[conspire] 737 MAX story keeps getting more fractally bad

paulz at ieee.org paulz at ieee.org
Wed Feb 19 18:11:26 PST 2020 

 Yet another problem:  BBC reports debris in fuel tanks of some new planes!

https://www.bbc.com/news/business-51499777




    On Thursday, October 31, 2019, 8:46:31 AM PDT, Tony Godshall <apgodshall at gmail.com> wrote:  
 
 New York Times audio:https://dts.podtrac.com/redirect.mp3/rss.art19.com/episodes/b01d6007-c8be-4d9b-8650-b9fa930d4802.mp3

Quote:
In testimony before a House committee on Wednesday, Dennis A. Muilenburg, Boeing’s chief executive, said, “If we knew everything back then that we know now, we would have made a different decision.” Congress is investigating two crashes of Boeing 737 Max jets which killed 346 people, cost the company billions of dollars and raised new questions about government oversight of aviation. So what did Boeing executives know about the dangers of the automated system implicated in the crashes — and when
* Published: 10/31/19 2:54:29 AM
* Episode feed: The Daily - http://rss.art19.com/the-daily


On Tue, Jul 9, 2019, 8:42 AM paulz at ieee.org <paulz at ieee.org> wrote:

 
The saga at Boeing is portrays a very different mindset from myexperience with makers of medical devices.

Every one is veryaware that patients lives are effected for bettor or worse by thecompany product. If that isn’t enough, bad outcomes result in lotsof lawyers. I’m sure you have seen ads on television, “If you ora family member was injured...”

First everysignificant step in the development from original requirements toproduction testing must be carefully documented. Makes it very easyto go back and figure out what happened. If the company does nothave a good documentation system, FDA will not approve the product. The whole design process will need to be repeated with betterdocumentation.

Another importantpart of the process is FMEA, Failure Modes and Effects Analysis. Lots of brainstorming to try to list every possible thing that couldgo wrong, the consequences and how severe it is to the patient. Items with any small possibility of serious problems to the patient,the doctor or the equipment must be analyzed and ways found tomitigate it. 

To use ahypothetical example from the airline industry. Some planes have athing called angle of attack sensor. If the sensor just gives anindication to the pilot, and the plane has lots of otherinstruments, perhaps pilot training can tell him when to ignore AoAand how to use other information to safely fly the plane. And thedocumentation system will track the training requirement to theactual training.

Just speaking, notthat this would happen, but suppose the AoA sensor was connected toan automated flight control system and a bad sensor input couldpossibly, under remote circumstances, cause the plane to crash. Thisis not acceptable. 

Mediation wouldrequire multiple sensors, using different technologies. There mightbe an undiscovered weakness in one kind of sensor. Software willhave a requirement that a bad sensor input will not cause the planeto crash. Maybe the requirement includes checking the altitudebefore pointing to the ground. Again the documentation system willtrack this from software requirements to final validation.

  _______________________________________________
conspire mailing list
conspire at linuxmafia.com
http://linuxmafia.com/mailman/listinfo/conspire

  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://linuxmafia.com/pipermail/conspire/attachments/20200220/91cf208f/attachment.html>

More information about the conspire mailing list