Megaton

Can't answer for A380 pilots but on the 747 at representative long-range weights, level off would be in the region of FL300 so altitude loss might only be couple of thousand feet if it's relatively early in the flight.

Eau de Boeing

On a 13/14 hour flight typical level off would be around FL320/340 depending on weight, temp, flight planning etc.

DozyWannabe

Nicely put, Mike.

I've been saying much the same thing on these forums for quite some time now. There's simply no comparison between the kind of software we use in homes and businesses - which until recently tended to be fairly free-form in design and loosely specified, and the kind of formally-specified and aggressively tested real-time software that goes into aviation use, among other safety-critical sectors.

That said, the kind of aggressive testing and integration management used in safety-critical systems from the get-go is starting to find its way into modern mainstream software development, and the take-up has been growing exponentially for the last decade or so. It's not dissimilar to how mechanical tech derived from aviation has been filtering into other uses (e.g. anti-lock braking systems on motor vehicles).

And yet in that incident the crew elected to stay in the air for an hour or two - despite their proximity to the airport - to work through the ECAM and thus discover which systems were still functioning. I recommend reading Captain De Crespigny's book on the subject - it makes for entertaining and fascinating reading.

barit1

DozyWannabe:They were well above max ldg weight (mass), had no flaps, and only one t/r. Had to burn off a bunch of Jet-A to have a prayer of a successful landing.

On the other hand their left wing was leaking like mad, leading to limited roll authority!

DozyWannabe

As the book has it, it wasn't just burning off fuel that led to the "keep flying" decision, it was taking the time to work through the ECAM actions (of which there were over a hundred) - this enabled them to be *certain* of what was working and what wasn't before they attempted a landing. Kudos to the Captain, who freely admits in his book that his instinct was to get on the ground ASAP, but that he was persuaded to keep flying by the rest of his crew and use that time to assess the aircraft's condition thoroughly.

Good Business Sense

... not withstanding accidents like swissair, my position is generally, "don't make a drama out of a crisis" i.e. if you've got a problem, don't make it a bigger one.

In my opinion the biggest problem in these kind of events is knowing exactly what your problem is - I never liked too many what ifs getting in the way of the "known facts". I think gathering information on which to make a good decision is one of the most difficult things - then there is the time available to do so.

On the QF with the problems they had they may have felt that it was a pretty sure thing that they would have gone off the end if they'd turned straight back in etc - on the other hand with fuel leaks etc ......

If they'd immediately turned back in they would have had no idea, at that stage, of the state of the aircraft and its systems and, therefore, the immediate return could have been suicidal for all sorts of reasons - don't forget we're looking at it with hindsight - in the first 10-20 minutes he had no idea what was wrong with his aircraft.

DozyWannabe

As I said, read the book. The first thing they worked out was the fuel situation, which determined how long they could keep flying to iron out all the other potential issues.

White Knight

The QF 380 was an interesting case. My point however regarding the contained v uncontained failure is that THIS thread is about the EK 380 that had a contained failure and continued for some hours. Why are posters confusing the issues here?

glofish

WK

There is no confusion. Your analysis might be correct, but what a lot of contributors are saying, and what a lot of 4-potters keep brushing under the table, is that when an incident occurs, it might be contained for a while, seemingly under control, but it can turn into a uncontained/multiple incident in a whim.

The tendency on 4-holers to continue simply because they are allowed is what is on discussion (not their superiority to twins).
tdracer brought up some troubling facts, i brought up my admittedly controversial conclusion.

Concerning QF32, the problem was nicely handled. It could however have turned into a tragedy in a fraction of a second. The SR111 accident showed how fast an incident turns into a catastrophe. The fact that they stayed up in the air for so long is discussed, not only lauded, but they stayed close to a runway all the time, could abort the ECAM frenzy at any moment helped them.

The question remains is if they would have continued for multiple hours? No, certainly not, it looked too serious. But where to draw the line for continued operation with one incident? Where does the statistics and Murphy put the chances of an escalation, even an unrelated one like tdracer brings up, that suddenly puts you in an uncomfortable (QF) situation?

The more i read these contributions, the more i feel that a twin , even under ETOPS, represents an almost safer operation. At least we/they go down asap and by that eliminate more of Mr. Murphy and the ugly stats ........
Take this statement with a pinch of salt though!

Good Business Sense

Couldn't agree with you more !

oh, dear ???

glofish

GBS

please quote the whole statement!

It was based on the remark "The more i read these contributions ...."
and this includes your latest.

What about the pinch of salt? Good business sense, but none of humour it seems.

tdracer

White Knight - I don't think it's confusion in so much as predictable thread drift. The perceived wisdom (or lack there of) of continuing on after an engine out on a quad pretty much inevitably morphed into a discussion of the relative merits of a quad vs. a twin.

Back in the early days of ETOPS, there were lots of studies related to engine failures, when they happened, and when did they contribute to significant incidents or accidents. For example, it was discovered that relatively few engine failures occurred during cruise - most occurred during takeoff/initial climb, or top of descent/descent - when ETOPS wasn't a significant concern.

But - in what was probably the most controversial finding - the probability of an accident as the result of a non-common cause engine failure was greater on a quad or a tri than a twin.
The reason was pretty simple: Commercial Airliners are designed to fly just fine after the shutdown of one engine - in fact when we do system safety assessments, we consider basic engine shutdowns no worse than major (even on a twin). But, an engine can do something worse than simply quit - it can catch fire or fail uncontained - and failures of that type have caused a number of crashes over the years. The more engines on an aircraft, the greater the odds that one of those engines will fail in a catastrophic manner (I said it was controversial ).

Now I fully expect to get flamed for posting this by the "quad centric" group, but the studies were vetted by a number of experts and was eventually accepted by the Feds as the foundation of current ETOPS.

Listen, I work twins and quads (at the moment 747, 757, and 767 - in the past 737 classics and 777). They are all safe, and there are relative advantages both ways. But it's not only simplistic to state that adding engines makes an aircraft safer, its not supported by the data.

DaveReidUK

I suspect that you haven't expressed that the way you intended.

A "a non-common cause engine failure" implies more than one engine failing, right ?

So do you mean the relative probability of multiple engine failures on a quad vs a twin ?

Or do you mean, given multiple engine failures, the relative probability of an accident ? Nobody could possibly argue that that's higher with 2 remaining engines than with none.

Looks like we're back in compound/conditional probability territory - I'd really like to see some numbers, if anybody has some.

Good Business Sense

Glofish, it's good to see someone enjoy the aircraft they are flying but prior to this thread, over your 257 posts on pprune, you've made your opinion of four engined aircraft very clear ... so, "pinch" ?

tdracer

Perhaps I didn't express that very well, but it is what I meant. Most engine failures are benign - the engine quits making thrust or the flight crew sees something abnormal and shuts it down. Since all currently certified jet airliners can operate safely with one engine out, the aircraft continues flying and lands safely.
However, there is a small subset of engine failures that are not benign - uncontained disc failures, engine fires, etc. While we design to minimize the threat, these non-benign failures have resulted in a number of crashes over the years. What I was trying to say was, the greater the number of engines on an aircraft, the greater the risk of experiencing one of these non-benign engine failures that would result in a catastrophic outcome.

The reason I brought in 'non common cause' is that common cause failures - by definition - can affect all engines on an aircraft so it really doesn't matter how many engines you have. If the mechanic leaves the o-rings out of all the engines, your fuel load is so contaminated that the engines can't function properly, or you fly through volcanic ash and all the engines flame out, 4 vs. 2 doesn't matter much.

procede

With 4 engines there is a higher probability that you will still have an engine producing thrust. At least that is what BA and KLM found.

BA 9: British Airways Flight 9 - Wikipedia, the free encyclopedia
KLM 867: KLM Flight 867 - Wikipedia, the free encyclopedia

lomapaseo

tdracer

Agree

The problems generally occur during the landing phase mostly due to workload increases.

There is not much data on enroute problems with multiple engines as I have said before, but just studying the crew responses in all phases of flight leads me to suspect that twins are not any less safe then quads and quads certainly have more engine annomalies per flight

tdracer

I won't bother to read what's in the Wiki article because I have first hand knowledge: In both BA and KLM, all four engines failed and quit producing thrust - at pretty close to the same time (in the case of KLM I was involved in the investigation).

In both cases the flight crew was able to get engines restarted after they dropped out of the ash cloud, but make no mistake - all four engines failed. Not really a valid 2 vs. 4 data point.

lomapaseo

tdracer
re: KLM Flight 867 and BA Flt 9

I believe only after repeated tries and a few prayers. Some speculation that the hot and cold cycles of multiple restart attempts might have shed some of the glassy stuff off the innards , but like you said not a 2 vs 4 data arguement

DozyWannabe

Also re: KLM Flight 867 and BA Flt 9, and apropos of nothing - as it's not really relevant to the thread, but if I recall correctly, the damage was such that three of the four engines on the BA jet and all four on the KLM jet needed to be replaced.