PPRuNe Forums - View Single Post - Turkish airliner crashes at Schiphol
Thread: Turkish airliner crashes at Schiphol
View Single Post
Old 2nd February 2010 | 19:35
  #2606 (permalink)  
PJ2
20 Anniversary
 
Joined: Mar 2003
: ATPL
Posts: 2,558
Likes: 155
From: BC
PEI_3721;

I think your suggestions are excellent, perhaps more along the lines that safetypee was considering - "change the changeable things" in terms of aircraft system design, if I am interpreting his post correctly.

The twp comments I would have and I think you have anticipated it are, such a resilience in single-point system failures (which is partially what redundancy intends) is not easy to achieve so does have its limitations, first in terms of the ultimate reference point, which is resolved perhaps by voting. I am not a systems or computer expert so have to leave that point there but there are others here including Professor Ladkin who has discussed these solutions and their problems, in the past. The second point I might offer is the "swatting at flies" metaphor - which can eventually be successful but is very detailed work... By this I mean, the "RA problem" is fixed, now what about the next single-point item such as the R25 Air-Ground relay in the MD82 which caused the failure of the take-off configuration warning in the Spanair MD82 at Madrid? How does the industry deal with the present pitot tube failure issues where three independant systems failed? There are suggestions of course, and they work, but in such thinking are we not in danger of an extended "monitoring" regress?

We can analyze the notion of redundancy and single-point failure items for a very long time and will continue to find examples in complex systems because that is their nature. The key is resiliency, not brittleness even in failure. The A320 autoflight system has partially handled this particular failure (speed permitted to decrease below Vref) and the accident would likely not have occurred but the design may fail (and has) in other ways perhaps more subtle; mode confusion and the reluctance of crews to disconnect an autoflight system they don't fully understand, when it is mis-behaving (doing something they don't understand, don't like and can't/won't counter) is such an example. The Armavia and Gulfair go-around accidents are two such examples. I have seen others.
PJ2 is offline  
Reply
0