Maritime UK MASS CoP v2

More documents

Recommendations

Info

10 System Integrity Certification & Test Procedures 10.1 Objective The objective of this Chapter is to outline the certification and test procedures required for the situational awareness, control and other mission-critical systems within a MASS. 10.2 Scope 10.2.1 Verification shall be undertaken to provide assurance that the Situational Awareness and Control System complies with the provisions of this Code and remains compliant throughout its life. 10.2.2 The Risk Assessment for the MASS shall be reviewed in detail, to check that no critical single point failures have been overlooked. The Risk Assessment shall be confirmed as being thorough and conservative in its safety assessment. 10.3 System test based on Risk Assessment 10.3.1 All safety critical items covered by failure sensing and remedial action, or by dual or multiple redundancy, having been highlighted in the Risk Assessment, shall be individually tested by simulating each failure mode of each sub-system or component and verifying that the backup measures are effective in mitigating any critical consequences. 10.3.2 The effects of power failures shall be checked, to ensure that simultaneous power failures on several sub-systems do not invalidate critical safety measures that rely on dual redundant systems. 10.3.3 System integrity testing shall be performed in a hierarchical manner in such a way as to ensure that each submodule functions in accordance with performance requirements. Integration testing shall be performed to test the interfaces and the performance of the combined systems. 10.3.4 Electronic systems shall be installed in the same manner as for manned vessels. This includes EMC compliance, use of enclosures and connectors with suitable marine grade IP ratings, communications standards EIA-422, EIA-232, NMEA 0183 and NMEA 2000 and others as appropriate. 10.3.5 Simulators may be used to verify levels of performance of some but not all systems. This includes autopilot performance, collision avoidance algorithms, though not the systems whose performance is critically dependent on real-world stimuli, such as optical and inertial sensors. 52 MASS UK Code of Practice Version 2
10.4 Sensor tests 10.4.1 Any sensor whose performance is critical to MASS safety shall be tested and certified to give reliable results. As far as possible, this may be done for each sensor type; in some cases, the sensor performance is largely independent of the platform on which it is mounted. 10.4.2 Where indicated by the Risk Assessment, and where sensor performance is to some degree influenced by the platform on which it is mounted, sea trials shall be performed using the sensor/MASS combination, to test external and internal sensors in a real maritime environment that meets or exceeds the most demanding environments for which the MASS is to be certified. 10.4.3 In some cases, the dependence of sensor performance on the host platform is such that the tests may be performed using a representative platform, i.e. one where the sensor performance is expected to be equivalent or worse than on the MASS itself. This means that the sensor may be certified, on the basis of one set of trials, for many MASS platforms. In such cases, the critical parameters of the test and MASS platforms in question shall be recorded for comparison and justification. For example, if sensor performance depends positively upon antenna height above sea level, the test may be performed on a trials vessel using a lower antenna height, to provide accreditation for use on all MASS with higher antenna mountings. 10.5 Emergency Stop test 10.5.1 The Emergency Stop systems shall be tested, using all defined methods of triggering Emergency Stop, singly and in combination, and under datalink failure conditions, to demonstrate that the Emergency Stop system is fail safe. 10.6 Cyber security 10.6.1 Cyber security is defined as the protection of information systems from theft or damage to the hardware, the software, and to the information on them, as well as from disruption or manipulation of the data for the services they provide. 10.6.2 MASS shall have cyber security measures to protect sensors and control systems as far as practicable and necessary. 10.6.3 Key risks are identified as (but not limited to): n Backdoors; n Denial of Service; n Direct Access; n Eavesdropping; n Tampering. 10.6.4 Key systems to be protected are those concerned with vital situational awareness and the display thereof (e.g. position sensors, heading sensors), control (steering, waypoint generation), operator override (including Emergency Stop provisions. MASS UK Code of Practice Version 2 53
Page 1 and 2: BEING A RESPONSIBLE INDUSTRY Mariti
Page 3 and 4: Contents 1 FOREWORD 1.1 Background
Page 5 and 6: 11 OPERATOR STANDARDS OF TRAINING,
Page 7 and 8: 1 Foreword 1.1 Background 1.1.1 The
Page 9 and 10: to comply with a specified standard
Page 11 and 12: 2 Definitions In this code the foll
Page 13 and 14: “Competent Person” in respect o
Page 15 and 16: Definitions for Level of Control (L
Page 17 and 18: 3 Application This Code applies to
Page 19 and 20: 3.6 Carriage of Additional Equipmen
Page 21 and 22: 4.4 Ship type 4.4.1 MASS will have
Page 23 and 24: 4.7.4 For trials activities, as opp
Page 25 and 26: Schedule: Dates / times Location Ac
Page 27 and 28: 5 Vessel Design & Manufacture Stand
Page 29 and 30: 5.5 Stability 5.5.1 The buoyancy, s
Page 31 and 32: 5.11.2 Construction surveys should
Page 33 and 34: Table 6.1: Navigation Lights Overal
Page 35 and 36: 7 Situational Awareness & Control 7
Page 37 and 38: 7.4.5 The Risk Assessment shall be
Page 39 and 40: 7.7.3 Third party data feeds may al
Page 41 and 42: 7.11 Propulsion control 7.11.1 MASS
Page 43 and 44: 8 Communications Systems 8.1 Object
Page 45 and 46: 8.5 RF Communications Installation
Page 47 and 48: Table 9.1: Tasking Cycle of a MASS
Page 49 and 50: n BCS Operator: - Receives commands
Page 51: 9.8 Relationship between autonomy l
Page 55 and 56: 11 Operator Standards of Training,
Page 57 and 58: 11.5.3 It is the responsibility of
Page 59 and 60: Table 11.3: MASS Training Needs Key
Page 61 and 62: ANNEX A TO CHAPTER 11 MASS Generic
Page 63 and 64: 12 Identification, Registration, Ce
Page 65 and 66: 12.4.2 Each and every MASS, whether
Page 67 and 68: 13 Safety Management 13.1 Objective
Page 69 and 70: 13.5.7 The system and form of docum
Page 71 and 72: 13.10 Manning requirements for larg
Page 73 and 74: 13.14.3 Training needs analysis sho
Page 75 and 76: 14 Security 14.1 Objective The obje
Page 77 and 78: 14.5 MASS Security Plan 14.5.1 The
Page 79 and 80: 14.9 Verification and certification
Page 81 and 82: 15.5 Air pollution 15.5.1 All engin
Page 83 and 84: 16.2.6 For vessels engaged on voyag
Page 85 and 86: 16.6.3 Documentation: n When carryi
Page 87 and 88: n Class 2.2 Non-flammable, non-toxi
Page 89 and 90: 17.4.2 The duty is qualified by wha
Page 91 and 92: 19 Glossary AIS Automatic Identific

Maritime UK MASS CoP v2

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?