Presentation is loading. Please wait.

Presentation is loading. Please wait.

Safety Report Treatment of Safety-Critical Systems in Transport Airplanes Office of Research and Engineering.

Published byAbigayle Fowler Modified over 9 years ago

Similar presentations

Presentation on theme: "Safety Report Treatment of Safety-Critical Systems in Transport Airplanes Office of Research and Engineering."— Presentation transcript:

1 Safety Report Treatment of Safety-Critical Systems in Transport Airplanes Office of Research and Engineering

2

3 Genesis of the Certification Report USAir 427 Board Meeting (March 23-24, 1999) TWA 800 Board Meeting (August 22-23, 2000) Staff directed to “study” the issue

4 Exploring an Accident Based Study Statistical review of certification related accidents 55 “certification” accidents, 1962 – 2001 Required documentation of certification issues missing

5 Exploring an Oversight Study Considerations of scope & scale 250 FAA technical staff, plus many more company DERs Type certificate process for B-777 spanned 4 years (6,500 Boeing employees, 9 airplanes, 4,900 test flights, and more than 7,000 hours of flight time) Limited Safety Board resources

6 Focus on the Process & Lessons Learned from Accident Experience Broad examination of the evolution of the FAA type certification process Consideration of other studies of certification issues Drawing lessons learned from NTSB investigation “case studies”

7 Accident Case Studies USAir Flight 427 –Accident occurred September 8, 1994 –Final report adopted March 24, 1999 TWA Flight 800 –Accident occurred July 17, 1996 –Final report adopted August 23, 2000 Alaska Airlines Flight 261 –Accident occurred January 31, 2000 –Final report adopted December 30, 2002 American Airlines Flight 587 –Accident occurred November 12, 2001 –Final report adopted October 26, 2004

8 USAir Flight 427 September 8, 1994 Aliquippa, Pennsylvania 132 onboard, all fatal Boeing 737-300 Based on 1967 B737-100 type certificate Accident airplane placed in service October 1987 Safety-Critical System Main rudder power control unit (PCU) servo valve

9 USAir Flight 427 Certification Issues –Identification of failure modes –Use of lessons learned and operational data in safety assessments –Approval of derivative designs

10 TWA Flight 800 July 17, 1996, near East Moriches, New York 230 onboard, all fatal Boeing 747-131 Based on 1969 B747-100 type certificate Accident airplane placed in service October 1971 Safety-Critical System Center wing fuel tank

11 TWA Flight 800 Certification Issues –Collection and use of comprehensive and reliable failure data –Reliance on a flawed design and certification philosophy that focused only on eliminating ignition sources

12 Alaska Airlines Flight 261 January 31, 2000, near Anacapa Island, California 88 onboard, all fatal McDonnel Douglas MD-83 Based on 1965 DC-9 type certificate Accident airplane placed in service May 1992 Safety-Critical System Horizontal stabilizer trim system jackscrew assembly

13 Alaska Airlines Flight 261 Certification Issues –Design assumptions not considered in maintenance decisions –Need to monitor and analyze critical systems –Differential treatment of structures and systems

14 American Airlines Flight 587 November 12, 2001, Belle Harbor, New York 260 onboard, 5 on ground, all fatal Airbus Industrie A300- 605R Based on 1984 A-300 B2-1A type certificate Accident airplane placed in service July 1998 Safety-Critical System Rudder control system

15 American Airlines Flight 587 Certification Issues –Deficient certification standards –Use of information about aircrew behavior –Use of accident/incident data, service history, and operational data

16 Type Certification Process

17 Applicable Federal Regulations FARArea of Compliance Part 21Certification procedures Part 25 Airworthiness standards for transport category airplanes Parts 33, 34 & 36 Airworthiness standards for engines, noise, emissions Applicant responsible for design engineering and analysis

18 A.General B.Flight C.Structure D.Design and Construction E.Powerplants F.Equipment, Systems, and Installations G.Operating Limitations and Information Part 25 Subparts

19 Foreign Manufactured Airplanes FAA type certificate required for imported airplanes Governed by 14 CFR Part 21.29 and guidance provided in AC 21-23B Bilateral Agreement for Airworthiness –a government-to-government agreement –establishes procedures for accepting technical competence and regulatory capability of the aviation authority of the exporting country

20 Safety-Critical Systems Governed by 14 CFR Part 25, Subpart F: Equipment, Systems & Installations No explicit list of safety-critical systems No definition of “safety critical” Criticality identified in safety assessments

21 Safety-Critical Systems Report definition –where a failure condition would prevent the safe flight of the airplane, or –reduce the capability of the airplane or the ability of the crew to cope with adverse operating conditions

22 Type Certification Activities

23

24

25

26 Safety Assessments Governed by 14 CFR 25.1309 and outlined in AC25.1309-1A –Identify hazards and determine criticality –Use formal risk analysis techniques –Scope can be established by issue paper –Identify safety-critical systems

27 Analysis of Certification Safety Issues

28 Certification Safety Issues 1.Identification and documentation of safety-critical systems 2.Enhancements to safety assessments 3.Ongoing assessment of safety-critical systems

29 Safety Issue 1 Identification and documentation of safety-critical systems –Safety assessments can identify safety-critical systems –Results not consistently documented –Ongoing assessments compromised

30 Accident Case Study Support USAir Flight 427 –ETEB discovery of multiple failure modes Alaska Airlines Flight 261 –Changes to maintenance schedules without consideration of design assumptions Safety Issue 1: Identification and Documentation

31 Safety Issue 2 Enhancements to Safety Assessments

32 Safety Issue 2 Enhancements to safety assessments –Including failures associated with structures –Including failures associated with human interaction with airplane systems Safety Issue 2: Enhancements to Safety Assessments

33 Safety Issue 2 Including structural failures in safety assessments –No provision for considering effects of structural failures on systems –Different compliance methods Specific design and test criteria for structures Methods for assessing risk to systems Safety Issue 2: Enhancements to Safety Assessments

34 Accident Case Study Support Alaska Airlines Flight 261 –Distinction between structures and systems –Structural components of jackscrew assembly not evaluated as part of system –Issued recommendations to consider structural failures in risk assessments of horizontal stabilizer trim systems Safety Issue 2: Enhancements to Safety Assessments

35 Safety Issue 2 Including human/system interaction failures in safety assessments –Not explicitly considered –Human factors specified as standards or design criteria –Evaluation occurs late in process during ground and flight tests with experienced pilots Safety Issue 2: Enhancements to Safety Assessments

36 Other Agency Approaches Design and development explicitly consider human performance Evaluated in risk and hazard analyses Experience supports analysis of human performance in safety assessments Safety Issue 2: Enhancements to Safety Assessments

37 Accident Case Study Support American Airlines Flight 587 –No criteria for rudder pedal sensitivity –Evidence of pilot use of rudder in upset recovery –Pilot perception of rudder pedal effects Safety Issue 2: Enhancements to Safety Assessments

38 Safety Issue 3 Ongoing Safety Assessments

39 Safety Issue 3 Ongoing safety assessments –Assess safety-critical systems in light of experience, lessons learned, and new knowledge –Conduct assessments throughout life of airplane –Require organizational coordination Safety Issue 3: Ongoing Safety Assessments

40 Accident Case Study Support USAir Flight 427 –Service history supported FAA concerns –ETEB review identified new failure modes American Airlines Flight 587 –Pilot use of rudder Alaska Airlines Flight 261 –Changes made without sufficient data or analysis TWA Flight 800 –Re-examine underlying design philosophy Safety Issue 3: Ongoing Safety Assessments

41 Ongoing Assessment Process Well established process Accepted by industry Established guidelines, methods, and tools for ongoing safety assessments SAE ARP5150, Safety Assessment of Transport Airplanes in Commercial Service Safety Issue 3: Ongoing Safety Assessments

42 ARP5150 Five Step Process 1. Establish Monitor Parameters 2. Monitor for Events 3. Assess Event & Risk 4. Develop Action Plan 5. Evaluate Action Plan Safety Issue 3: Ongoing Safety Assessments

43 ARP5150 Benefits Provide feedback and coordination mechanisms Establish basis for collecting data to validate assumptions Prompt timely reviews Support ongoing assessment of safety-critical systems Safety Issue 3: Ongoing Safety Assessments

44

Download ppt "Safety Report Treatment of Safety-Critical Systems in Transport Airplanes Office of Research and Engineering."

Similar presentations

Module N° 4 – ICAO SSP framework

Module N° 4 – ICAO SSP framework
MAJOR REPAIRS AND ALTERATIONS

MAJOR REPAIRS AND ALTERATIONS
INPO Update CMBG Meeting June 2013

INPO Update CMBG Meeting June 2013
NTSB Board Meeting AA Flight 587 NTSB Board Meeting AA Flight 587 Rudder Control System Steven Magladry.

NTSB Board Meeting AA Flight 587 NTSB Board Meeting AA Flight 587 Rudder Control System Steven Magladry.
9 th Annual Public Health Finance Roundtable November 3, 2012 Boston, MA Peggy Honoré.

9 th Annual Public Health Finance Roundtable November 3, 2012 Boston, MA Peggy Honoré.
Product Recall – Airworthiness Directive (AD) 1 What: FAA issued a telegraphic Amendment 39-11847 to Airworthiness Directive (AD) 2000-03-51. The actions.

Product Recall – Airworthiness Directive (AD) 1 What: FAA issued a telegraphic Amendment to Airworthiness Directive (AD) The actions.
Satellite Notification and Acceptance Program (SNAP)

Satellite Notification and Acceptance Program (SNAP)
Safety Oversight System in India

Safety Oversight System in India
PACIFIC AVIATION DIRECTORS WORKSHOP MARCH 13-15, 2012 GUAM

PACIFIC AVIATION DIRECTORS WORKSHOP MARCH 13-15, 2012 GUAM
National Transportation Safety Board Robert L. Swaim Systems Engineering National Resources Specialist Speaking at the Aviation Wire and Inert Gas Generator.

National Transportation Safety Board Robert L. Swaim Systems Engineering National Resources Specialist Speaking at the Aviation Wire and Inert Gas Generator.
ICAO Provisions for Safety Management

ICAO Provisions for Safety Management
Functional Check Flights Presented by Wally Istchenko Chief Flight Test Transport Canada Functional Check Flight Symposium February 8-9, 2011 Vancouver,

Functional Check Flights Presented by Wally Istchenko Chief Flight Test Transport Canada Functional Check Flight Symposium February 8-9, 2011 Vancouver,
Integration of Quality Into Accident Investigation Processes ASQ Columbia Basin Section 614 John Cornelison January 2008.

Integration of Quality Into Accident Investigation Processes ASQ Columbia Basin Section 614 John Cornelison January 2008.
Lindy Hughes Fleet Fire Protection Program Engineer Southern Nuclear Operating Company June 4, 2013 Fire Protection.

Lindy Hughes Fleet Fire Protection Program Engineer Southern Nuclear Operating Company June 4, 2013 Fire Protection.
1 Certification Chapter 14, Storey. 2 Topics  What is certification?  Various forms of certification  The process of system certification (the planning.

1 Certification Chapter 14, Storey. 2 Topics  What is certification?  Various forms of certification  The process of system certification (the planning.
Slide 1 FAA’s Special Technical Audit of Boeing and the Audit Resolution Plan.

Slide 1 FAA’s Special Technical Audit of Boeing and the Audit Resolution Plan.
FAA Regulatory Policy for Composite Material Control Presented at 8/8/02 FAA/NASA Workshop (Chicago, IL) Introduction – Importance of stabilizing composite.

FAA Regulatory Policy for Composite Material Control Presented at 8/8/02 FAA/NASA Workshop (Chicago, IL) Introduction – Importance of stabilizing composite.
4 4 By: A. Shukr, M. Alnouri. Many new project managers have trouble looking at the “big picture” and want to focus on too many details. Project managers.

4 4 By: A. Shukr, M. Alnouri. Many new project managers have trouble looking at the “big picture” and want to focus on too many details. Project managers.
SMS Implications for Education Jim Dow Chief, Flight Training & Examinations Transport Canada Presentation to National Training Aircraft Symposium 4674888.

SMS Implications for Education Jim Dow Chief, Flight Training & Examinations Transport Canada Presentation to National Training Aircraft Symposium
Office of Safety Recommendations and Advocacy Previous Safety Board Recommendations Jeff Marcus Safety Recommendations and Advocacy.

Office of Safety Recommendations and Advocacy Previous Safety Board Recommendations Jeff Marcus Safety Recommendations and Advocacy.

Similar presentations

Ads by Google