曝光台 注意防骗
网曝天猫店富美金盛家居专营店坑蒙拐骗欺诈消费者
Assessment
Verification
FAA System Safety Handbook, Chapter 5: Post-Investment Decision Safety Activities
December 30, 2000
5 - 22
not to cause harm to the system. Consider that any change to a system must be evaluated from a system
risk viewpoint. For more information regarding verification and validation see the FAA System
Engineering Manual.
5.4.9 Integrated Audit Program
The ISSPP should call for the Quality Assurance function to audit the program. All activities in support of
system safety are to be audited. This includes contractor internal efforts and all external activities in
support of closed-loop Hazard Tracking and Risk Resolution. The government will be given access to
audit data.
5.4.10 Integrated Training
When required, ISSPP participants are to receive specific training in system safety in order to conduct
analysis, hazard tracking and risk resolution. Additional training is to be provided for ISSWG members
and program auditors to assure awareness of the system safety concepts discussed herein.
Specific training is to be conducted for system users, controllers, systems engineers, and technicians.
Training considers normal operations with standard operating procedures, maintenance with appropriate
precautions, test and simulation training, and contingency response. Specific hazard control procedures
will be recommended as a result of analysis efforts. See Chapter 14 for more information on System
Safety training.
5.4.11 Integrated Incident Reporting and Investigation
Any incident, accident, malfunction, or failure effecting system safety is to be investigated to determine
causes and to enhance analysis efforts. As a result of investigation, causes are to be determined and
eliminated. Testing and certification activities are also to be monitored; anomalies, malfunctions, failures
that affect system safety are to be corrected.
Concepts of system safety integration are also applied systematically through formal accident
investigation techniques. Many systematic techniques have been successfully applied for example6:
Scenario Analysis (SA), Sequentially Timed Events Plot (STEP), Root Cause Analysis (RCA), Energy
Trace Barrier Analysis (ETBA), Management Oversight and Risk Tree (MORT), and Project Evaluation
Tree (PET).7 For further details consult the references provided. Consider that hazard analysis is the
inverse of accident investigation and similar techniques are applied in the application of inductive and
deductive processes of hazard analysis and accident investigation.
5.4.12 System Safety Interfaces
System Safety interfaces with other applicable disciplines both internally to systems engineering and
externally. System Safety is involved in all Program disciplines, i.e., Risk Management, Facilities,
Software Development, Certification, Testing, Contract Administration, Health Management,
Environmental Management, Ergonomics, Human Factors, as examples. These disciplines may be
directly involved in the hazard analysis, hazard control, hazard tracking, and risk resolution activities.
6 IBID, System safety Society
7 IBID, Stephenson
FAA System Safety Handbook, Chapter 5: Post-Investment Decision Safety Activities
December 30, 2000
5 - 23
5.4.13 Integrated Inputs to the ISSPP
The external inputs to the system safety process are the design concepts of the system, formal documents,
engineering notebooks, and design discussions during formal meetings and informal communications.
The on-going output of the system safety process is hazard analysis, risk assessment, risk mitigation, risk
management, and optimized safety.
Inputs:
· Concept of Operations
· Requirements Document
· System/Subsystem Specification
· Management and System Engineering Plans, (e.g. Master Test Plan)
· Design details
Outputs: Hazard Analysis consists of
· Identifying safety related risks (contributory hazards) throughout system life cycle
· Conducting system hazard analysis evaluating human, hardware, software, and environmental
exposures
· Identifying and incorporating hazard (risk) controls
· Risk Assessment involves:
· Defining risk criteria i.e., severity and likelihood
· Conducting risk assessment i.e., Risk Acceptability and Ranking
· Risk Management consists of:
· Conducting Hazard Tracking and Risk Resolution
· Optimize safety (assure acceptable safety related risks)
· Monitoring controls
5.5 Program Balance
The purpose of an SSP is to eliminate or reduce risk of a accident to an acceptable level within the
中国航空网 www.aero.cn
航空翻译 www.aviation.cn
本文链接地址:
System Safety Handbook系统安全手册上(108)
