Utilization of risk priority number to systems-theoretic process analysis: A practical solution to manage a large number of unsafe control actions and loss scenarios

System-theoretic process analysis is a hazard identification method whose main assumption is that accidents can be caused by unsafe interactions of system components, as well as component failures. System-theoretic process analysis can cover a wider range of hazards compared with traditional hazard analysis methods, such as software flaws, human errors, component failures, and complex interactions of system components. Identifying more hazards is of course an important advantage of system-theoretic process analysis, but generating too many hazards may pose a practical challenge to stakeholders to utilize the results of system-theoretic process analysis. Some hazards or scenarios may be more critical with higher consequence, while others can be less critical with lower consequence. We therefore need to evaluate the analysis results to focus on more critical and important problems first, when we do not have enough time and resources. The main objective of this study has been to suggest an additional procedure to system-theoretic process analysis to ensure a systematic evaluation, screening, and prioritization of analysis results. The risk priority number approach was adopted to evaluate the criticality of the results of analyses. After investigating the strengths and limitations of traditional risk priority number approaches, three new risk priority number criteria along with four additional procedure steps were added to the system-theoretic process analysis for evaluation, screening, and prioritization of system-theoretic process analysis results. The proposed criteria and procedure have been demonstrated with a case study of a subsea gas compression system, and for this particular analysis, it was suggested that 38 of 130 unsafe control actions and 258 of 976 loss scenarios were significantly less critical and screened out, so that the resources could be prioritized to solve the remaining findings. Meanwhile, prioritization is still a rather new topic with system-theoretic process analysis, and in the end of the article, we have identified some ideas for further research in this area.

Download Full-text

A Comparison of Hazards and Efficiencies of Conventional and Adaptive Control Algorithms Using Systems-Theoretic Process Analysis

MATEC Web of Conferences ◽

10.1051/matecconf/201927302006 ◽

2019 ◽

Vol 273 ◽

pp. 02006

Author(s):

Sveinung Johan Ohrem ◽

HyungJu Kim ◽

Mary Ann Lundteigen ◽

Christian Holden

Keyword(s):

Control System ◽

Control Systems ◽

Oil And Gas ◽

Process Analysis ◽

Hazard Analysis ◽

Hazard Identification ◽

Pid Controllers ◽

Test Case ◽

Operating Region ◽

Mixed Oil

Control systems are an important and increasingly complex part of most industrial and non-industrial systems. As such, identifying and handling associated risks is increasingly important. Systems- Theoretic Process Analysis (STPA) is a relatively new hazard identification method developed to analyze modern, complex control systems. While traditional hazard analysis methods mainly focus on the failures of a system, STPA focuses on interactions among control commands and environmental conditions, so that potential non-failure problems, mainly caused by unsafe control actions, can be identified. Proportional-Integral-Derivative (PID) controllers are the most common conventional controllers (CCs) and are widely used in industry due to their simplicity. PID controllers are tuned for operation and based on the system behaviour, in a certain limited operating region. If the behavior and/or operating region of a system changes over time, the PID controller requires retuning to perform as desired and prevent loss of production, or accidents, due to inadequate control. Adaptive controllers (ACs) are able to self-adjust and adapt to changes in the system parameters and operating region, such that the overall control task is performed without the need for continuous re-tuning by an operator. The tuning of an AC is done once, at the time of implementation. This can be very helpful for both the efficiency and the safety of the control system. The interactions between the operator and the control system are reduced when the controller is able to self-adjust, potentially reducing the number of hazards. On the other hand, the complexity of ACs may introduce new kinds of hazards that do not exist when using CCs. In this paper, we compare CCs and ACs from both a control and a safety perspective using STPA. As a test case, we compare the efficiencies and hazards of a CC, and an AC applied to a pipeline-riser system subject to slug flow, a hazardous phenomenon occurring in mixed oil and gas pipes. This phenomenon is difficult to control since the behaviour changes drastically with different flow conditions.

Download Full-text

Algorithmic prediction of failure modes in healthcare

International Journal for Quality in Health Care ◽

10.1093/intqhc/mzaa151 ◽

2020 ◽

Author(s):

Ayala Kobo-Greenhut ◽

Ortal Sharlin ◽

Yael Adler ◽

Nitza Peer ◽

Vered H Eisenberg ◽

...

Keyword(s):

Adverse Events ◽

Failure Modes ◽

Medical Center ◽

Hazard Analysis ◽

Working Hours ◽

Hazard Identification ◽

Patient Identification ◽

Complete Identification ◽

Before And After ◽

Fmea Method

Abstract Background Preventing medical errors is crucial, especially during crises like the COVID-19 pandemic. Failure Modes and Effects Analysis (FMEA) is the most widely used prospective hazard analysis in healthcare. FMEA relies on brainstorming by multi-disciplinary teams to identify hazards. This approach has two major weaknesses: significant time and human resource investments, and lack of complete and error-free results. Objectives To introduce the algorithmic prediction of failure modes in healthcare (APFMH) and to examine whether APFMH is leaner in resource allocation in comparison to the traditional FMEA and whether it ensures the complete identification of hazards. Methods The patient identification during imaging process at the emergency department of Sheba Medical Center was analyzed by FMEA and APFMH, independently and separately. We compared between the hazards predicted by APFMH method and the hazards predicted by FMEA method; the total participants’ working hours invested in each process and the adverse events, categorized as ‘patient identification’, before and after the recommendations resulted from the above processes were implemented. Results APFMH is more effective in identifying hazards (P < 0.0001) and is leaner in resources than the traditional FMEA: the former used 21 h whereas the latter required 63 h. Following the implementation of the recommendations, the adverse events decreased by 44% annually (P = 0.0026). Most adverse events were preventable, had all recommendations been fully implemented. Conclusion In light of our initial and limited-size study, APFMH is more effective in identifying hazards (P < 0.0001) and is leaner in resources than the traditional FMEA. APFMH is suggested as an alternative to FMEA since it is leaner in time and human resources, ensures more complete hazard identification and is especially valuable during crisis time, when new protocols are often adopted, such as in the current days of the COVID-19 pandemic.

Download Full-text

Cybersafety Approach to Cybersecurity Analysis and Mitigation for Mobility-as-a-Service and Internet of Vehicles

Electronics ◽

10.3390/electronics10101220 ◽

2021 ◽

Vol 10 (10) ◽

pp. 1220

Author(s):

Chee Wei Lee ◽

Stuart Madnick

Keyword(s):

Autonomous Vehicles ◽

Process Analysis ◽

Hazard Analysis ◽

Urban Mobility ◽

Internet Of Vehicles ◽

On Demand ◽

Software Updates ◽

Levels Of Automation ◽

New Generation ◽

Convergence Of Technologies

Urban mobility is in the midst of a revolution, driven by the convergence of technologies such as artificial intelligence, on-demand ride services, and Internet-connected and self-driving vehicles. Technological advancements often lead to new hazards. Coupled with the increased levels of automation and connectivity in the new generation of autonomous vehicles, cybersecurity is emerging as a key threat affecting these vehicles. Traditional hazard analysis methods treat safety and security in isolation and are limited in their ability to account for interactions among organizational, sociotechnical, human, and technical components. In response to these challenges, the cybersafety method, based on System Theoretic Process Analysis (STPA and STPA-Sec), was developed to meet the growing need to holistically analyze complex sociotechnical systems. We applied cybersafety to coanalyze safety and security hazards, as well as identify mitigation requirements. The results were compared with another promising method known as Combined Harm Analysis of Safety and Security for Information Systems (CHASSIS). Both methods were applied to the Mobility-as-a-Service (MaaS) and Internet of Vehicles (IoV) use cases, focusing on over-the-air software updates feature. Overall, cybersafety identified additional hazards and more effective requirements compared to CHASSIS. In particular, cybersafety demonstrated the ability to identify hazards due to unsafe/unsecure interactions among sociotechnical components. This research also suggested using CHASSIS methods for information lifecycle analysis to complement and generate additional considerations for cybersafety. Finally, results from both methods were backtested against a past cyber hack on a vehicular system, and we found that recommendations from cybersafety were likely to mitigate the risks of the incident.

Download Full-text

The application of quality tools in effective implementation of HACCP

International Journal of Quality & Reliability Management ◽

10.1108/ijqrm-11-2017-0236 ◽

2018 ◽

Vol 35 (9) ◽

pp. 1920-1940 ◽

Cited By ~ 3

Author(s):

Manjeet Kharub ◽

Shah Limon ◽

Rajiv Kumar Sharma

Keyword(s):

Food Safety ◽

Hazard Analysis ◽

Safety System ◽

Hazard Identification ◽

Content Type ◽

Hazard Control ◽

Pca Method ◽

Pharmaceutical Industries ◽

Quality Tools

Purpose The purpose of this paper is to empirically investigate the quality tool’s impact on the effectiveness of the Hazard Analysis and Critical Control Point (HACCP)-based food safety system and correlation studies between HACCP effectiveness and business performance in food and pharmaceutical industries. Design/methodology/approach A total of 116 survey responses of prominent food and pharmaceutical firms are used to fulfil the aim of this study. The principal component analysis (PCA) method was applied to classify quality tools into a finite number of groups. Further, multiple regression methods are employed to investigate the correlation between HACCP effectiveness and firm’s performance indicators. Findings Quality tools are classified into three categories on the basis of their application by using the PCA method: quality tools for hazard identification, quality tools for hazard analysis (QTHA) and quality tools for hazard control. The regression analysis revealed that QTHA has a substantial impact on HACCP objectives (hazard identification, hazard assessment and hazard control). Additionally, the results suggest that the successful implementation of HACCP-based food safety system also delivers a direct influence on the operational and financial performance of the food and pharmaceutical industries. Originality/value This paper contributes to the existing body of HACCP knowledge by providing a framework supported by an empirical case study. The case study clustered quality tools into three broad categories related to their application of a HACCP project. Study results can guide and motivate managers to use quality tools with the aim of successful implantation of the HACCP-based food safety system, especially in food and pharmaceutical industries.

Download Full-text

ANALISIS PENERAPAN KESELAMATAN KERJA DALAM UPAYA PENGENDALIAN KECELAKAAN KERJA DI PT. BUDI DWIYASA PERKASA

Industrika: Jurnal Ilmiah Teknik Industri ◽

10.37090/indstrk.v3i1.124 ◽

2019 ◽

Vol 3 (1) ◽

Author(s):

Riana Septiani ◽

Keyword(s):

Hazard Analysis ◽

Assessment Method ◽

Hazard Identification ◽

Risk Level ◽

Accident Risk ◽

Risk Assessment Method ◽

Accident Data ◽

Safety Accident ◽

Plantation Company ◽

Work Done

Abstract In conducting activities, many found workers who did not use personal protective equipment, do not pay attention to safety in work and work done like without procedure. PT. Budi Dwiyasa Perkasais a plantation company palm oil. Based on accident data obtained work, there are 14 case of accident in April until June 2016 in PT. Budi Dwiyasa Perkasa. A major factor cause of the accident is unsafe actions and unsafe conditions. Hazard analysis needs to be done in order to prevent the accident of work. Hazard identification done with using the risk assessment method. This analysis of the technique used to determine the level of the risk of a job is a combination of between the possibility of the harms caused by the severity of the caused. The result of hazard identification with this method is used in a kind of work to have a high risk level and need to address special in order to prevent the accident. Keywords: safety, accident, risk, hazard identification,

Download Full-text

Analisis Risiko Keselamatan dan Kesehatan Kerja (K3) dengan Metode Hazard Analysis (Studi Kasus pada Proyek Pembangunan Perumahan)

Integrasi : Jurnal Ilmiah Teknik Industri ◽

10.32502/js.v5i1.2971 ◽

2020 ◽

Vol 5 (1) ◽

pp. 29

Author(s):

Nidya Wisudawati ◽

Rurry Patradhiani

Keyword(s):

Risk Assessment ◽

Hazard Analysis ◽

Risk Control ◽

Hazard Identification ◽

Risk Level

Risiko kecelakaan kerja merupahal hal yang tak dapat dihindari dari kegiatan proyek pembangunan. PT Gran Anugerah Wijaya merupakan pengusaha pengembang perumahan yang sedang mengerjakan proyek pembangunanan 58 unit rumah tipe 36 yang berlokasi di daerah Palembang. Dari hasil pengamatan lapangan, alur proses pembangunan rumah yang dikerjakan meliputi pemasangan pondasi, pemasangan dinding, pemasangan kusen kayu, pemasangan rangka atap dan finishing. Hazard Identification, Risk Assessment dan Risk Control telah dilakukan dlaam penelitian ini. Hasil yang didapat bahwa terdapat 27 potensi risiko dengan risk level diantara rendah hinggi tinggi. Pengendalian risiko yang bisa dilakaukan untuk mengurangi bahaya kerja terhadap karyawan bangunan diantaranya substitusi, administrasi dan Alat Pelindung Diri (APD).

Download Full-text

A Novel Hazard Analysis and Risk Assessment Approach for Road Vehicle Functional Safety through Integrating STPA with FMEA

Applied Sciences ◽

10.3390/app10217400 ◽

2020 ◽

Vol 10 (21) ◽

pp. 7400

Author(s):

Lei Chen ◽

Jian Jiao ◽

Tingdi Zhao

Keyword(s):

Risk Assessment ◽

Process Analysis ◽

Hazard Analysis ◽

International Standards ◽

Functional Safety ◽

Road Vehicles ◽

Effect Analysis ◽

Automotive Safety ◽

Safety Requirements ◽

Assessment Approach

ISO26262: 2018 is an international functional safety standard for electrical and/or electronic (E/E) systems within road vehicles. It provides appropriate safety requirements for road vehicles to avoid unreasonable residual risk according to automotive safety integrity levels (ASILs) derived from hazard analysis and risk assessment (HARA) required in the ISO26262 concept phase. Systems theoretic process analysis (STPA) seems to be designed specifically to deal with hazard analysis of modern complex systems, but it does not include risk evaluation required by most safety related international standards. So we integrated STPA into Failure Mode and Effect Analysis (FMEA) template to form a new method called system theoretic process analysis based on an FMEA template, STPAFT for shot, which could not only meet all the requirements of the concept phase in ISO26262, but also make full use of the advantages of the two methods. Through the focus of FMEA on low-level components, STPAFT can obtain more detailed causal factors (CFs), which is very helpful for derivation of safety goals (SGs) and the functional safety requirements (FSRs) in the concept phase of ISO26262. The application of STPAFT is described by the case study of fuel level estimation and display system (FLEDS) to show how the concept phase of ISO26262 could be supported by STPAFT.

Download Full-text

Combining system-theoretic process analysis and availability assessment: A subsea case study

Proceedings of the Institution of Mechanical Engineers Part O Journal of Risk and Reliability ◽

10.1177/1748006x18822224 ◽

2019 ◽

Vol 233 (4) ◽

pp. 520-536 ◽

Cited By ~ 2

Author(s):

Juntao Zhang ◽

Hyungju Kim ◽

Yiliu Liu ◽

Mary Ann Lundteigen

Keyword(s):

Process Analysis ◽

Discrete Event ◽

Hazard Identification ◽

Operating Conditions ◽

Stochastic Petri Nets ◽

Control Loops ◽

Event Simulation ◽

Maintainability Analysis ◽

Availability Assessment ◽

Software Intensive

Hazard identification methods are important tools to verify that the system is able to operate according to specifications under different operating conditions. Unfortunately, many of the traditional methods are not adequate to capture possible dysfunctional behavior of complex systems that involve highly coupled parts, non-linear interactions and software-intensive functionalities. The rather recent method named system-theoretic process analysis (STPA) is one promising candidate to improve the coverage of hazard identification in complex and software-intensive system. Still, there is no guideline for utilizing system-theoretic process analysis output to evaluate the potential of loss, which is important for basis of decision-making about system configuration and equipment selection. The focus of this article is to place an interface between system-theoretic process analysis and reliability, availability and maintainability (RAM) analysis. The approach named STPA-RAM model is proposed to translate feedback control loops into stochastic Petri nets for discrete event simulation. The proposed approach is demonstrated with a simple case related to subsea design concept. The major conclusion is that STPA-RAM model extends the application of system-theoretic process analysis, while also improving and as such reducing completeness uncertainty and model uncertainty, associated with input data and information for reliability, availability and maintainability analysis.

Download Full-text

System-Theoretic Process Analysis (STPA) for Hazard Analysis in Complex Systems: The Case of “Demand-Side Management in a Smart Grid”

Systems ◽

10.3390/systems8030033 ◽

2020 ◽

Vol 8 (3) ◽

pp. 33 ◽

Cited By ~ 1

Author(s):

Stylianos Karatzas ◽

Athanasios Chassiakos

Keyword(s):

Smart Grid ◽

Complex Systems ◽

Energy Management ◽

Demand Response ◽

Energy Demand ◽

Process Analysis ◽

Hazard Analysis ◽

Energy Market ◽

System Modelling ◽

Home Energy Management

Inelasticity of demand along with the distributed energy sources and energy market democratization pose significant challenges which have considerable negative impacts on overall grid balance. The need for increased capacity and flexibility in the era of energy market digitalization has introduced new requirements in the energy supply network which could not be satisfied without continuous and costly local power network upgrades. Additionally, with the emergence of Smart Homes (SHs) and Home Energy Management (HEM) systems for monitoring and operating household appliances, opportunities have arisen for automated Demand Response (DR). DR is exploited for the modification of the consumer energy demand, in response to the specific conditions within the electricity system (e.g., peak period network congestion). In order to optimally integrate DR in the broader Smart Grid (SG) system, modelling of the system parameters and safety analysis is required. In this paper, the implementation of STPA (System-Theoretic Process Analysis) structured method, as a relatively new hazard analysis technique for complex systems is presented and the feasibility of STPA implementation for loss prevention on a Demand Response system for home energy management, and within the complex SG context, is examined. The applied method delivers a mechanism useful in understanding where gaps in current operational risk structures may exist. The STPA findings in terms of loss scenarios can be used to generate a variety of safeguards to ensure secure operational control and in implementing targeted strategies through standard approaches of risk assessment.

Download Full-text

Hazard Analysis Critical Control Point (HACCP) in Sweet Potato’s Liquid Sugar

Innovation of Vocational Technology Education ◽

10.17509/invotec.v12i2.6203 ◽

2017 ◽

Vol 12 (2) ◽

Author(s):

Ai Mahmudatusaadah ◽

Sudewi Sudewi

Keyword(s):

Raw Materials ◽

Hazard Analysis ◽

Control Point ◽

Food Product ◽

Hazard Identification ◽

Black Shank ◽

Running Water ◽

Critical Control Point ◽

Chemical Hazards

To ensure the safety of food products to the consumer, required the application of Hazard Analysis Critical Control Point (HACCP). Liquid sugar is a food product which can be eaten directly or used as additives in the processing of other products. Stages in the HACCP plan includes identification of hazard analysis critical control point (CCP), the determination of the limit of danger, CCP monitoring, corrective action against danger verification, and documentation. Results of hazard identification no physical harm in the form of pebbles, hair; pesticide chemical hazards, biological hazards ants and black shank. CCP 1 was washing materials, CCP 2 was incubation, CCP 3 was Packaging. Critical limits for all hazards should be zero. Corrective measures must be of good quality raw materials. Wash in running water. Incubation at 400 C. Packaging using sterile packaging.

Download Full-text