Air Force System Safety Handbook - System Safety Society

More documents

Recommendations

Info

2.1 DoD Directives. DODD 5000.1 states overall policies and principles for all DOD acquisition programs and identifies key DOD acquisition officials and forums. DOD 5000.2-R spells out the specific acquisition procedures for major defense acquisition programs. It is a streamlined document that spells out overall top-level requirements. Para 3.3.7, Environmental, Safety, and Health Considerations, states: The acquisition strategy shall include a programmatic environmental, safety, and health (ESH) evaluation. The PM shall initiate the ESH evaluation at the earliest possible time in support of a program initiation decision (usually Milestone I) and shall maintain an updated evaluation throughout the lifecycle of the program. The ESH evaluation describes the PM's strategy for meeting ESH requirements (see 4.3.7), establishes responsibilities, and identifies how progress will be tracked. Para 4.3.7, Environment, Safety, and Health, states: All programs, regardless of acquisition category, shall comply with this section and be conducted in accordance with applicable federal, state, interstate, and local environmental laws and regulations, Executive Orders (EOs), treaties, and agreements. The PM shall ensure that the system can be tested, operated, maintained, and repaired in compliance with environmental regulations and the requirements of this section. Environmental, safety, and health (ESH) analyses shall be conducted, as described below, to integrate ESH issues into the systems engineering process and to support development of the Programmatic ESH Evaluation (see 3.3.7). Para 4.3.7.3, System Safety and Health, states in part: The PM shall identify and evaluate system safety and health hazards, define risk levels, and establish a program that manages the probability and severity of all hazards associated with development, use, and disposal of the system. All safety and health hazards shall be managed consistent with mission requirements and shall be cost-effective. Health hazards include conditions that create significant risks of death, injury, or acute chronic illness, disability, and/or reduced job performance of personnel who produce, test, operate, maintain, or support the system. Each management decision to accept the risks associated with an identified hazard shall be formally documented. The CAE shall be the final approval authority for acceptance of high risk hazards. All participants in joint programs shall approve acceptance of high risk hazards. Acceptance of serious risk hazards may be approved at the PEO level. It should be noted that the regulation does not define High or Serious risk hazards. Accordingly, AFI 91-202, Chapter 9, provides specific definition to these levels of hazards. 2.2 USAF Policy. USAF Responsibilities. Historically, Air Force responsibilities had been defined in DODI 5000.36, System Safety Engineering and Management. DODI 5000.36 was replaced by DODI 5000.2, Part 6, Section I, and later by DOD5000.2-R, para 4.3.7. which did not specifically call out DoD CHAPTER 2 SYSTEM SAFETY POLICY AND PROCESS 13 components’ responsibilities. However, the USAF system safety duties are still valid. They are: (1) Establish system safety programs for each system acquisition. (2) Summarize system safety at design and program reviews. (3) Establish programs to ensure application of MIL-- STD-882. (4) Maintain historical system safety data for use by all DoD components and contractors. (5) Support DoD system programs with trained system safety personnel. (6) Maintain records of system safety lessons learned. (7) Develop guidelines for evaluating contractors’ safety efforts. (8) Consider safety technologies which could reduce risk. (9) Integrate system safety and human factors engineering. (10) Consider contractor incentives for lower mishap rates. (11) Establish a system safety point of contact. (12) Develop and promote improved system safety engineering techniques. USAF Program Requirements. These requirements remain valid for system safety programs. (1) Define safe operating limits. (2) Ensure that historical safety data are considered. (3) Provide for preliminary hazard analyses during system concept exploration to define the scope and level of detail of the required system safety effort. (4) Apply MIL-STD-882 to identify hazards and associated risk with the system and determine remedial priorities. (5) Establish procedures to ensure timely follow-up on identified hazards and implement corrective action. (6) Formally document each management decision to accept the risks associated with an identified hazard. (7) Ensure that the Test and Evaluation Master Plan addresses safety-critical issues to validate the results of system safety analyses. When normal testing cannot demonstrate safe system operation, prepare and monitor special safety tests and evaluations. (8) Integrate system safety engineering and management into the total system acquisition program. (9) Ensure that system safety requirements are consistent with the technology of other disciplines, such as reliability, maintainability, and human factors engineering. (10) Eliminate or control hazards in systems before the production and deployment phase. (11) Ensure, when applicable, the transfer of the system safety program and its associated documentation from the developing organization to the appropriate support organization after system deployment. (12) Require a follow-on system safety effort after initial operational capability to ensure that: (a) Mission or design changes made after deployment do not introduce hazards or degrade
existing levels of system safety and that changes to enhance system safety are implemented. (b) Appropriate hazard analyses take place throughout the deployment phase of systems. (c) Procedures for identifying, tracking, storing, handling, and disposing of hazardous materials and equipment associated with systems are developed and implemented. USAF OPRs. Within the Air Force, specific offices of primary responsibility (OPRs) and duties for system safety were outlined in AFR 800-16, USAF System Safety Program. With the many organizational and regulatory changes recently in DOD acquisition, AFR 800-16 required replacement with other appropriate guidance. Chapter 9 of AFI 91-202l contains this guidance. A recent study by the Air Force Safety Center gives a good outline of duties by OPRs. It is based on a historical review of system safety duties and then is updated with current trends affecting the acquisition process. Figure 2-1 lists these responsibilities by OPR. 2.3 Designing for Safety. Meeting the objectives of system safety stated in paragraph 1.2 is done within the constraints of cost, schedule, and performance. Maximum effectiveness is obtained by applying system safety principles early and throughout the life cycle of the system. By Milestone I, it is estimated that 70 percent of the cost of building and operating a system is predetermined. Thus, comprehensive early planning can provide substantial benefits. Early attention to engineering considerations minimizes design changes to correct safety deficiencies. Late hardware changes historically add weight, complexity, decrease reliability, increase maintenance time, and cost money and time. (36:3) Specific design requirements are found in standards, specifications, regulations, design handbooks, and other guidance. Some general system safety design requirements have evolved over the last 40 years and are summarized in Chapter 4. 2.4 System Safety Process. (28:17-19) Before discussing the various aspects of a system safety program, the general system safety process must be understood. The system safety process is a logical, engineering approach for obtaining system safety objectives. A simplified model of the process is shown in Figure 2-2. This closed loop process can be realistically followed for systems of any complexity without losing the effectiveness of the 14 process or overburdening the program management. The system safety process can be applied at any point in the system life cycle, but the greatest advantages are achieved when it is used early in the acquisition life cycle. This process is normally repeated as the system evolve or changes and as problem areas are identified. Block 0 Experimental Data Next System The System Safety Process Figure 2-2 Block 1 System Definition Block 2 System Safety Analyses Block 3 Corrective Action Block 4 Test &Operational Use Block 5 Increased Safety Assurance Block 0--Experimental Data. Experimental data represent corporate memory/lessons learned or knowledge gained from operation of previous systems similar to the one under consideration. This information is usually scattered in many different sources and must be identified and collected to be useful. Of particular interest is previous action taken to correct design features that have resulted in accidental damage, loss, injury, or death. This corrective action includes design changes, production/operational retrofits, and operating/maintenance procedures changes. This collection of reference information can be useful as inputs to the preliminary hazard analysis. Block 1--System Definition. The first step in the process is to clearly define the system under consideration. The system elements must be specified as early as possible and revised as required during the system life cycle. System definitions must also include major system interfaces such as system operating condition, environmental situation, and the human role in system operation. The object of good system definition is to set limits for the following steps in the process and reduce complex systems to manageable parts.
Page 1 and 2: “designing the safest possible sy
Page 3 and 4: Chapter Page Forward ..............
Page 5 and 6: Fig # Title Page 1-1 System Safety
Page 7 and 8: Acceptable Risk. That part of ident
Page 9 and 10: Articles/Papers REFERENCES 1. Cleme
Page 11 and 12: 1.3 Need for System Safety. Why is
Page 13 and 14: integrated with other factors that
Page 15 and 16: Figure 1-4 SYSTEM SAFETY OBJECTIVES
Page 17 and 18: 9. Nature and severity of hazards u
Page 19 and 20: CONCEPT EXPLORATION • Evaluate sy
Page 21: CONSTRUCTION (facilities) • Ensur
Page 25 and 26: (a) Provides risk assessments to SA
Page 27 and 28: Block 5--Increased Safety Awareness
Page 29 and 30: 3.1 Definitions. System safety is a
Page 31 and 32: 3.4 Mishap Severity Categories and
Page 33 and 34: FREQUENCY OF OCCURRENCE Figure 3-5
Page 35 and 36: j. To point out to a designer how h
Page 37 and 38: g. Ensure that the appropriate syst
Page 39 and 40: Figure 4-1 FUNCTIONS OF SAFETY ORGA
Page 41 and 42: An explosive safety program encompa
Page 43 and 44: Quality assurance establishes polic
Page 45 and 46: safety requirements have been impos
Page 47 and 48: instead uses the tailoring process
Page 49 and 50: 5.1 SSPP--Task 102. (Note: Task num
Page 51 and 52: This section of the plan contains t
Page 53 and 54: program tasking should be sufficien
Page 55 and 56: h. Develop a method of exchanging s
Page 57 and 58: 7.1 Analyses. (28:39-40) Role of An
Page 59 and 60: d. Any other events, that considera
Page 61 and 62: CONCEPT STUDIES (PHL) SYSTEM SAFETY
Page 63 and 64: design specifications. In addition,
Page 65 and 66: a. Of the modes of failure, includi
Page 67 and 68: . Potential material substitutions
Page 69 and 70: are identified, monitored, and comp
Page 71 and 72: 9.1 Fault Hazard Analysis. (33:47-4
Page 73 and 74:
The SCA of military systems has inc
Page 75 and 76:
doors, sunglasses, machine guards,
Page 77 and 78:
Checklists)? There are others, such
Page 79 and 80:
not directly provide useful informa
Page 81 and 82:
c. Procedures, manuals, etc. These
Page 83 and 84:
shutdown. This is a relatively smal
Page 85 and 86:
c. Perform or update the PHA done d
Page 87 and 88:
(2) Adequate safety provisions are
Page 89 and 90:
11.1 Program Office Description. A
Page 91 and 92:
management officer (DMO) is usually
Page 93 and 94:
Once the details of these tasks are
Page 95 and 96:
arrangements, an assessment of the
Page 97 and 98:
f. Assist the contractors in making
Page 99 and 100:
12.1 Contracting Principles. (34:6-
Page 101 and 102:
A SOO is attached to an RFP to spec
Page 103 and 104:
Type E - Material Specifications Ty
Page 105 and 106:
Type A--System/Segment Specificatio
Page 107 and 108:
13.1 Process. CHAPTER 13 EVALUATING
Page 109 and 110:
ascertain if the safety requirement
Page 111 and 112:
Develop and prepare program plans a
Page 113 and 114:
The contractor SSPP will be updated
Page 115 and 116:
Facility safety design criteria is
Page 117 and 118:
10. Skill in written and oral commu
Page 119 and 120:
eflect the local concern for operat
Page 121 and 122:
c. Review equipment installation, o
Page 123 and 124:
15.1 Acceptable/Unacceptable Risk.
Page 125 and 126:
FACILITIES SYSTEM SAFETY INDUSTRIAL
Page 127 and 128:
15.3 Biomedical Safety. (37:Chapter
Page 129 and 130:
• Mishap Class/system identificat
Page 131 and 132:
c. A Nuclear Safety Cross-check Ana
Page 133 and 134:
17.1 General. There are many variat
Page 135 and 136:
characteristics are under configura
Page 137 and 138:
The AFMC supplement to AFI-91-202 p
Page 139 and 140:
TRB DEFICIENCY REPORTS MISHAP REPOR
Page 141 and 142:
these elements should be investigat
Page 143 and 144:
The modification risk-assessment su
Page 145 and 146:
20.1 General. Test and Evaluation (
Page 147 and 148:
Development of these scenarios crea
Page 149 and 150:
isk, or to stop the test until the
Page 151 and 152:
Figure A-1. Mission Requirements/El
Page 153 and 154:
• Capability (task loading) • O
Page 155 and 156:
preliminary hazard list. The major
Page 157 and 158:
• System Hazard Analysis • Oper
Page 159 and 160:
sensitivity analysis. Here, an asse
Page 161:
(5) Revising Maintenance Requiremen
show all

Air Force System Safety Handbook - System Safety Society

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?