Establishing a Framework for Dynamic Risk Management in 'Intelligent' Aero-Engine Control

The behaviour of control functions in safety critical software systems is typically bounded to prevent the occurrence of known system level hazards. These bounds are typically derived through safety analyses and can be implemented through the use of necessary design features. However, the unpredictability of real world problems can result in changes in the operating context that may invalidate the behavioural bounds themselves, for example, unexpected hazardous operating contexts as a result of failures or degradation. For highly complex problems it may be infeasible to determine the precise desired behavioural bounds of a function that addresses or minimises risk for hazardous operation cases prior to deployment. This paper presents an overview of the safety challenges associated with such a problem and how such problems might be addressed. A self-management framework is proposed that performs on-line risk management. The features of the framework are shown in context of employing intelligent adaptive controllers operating within complex and highly dynamic problem domains such as Gas-Turbine Aero Engine control. Safety assurance arguments enabled by the framework necessary for certification are also outlined.

[1]  Peter J. Fleming,et al.  Fuzzy scheduling control of a gas turbine aero-engine: a multiobjective approach , 2002, IEEE Trans. Ind. Electron..

[2]  Tim Kelly,et al.  Using Agent-Based Modelling Approaches to Support the Development of Safety Policy for Systems of Systems , 2006, SAFECOMP.

[3]  Alex Rogers,et al.  A multi-agent simulation system for prediction and scheduling of aero engine overhaul , 2008, AAMAS.

[4]  K.Y. Lee,et al.  A multi-agent system-based intelligent control system for a power plant , 2005, IEEE Power Engineering Society General Meeting, 2005.

[5]  Kalyanmoy Deb,et al.  Nonlinear goal programming using multi-objective genetic algorithms , 2001, J. Oper. Res. Soc..

[6]  David Clark,et al.  Safety and Security Analysis of Object-Oriented Models , 2002, SAFECOMP.

[7]  M. Sugeno,et al.  Derivation of Fuzzy Control Rules from Human Operator's Control Actions , 1983 .

[8]  Jim Austin A grid based diagnostics and prognosis system for rolls royce aero engines: the DAME project , 2004, Proceedings of the Second International Workshop on Challenges of Large Applications in Distributed Environments, 2004. CLADE 2004..

[9]  K. Deb Non-linear Goal Programming Using Multi-Objective Genetic Algorithms , 1998 .

[10]  Andrzej Wardzinski,et al.  Safety Assurance Strategies for Autonomous Vehicles , 2008, SAFECOMP.

[11]  Tim Kelly,et al.  Using fuzzy self-organising maps for safety critical systems , 2007, Reliab. Eng. Syst. Saf..

[12]  Tim Kelly,et al.  Arguing Safety - A Systematic Approach to Managing Safety Cases , 1998 .

[13]  Peter G. Bishop,et al.  Justification of Smart Sensors for Nuclear Applications , 2005, SAFECOMP.

[14]  Tim Kelly,et al.  Using Safety Critical Artificial Neural Networks in Gas Turbine Aero-Engine Control , 2005, SAFECOMP.

[15]  Gustavo A. Santana Torrellas A Framework for Multi-Agent System Engineering using Ontology Domain Modelling for Security Architecture Risk Assessment in E-Commerce Security Services , 2004, NCA.

[16]  Zeshan Kurd,et al.  Artificial Neural Networks in Safety-critical Applications , 2002 .

[17]  R. Andoga,et al.  Digital Electronic Control of a Small Turbojet Engine - MPM 20 , 2008, 2008 International Conference on Intelligent Engineering Systems.

[18]  R. Bell,et al.  IEC 61508: functional safety of electrical/electronic/ programme electronic safety-related systems: overview , 1999 .

[19]  Jeff Magee,et al.  Self-Managed Systems: an Architectural Challenge , 2007, Future of Software Engineering (FOSE '07).

[20]  Radu Calinescu,et al.  Using quantitative analysis to implement autonomic IT systems , 2009, 2009 IEEE 31st International Conference on Software Engineering.

[21]  K.Y. Lee,et al.  A multi-agent system-based intelligent identification system for power plant control and fault-diagnosis , 2006, 2006 IEEE Power Engineering Society General Meeting.

[22]  Tim Kelly,et al.  Using fuzzy self-organising maps for safety critical systems , 2007, Reliab. Eng. Syst. Saf..

[23]  T. P. Kelly,et al.  Towards Conflict Detection and Resolution of Safety Policies , 2006 .

[24]  James Inge Defence Standard 00-56 Issue 4: Safety Management Requirements for Defence Systems , 2007 .

[25]  Rob Alexander,et al.  Using Simulation for Systems of Systems Hazard Analysis , 2007 .

[26]  Benjamin Kuipers,et al.  Designing safe, profitable automated stock trading agents using evolutionary algorithms , 2006, GECCO.

[27]  Tim Kelly,et al.  Safety Lifecycle for Developing Safety Critical Artificial Neural Networks , 2003, SAFECOMP.