This chart illustrates resilient features related to basic automation.

This design is a modified version of the basic, error-prone design ( ...), in which the operators control the machine manually. In this version, the control is automated, using a thermostat, and the operator's role is of supervision.

The alarm unit is added to the basic design, to alert the operators in case of a hardware fault. The supervisor can use the supervision station to stop the machine operation, if required.

This design is resilient to primary hardware faults, but it induces secondary risks, of faults in the resilience features (the thermostat).

Updated on 09 Jan 2017.