{"title":"通过集成模型检验,改进基于STAMP的事故因果分析","authors":"Lei Chen, D. Zhong, J. Jiao, T. Zhao","doi":"10.1109/RAM.2017.7889783","DOIUrl":null,"url":null,"abstract":"Modern safety-critical systems are becoming increasingly more complex than ever before. Continuous complexity increase renders ensuring the safety of such systems increasingly difficult. So, the ability to perform an effective and robust safety analysis on modern safety-critical system plays a more and more crucial role. Traditional safety analysis models based on event chains which consider that accidents are caused by chains of directly related failure events oversimplify causality and the accident process. Also, they exclude many of the systemic factors in accidents and indirect or nonlinear interactions among events. System-Theoretic Accident Modeling and Process(STAMP) accident model is an accident causality model based on system theory used for complex system, especially complex socio-technical system. Safety in STAMP is regarded as an emergent property of system caused by components interactions and a problem of control which means enforcing safety constrains on components behaviors and interactions. In the STAMP based analysis, three basic constructs underlying the analysis process are highlighted: safety constraints, hierarchical safety control structures and process model. With a rise of system complexity, STAMP is playing an increasingly significant role in the development of systemic accident theory. However, STAMP-based safety analysis is usually completed manually, which seems to be with high cost and low efficiency. To raise analysis efficiency, reduce its cost, this paper proposes a formal approach which integrated a model checking with STAMP to automatically search the potential paths that could lead to hazards. By use of model checking, behaviors of the system are simulated and counter example(s) violating the safety constraints and requirements could be raised, to improve the system design. The application of the proposed approach is illustrated through a case study of a typical air accident analysis to verify the validity of the approach. The process and result gained by the improvement have shown us that the safety engineering workload has been reduced and the analysis efficiency has been raised.","PeriodicalId":138871,"journal":{"name":"2017 Annual Reliability and Maintainability Symposium (RAMS)","volume":"7 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1900-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Improving accident causality analysis based on STAMP through integrating model checking\",\"authors\":\"Lei Chen, D. Zhong, J. Jiao, T. Zhao\",\"doi\":\"10.1109/RAM.2017.7889783\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Modern safety-critical systems are becoming increasingly more complex than ever before. Continuous complexity increase renders ensuring the safety of such systems increasingly difficult. So, the ability to perform an effective and robust safety analysis on modern safety-critical system plays a more and more crucial role. Traditional safety analysis models based on event chains which consider that accidents are caused by chains of directly related failure events oversimplify causality and the accident process. Also, they exclude many of the systemic factors in accidents and indirect or nonlinear interactions among events. System-Theoretic Accident Modeling and Process(STAMP) accident model is an accident causality model based on system theory used for complex system, especially complex socio-technical system. Safety in STAMP is regarded as an emergent property of system caused by components interactions and a problem of control which means enforcing safety constrains on components behaviors and interactions. In the STAMP based analysis, three basic constructs underlying the analysis process are highlighted: safety constraints, hierarchical safety control structures and process model. With a rise of system complexity, STAMP is playing an increasingly significant role in the development of systemic accident theory. However, STAMP-based safety analysis is usually completed manually, which seems to be with high cost and low efficiency. To raise analysis efficiency, reduce its cost, this paper proposes a formal approach which integrated a model checking with STAMP to automatically search the potential paths that could lead to hazards. By use of model checking, behaviors of the system are simulated and counter example(s) violating the safety constraints and requirements could be raised, to improve the system design. The application of the proposed approach is illustrated through a case study of a typical air accident analysis to verify the validity of the approach. The process and result gained by the improvement have shown us that the safety engineering workload has been reduced and the analysis efficiency has been raised.\",\"PeriodicalId\":138871,\"journal\":{\"name\":\"2017 Annual Reliability and Maintainability Symposium (RAMS)\",\"volume\":\"7 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"1900-01-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2017 Annual Reliability and Maintainability Symposium (RAMS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/RAM.2017.7889783\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 Annual Reliability and Maintainability Symposium (RAMS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/RAM.2017.7889783","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
摘要
现代安全关键系统正变得比以往任何时候都更加复杂。复杂性的不断增加使得确保此类系统的安全性变得越来越困难。因此,对现代安全关键系统进行有效、稳健的安全分析的能力就显得越来越重要。传统的基于事件链的安全分析模型认为事故是由直接相关的失效事件链引起的,过于简化了因果关系和事故过程。此外,它们排除了事故中的许多系统因素以及事件之间的间接或非线性相互作用。系统理论事故建模与过程(system - theory Accident Modeling and Process, STAMP)事故模型是一种基于系统理论的事故因果关系模型,适用于复杂系统,特别是复杂社会技术系统。在STAMP中,安全性被认为是由组件交互引起的系统的紧急属性,是一个控制问题,即对组件的行为和交互实施安全约束。在基于STAMP的分析中,强调了分析过程的三个基本结构:安全约束、分层安全控制结构和过程模型。随着系统复杂性的提高,STAMP在系统事故理论的发展中发挥着越来越重要的作用。然而,基于stamp的安全性分析通常是手工完成的,成本高,效率低。为了提高分析效率,降低分析成本,本文提出了一种将模型检查与STAMP相结合的形式化方法来自动搜索可能导致危险的潜在路径。通过模型校核,对系统行为进行仿真,提出违反安全约束和要求的反例,改进系统设计。通过一个典型的航空事故分析实例,验证了该方法的有效性。改进的过程和结果表明,减少了安全工程工作量,提高了分析效率。
Improving accident causality analysis based on STAMP through integrating model checking
Modern safety-critical systems are becoming increasingly more complex than ever before. Continuous complexity increase renders ensuring the safety of such systems increasingly difficult. So, the ability to perform an effective and robust safety analysis on modern safety-critical system plays a more and more crucial role. Traditional safety analysis models based on event chains which consider that accidents are caused by chains of directly related failure events oversimplify causality and the accident process. Also, they exclude many of the systemic factors in accidents and indirect or nonlinear interactions among events. System-Theoretic Accident Modeling and Process(STAMP) accident model is an accident causality model based on system theory used for complex system, especially complex socio-technical system. Safety in STAMP is regarded as an emergent property of system caused by components interactions and a problem of control which means enforcing safety constrains on components behaviors and interactions. In the STAMP based analysis, three basic constructs underlying the analysis process are highlighted: safety constraints, hierarchical safety control structures and process model. With a rise of system complexity, STAMP is playing an increasingly significant role in the development of systemic accident theory. However, STAMP-based safety analysis is usually completed manually, which seems to be with high cost and low efficiency. To raise analysis efficiency, reduce its cost, this paper proposes a formal approach which integrated a model checking with STAMP to automatically search the potential paths that could lead to hazards. By use of model checking, behaviors of the system are simulated and counter example(s) violating the safety constraints and requirements could be raised, to improve the system design. The application of the proposed approach is illustrated through a case study of a typical air accident analysis to verify the validity of the approach. The process and result gained by the improvement have shown us that the safety engineering workload has been reduced and the analysis efficiency has been raised.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
