STAMP and STPA: A New Approach to System Safety for Complex, High-Tech Systems
Monday, 25 August 2008
8am to 2:30pm
Most of the common hazard analysis techniques used today date back to the 1950’s and 1960’s, with little change in the intervening years. These traditional techniques are being overwhelmed by the increasing complexity of the systems we are building today, by the introduction of digital technology and software, and by the increased reliance on distributed human-machine decision-making and control.
In this tutorial, you will learn about a new model of accident causation (STAMP) and the new powerful approach to hazard analysis built upon it called STPA that allows handling much greater complexity and the new types of technology (including software) common today. It also has the ability to consider the social and organizational factors (“safety culture”) factors in accidents and incidents along with the technical. STAMP and STPA apply in the early concept development stages of projects and can be used to drive the design rather than simply evaluate it afterward. STPA is being used successfully on complex systems today. The tutorial will cover fundamental principles as well as examples and experiences using the new approach.
Dr. Nancy Leveson, MIT: Dr. Leveson is Professor of Aeronautics and Astronautics and Professor of Engineering Systems at MIT. She is an elected member of the National Academy of Engineering and has been working in the field of system safety for 25 years.
Most of the common hazard analysis techniques used today date back to the 1950’s and 1960’s, with little change in the intervening years. These traditional techniques are being overwhelmed by the increasing complexity of the systems we are building today, by the introduction of digital technology and software, and by the increased reliance on distributed human-machine decision-making and control.
In this tutorial, you will learn about a new model of accident causation (STAMP) and the new powerful approach to hazard analysis built upon it called STPA that allows handling much greater complexity and the new types of technology (including software) common today. It also has the ability to consider the social and organizational factors (“safety culture”) factors in accidents and incidents along with the technical. STAMP and STPA apply in the early concept development stages of projects and can be used to drive the design rather than simply evaluate it afterward. STPA is being used successfully on complex systems today. The tutorial will cover fundamental principles as well as examples and experiences using the new approach.
