电子电气工程与控制

基于STAMP/STPA的机轮刹车系统安全性分析

  • 郑磊 ,
  • 胡剑波
展开
  • 空军工程大学 装备管理与安全工程学院, 西安 710051

收稿日期: 2016-02-16

  修回日期: 2016-06-03

  网络出版日期: 2016-06-06

Safety analysis of wheel brake system based on STAMP/STPA

  • ZHENG Lei ,
  • HU Jianbo
Expand
  • College of Material Management and Safety Engineering, Air Force Engineering University, Xi'an 710051, China

Received date: 2016-02-16

  Revised date: 2016-06-03

  Online published: 2016-06-06

摘要

把机轮刹车系统在飞机降落过程中的安全性问题当作系统控制问题,不采用基于故障概率模型的事故模型,而是采用基于系统理论的事故模型和过程(STAMP),构建机轮刹车系统在飞机降落过程中的STAMP控制关联模型和系统理论过程分析(STPA)反馈控制回路。根据系统运行的上下文信息识别机轮刹车系统在飞机降落过程中的不安全控制行为,分析产生不安全控制行为的关键原因。对机轮刹车系统在飞机降落过程中的不安全控制行为进行仿真研究,结果表明了STAMP/STPA的有效性和用仿真方法分析安全性问题的可行性。

本文引用格式

郑磊 , 胡剑波 . 基于STAMP/STPA的机轮刹车系统安全性分析[J]. 航空学报, 2017 , 38(1) : 320144 -320144 . DOI: 10.7527/S1000-6893.2016.0178

Abstract

The safety analysis of wheel brake system in the aircraft landing process is regarded as a system control problem in this paper. Instead of the accident model based on failure probability, we use the systems-theoretic accident model and process (STAMP) accident model based on systems thinking to construct the STAMP control interaction model and the systems-theoretic process analysis (STPA) feedback control loop of wheel brake system. Furthermore, the unsafe control actions in the aircraft landing process are identified by the context of running system, and the causes of unsafe control actions are analyzed. Finally, the unsafe control actions of wheel brake system in the aircraft landing process are studied by simulation. It is shown that the STAMP/STPA method is effective and the simulation method is feasible with respect to safety analysis.

参考文献

[1] HAYHURST E R. Industrial accident prevention:A scientific approach[J]. Industrial & Labor Relations Review, 1932(1):119-120.
[2] HICKEY J, QI V E H. Effectiveness of accident models:System theoretic model vs. the Swiss Cheese model:A case study of a US Coast Guard aviation mishap[J]. International Journal of Risk Assessment & Management, 2013, 17(1):46-68.
[3] SURYOPUTRO M R, SARI A D, KURNIA R D. Preliminary study for modeling train accident in indonesia using Swiss Cheese model[J]. Procedia Manufacturing, 2015(3):3100-3106.
[4] PERNEGER T V. The Swiss Cheese model of safety incidents:Are there holes in the metaphor?[J]. Bmc Health Services Research, 2005, 5(1):71.
[5] REASON J. Revisiting the 《Swiss Cheese》 model of accidents[EB/OL].[2016-02-16]. https://www.researchgate.net/publication/285486777, 2006.
[6] HOLLNAGEL E, GOTEMAN Ö. The functional resonance accident model[C]//Proceedings of Cognitive System Engineering in Process Plant, 2004:155-161.
[7] HOLLNAGEL E. The changing nature of risk[J]. Biological Bulletin, 2008, 19(3):179-194.
[8] GAN X S. Analysis of aviation accident based on functional resonance accident model[J]. China Safety Science Journal, 2013, 23(7):67-72.
[9] YAO S. Applying system-theoretic accident model and processes (STAMP) to hazard analysis[D]. Hamilton:Mcmaster University, 2012.
[10] HONMA K, HASHIMOTO A, MITOMO N. GS-5 evaluation of an aircraft accident by event tree analysis[J]. International Review of Trachoma, 1959, 36(1):5-56.
[11] ASNAR Y, GIORGINI P. Modelling risk and identifying countermeasure in organizations[C]//International Conference on Critical Information Infrastructures Security. Berlin:Springer, 2006:55-66.
[12] YUAN H. Network topology model and fault analysis for electrical control systems[M]. London:Springer, 2012.
[13] HUANG G Q, MAK K L. Failure mode and effect analysis (FMEA) over the WWW[C]//Internet Applications in Product Design and Manufacturing. Berlin:Springer, 2003.
[14] MIKULAK R J, MCDERMOTT R, BEAUREGARD M. The basics of FMEA[M]. 2nd ed. New York:Productivity Press, 2008.
[15] CARVALHO P V R D. The use of functional resonance analysis method (FRAM) in a mid-air collision to understand some characteristics of the air traffic management system resilience[J]. Reliability Engineering & System Safety, 2011, 96(11):1482-1498.
[16] LEVESON N G. A new accident model for engineering safer systems[J]. Safety Science, 2004, 42(4):237-270.
[17] LEVESON N G. Engineering a safer world:Systems thinking applied to safety[M]. Massachusetts:MIT Press, 2012.
[18] LIU J. Safety analysis on control system for water level of steam generator in nuclear power plant based on STAMP model[J]. Journal of Safety Science and Technology, 2014, 10(5):78-83.
[19] FLEMING C H, LEVESON N G. Improving hazard analysis and certification of integrated modular avionics[J]. Journal of Aerospace Information Systems, 2014, 11(6):397-411.
[20] 修忠信. 民用飞机系统安全性设计与评估技术概论[M]. 上海:上海交通大学出版社, 2013. XIU Z X. System safety design & assessment in civil aircraft[M]. Shanghai:Shanghai Jiao Tong University Press, 2013(in Chinese).
[21] 陈洁. 飞机防滑刹车系统控制器的设计及仿真研究[D]. 长沙:中南大学, 2014. CHEN J. Design and simulation of aircraft anti-skid brake system controller[D]. Changsha:Central South University, 2014(in Chinese).
[22] 刘文胜. 航空机轮的刹车瞬态热场模拟[J]. 粉末冶金材料科学与工程, 2015, 20(2):168-174. LIU W S. Transient thermal field simulation of aircraftwheel[J]. Materials Science and Engineering of Powder Metallurgy, 2015, 20(2):168-174(in Chinese).
[23] 张明,聂宏. 飞机地面转弯和刹车响应动力学分析[J]. 航空学报, 2008, 29(3):616-621. ZHANG M, NIE H. Dynamicsanalysis of aircraft ground steering and braking responses[J]. Acta Aeronautica et Astronautica Sinica, 2008, 29(3):616-621(in Chinese).Psychology Association, 2008.
[7]Hollnagel. The changing nature of risk[J]. Ergonomics Australia Journal, 2008, 22(1-2):33-46.
[8]Gan X S. Analysis of Aviation Accident Based on Functional Resonance Accident Model[J]. China Safety Science Journal, 2013, 23(7):67-72.
[9]Song Y, Song Y. Applying System-Theoretic Accident Model and Processes (STAMP) to Hazard Analysis[J]. Mcmaster University Library, 2012.
[10]Honma K, Hashimoto A, Mitomo N. GS-5 Evaluation of an aircraft accident by event tree analysis[C]// Industrial, Chemical Machinery & Safety Division Conference. The Japan Society of Mechanical Engineers, 2014.
[11]Asnar. Modelling Risk and Identifying Countermeasure in Organizations, in Critical Information Infrastructures Security, J. Lopez, Editor[J]. Springer Berlin Heidelberg. 2006:55-56.
[12]Yuan H. Network Topology Model and Fault Analysis for Electrical Control Systems[M]. Springer London,2012
[13]Huang G Q, Mak K L. Failure Mode and Effect Analysis (FMEA) Over the WWW[M]// Internet Applications in Product Design and Manufacturing. Springer Berlin Heidelberg, 2003.
[14]Raymond J. Mikulak, Robin McDermott, Michael Beauregard. The Basics of FMEA, 2nd Edition[M]. Productivity Press, 2008
[15]Carvalho P V R D. The use of Functional Resonance Analysis Method (FRAM) in a mid-air collision to understand some characteristics of the air traffic management system resilience[J]. Reliability Engineering & System Safety, 2011, 96(11):1482-1498.
[16]Nancy G. Leveson. A New Accident Model for Engineering Safer Systems[J]. Safety Science, 2004, 42(4):237-270.
[17]Nancy G. Leveson. Engineering a Safer World:Systems Thinking Applied to Safety[M]. MIT Press, 2012.
[18]LIU Jie. Safety analysis on control system for water level of steam generator in nuclear power plant based on STAMP model[J]. Journal of Safety Science and Technology, 2014, 10(5):78-83.
[19]Cody Harrison Fleming and Nancy G. Leveson. Improving Hazard Analysis and Certification of Integrated Modular Avionics[J]. Journal of Aerospace Information Systems, 2014, 11(6):397-411.
[20]XiuZhongxin. System Safety Design & Assessment in Civil Aircraft[M]. Shanghai Jiao Tong University Press, 2013.
[21]陈洁.飞机防滑刹车系统控制器的设计及仿真研究[D].长沙:中南大学,2014.
[22]刘文胜.航空机轮的刹车瞬态热场模拟[J].粉末冶金材料科学与工程,2015,20(2):168-174.

文章导航

/