Modelling distributed crewing in commercial aircraft with STAMP for a rapid decompression hazard

Abstract Changes to crewing configurations in commercial airlines are likely as a means of reducing operating costs. To consider the safety implications for a distributed crewing configuration, system theoretic accident model and processes (STAMP) was applied to a rapid decompression hazard. High level control structures for current operations and distributed crewing are presented. The CONOPS generated by STAMP-STPA for distributed crewing, and design constraints associated with unsafe control actions (UCAs) are offered to progress in the route to certification for distributed crewing, and improve safety in current operations. Control loops between stakeholders were created using system-theoretic process analysis (STPA). The factors leading to the Helios 255 incident demonstrated the redundancy that a ground station could offer without the risk of hypoxia, during a decompression incident. STPA analysis also highlighted initial UCAs that could occur within the hypothetical distributed crewing configuration, prompting consideration of design constraints and new CONOPS for ground station design. Practitioner Summary: SPO in commercial aircraft is likely as a means to reduce costs. This paper makes a case for distributed crewing using STAMP-STPA. Comparing current operations with a distributed crewing configuration, the redundancy offered by a ground station is demonstrated. Design constraints and new CONOPs for distributed crewing, and current operations are proposed.

[1]  Steven J Pereira,et al.  A System-Theoretic Hazard Analysis Methodology for a Non-advocate Safety Assessment of the Ballistic Missile Defense System , 2006 .

[2]  Bernd Korn,et al.  A Tripartite Concept of a Remote-Copilot Center for Commercial Single-Pilot Operations , 2017 .

[3]  Zachary A Abecassis,et al.  Fault Tree Analysis , 2017, American journal of medical quality : the official journal of the American College of Medical Quality.

[4]  Kim-Phuong L. Vu,et al.  An Investigation of the Harbor Pilot Concept for Single Pilot Operations , 2015 .

[5]  Nancy G. Leveson,et al.  A new accident model for engineering safer systems , 2004 .

[6]  Nancy G. Leveson,et al.  Safety Guided Design of Crew Return Vehicle in Concept Design Phase Using Stamp / Stpa , 2011 .

[7]  Volker Gollnick,et al.  Impact of Reduced Crew Operations on Airlines - Operational Challenges and Cost Benefits , 2016 .

[8]  Steven J. Landry Human Factors and Ergonomics in Aviation , 2012 .

[9]  Nancy G. Leveson,et al.  A systems-theoretic approach to safety in software-intensive systems , 2004, IEEE Transactions on Dependable and Secure Computing.

[10]  Christopher Kenedi,et al.  Suicide and Murder-Suicide Involving Aircraft. , 2016, Aerospace medicine and human performance.

[11]  Deming Zhong,et al.  A STAMP Analysis on the China-Yongwen Railway Accident , 2012, SAFECOMP.

[12]  Paul G. Carlock,et al.  System of Systems (SoS) enterprise systems engineering for information‐intensive organizations , 2001 .

[13]  Nancy G. Leveson,et al.  Hazard Analysis of Complex Spacecraft Using Systems-Theoretic Process Analysis , 2014 .

[14]  Neville A Stanton,et al.  The future flight deck: Modelling dual, single and distributed crewing options. , 2016, Applied ergonomics.

[15]  David Harris,et al.  A human‐centred design agenda for the development of single crew operated commercial aircraft , 2007 .

[16]  M.D. Ingham,et al.  Application of a Safety-Driven Design Methodology to an Outer Planet Exploration Mission , 2008, 2008 IEEE Aerospace Conference.

[17]  Neville A. Stanton,et al.  Spot the difference: Operational event sequence diagrams as a formal method for work allocation in the development of single-pilot operations for commercial aircraft , 2015, Ergonomics.

[18]  Blake Ryan Abrecht,et al.  Systems Theoretic Process Analysis applied to an Offshore Supply Vessel dynamic positioning system , 2016 .

[19]  Harry Arnzen FAILURE MODE AND EFFECT ANALYSIS: A POWERFUL ENGINEERING TOOL FOR COMPONENT AND SYSTEM OPTIMIZATION , 1966 .

[20]  Gwe-Ya Kim,et al.  Application of systems and control theory-based hazard analysis to radiation oncology. , 2016, Medical physics.

[21]  Neville A. Stanton,et al.  Modelling distributed crewing with STAMP , 2016, HCI-Aero.

[22]  Guy Andre Boy Requirements for Single Pilot Operations in Commercial Aviation: A First High-Level Cognitive Function Analysis , 2014, CSDM.

[23]  John Thomas,et al.  Integration of Multiple Active Safety Systems using STPA , 2015 .

[24]  Sidney Dekker,et al.  A Systems Approach to Analyzing and Preventing Hospital Adverse Events , 2016, Journal of patient safety.

[25]  Neville A Stanton,et al.  Aviation as a system of systems: Preface to the special issue of human factors in aviation , 2010, Ergonomics.

[26]  John Thomas,et al.  Applying System Engineering to Pharmaceutical Safety , 2012 .

[27]  Ahmet Çakir Human performance on the flight deck , 2012, Behav. Inf. Technol..

[28]  Nancy G. Leveson,et al.  A New Approach to Hazard Analysis for Rotorcraft , 2016 .

[29]  Joel Lachter,et al.  NASA's Single-Pilot Operations Technical Interchange Meeting: Proceedings and Findings , 2013 .

[30]  Neville A. Stanton,et al.  Systems Theoretic Accident Model and Process (STAMP) safety modelling applied to an aircraft rapid decompression event , 2017 .

[31]  Nancy G. Leveson,et al.  Engineering a Safer World: Systems Thinking Applied to Safety , 2012 .

[32]  Nancy G. Leveson Software Challenges in Achieving Space Safety , 2009 .

[33]  Nancy G. Leveson,et al.  Integrating Systems Safety into Systems Engineering during Concept Development , 2015 .

[34]  Yong-Tai-Wen Railway Accident A System Theoretic Analysis of the “ 7 . 23 ” , 2012 .

[35]  Nancy G. Leveson,et al.  Improving Hazard Analysis and Certification of Integrated Modular Avionics , 2014, J. Aerosp. Inf. Syst..

[36]  Paul C. Schutte,et al.  Conceptual framework for single pilot operations , 2014 .

[37]  Nigel Slack,et al.  Failure Mode and Effect Analysis , 2015 .

[38]  Evaluating the Safety of Digital Instrumentation and Control Systems in Nuclear Power Plants , 2012 .