7Reliability Engineering for High-Consequence Systems
7.1 WHAT TO EXPECT FROM THIS CHAPTER
A high-consequence system is one in which the consequences of failure are so severe that the tradeoff between prevention cost and external failure cost almost always leads to a decision to strongly emphasize prevention cost. This is not to say that in high-consequence systems, money is no object in the prevention cost budget, but rather the bias for prevention in such systems is so strong that extraordinary measures are usually easily justified. This chapter discusses reliability engineering practices that may not be fully implemented in ordinary cases but are appropriate for high-consequence systems.
7.2 DEFINITION AND EXAMPLES OF HIGH-CONSEQUENCE SYSTEMS
7.2.1 What is a High-Consequence System?
Much of modern life is made possible by systems whose proper functioning is usually taken for granted by lay persons but whose failure would have severe consequences that may range from relatively benign problems, such as extreme expense to repair, to very malign events, possibly even including social collapse. We refer to these systems in this book as high-consequence systems.1 High-consequence systems have one or more of these attributes:
- Extreme consequences of failure to users of the system:
- Many injuries,
- Loss of life,
- Social unrest, disruption, or collapse;
- Extreme consequences of failure to the owner of the system:
- Loss of profitability to an extent threatening the survival of the organization; ...
Get Reliability, Maintainability, and Supportability: Best Practices for Systems Engineers now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
