Definitions
- Horse
- Posts: 11559
- Joined: Sun Mar 15, 2020 11:30 am
- Location: Always sunny southern England
- Has thanked: 6198 times
- Been thanked: 5088 times
Definitions
Probably of little interest to anyone other than Spin and me
A discussion paper published recently, proposed interesting (re-) definitions of some terms (context is AVs) , from usual, such as:
- Safety: absence of unreasonable risk
• Unreasonable risk: risk judged to be unacceptable in a certain context according to valid societal moral concepts
• Risk: combination of the probability of occurrence of harm and the severity of that harm
• Severity: estimate of the extent of harm to one or more individuals that can occur in a potentially hazardous event
• Hazardous event: combination of a hazard and an operational situation
• Hazard: potential source of harm caused by malfunctioning behavior of the item
• Harm: physical injury or damage of persons
• Malfunctioning behavior: failure or unintended behavior of an item with respect to its design intent
• Operational situation: scenario that can occur
To:
- Acceptable: meets all safety constraints as shown by a safety case Note: The phrase “acceptably safe” might be used in some contexts. While “Safety” is used as a modifier, use of the word “safe” alone should be avoided.
• Safety case: structured argument, supported by a body of evidence, that provides a compelling, comprehensible, and sound argument that safety engineering efforts have ensured a system meets a comprehensive set of safety constraints. Note: This emphasizes meeting constraints rather than net risk. A limit to defined operational environments is intentionally excluded.
• Safety engineering: a methodical process of ensuring a system meets all its safety constraints throughout its lifecycle, including hazard analysis, risk assessment, risk mitigation, validation, and field engineering feedback. Note: Requires safety engineering beyond brute force test validation. Hazard analysis is broadened to address all safety constraints.
• Safety constraint: a limitation imposed on risk or other aspects of the system by stakeholder requirements . Note: This implicitly requires identification of stakeholders who might be affected by losses, and makes it more straightforward to view safety as a multi-dimensional constrained optimization problem rather than a mostly one-dimensional pure risk optimization problem [Koopman24b]. Safety constraints might include: limits on individual risks, limits on net risk, exposure limits for specified types of risk patterns, and issues that are difficult to trace to pure risk.
• Risk: combination of the probability of occurrence of a loss, or pattern of losses, and the importance to stakeholders of the associated consequences. Note: Consequence (severity) might be an overriding concern regardless of probability. Net importance can be non-linearly related to individual losses if
forming a pattern. Correlated loss events, inequitable loss patterns, and loss patterns involving a failure to mitigate emergent loss trends are in-scope.
• Loss: an adverse outcome, including damage to the system itself, negative societal externalities, damage to property, damage to the environment, injury or death to animals, and injury or death to people
Note: This is broader in scope than some other typical definitions of loss or harm. Some types of loss might be assigned very low severity in some application domains. Allocation of blame does not affect whether a loss occurred.
A discussion paper published recently, proposed interesting (re-) definitions of some terms (context is AVs) , from usual, such as:
- Safety: absence of unreasonable risk
• Unreasonable risk: risk judged to be unacceptable in a certain context according to valid societal moral concepts
• Risk: combination of the probability of occurrence of harm and the severity of that harm
• Severity: estimate of the extent of harm to one or more individuals that can occur in a potentially hazardous event
• Hazardous event: combination of a hazard and an operational situation
• Hazard: potential source of harm caused by malfunctioning behavior of the item
• Harm: physical injury or damage of persons
• Malfunctioning behavior: failure or unintended behavior of an item with respect to its design intent
• Operational situation: scenario that can occur
To:
- Acceptable: meets all safety constraints as shown by a safety case Note: The phrase “acceptably safe” might be used in some contexts. While “Safety” is used as a modifier, use of the word “safe” alone should be avoided.
• Safety case: structured argument, supported by a body of evidence, that provides a compelling, comprehensible, and sound argument that safety engineering efforts have ensured a system meets a comprehensive set of safety constraints. Note: This emphasizes meeting constraints rather than net risk. A limit to defined operational environments is intentionally excluded.
• Safety engineering: a methodical process of ensuring a system meets all its safety constraints throughout its lifecycle, including hazard analysis, risk assessment, risk mitigation, validation, and field engineering feedback. Note: Requires safety engineering beyond brute force test validation. Hazard analysis is broadened to address all safety constraints.
• Safety constraint: a limitation imposed on risk or other aspects of the system by stakeholder requirements . Note: This implicitly requires identification of stakeholders who might be affected by losses, and makes it more straightforward to view safety as a multi-dimensional constrained optimization problem rather than a mostly one-dimensional pure risk optimization problem [Koopman24b]. Safety constraints might include: limits on individual risks, limits on net risk, exposure limits for specified types of risk patterns, and issues that are difficult to trace to pure risk.
• Risk: combination of the probability of occurrence of a loss, or pattern of losses, and the importance to stakeholders of the associated consequences. Note: Consequence (severity) might be an overriding concern regardless of probability. Net importance can be non-linearly related to individual losses if
forming a pattern. Correlated loss events, inequitable loss patterns, and loss patterns involving a failure to mitigate emergent loss trends are in-scope.
• Loss: an adverse outcome, including damage to the system itself, negative societal externalities, damage to property, damage to the environment, injury or death to animals, and injury or death to people
Note: This is broader in scope than some other typical definitions of loss or harm. Some types of loss might be assigned very low severity in some application domains. Allocation of blame does not affect whether a loss occurred.
Even bland can be a type of character
Re: Definitions
• Safety engineering: a methodical process of ensuring a system meets all its safety constraints throughout its lifecycle, including hazard analysis, risk assessment, risk mitigation, validation, and field engineering feedback. Note: Requires safety engineering beyond brute force test validation. Hazard analysis is broadened to address all safety constraints.
That's my job description.
- Cousin Jack
- Posts: 4465
- Joined: Mon Mar 16, 2020 4:36 pm
- Location: Down in the Duchy
- Has thanked: 2554 times
- Been thanked: 2287 times
- Cousin Jack
- Posts: 4465
- Joined: Mon Mar 16, 2020 4:36 pm
- Location: Down in the Duchy
- Has thanked: 2554 times
- Been thanked: 2287 times
- Horse
- Posts: 11559
- Joined: Sun Mar 15, 2020 11:30 am
- Location: Always sunny southern England
- Has thanked: 6198 times
- Been thanked: 5088 times
- Horse
- Posts: 11559
- Joined: Sun Mar 15, 2020 11:30 am
- Location: Always sunny southern England
- Has thanked: 6198 times
- Been thanked: 5088 times
Re: Definitions
I used to call myself a professional pessimistTaff wrote: ↑Mon Apr 29, 2024 9:04 pmThat's my job description.• Safety engineering: a methodical process of ensuring a system meets all its safety constraints throughout its lifecycle, including hazard analysis, risk assessment, risk mitigation, validation, and field engineering feedback. Note: Requires safety engineering beyond brute force test validation. Hazard analysis is broadened to address all safety constraints.
Even bland can be a type of character
- Cousin Jack
- Posts: 4465
- Joined: Mon Mar 16, 2020 4:36 pm
- Location: Down in the Duchy
- Has thanked: 2554 times
- Been thanked: 2287 times
Re: Definitions
Obvious, innit.
Other people.
I do a finely judged overtake.
You are pushing your luck.
They are idiots with a death wish.
Simples
Cornish Tart #1
Remember An Gof!
Remember An Gof!
Re: Definitions
It depends who is accepting it. If I was a potential victim my criteria for acceptability may differ from those of a potential perpetrator.
Mind you I don't have the energy to read through the whole set of definitions......
- Horse
- Posts: 11559
- Joined: Sun Mar 15, 2020 11:30 am
- Location: Always sunny southern England
- Has thanked: 6198 times
- Been thanked: 5088 times
Re: Definitions
Ah, ok. I was taking it to its limits.
Something like a radiation leak is invisible to everyone.
Your definition sounds like the assessment and marking scheme on one of my training courses
Something like a radiation leak is invisible to everyone.
Your definition sounds like the assessment and marking scheme on one of my training courses
Even bland can be a type of character
-
- Posts: 4096
- Joined: Mon Mar 16, 2020 6:17 pm
- Has thanked: 2636 times
- Been thanked: 1523 times
Re: Definitions
I'm reminded of Colin Chapman... his principle of 'simplify, then add lightness' applies to definitions too.
- Horse
- Posts: 11559
- Joined: Sun Mar 15, 2020 11:30 am
- Location: Always sunny southern England
- Has thanked: 6198 times
- Been thanked: 5088 times
Re: Definitions
Go on thenThe Spin Doctor wrote: ↑Wed May 01, 2024 5:54 pm I'm reminded of Colin Chapman... his principle of 'simplify, then add lightness' applies to definitions too.
Even bland can be a type of character
Re: Definitions
I sometimes feel that some people get too hung up with definitions and splitting hairs between a couple of words.
What really matters is that someone is actually doing a good job of the safety assessment process and developing good safety requirements.
In aerospace ARP4761 tells us exactly how to do this work and I regularly tell our design engineers our first goal is to do good engineering to get a good qualitative argument, and then we'll work out the quantitative argument (fault trees)
What really matters is that someone is actually doing a good job of the safety assessment process and developing good safety requirements.
In aerospace ARP4761 tells us exactly how to do this work and I regularly tell our design engineers our first goal is to do good engineering to get a good qualitative argument, and then we'll work out the quantitative argument (fault trees)
-
- Posts: 4096
- Joined: Mon Mar 16, 2020 6:17 pm
- Has thanked: 2636 times
- Been thanked: 1523 times
Re: Definitions
I thought your first list was good.Horse wrote: ↑Wed May 01, 2024 8:08 pmGo on thenThe Spin Doctor wrote: ↑Wed May 01, 2024 5:54 pm I'm reminded of Colin Chapman... his principle of 'simplify, then add lightness' applies to definitions too.
- Horse
- Posts: 11559
- Joined: Sun Mar 15, 2020 11:30 am
- Location: Always sunny southern England
- Has thanked: 6198 times
- Been thanked: 5088 times
Re: Definitions
To be honest, so did IThe Spin Doctor wrote: ↑Thu May 02, 2024 11:52 pmI thought your first list was good.Horse wrote: ↑Wed May 01, 2024 8:08 pmGo on thenThe Spin Doctor wrote: ↑Wed May 01, 2024 5:54 pm I'm reminded of Colin Chapman... his principle of 'simplify, then add lightness' applies to definitions too.
But presumably it's not sufficient for AVs.
Even bland can be a type of character
Re: Definitions
If you want to geek out on the real geekery of systems safety, have a mooch about in the publications on this website - the Safety Critical Systems Club. it's free to create a login.
there's loads and loads of papers dedicated to Autonomous Vehicles and their safety, one of the more recent ones talks around how we can determine what is an acceptable level of safety for an AV. It's a minefield.
https://scsc.uk/
there's loads and loads of papers dedicated to Autonomous Vehicles and their safety, one of the more recent ones talks around how we can determine what is an acceptable level of safety for an AV. It's a minefield.
https://scsc.uk/
- Horse
- Posts: 11559
- Joined: Sun Mar 15, 2020 11:30 am
- Location: Always sunny southern England
- Has thanked: 6198 times
- Been thanked: 5088 times
Re: Definitions
That's one of the reasons that MoD are developing AVs
Even bland can be a type of character