science, methodology, professional practices and engineering principles involved in diagnosing accidents and failures. The determination of the causes of failures require familiarity with a broad range of disciplines, and the ability to pursue several lines of investigation simultaneously. The objective of the investigation is to render advisory opinions to assist the resolution of disputes affecting life or property.
Intrinsic focus on safety Serving two masters:  First Time Right, Zero Defects  Citizen’s Right and Society’s Duty Timely transparency in the factual functioning of systems:  Not only descriptive variables, but also explanatory variables  Control and change variables for system change  Identification of knowledge deficiencies

Recommended

PM Briefing: Autonomy and big data for defence
PM Briefing: Autonomy and big data for defencePM Briefing: Autonomy and big data for defence
PM Briefing: Autonomy and big data for defenceDefence and Security Accelerator
 
PM Briefing: Security for the internet of things
PM Briefing: Security for the internet of thingsPM Briefing: Security for the internet of things
PM Briefing: Security for the internet of thingsDefence and Security Accelerator
 
The changing role of the mechanical engineer Bob Dixon
The changing role of the mechanical engineer Bob DixonThe changing role of the mechanical engineer Bob Dixon
The changing role of the mechanical engineer Bob DixonNSW Environment and Planning
 
Risk Management In Software Product Development
Risk Management In Software Product DevelopmentRisk Management In Software Product Development
Risk Management In Software Product DevelopmentAmandeep Midha
 
Presentation For R Ae S Dubai 20120110 Ver 2
Presentation For R Ae S Dubai 20120110 Ver 2Presentation For R Ae S Dubai 20120110 Ver 2
Presentation For R Ae S Dubai 20120110 Ver 2NicklasD
 
Alexei Sharpanskykh science coffee
Alexei Sharpanskykh science coffeeAlexei Sharpanskykh science coffee
Alexei Sharpanskykh science coffeeAdvanced-Concepts-Team
 
2006 IChemE Manchester Branch - Human factors & risk management
2006 IChemE Manchester Branch - Human factors & risk management2006 IChemE Manchester Branch - Human factors & risk management
2006 IChemE Manchester Branch - Human factors & risk managementAndy Brazier
 
Aviation Training, Safety Management System
Aviation Training, Safety Management SystemAviation Training, Safety Management System
Aviation Training, Safety Management Systempghclearingsolutions
 

Recommended

PM Briefing: Autonomy and big data for defence
PM Briefing: Autonomy and big data for defencePM Briefing: Autonomy and big data for defence
PM Briefing: Autonomy and big data for defenceDefence and Security Accelerator
 
PM Briefing: Security for the internet of things
PM Briefing: Security for the internet of thingsPM Briefing: Security for the internet of things
PM Briefing: Security for the internet of thingsDefence and Security Accelerator
 
The changing role of the mechanical engineer Bob Dixon
The changing role of the mechanical engineer Bob DixonThe changing role of the mechanical engineer Bob Dixon
The changing role of the mechanical engineer Bob DixonNSW Environment and Planning
 
Risk Management In Software Product Development
Risk Management In Software Product DevelopmentRisk Management In Software Product Development
Risk Management In Software Product DevelopmentAmandeep Midha
 
Presentation For R Ae S Dubai 20120110 Ver 2
Presentation For R Ae S Dubai 20120110 Ver 2Presentation For R Ae S Dubai 20120110 Ver 2
Presentation For R Ae S Dubai 20120110 Ver 2NicklasD
 
Alexei Sharpanskykh science coffee
Alexei Sharpanskykh science coffeeAlexei Sharpanskykh science coffee
Alexei Sharpanskykh science coffeeAdvanced-Concepts-Team
 
2006 IChemE Manchester Branch - Human factors & risk management
2006 IChemE Manchester Branch - Human factors & risk management2006 IChemE Manchester Branch - Human factors & risk management
2006 IChemE Manchester Branch - Human factors & risk managementAndy Brazier
 
Aviation Training, Safety Management System
Aviation Training, Safety Management SystemAviation Training, Safety Management System
Aviation Training, Safety Management Systempghclearingsolutions
 
Towards a methodology for a Quantitative (Risk) Assessment of Critical Infras...
Towards a methodology for a Quantitative (Risk) Assessment of Critical Infras...Towards a methodology for a Quantitative (Risk) Assessment of Critical Infras...
Towards a methodology for a Quantitative (Risk) Assessment of Critical Infras...Global Risk Forum GRFDavos
 
Daniel Mauriño, Adviser of the Spanish National Aviation Safety Agency (AESA)
Daniel Mauriño, Adviser of the Spanish National Aviation Safety Agency (AESA)Daniel Mauriño, Adviser of the Spanish National Aviation Safety Agency (AESA)
Daniel Mauriño, Adviser of the Spanish National Aviation Safety Agency (AESA)Colegio Oficial de Pilotos de la Aviación Comercial
 
Werner Schierschmidt
Werner SchierschmidtWerner Schierschmidt
Werner SchierschmidtNOSA (Pty) Ltd
 
Human Factors in a Safety Management System - Breaking the Chain
Human Factors in a Safety Management System - Breaking the ChainHuman Factors in a Safety Management System - Breaking the Chain
Human Factors in a Safety Management System - Breaking the ChainSAMTRAC International
 
Chapter1
Chapter1Chapter1
Chapter1meltem7798
 
Aviation Safety Mangement
Aviation Safety MangementAviation Safety Mangement
Aviation Safety Mangementhggowtham
 
Automation of Information (Cyber) Security by Joe Hessmiller
Automation of Information (Cyber) Security by Joe HessmillerAutomation of Information (Cyber) Security by Joe Hessmiller
Automation of Information (Cyber) Security by Joe HessmillerJoe Hessmiller
 
Open group spc rosenthal v3
Open group spc rosenthal v3Open group spc rosenthal v3
Open group spc rosenthal v3City of Toronto
 
Img s position-paper_for_h2020
Img s position-paper_for_h2020Img s position-paper_for_h2020
Img s position-paper_for_h2020Marco Manso
 
SCL Antwerp - Nik Delmeire, European Shippers’ Council Consistently Optimised...
SCL Antwerp - Nik Delmeire, European Shippers’ Council Consistently Optimised...SCL Antwerp - Nik Delmeire, European Shippers’ Council Consistently Optimised...
SCL Antwerp - Nik Delmeire, European Shippers’ Council Consistently Optimised...Global Business Intel
 
1 1leanthinking
1 1leanthinking1 1leanthinking
1 1leanthinkingUtku Orçun GEZİCİ
 
A Conceptual Framework to Incorporate Complex Basic Events in HiP-HOPS
A Conceptual Framework to Incorporate Complex Basic Events in HiP-HOPSA Conceptual Framework to Incorporate Complex Basic Events in HiP-HOPS
A Conceptual Framework to Incorporate Complex Basic Events in HiP-HOPSKoorosh Aslansefat
 
Presentation Paris 08 Dahlstrom
Presentation Paris 08 DahlstromPresentation Paris 08 Dahlstrom
Presentation Paris 08 DahlstromNicklasD
 
Assistive Technology Considerations TemplateSubject AreaSample.docx
Assistive Technology Considerations TemplateSubject AreaSample.docxAssistive Technology Considerations TemplateSubject AreaSample.docx
Assistive Technology Considerations TemplateSubject AreaSample.docxcockekeshia
 
Event-driven BPM the JBoss way
Event-driven BPM the JBoss wayEvent-driven BPM the JBoss way
Event-driven BPM the JBoss wayKris Verlaenen
 
Automation of Information (Cyber) Security
Automation of Information (Cyber) SecurityAutomation of Information (Cyber) Security
Automation of Information (Cyber) SecurityComputer Aid, Inc
 
Comprehensive risk management for a cyber secure organization
Comprehensive risk management for a cyber secure organizationComprehensive risk management for a cyber secure organization
Comprehensive risk management for a cyber secure organizationJoe Hessmiller
 
ICE and Capita Symonds Health and Safety Lecture
ICE and Capita Symonds Health and Safety LectureICE and Capita Symonds Health and Safety Lecture
ICE and Capita Symonds Health and Safety LectureCapitaSymonds
 
Trial lecture - Risk Management and Open Source Software Adoption - Øyvind Hauge
Trial lecture - Risk Management and Open Source Software Adoption - Øyvind HaugeTrial lecture - Risk Management and Open Source Software Adoption - Øyvind Hauge
Trial lecture - Risk Management and Open Source Software Adoption - Øyvind HaugeØyvind Hauge
 
Event processing seven years from now
Event processing seven years from nowEvent processing seven years from now
Event processing seven years from nowOpher Etzion
 
Flight safety Seminar. Major and Landing Accidents
Flight safety Seminar. Major and Landing AccidentsFlight safety Seminar. Major and Landing Accidents
Flight safety Seminar. Major and Landing AccidentsΜανούσος Τραχαλάκης
 
safety culture. What it is and the six steps to achieve it
safety culture. What it is and the six steps to achieve itsafety culture. What it is and the six steps to achieve it
safety culture. What it is and the six steps to achieve itΜανούσος Τραχαλάκης
 

More Related Content

Similar to John Stoop_Aviation safety and risk A historical perspective.pdf

Towards a methodology for a Quantitative (Risk) Assessment of Critical Infras...
Towards a methodology for a Quantitative (Risk) Assessment of Critical Infras...Towards a methodology for a Quantitative (Risk) Assessment of Critical Infras...
Towards a methodology for a Quantitative (Risk) Assessment of Critical Infras...Global Risk Forum GRFDavos
 
Human Factors in a Safety Management System - Breaking the Chain
Human Factors in a Safety Management System - Breaking the ChainHuman Factors in a Safety Management System - Breaking the Chain
Human Factors in a Safety Management System - Breaking the ChainSAMTRAC International
 
Aviation Safety Mangement
Aviation Safety MangementAviation Safety Mangement
Aviation Safety Mangementhggowtham
 
Automation of Information (Cyber) Security by Joe Hessmiller
Automation of Information (Cyber) Security by Joe HessmillerAutomation of Information (Cyber) Security by Joe Hessmiller
Automation of Information (Cyber) Security by Joe HessmillerJoe Hessmiller
 
Open group spc rosenthal v3
Open group spc rosenthal v3Open group spc rosenthal v3
Open group spc rosenthal v3City of Toronto
 
Img s position-paper_for_h2020
Img s position-paper_for_h2020Img s position-paper_for_h2020
Img s position-paper_for_h2020Marco Manso
 
SCL Antwerp - Nik Delmeire, European Shippers’ Council Consistently Optimised...
SCL Antwerp - Nik Delmeire, European Shippers’ Council Consistently Optimised...SCL Antwerp - Nik Delmeire, European Shippers’ Council Consistently Optimised...
SCL Antwerp - Nik Delmeire, European Shippers’ Council Consistently Optimised...Global Business Intel
 
A Conceptual Framework to Incorporate Complex Basic Events in HiP-HOPS
A Conceptual Framework to Incorporate Complex Basic Events in HiP-HOPSA Conceptual Framework to Incorporate Complex Basic Events in HiP-HOPS
A Conceptual Framework to Incorporate Complex Basic Events in HiP-HOPSKoorosh Aslansefat
 
Presentation Paris 08 Dahlstrom
Presentation Paris 08 DahlstromPresentation Paris 08 Dahlstrom
Presentation Paris 08 DahlstromNicklasD
 
Assistive Technology Considerations TemplateSubject AreaSample.docx
Assistive Technology Considerations TemplateSubject AreaSample.docxAssistive Technology Considerations TemplateSubject AreaSample.docx
Assistive Technology Considerations TemplateSubject AreaSample.docxcockekeshia
 
Event-driven BPM the JBoss way
Event-driven BPM the JBoss wayEvent-driven BPM the JBoss way
Event-driven BPM the JBoss wayKris Verlaenen
 
Automation of Information (Cyber) Security
Automation of Information (Cyber) SecurityAutomation of Information (Cyber) Security
Automation of Information (Cyber) SecurityComputer Aid, Inc
 
Comprehensive risk management for a cyber secure organization
Comprehensive risk management for a cyber secure organizationComprehensive risk management for a cyber secure organization
Comprehensive risk management for a cyber secure organizationJoe Hessmiller
 
ICE and Capita Symonds Health and Safety Lecture
ICE and Capita Symonds Health and Safety LectureICE and Capita Symonds Health and Safety Lecture
ICE and Capita Symonds Health and Safety LectureCapitaSymonds
 
Trial lecture - Risk Management and Open Source Software Adoption - Øyvind Hauge
Trial lecture - Risk Management and Open Source Software Adoption - Øyvind HaugeTrial lecture - Risk Management and Open Source Software Adoption - Øyvind Hauge
Trial lecture - Risk Management and Open Source Software Adoption - Øyvind HaugeØyvind Hauge
 
Event processing seven years from now
Event processing seven years from nowEvent processing seven years from now
Event processing seven years from nowOpher Etzion
 

Similar to John Stoop_Aviation safety and risk A historical perspective.pdf (20)

Towards a methodology for a Quantitative (Risk) Assessment of Critical Infras...
Towards a methodology for a Quantitative (Risk) Assessment of Critical Infras...Towards a methodology for a Quantitative (Risk) Assessment of Critical Infras...
Towards a methodology for a Quantitative (Risk) Assessment of Critical Infras...
 
Daniel Mauriño, Adviser of the Spanish National Aviation Safety Agency (AESA)
Daniel Mauriño, Adviser of the Spanish National Aviation Safety Agency (AESA)Daniel Mauriño, Adviser of the Spanish National Aviation Safety Agency (AESA)
Daniel Mauriño, Adviser of the Spanish National Aviation Safety Agency (AESA)
 
Werner Schierschmidt
Werner SchierschmidtWerner Schierschmidt
Werner Schierschmidt
 
Human Factors in a Safety Management System - Breaking the Chain
Human Factors in a Safety Management System - Breaking the ChainHuman Factors in a Safety Management System - Breaking the Chain
Human Factors in a Safety Management System - Breaking the Chain
 
Chapter1
Chapter1Chapter1
Chapter1
 
Aviation Safety Mangement
Aviation Safety MangementAviation Safety Mangement
Aviation Safety Mangement
 
Automation of Information (Cyber) Security by Joe Hessmiller
Automation of Information (Cyber) Security by Joe HessmillerAutomation of Information (Cyber) Security by Joe Hessmiller
Automation of Information (Cyber) Security by Joe Hessmiller
 
Open group spc rosenthal v3
Open group spc rosenthal v3Open group spc rosenthal v3
Open group spc rosenthal v3
 
Img s position-paper_for_h2020
Img s position-paper_for_h2020Img s position-paper_for_h2020
Img s position-paper_for_h2020
 
SCL Antwerp - Nik Delmeire, European Shippers’ Council Consistently Optimised...
SCL Antwerp - Nik Delmeire, European Shippers’ Council Consistently Optimised...SCL Antwerp - Nik Delmeire, European Shippers’ Council Consistently Optimised...
SCL Antwerp - Nik Delmeire, European Shippers’ Council Consistently Optimised...
 
1 1leanthinking
1 1leanthinking1 1leanthinking
1 1leanthinking
 
A Conceptual Framework to Incorporate Complex Basic Events in HiP-HOPS
A Conceptual Framework to Incorporate Complex Basic Events in HiP-HOPSA Conceptual Framework to Incorporate Complex Basic Events in HiP-HOPS
A Conceptual Framework to Incorporate Complex Basic Events in HiP-HOPS
 
Presentation Paris 08 Dahlstrom
Presentation Paris 08 DahlstromPresentation Paris 08 Dahlstrom
Presentation Paris 08 Dahlstrom
 
Assistive Technology Considerations TemplateSubject AreaSample.docx
Assistive Technology Considerations TemplateSubject AreaSample.docxAssistive Technology Considerations TemplateSubject AreaSample.docx
Assistive Technology Considerations TemplateSubject AreaSample.docx
 
Event-driven BPM the JBoss way
Event-driven BPM the JBoss wayEvent-driven BPM the JBoss way
Event-driven BPM the JBoss way
 
Automation of Information (Cyber) Security
Automation of Information (Cyber) SecurityAutomation of Information (Cyber) Security
Automation of Information (Cyber) Security
 
Comprehensive risk management for a cyber secure organization
Comprehensive risk management for a cyber secure organizationComprehensive risk management for a cyber secure organization
Comprehensive risk management for a cyber secure organization
 
ICE and Capita Symonds Health and Safety Lecture
ICE and Capita Symonds Health and Safety LectureICE and Capita Symonds Health and Safety Lecture
ICE and Capita Symonds Health and Safety Lecture
 
Trial lecture - Risk Management and Open Source Software Adoption - Øyvind Hauge
Trial lecture - Risk Management and Open Source Software Adoption - Øyvind HaugeTrial lecture - Risk Management and Open Source Software Adoption - Øyvind Hauge
Trial lecture - Risk Management and Open Source Software Adoption - Øyvind Hauge
 
Event processing seven years from now
Event processing seven years from nowEvent processing seven years from now
Event processing seven years from now
 

More from Μανούσος Τραχαλάκης

More from Μανούσος Τραχαλάκης (6)

Flight safety Seminar. Major and Landing Accidents
Flight safety Seminar. Major and Landing AccidentsFlight safety Seminar. Major and Landing Accidents
Flight safety Seminar. Major and Landing Accidents
 
safety culture. What it is and the six steps to achieve it
safety culture. What it is and the six steps to achieve itsafety culture. What it is and the six steps to achieve it
safety culture. What it is and the six steps to achieve it
 
2_Reporting_responsibilities_matrix.pptx
2_Reporting_responsibilities_matrix.pptx2_Reporting_responsibilities_matrix.pptx
2_Reporting_responsibilities_matrix.pptx
 
SMS 1.ppt
SMS 1.pptSMS 1.ppt
SMS 1.ppt
 
Helicopter Icing (in Greek Language)
Helicopter Icing (in Greek Language)Helicopter Icing (in Greek Language)
Helicopter Icing (in Greek Language)
 
Helicopter and Thunderstorms (in Greek Language)
Helicopter and Thunderstorms (in Greek Language)Helicopter and Thunderstorms (in Greek Language)
Helicopter and Thunderstorms (in Greek Language)
 

Recently uploaded

Internship report on mechanical engineering
Internship report on mechanical engineeringInternship report on mechanical engineering
Internship report on mechanical engineeringmalavadedarshan25
 
Introduction to Microprocesso programming and interfacing.pptx
Introduction to Microprocesso programming and interfacing.pptxIntroduction to Microprocesso programming and interfacing.pptx
Introduction to Microprocesso programming and interfacing.pptxvipinkmenon1
 
Sachpazis Costas: Geotechnical Engineering: A student's Perspective Introduction
Sachpazis Costas: Geotechnical Engineering: A student's Perspective IntroductionSachpazis Costas: Geotechnical Engineering: A student's Perspective Introduction
Sachpazis Costas: Geotechnical Engineering: A student's Perspective IntroductionDr.Costas Sachpazis
 
Application of Residue Theorem to evaluate real integrations.pptx
Application of Residue Theorem to evaluate real integrations.pptxApplication of Residue Theorem to evaluate real integrations.pptx
Application of Residue Theorem to evaluate real integrations.pptx959SahilShah
 
Past, Present and Future of Generative AI
Past, Present and Future of Generative AIPast, Present and Future of Generative AI
Past, Present and Future of Generative AIabhishek36461
 
CCS355 Neural Network & Deep Learning Unit II Notes with Question bank .pdf
CCS355 Neural Network & Deep Learning Unit II Notes with Question bank .pdfCCS355 Neural Network & Deep Learning Unit II Notes with Question bank .pdf
CCS355 Neural Network & Deep Learning Unit II Notes with Question bank .pdfAsst.prof M.Gokilavani
 
microprocessor 8085 and its interfacing
microprocessor 8085 and its interfacingmicroprocessor 8085 and its interfacing
microprocessor 8085 and its interfacingjaychoudhary37
 
SPICE PARK APR2024 ( 6,793 SPICE Models )
SPICE PARK APR2024 ( 6,793 SPICE Models )SPICE PARK APR2024 ( 6,793 SPICE Models )
SPICE PARK APR2024 ( 6,793 SPICE Models )Tsuyoshi Horigome
 
Call Girls Delhi {Jodhpur} 9711199012 high profile service
Call Girls Delhi {Jodhpur} 9711199012 high profile serviceCall Girls Delhi {Jodhpur} 9711199012 high profile service
Call Girls Delhi {Jodhpur} 9711199012 high profile servicerehmti665
 
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...Soham Mondal
 
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escortsranjana rawat
 
Gurgaon ✡️9711147426✨Call In girls Gurgaon Sector 51 escort service
Gurgaon ✡️9711147426✨Call In girls Gurgaon Sector 51 escort serviceGurgaon ✡️9711147426✨Call In girls Gurgaon Sector 51 escort service
Gurgaon ✡️9711147426✨Call In girls Gurgaon Sector 51 escort servicejennyeacort
 
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur EscortsHigh Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur EscortsCall Girls in Nagpur High Profile
 
High Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur EscortsHigh Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur Escortsranjana rawat
 
Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...
Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...
Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...Dr.Costas Sachpazis
 
HARMONY IN THE HUMAN BEING - Unit-II UHV-2
HARMONY IN THE HUMAN BEING - Unit-II UHV-2HARMONY IN THE HUMAN BEING - Unit-II UHV-2
HARMONY IN THE HUMAN BEING - Unit-II UHV-2RajaP95
 

Recently uploaded (20)

Internship report on mechanical engineering
Internship report on mechanical engineeringInternship report on mechanical engineering
Internship report on mechanical engineering
 
Introduction to Microprocesso programming and interfacing.pptx
Introduction to Microprocesso programming and interfacing.pptxIntroduction to Microprocesso programming and interfacing.pptx
Introduction to Microprocesso programming and interfacing.pptx
 
Sachpazis Costas: Geotechnical Engineering: A student's Perspective Introduction
Sachpazis Costas: Geotechnical Engineering: A student's Perspective IntroductionSachpazis Costas: Geotechnical Engineering: A student's Perspective Introduction
Sachpazis Costas: Geotechnical Engineering: A student's Perspective Introduction
 
Application of Residue Theorem to evaluate real integrations.pptx
Application of Residue Theorem to evaluate real integrations.pptxApplication of Residue Theorem to evaluate real integrations.pptx
Application of Residue Theorem to evaluate real integrations.pptx
 
Past, Present and Future of Generative AI
Past, Present and Future of Generative AIPast, Present and Future of Generative AI
Past, Present and Future of Generative AI
 
CCS355 Neural Network & Deep Learning Unit II Notes with Question bank .pdf
CCS355 Neural Network & Deep Learning Unit II Notes with Question bank .pdfCCS355 Neural Network & Deep Learning Unit II Notes with Question bank .pdf
CCS355 Neural Network & Deep Learning Unit II Notes with Question bank .pdf
 
★ CALL US 9953330565 ( HOT Young Call Girls In Badarpur delhi NCR
★ CALL US 9953330565 ( HOT Young Call Girls In Badarpur delhi NCR★ CALL US 9953330565 ( HOT Young Call Girls In Badarpur delhi NCR
★ CALL US 9953330565 ( HOT Young Call Girls In Badarpur delhi NCR
 
microprocessor 8085 and its interfacing
microprocessor 8085 and its interfacingmicroprocessor 8085 and its interfacing
microprocessor 8085 and its interfacing
 
9953056974 Call Girls In South Ex, Escorts (Delhi) NCR.pdf
9953056974 Call Girls In South Ex, Escorts (Delhi) NCR.pdf9953056974 Call Girls In South Ex, Escorts (Delhi) NCR.pdf
9953056974 Call Girls In South Ex, Escorts (Delhi) NCR.pdf
 
SPICE PARK APR2024 ( 6,793 SPICE Models )
SPICE PARK APR2024 ( 6,793 SPICE Models )SPICE PARK APR2024 ( 6,793 SPICE Models )
SPICE PARK APR2024 ( 6,793 SPICE Models )
 
🔝9953056974🔝!!-YOUNG call girls in Rajendra Nagar Escort rvice Shot 2000 nigh...
🔝9953056974🔝!!-YOUNG call girls in Rajendra Nagar Escort rvice Shot 2000 nigh...🔝9953056974🔝!!-YOUNG call girls in Rajendra Nagar Escort rvice Shot 2000 nigh...
🔝9953056974🔝!!-YOUNG call girls in Rajendra Nagar Escort rvice Shot 2000 nigh...
 
Call Girls Delhi {Jodhpur} 9711199012 high profile service
Call Girls Delhi {Jodhpur} 9711199012 high profile serviceCall Girls Delhi {Jodhpur} 9711199012 high profile service
Call Girls Delhi {Jodhpur} 9711199012 high profile service
 
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
OSVC_Meta-Data based Simulation Automation to overcome Verification Challenge...
 
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
(MEERA) Dapodi Call Girls Just Call 7001035870 [ Cash on Delivery ] Pune Escorts
 
Gurgaon ✡️9711147426✨Call In girls Gurgaon Sector 51 escort service
Gurgaon ✡️9711147426✨Call In girls Gurgaon Sector 51 escort serviceGurgaon ✡️9711147426✨Call In girls Gurgaon Sector 51 escort service
Gurgaon ✡️9711147426✨Call In girls Gurgaon Sector 51 escort service
 
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur EscortsHigh Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Meera Call 7001035870 Meet With Nagpur Escorts
 
Call Us -/9953056974- Call Girls In Vikaspuri-/- Delhi NCR
Call Us -/9953056974- Call Girls In Vikaspuri-/- Delhi NCRCall Us -/9953056974- Call Girls In Vikaspuri-/- Delhi NCR
Call Us -/9953056974- Call Girls In Vikaspuri-/- Delhi NCR
 
High Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur EscortsHigh Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur Escorts
High Profile Call Girls Nagpur Isha Call 7001035870 Meet With Nagpur Escorts
 
Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...
Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...
Sheet Pile Wall Design and Construction: A Practical Guide for Civil Engineer...
 
HARMONY IN THE HUMAN BEING - Unit-II UHV-2
HARMONY IN THE HUMAN BEING - Unit-II UHV-2HARMONY IN THE HUMAN BEING - Unit-II UHV-2
HARMONY IN THE HUMAN BEING - Unit-II UHV-2
 

John Stoop_Aviation safety and risk A historical perspective.pdf

  • 1. Aviation safety and risk A historical perspective John Stoop
  • 2. Aviation, a special case?  High tech and cutting edge performance: hostile operating environment, high level playing field  Public confidence: A Citizens’Right and Society’s Duty  Business continuity: Zero Defect and First Time Right:  Beyond the 10*-7 likelyhood: low probability, major consequences  Anticipating a systems leap in performance: +50% performance, -50% impact while maintain safety performance A new role for safety investigations?  If we start killing our passengers, we are on the wrong track: restoring public faith after accidents  Identifying system and knowledge deficiencies
  • 5.
  • 10. Finding the haystack before the needle
  • 12. History of safety assessment Expanding the scope  Technical failures (1850): transport, rail, aviation, shipping  Probability of failure (1950): process industry, statistical likelyhood  Human factors (1970): space, medical, risk management  Systemic learning (1990): life cycle approach, business continuity  Governance and control (2000): resilience, security Debates and focus  A shift from technical via managerial to policy and governance  Integral or integrated: intermodal or international?  One Size Fits All: transport, process, nuclear?
  • 13. Luchthaven gebouw Schiphol 1928 London Melbourne race DC-2 1934 1928 In 1930: Heinrich’s Iceberg 1 1932 Domino Stones Modelling aviation safety
  • 14. Aviation in 1960: jet engines Carvair cargo plane First flight DC 8 30 may 1958 Lockheed Electra The turboprop age Risk = frequency * con Risk = Human error
  • 15. Aviation in 1970: hyjackings Edwards 1972: SHELL model Dawson Fields Brussels EnglishChannel
  • 16. Aviation in 1990 MD 11 Glass cockpits Swiss Cheese model
  • 17. Safety is integrated in the aviation system Safety institutions  Sectorial arrangements: ICAO Annex 13  International legislation: EU Directives 94/56/EC and 2003/42/EC  Certification and regulations: FAR/JAR  National legislation and regulations  ISASI  FSF  IATA  IFALPA
  • 18. ICAO Annex 13 The purposes of Annex 13 are threefold:  standardise accident/incident reporting procedures  establish procedures that ensure participation of experts in the investigation  ensure rapid dissemination of important safety and airworthiness information
  • 19. Stock prise Flight control problems Financial and image control prob New indicators Impact at different recurs
  • 21. Bigger and larger, towards conceptual limits
  • 23. The ultimate flying experience
  • 24. Engineering design Product safety Operations Service provision Event investigation Systemic and knowledge deficiencies Research Knowledge deficiencies Systemic deficiencies Engineering design methodologie Socio-technical Socio-organizational Technology development Standards KB Engineering Modeling Testing Simulation Performance assessment Value Engineering Serious gaming Policy analysis Decisionmaking Fact finding data acquisition Forensics Data mining Processmining Product certification Requirement assessment RAMS CostBenefitAnalysis Environmental ImpactAssessment Closing the life cycle
  • 25. From reliable towards available Transport specific demands  7/24 available  Open access  Time and space independent  Public transport function  Immediate demand supply synchronization Available= reliable + safety Conflicting interests: safety, economy and environment
  • 27. Do the usual suspects suffice: Who is to blame?
  • 28. Pilots: heros or slaves? Air India: 15% wage reduction RyanAir: Colgan Air: Fatigue and work cycles Pilots RyanAir: Fuel policy is life threatening Deep rooted culture of fear
  • 29. Air China pilots warn fight safety underthreat by unequalpay and lack of rest Flight Safety Information April 21, 2014
  • 31. But also opiniating issues ‘public perceptions’ ‘framing the debate’
  • 32. Mockups, a common reconstruc TWA 800 Lockerbie Swissair 111
  • 35. Aviation since the millenium: a comprehensive and specific framework Core notions and concepts:  International institutional frameworks: ICAO, EASA, FSF, ISASI, ITSA  Accident and incident investigation methodology: empirical evidence  Precautionary measures: Good Airmanship, Standard Operating Procedures  Safety Management Systems: operators, airports, governance oversight  Victim and family assistance: legally based, organised by the flight numbers  R & D Networks and programs: Horizon 2050 Engineering Design Methodology:  Knowledge Based Engineering  Value Engineering  Multidisciplinary Design Optimization  Technologically innovative and disruptive concepts
  • 37. Nothing left but - Residual risks: LOC-I, CFIT, RE? - Maintaining present levels: SMS, safety oversight? - Fighting complacency: training, proficiency, recovery? Or new notions? - Higher order systems drivers: business models, Minsky - Intuition, emotion and empathy: Slovic and Kahneman - Innovation: 5th generation aircraft, composites, new configurations, new business models And a new context?
  • 38. Modern safety and risk assessment Precautionar principle  First control then comprehend  From oversight to insight The New View  Human performance makes systems safe  Investigative also from a user’s perspective Requires a specific methodology  no metaphors but modelling  Human performance in their socio- technical environment
  • 39. uncertainty Problem: Performance Solution: Quantification/calculat ion Conventional Engineering Best practices Problem: Information Solution: Analysis/techological innovation ScientificResearch and Development Problem: Disagreement Solution: Coercion/discussion Managing/mediation forensicsciences Problem:Knowledge and consent Solution: Precaution/Crisis handling Architecture System Integration Certain Uncertain Knowledge Values Agreement Contested
  • 40. Rol van de ingenieur- ontwerper: prospectie en preventie  Garanderen zorg en borg in vroege fasen systeemontwerp en – ontwikkeling  Reduceren onzekerheden  Integreren maatschappelijke waarden in discussie en afwegingen  Variation selection en voorkeursoplossingen (Vincenti: optimaliseren prestaties, reduceren onzekerheden, identificeren eigenschappen)  Rol van innovatie: principes, aannames, vereenvoudigingen, design trade-offs  Ethiek en professioneel oordeel: prestatie indicatoren, maatschappelijke waarden
  • 41. 41
  • 42.
  • 45. A third system dimension Accident investigation Causes Static Systems approach: Predefined properties Dynamic System behavior: Emergent properties Accident committees Organisation al theories Chaos-/complexity theory Suppressi on of deviations Feedback and manageme nt Feed-forward anticipation towards control and change Focus shift towards system Focus shift towards process Third dimension: Dynamic system behaviour Second dimension: Systemice deficiencies First dimension: Type event
  • 46.
  • 47. Process flow chart system history design adaptation recovery t=0 point of impact resilience A1 A2 B1 B2 C1 C2 B3 Actor 1 Actor 2 Actor 3
  • 48. Look for the investigator among the researchers
  • 49. Critical design options: the B777 example - no metal but composites - flexible forms - from flying tubes to flying ballrooms - integrated functionalities within a monocoque - higher cabine pressure: improved comfort, higher altitudes - climate control: temperature,acoustics, freeze drying - bleed air engines: heating and propulsion apu’s - fire resistant materials - implementation of maintenance and automated control - political financing - custom build and user participation rather than line production - daylight economy: traveltime and distance per day - alternativesin transport mode: TGV, congested automobile transport - strategic choices in locating airports: catchment areas - from hub-spoketowardsfree flight - role of urban an spatial planning in developing networks and airport sites
  • 50. Critical design options: a technological analysis of aircraft concepts  Single function allocation: - stability and control - propulsion - fuselage - aerofoils - landing gear  Generations of derivates: - slender wings, reduced drag - aero elasticity - maintenance - fatigue  Two generations of designers - generating concepts - maturing and optimizing concepts
  • 52. Objectivity and transparancy  Focus not on blame ‘’Bad-apple Theory’’  Deal with complexity and system dynamics: ‘’No more cheese please’’ Is there a ‘’Good Apple-Theory’’ ? Forensisc approaches: = a broad range of disciplines and the = ability to pursue several lines of investigation simultaneously. The method of dimensions: - structure - culture - contents - context
  • 53.
  • 54. How to reduce complex problems Collect facts Compose event Identify change variables S ynchronize system vectors Using algorithms To create transparency
  • 55. DC: transfer of risk  Minimizing costs and accountabilities  Transfer of focus from design to operations  Hidden deficienciesare conceiled  Safety is excluded from the PoR  Degraded from business value to operational cost  Separating occupational, process and product safety
  • 56. DBFM: managing risk  Safety focus is crossing life cycles  Safety explicit in PoR  Integral safety: combining all safety aspects  Focus on guaranteeing availability:fines, accountabilities  Responsibilities are with the consession holder/operator  Safety becomes a strategicasset in risk management across economic life cycle
  • 57. Risk management Managing risk by:  Redundancy in critical components  Quantitative failure prediction: FMECA  Knowledgeable of failure mechanism: FTA  Simulation: scale models  Accident and event analysis Cooperation: public private partnerships • Openes and transparency • Sharing information • Oversight: role architect and prioritizing issues
  • 58. 1954 De Havilland Comet 1962 Harmel en 1977 Tenerife 1979 Mt Erebus 199 2 Bijl mer 2000 Enschede 200/2001 Volendam 1996 Eindho ven 11/9 2001 WTC 11/4 2004 Madrid 193 7 Aviat ion 1956- 1999 Rail 1977- 1997 Road 1999- 2005 DTSB 200 5 DSIB Events 1870 Shipping Evolutionary development of TSB’s Producti on means Design deficienci es Human behaviour Survivability Managem ent Compan y Public governance Compa ny Society Maintenan ce Ageing System deficiencies Impact Statements New systems Major Projects ICT applications Separate technical from judicial Multimoda l investigati ons Multisector al investigati ons Crisis and emergency management Citizens’ Right Society’s Duty Independ ent investigati ons Organisa tion Victims Rescue and emergenc y After care Percepti on Blame/liab ility Foc us Mot to Professio nal learning Societal learning Goa l Technical failure Deviation s System deficiencies Public confidence Knowled ge domains Systems engineeri ng Knowledg e infrastruct ure Knowled ge deficien cies Socio-tecnical systems design Mod e
  • 59. But has the pendulum swung too far? Proximal factors Remote factors
  • 60. Changes in the methods and practices A continuous debate: Focus is shifting from blame to responsibility, from compliance to competences Independence and international agencies Multimodal or sectoral Knowledge or perception, awareness based? Are industrial sectors comparable? Similarities: international context with common characteristics Differences: new entrants in the market, interoperability, new technologies, role victim organisations Role of investigations pivotal: coping with both public faith, technology and market changes, serving three functions simultaneously
  • 61. What? How? Why? A retrospective process WHAT? HOW? WHY? Unsafe acts Local workplace factors Organisational factors Losses Hazards Defences Latent condition pathways Causes Investigation
  • 62. Integrating Person & System Patients Individual mindfulness Collective mindfulness Healthcare system Resilience Local risk awareness Turbulent interface between carers and patients ‘Harm absorbers’ Activities Frontlinehealthcare professionals Management
  • 63. Ever-widening search for the ‘upstream’ factors Individuals Workplace Organisation Regulators Society at large
  • 64. Echoed in many hazardous domains Zeebrugge Dryden Chernobyl Young, NSW Barings Clapham Challenger King’s X Piper Alpha Columbia
  • 65. New interdependencies  Planned obsolencence: maintain oversight over life cycle components, materials, technologies  Short term changes in public and political perception of societal values  Feedback from reality instead of pre- emptive manufacturing quality control and certification  Privatisation of collective, societal values: public services as corporate commodity  Sensor and information technology dependency: ICT and monopolies as commercial assets  Democratic participation: actor involvement in strategic decision making, trusts and kartels
  • 66. 1900 Root cause Accident prone 1930 Domino Iceberg 196 0 HAZOP FMEA Fault tree 1980 STEP THERP FMECA MORT Hufacs 1990 RCA HEAT TRIPOD CREAM MERMOS TRACE 2000 Fram Stamp Accimap ISIM 2010 JustCulture New View Forensic Engineering Resilience Hollnagel An ever expanding scala of approaches Safety analysis methods
  • 67. The DCP diagram: an engineering design framework and a multi-actor perspective Design Control design development construction operationdemolition goal function form Practice micro meso macro the design-axis: innovation the system level axis: integrati on the life cycle-axis: coordination © J.A. Stoop 1996
  • 68. Societal challenges for safety 1/2  Increasing growth: anticipating doubling traffic volume, Safer Skies initiative  Law of diminishing returns: flattening the accident frequency curve  Linear modeling of risk by R=p*c denies exposure and conditional probability  Actor dependent risk perception: variance across stakeholders  consequences are not only measured in terms of Technical Safety, but also in terms of Prosecution and Liability, Public Safety and Victim Care and Compensation, creating potential conflicts of interest
  • 69. Societal challenges for safety 2/2  Design and development assurance requires: = human performance is a dominant design issue = validation of safety assumptions in design and modification = safety data management and analysis = capture, sharing, dissemination and evaluation of lessons learned = no compromising of safety during repair and maintenance = timely detection and oversight of critical safety errors  Certification, Operations and Maintenance focuses on a/c as principal component, but: = rare events have a high public/political profile and a critical impact on acceptance = prevention is the focus: zero defect and first time right = ATM, airports, environment are to be incorporated in the overall safety assessment
  • 70. Acknowledges a specific role for safety Boards: problem providers for knowledge developers reconstruction analysisrecommendationmonitoring scientific support fact finding - Development and testing of models and theories accident - marks and wreckage parts - recorders - certification - maintenance - procedures - operations Post scene On scene and post scene Safety Board Investigation Agency
  • 71. Critical design options of aircraft concepts  Technological evolution - from fabric and steel tubes towards aluminium monocoques - from radial/line engines towards jet engines - from ‘flying crates’ to cylindrical fuselages - from flying in the weather towards pressurized cabins - from dead weight control surfaces towards lift inducing fuselages - from all-metal towards composite materials - S-curve in technological development: 60 years of rise, 60 years of decline  Incremental adaptation leads to replacement, innovation and optimization  Shifting emphasis from aircraft towards airports and traffic control, multifunctional and integral design of subsystems
  • 74. 17,4 17,6 17,8 18 18,2 18,4 18,6 18,8 19 19,2 19,4 19,6 0 1000000 2000000 3000000 4000000 5000000 6000000 7000000 1-11-2010 2-11-2010 3-11-2010 4-11-2010 5-11-2010 6-11-2010 7-11-2010 8-11-2010 9-11-2010 10-11-2010 11-11-2010 Airbus Volume Open High Low Close 2,6 2,65 2,7 2,75 2,8 2,85 2,9 2,95 3 0 10000000 20000000 30000000 40000000 50000000 60000000 70000000 80000000 Qantas Volume Open High Low Close 500 520 540 560 580 600 620 640 660 680 0 5000000 10000000 15000000 20000000 25000000 30000000 35000000 1-11-2010 2-11-2010 3-11-2010 4-11-2010 5-11-2010 6-11-2010 7-11-2010 8-11-2010 9-11-2010 10-11-2010 11-11-2010 Rolls Royce Volume Open High Low Close Share prices, impact on higher recur A new dimension in safety performance indicators Decrease share price (lower close than open price)
  • 75. We’re not the KGB. We’re not the Gestapo,” said Robert Benzon, who led the National Transportation Safety Board’s investigation. “We’re the guys with the white hats on.” The film, scheduled for release in theatres on Friday, portrays Tom Haueter, who was the NTSB’s head of major accident investigations at the time and is now a consultant, said he fears the movie will discourage pilots and others from fully co- operating with the board in the future. “There is a very good chance,” said Haueter, “that there is a segment of the And destroying a reputation The problem with ‘Sully’ Real life investigators object to portrayal in ‘Sully’ movie September 8, 2016
  • 76. A dedicated scientific basis Forensic sciences: (conform a combined definition of Carper, Barnett en Noon): Forensicsciences comprise of the science, methodology, professional practices and engineering principles involved in diagnosing accidents and failures. The determination of the causes of failures require familiarity with a broad range of disciplines, and the ability to pursue several lines of investigation simultaneously. The objective of the investigation is to render advisory opinions to assist the resolution of disputes affecting life or property.
  • 77. Intrinsic focus on safety Serving two masters:  First Time Right, Zero Defects  Citizen’s Right and Society’s Duty Timely transparency in the factual functioning of systems:  Not only descriptive variables, but also explanatory variables  Control and change variables for system change  Identification of knowledge deficiencies