This chart illustrates basic concepts in error-proof system design. The illustration is of a manually controlled boiler, namely in which the operator needs to control the temperature manually. It is based on an even more basic design ...
This design is error-prone. The critical component is this design is the operator, who might not notice risky situation, such as over heating. Such design is hypothetical, because it is extremely impractical; it implies that the operator needs to monitor the machine state continuously. This design is used here to demonstrates the need for automation in safety-critical systems.
The operator controls the machine (a boiler) by a control station. A sensor (thermometer) is used to provide input to the operator about the machine situation by a situation indicator (LED) through an analyzer. This is the primary means for recognizing the exceptional situation.
The operator uses the input perceived from the indicator to decide when and how to activate the control (a power on-off switch)
Updated on 16 Jan 2017.