Active STPA : integration of hazard analysis into a Safety Management System Framework

Silva Castilho, Diogo.

Author(s)

Silva Castilho, Diogo.

Download1143739911-MIT.pdf (29.88Mb)

Alternative title

Active Systems-Theoretic Process Analysis

Integration of hazard analysis into a Safety Management System Framework

Other Contributors

Massachusetts Institute of Technology. Department of Aeronautics and Astronautics.

Advisor

Nancy G. Leveson.

Terms of use

MIT theses are protected by copyright. They may be viewed, downloaded, or printed from this source but further reproduction or distribution in any format is prohibited without written permission. http://dspace.mit.edu/handle/1721.1/7582

Metadata

Show full item record

Abstract

This dissertation describes a new approach to integrate a hazard analysis into Safety Management Systems (SMS). This new engineering process guides safety managers and analysts in the identification of a migration toward states of higher risk. The solution is the use of an active version of STPA (Systems-Theoretic Process Analysis), a hazard analysis tool based on Systems-Theoretic Accident Model and Processes (STAMP). The Active STPA uses data collected during operations, such as Flight Data Monitoring events and voluntary reporting, to identify leading indicators of increasing risk. The events are compared with the STPA. The discrepancies lead to a reasoning about previous assumptions on human behavior and the environment in which the system operates. New defenses are identified and implemented. The output of the process is a set of new defenses for prevention and mitigation that will enforce the requirements and constraints generated by the STPA, allowing the generation of cumulative knowledge on system behavior over time. The feedback on SMS activities allows targeted safety improvement activities and provides qualitative information for hazard management integrating Active STPA into an SMS. Most of the indicators currently in use in the aviation industry are reactive because they measure only parameter exceedances. Active STPA allows a proactive identification of the potential cause of future accidents.

Description

Thesis: Ph. D., Massachusetts Institute of Technology, Department of Aeronautics and Astronautics, 2019

Cataloged from PDF version of thesis.

Includes bibliographical references (pages 135-137).

Date issued

2019

URI

https://hdl.handle.net/1721.1/124172

Department

Massachusetts Institute of Technology. Department of Aeronautics and Astronautics

MIT Libraries homeDSpace@MIT