On the use of non-coherent fault trees in safety and security studies

Abstract This paper gives some insights on the usefulness of non-coherent fault trees in system modelling from both the point of view of safety and security. A safety-related system can evolve from the working states to failed states through degraded states, i.e. working state, but in a degraded mode. In practical applications the degraded states may be of particular interest due e.g. to the associated risk increase or the different types of consequent actions. The top events definitions of such states contain the working conditions of some sub-systems/components. How the use of non-coherent fault trees can greatly simplify both the modelling and quantification of these states is shown in this paper. Some considerations about the interpretation of the importance indexes of negated basic events are also briefly described. When dealing with security applications, there is a need to cope not only with stochastic events, such as component failures and human errors, but also with deliberate intentional actions, whose successes might be characterised by high probability values. Different mutually exclusive attack scenarios may be envisaged for a given system. Hence, the essential feature of a fault tree analyser is the capability to determine the exact value of the top event probability containing mutually exclusive events. It is also shown that in these cases the use of non-coherent fault trees allows solving the problem with limited effort.

[1]  Toshiyuki Inagaki,et al.  Probabilistic Evaluation of Prime Implicants and Top-Events for Non-Coherent Systems , 1980, IEEE Transactions on Reliability.

[2]  John Andrews,et al.  The use of not logic in fault tree analysis , 2001 .

[3]  Cojazzi Giacomo,et al.  On the Exact Analysis of Non-Coherent Fault Trees: The Astra Package , 2006 .

[4]  Qin Zhang,et al.  Element Importance and System Failure Frequency of a 2-State System , 1985, IEEE Transactions on Reliability.

[5]  Contini Sergio,et al.  FT Analysis in Security Related Applications: Challenges and Needs , 2005 .

[6]  Howard E. Lambert Comments on the Lapp - Powers "Computer-Aided Synthesis of Fault Trees , 1979 .

[7]  P. C. Cacciabue,et al.  Dynamic logical analytical methodology versus fault tree: the case study of the auxiliary feedwater system of a nuclear power plant , 1986 .

[8]  G. de Cola,et al.  On the Exact Analysis of Non-Coherent Fault Trees: The ASTRA Package (PSAM-0285) , 2006 .

[9]  Zoe Nivolianitou,et al.  Reliability analysis of chemical processes by the DYLAM approach , 1986 .

[10]  G. Volta,et al.  Synthesis and analysis methods for safety and reliability studies , 1980 .

[11]  Antoine Rauzy,et al.  Efficient algorithms to assess component and gate importance in fault tree analysis , 2001, Reliab. Eng. Syst. Saf..

[12]  T. Bedford,et al.  Probabilistic Risk Analysis: Foundations and Methods , 2001 .

[13]  Richard E. Barlow,et al.  Statistical Theory of Reliability and Life Testing: Probability Models , 1976 .

[14]  John C. McDonald,et al.  Confronting the risks of terrorism: making the right decisions , 2004, Reliab. Eng. Syst. Saf..

[15]  M. O. Locks Synthesis of Fault Trees: An Example of Noncoherence , 1979, IEEE Transactions on Reliability.

[16]  Tunc Aldemir,et al.  Computer-Assisted Markov Failure Modeling of Process Control Systems , 1987, IEEE Transactions on Reliability.

[17]  John D. Andrews,et al.  Importance measures for noncoherent-system analysis , 2003, IEEE Trans. Reliab..

[18]  Vinh N. Dang,et al.  Probabilistic Safety Assessment and Management , 2004 .

[19]  R A La Band,et al.  Phased mission modelling using fault tree analysis , 2004 .

[20]  William H. Sanders,et al.  Model-based evaluation: from dependability to security , 2004, IEEE Transactions on Dependable and Secure Computing.

[21]  Qin Zhang,et al.  Reliability Analysis for a Real Non-Coherent System , 1987, IEEE Transactions on Reliability.

[22]  Steve Epstein,et al.  Can we trust PRA? , 2005, Reliab. Eng. Syst. Saf..

[23]  Giacomo Cojazzi,et al.  The DYLAM approach for the dynamic reliability analysis of systems , 1996 .

[24]  Jussi K. Vaurio Making systems with mutually exclusive events analysable by standard fault tree analysis tools , 2001, Reliab. Eng. Syst. Saf..

[25]  Gary J. Powers,et al.  Computer-aided Synthesis of Fault-trees , 1977, IEEE Transactions on Reliability.

[26]  A. Amendola,et al.  Event Sequences and Consequence Spectrum: A Methodology for Probabilistic Transient Analysis , 1981 .

[27]  L. Camarinopoulos,et al.  Failure frequencies of non-coherent structures , 1993 .

[28]  John D. Andrews,et al.  Birnbaum's measure of component importance for noncoherent systems , 2003, IEEE Trans. Reliab..