Systems Dependability Assessment

Similar documents
Time Frequency Domain for Segmentation and Classification of Non-stationary Signals

Modeling, Estimation and Optimal Filtering in Signal Processing. Mohamed Najim

Intelligent knowledge based systems in electrical power engineering

Power Electronics Semiconductor Switches

Computer Automation in Manufacturing

Innovations and Techno-ecological Transition

Fundamentals of Industrial Control

Power Electronics Semiconductor Devices

Testing Safety-Related Software

Intelligent Control Systems with LabVIEW

Protection of Electrical Networks. Christophe Prévé

Design of Logic Systems

AIRCRAFT CONTROL AND SIMULATION

CONTENTS PREFACE. Part One THE DESIGN PROCESS: PROPERTIES, PARADIGMS AND THE EVOLUTIONARY STRUCTURE

Radio-Frequency Human Exposure Assessment

Marketing and Designing the Tourist Experience

Innovations and the Environment

Product Development Strategy

Knowledge Management and Innovation

PRACTICAL RF SYSTEM DESIGN

Pulse-Width Modulated DC-DC Power Converters Second Edition

Manufacturing Challenges in Electronic Packaging

Advanced Information and Knowledge Processing

FUNDAMENTALS OF SIGNALS AND SYSTEMS

PREDICTIVE CONTROL OF POWER CONVERTERS AND ELECTRICAL DRIVES

Corrosion Inspection and Monitoring

The Test and Launch Control Technology for Launch Vehicles

RFID HANDBOOK THIRD EDITION

Causality, Correlation and Artificial Intelligence for Rational Decision Making

Electrical Machines Diagnosis

SIGNAL PROCESSING OF POWER QUALITY DISTURBANCES

Precoding and Signal Shaping for Digital Transmission

Modelling Non-Stationary Time Series

Principles of Data Security

INTEGRATED AUDIO AMPLIFIERS IN BCD TECHNOLOGY

HIGH INTEGRITY DIE CASTING PROCESSES

Analysis and Design of Autonomous Microwave Circuits

New Challenges for Knowledge

The Challenge of British Management

MODERN DAIRY TECHNOLOGY

Online Computation and Competitive Analysis

MARY SHELLEY'S EARLY NOVELS

Multivariate Permutation Tests: With Applications in Biostatistics

Jan de Witt s Elementa Curvarum Linearum Liber Secundus

The Efficient Market Hypothesists

Lecture Notes in Control and Information Sciences 233. Editor: M. Thoma

DOI: / Sociology in France after 1945

Inside the Smart Home

Troubleshooting Process Plant Control

RAMS analysis of GNSS based localisation system for the train control application

2nd Edition 00_Bird Book_FM.indd 3 5/2/2017 3:24:44 PM

Preface... Acknowledgments... Glossary Introduction Management Systems and the Management of Chemical Process Safety...

CELLULAR TECHNOLOGIES FOR EMERGING MARKETS

BRITAIN S WINNING FORMULA

Springer Series in Reliability Engineering

PART XIII Fidelity and Security of Measurement Data

CL Digital Control Kannan M. Moudgalya

Fundamentals of Global Positioning System Receivers

Strategy for Tourism Second edition

Recreational Land Management

Mobile Broadband Multimedia Networks

E E Verification and Control of Hybrid Systems

Graduate Texts in Mathematics. Editorial Board. F. W. Gehring P. R. Halmos Managing Editor. c. C. Moore

Chess Skill in Man and Machine

ARTIFICIAL INTELLIGENCE IN POWER SYSTEMS

THE FIELDS OF ELECTRONICS

FOCUS COMPUTER ENGINEERING SERIES. Eyestrain Reduction. Laure Leroy

ADVANCED POWER ELECTRONICS CONVERTERS

60 GHz TECHNOLOGY FOR GBPS WLAN AND WPAN

Francis Fukuyama s The End of History and the Last Man

System Architecture. Strategy and Product Development for Complex Systems. Global edition. Global edition. Edward Crawley Bruce Cameron Daniel Selva

Additive Manufacturing

Advanced Signal Processing and Digital Noise Reduction

International Entrepreneurship

This document is a preview generated by EVS

Digital Control System Analysis and Design

AutoCAD for Windows Express

OIL, ECONOMIC DEVELOPMENT AND DIVERSIFICATION IN BRUNEI DARUSSALAM

Arts Management and Cultural Policy Research

Design Constraints for NFC Devices

This page intentionally left blank

NO MORE MUDDLING THROUGH

Fault Diagnosis of Hybrid Dynamic and Complex Systems

Computational Principles of Mobile Robotics

Kenneth Nordtvedt. Many genetic genealogists eventually employ a time-tomost-recent-common-ancestor


Understanding Digital Signal Processing

AN INTRODUCTION TO THE ANALYSIS AND PROCESSING OF SIGNALS

NCW101 AN INTRODUCTION TO NETWORK CENTRIC WARFARE FIRST EDITION

Digital Signal Processing

INSTRUMENTATION AND CONTROL SYSTEMS SECOND EDITION

This page intentionally left blank

EXERGY, ENERGY SYSTEM ANALYSIS AND OPTIMIZATION Vol. III - Artificial Intelligence in Component Design - Roberto Melli

Implementing Flexible Manufacturing Systems

Synchronization in Digital Communications

Design of Ultra Wideband Antenna Matching Networks

Glossary of terms. Short explanation

The Management of Technical Change

MANAGING STRATEGY PROCESSES IN EMERGENT INDUSTRIES

Advances in Direction-of-Arrival Estimation

Transcription:

FOCUS RISK MANAGEMENT AND DEPENDABILITY SERIES Systems Dependability Assessment Modeling with Graphs and Finite State Automata Jean-François Aubry Nicolae Brinzei

Systems Dependability Assessment

FOCUS SERIES Series Editor Jean-François Aubry Systems Dependability Assessment Modeling with Graphs and Finite State Automata Jean-François Aubry Nicolae Brînzei

First published 2015 in Great Britain and the United States by ISTE Ltd and John Wiley & Sons, Inc. Apart from any fair dealing for the purposes of research or private study, or criticism or review, as permitted under the Copyright, Designs and Patents Act 1988, this publication may only be reproduced, stored or transmitted, in any form or by any means, with the prior permission in writing of the publishers, or in the case of reprographic reproduction in accordance with the terms and licenses issued by the CLA. Enquiries concerning reproduction outside these terms should be sent to the publishers at the undermentioned address: ISTE Ltd John Wiley & Sons, Inc. 27-37 St George s Road 111 River Street London SW19 4EU Hoboken, NJ 07030 UK USA www.iste.co.uk www.wiley.com ISTE Ltd 2015 The rights of Jean-François Aubry and Nicolae Brînzei to be identified as the authors of this work have been asserted by them in accordance with the Copyright, Designs and Patents Act 1988. Library of Congress Control Number: 2014956809 British Library Cataloguing-in-Publication Data A CIP record for this book is available from the British Library ISSN 2051-2481 (Print) ISSN 2051-249X (Online) ISBN 978-1-84821-765-2

Contents PREFACE... ix INTRODUCTION... xiii PART 1. PREDICTED RELIABILITY OF STATIC SYSTEMS; A GRAPH-THEORY BASED APPROACH... 1 CHAPTER 1. STATIC AND TIME INVARIANT SYSTEMS WITH BOOLEAN REPRESENTATION... 3 1.1. Notations... 3 1.2. Order relation on U... 4 1.3. Structure of a system... 6 1.3.1. State diagram of a system... 6 1.3.2. Monotony of an SF, coherence of a system... 7 1.4. Cut-set and tie-set of a system... 9 1.4.1. Tie-set... 9 1.4.2. Cut-set... 10 CHAPTER 2. RELIABILITY OF A COHERENT SYSTEM.. 13 2.1. Demonstrating example... 15 2.2. The reliability block diagram (RBD)... 18 2.3. The fault tree (FT)... 21 2.4. The event tree... 26

vi Systems Dependability Assessment 2.5. The structure function as a minimal union of disjoint monomials... 28 2.5.1. Ordered graph of a monotone structure function.. 29 2.5.2. Maxima and minima of the ordered graph... 31 2.5.3. Ordered subgraphs of the structure function... 32 2.5.4. Introductory example... 33 2.5.5. Construction of the minimal Boolean form... 37 2.5.6. Complexity... 43 2.5.7. Comparison with the BDD approach... 45 2.6. Obtaining the reliability equation from the Boolean equation... 49 2.6.1. The traditional approach... 49 2.6.2. Comparison with the structure function by Kaufmann 50 2.7. Obtain directly the reliability from the ordered graph.. 52 2.7.1. Ordered weighted graph... 53 2.7.2. Algorithm... 56 2.7.3. Performances of the algorithm... 59 CHAPTER 3. WHAT ABOUT NON-COHERENT SYSTEMS?... 61 3.1. Example of a non-coherent supposed system... 61 3.2. How to characterize the non-coherence of a system?.. 63 3.3. Extension of the ordered graph method... 66 3.3.1. Decomposition algorithm... 67 3.4. Generalization of the weighted graph algorithm... 68 CONCLUSION TO PART 1... 73 PART 2. PREDICTED DEPENDABILITY OF SYSTEMS IN A DYNAMIC CONTEXT... 75 INTRODUCTION TO PART 2... 77 CHAPTER 4. FINITE STATE AUTOMATON... 83 4.1. The context of discrete event system... 83 4.2. The basic model... 84

Contents vii CHAPTER 5. STOCHASTIC FSA... 89 5.1. Basic definition... 89 5.2. Particular case: Markov and semi-markov processes... 90 5.3. Interest of the FSA model... 91 5.4. Example of stochastic FSA... 92 5.5. Probability of a sequence... 93 5.6. Simulation with Scilab... 94 5.7. State/event duality... 95 5.8. Construction of a stochastic SFA... 96 CHAPTER 6. GENERALIZED STOCHASTIC FSA... 101 CHAPTER 7. STOCHASTIC HYBRID AUTOMATON... 105 7.1. Motivation... 105 7.2. Formal definition of the model... 105 7.3. Implementation... 107 7.4. Example... 109 7.5. Other examples... 116 7.5.1. Control temperature of an oven... 116 7.5.2. Steam generator of a nuclear power plant... 118 7.6. Conclusion... 120 CHAPTER 8. OTHER MODELS/TOOLS FOR DYNAMIC DEPENDABILITY VERSUS SHA... 121 8.1. The dynamic fault trees... 121 8.1.1. Principle... 121 8.1.2. Equivalence with the FSA approach... 124 8.1.3. Covered criteria... 126 8.2. The Boolean logic-driven Markov processes... 126 8.2.1. Principle... 126 8.2.2. Equivalence with the FSA approach... 127 8.2.3. Covered criteria... 127 8.3. The dynamic event trees (DETs)... 128 8.3.1. Principle... 128 8.3.2. Equivalence with the FSA approach... 129

viii Systems Dependability Assessment 8.3.3. Covered criteria... 130 8.4. The piecewise deterministic Markov processes... 131 8.4.1. Principle... 131 8.4.2. Equivalence with the FSA approach... 131 8.4.3. Covered criteria... 132 8.5. Other approaches... 132 CONCLUSION AND PERSPECTIVES... 135 APPENDIX... 137 BIBLIOGRAPHY... 173 INDEX... 181

Preface Systems dependability assessment Systems dependability assessment! Many excellent books deal with this subject and describe its evolution from its beginning, at the end of World War II. We can recall the ability of the first computers that were occasionally in an operating state. From this time, a lot of robust methods and tools made the analysis and the assessment of their failures possible, in order for the potential users of these new technologies to rely on them. The word reliability was born. The safe development of electronics and then of computing, aerospace and nuclear technologies became possible. So it is logical to ask the question of the relevancy of a new book. In fact, it was found that the simplifying hypotheses commonly used to access the predictive measures of reliability are sometimes difficult to justify and that they can produce pessimistic values compared to the feedback experience or optimistic forecasting of rare dangerous events. This induced a lot of research in the specialized community, for example in the Automatic Control Research Center (Centre de Recherche en Automatique de Nancy CRAN) of the University of Lorraine, France. These are some of the works that we will modestly report in this book. They constituted significant contributions to recent approaches of predictive dependability due to resorting to concepts developed in automatic control but not yet turned to account of dependability. We

x Systems Dependability Assessment can cite, for example, graph theory, finite-state automata, Petri nets, Bayesian approach and fuzzy sets. These developments spanned over approximately the last two decades and gave some original advances in the field, and it is difficult for us not to make a connection with the Nancy School of Art Nouveau one century ago. In fact, perhaps we could have called this book Systems Dependability Assessment; Beyond traditional approaches, the Nancy School! Let us enter now into more technical and scientific considerations to give the clarifications that the title of this book deserves. Dependability The CEI 50 (191) standard [IEC 90] defines dependability as the ability of an entity to assume one or more requested functions in given conditions. This very general and non-quantitative notion may be further specified by its generally associated attributes which are [LAP 95]: hindering or barriers, achievement means, validation means and measures. Our contribution rightly takes a place within the latter, and especially in quantitative measures. Nevertheless, it is difficult to give a single value for this measure as the dependability is actually a concept including three components [IEC 90]: reliability, maintainability and availability. These three components, as well as their measures which are probabilities, are formally defined in the CEI 50 (191) standard. The lifetime (or time before failure) and the repair time of an entity are considered as random time variables whose distribution functions define, respectively, the reliability and the maintainability of the entity. The availability is the probability for the entity of being in operation at a given time instant, knowing that the entity could have been alternatively in operation or in repair states. Its asymptotic value is generally an interesting measure. In the Appendix, the basic mathematical definitions are recalled. However, the CEI 50 (191) standard does not consider safety as a component of dependability. Safety is the ability of an entity to avoid the appearance of critical or catastrophic events that may affect

Preface xi equipment or staff. The measure of the safety may be defined as a probability; however, it is also important to assess it with regard to the consequence of the occurrence of these critical or catastrophic events. This leads to the concept of risk, a risk being evaluated by the association of the occurrence frequency (or probability) of a dangerous event and the damage it induces on goods, people and environment. It is not the main purpose for this book to deal with risk management; nevertheless, it may be considered that a system may be in a dangerous state as well as in an availability state, both being sometimes compatible. As we will see later, it is possible to assess the probability for a system of being in any subset of its possible states and, for example, the subset of safe states. We can find in the CEI 61508 [IEC 98] a probabilistic approach of the functional safety that we can qualify as the reliability of systems responsible for safety loops in industrial plants. That is why it is difficult not to consider safety as a fourth element of dependability, especially when it is a matter of probabilistic assessment. Many authors and agencies prefer the RAMS acronym for reliability, availability, maintainability and safety instead of dependability. However, RAMS has a wider extension, covering all the attributes of dependability and safety: hindering, achievement means, validation means, and quantitative as well as qualitative measures. System By the term system, we mean a set of components interacting together to perform one or more predefined functions. Components and system are included in the definitions of dependability under the generic term entity ; however, their measures are issued from different approaches. For the components, they are based, for example, on known probabilistic laws whose parameters are adjusted from statistical data. For a system, the dependability measure is a prediction obtained by a dedicated model starting from the knowledge of the dependability measures of its components. This definition of system does not evoke the complexity level of the system. The complexity may be expressed in terms of number of components, but it must be more particularly understood in terms of

xii Systems Dependability Assessment interactions between them. As we will see, many types of models may be combined to describe these interactions and the solving method may be a matter of analytical calculus or simulation process. For large systems, it is usual to build hierarchical models with several levels of subentities, etc. It is not our purpose to discuss system engineering and we will only consider a sole decomposition level with the objective of finding a relationship model between one dependability measure of a system and that of its components. Assessment In the dependability or RAMS domain, two types of assessment are predominantly performed: qualitative and quantitative. Qualitative assessment is generally performed as a preliminary study to identify and qualify the components, events, interactions and limits of the system in order to eventually be able to start the quantitative assessment which must be understood as the set of means, methods and tools to give a quantitative measure of the systems dependability. As said previously, this measure is predictive and is based on models. These models are very large in number and more or less known for a long time, and it is not our goal to give an exhaustive description. Jean-François AUBRY December, 2014

Introduction In this book, we are interested in the problem of characterizing the probabilistic indicators of the dependability of a complex system knowing a priori the dysfunctional characteristics of their components. These components may be material (machines, hardware, devices, structures, subsystems, etc.), immaterial (software, strategies, etc.) or people (designers, operators, repairers, etc.). It is supposed that the definition, the modeling and the assessment of the dysfunction of these components are well known as an issue of the application of probabilities and statistics theories. The reader may refer to so many books and publications on the subject that it is impossible to mention them all. We will only cite, for example, the following authors: Meeker [MEE 98], Modarres [MOD 93] and Cocozza [COC 97]. It may be thought that all, or almost all, has been written on the dependability of systems and that the electronics, aeronautic, space, chemical, transportation or nuclear industries practice this activity with expertise. Nevertheless, the interest developed in the past 20 years by many research experts on the so-called dynamic reliability shows that this is not exactly the case. A community of specialists is engaged in reconsidering a lot of simplifying hypotheses requested for the elaboration of analytical models but leading to the risk of impasses relative, for example, to insidious conditions, rare event sequences or complex interactions between functional and dysfunctional behaviors.

2024 © hobbydocbox.com Privacy Policy | Terms of Service | Feedback