Resilience-oriented design is a set of methods for designing protection layers against primary hazards and threats.
The source for many mishaps is that the designers enabled violation of the implicit rules. Typical design mistakes include incomplete or partial rule specification and testing.
Design mistakes are typically associated with exceptional situations. They are due to insufficient resources allocated to these situations.
The guide assumes that there is no practical way to specify the system behavior for all possible situations and events. Therefore, we need to restrict our design to specific expected states and events, comprising the design scope.
Updated on 31 Oct 2016.