Modelling complexity in system safety: generalizing the D2T2 methodology

TL;DR

This paper introduces a generalized methodology that enhances traditional Fault and Event Tree analysis by systematically incorporating complex dependencies, improving the accuracy and flexibility of system safety assessments for complex systems.

Contribution

It extends the Dynamic and Dependent Tree Theory to integrate diverse dependency types within traditional safety analysis frameworks, maintaining computational feasibility.

Findings

Enables modeling of complex dependencies in safety analysis

Retains traditional Fault and Event Tree familiarity

Improves accuracy of safety assessments

Abstract

Although Fault Tree and Event Tree analysis are still today the standard approach to system safety analysis for many engineering sectors, these techniques lack the capabilities of fully capturing the realistic, dynamic behaviour of complex systems, which results in a dense network of dependencies at any level, i.e. between components, trains of components or subsystems. While these limitations are well recognised across both industry and academia, the shortage of alternative tools able to tackle such challenges while retaining the computational feasibility of the analysis keeps fuelling the long-lived success of Fault Tree and Event Tree modelling. Analysts and regulators often rely on the use of conservative assumptions to mitigate the effect of oversimplifications associated with the use of such techniques. However, this results in the analysis output to be characterised by an unknown level of conservatism, with potential consequences on market competitiveness (i.e., over-conservatism) or safety (i.e., under-conservatism). This study proposes a generalization of the Dynamic and Dependent Tree Theory, which offers theoretical tools for the systematic integration of dependency modelling within the traditional Fault and Event Tree analysis framework. This is achieved by marrying the traditional combinatorial nature of failure analysis, formalised by the Fault and Event Tree language, with more flexible modelling solutions, which provide the flexibility required to capture complex system features. The main advantage of the proposed approach in comparison to existent solutions is the ability to take into account, under the same modelling framework, any type of dependency regardless of its nature and location, while retaining the familiarity and effectiveness of traditional safety modelling.