Defining extreme states

  The definition of extreme states is required to enable alerting before the situation becomes risky, and defining means to cope with the potential hazard.

The definition of extreme states enables to check at run time whether the active state approaches the boundaries the design scope, in order to alert the operators about risky situations.

  For each safety parameter we should specify two sets of extreme states:

• Alerting range - Ranges of values of grace times, during which the operators are required to take a proper action to prevent escalation .
• Safety range - Ranges of values that should alert about a concrete hazard, and the machine should respond to prevent the risk, for example, by shutting down the system.

  The operator might fail to recognize the source for the advance warning, or the threat alert.

  For each of the extreme state, we should specify the best system response in both types of extreme states.

The operator might not be aware of the grace time, before the hazard might materialize.

  For each of safety parameter we should specify methods for estimating the grace time, in order to display it to the operators when in risky situations.

Example

The temperature of a boiler affects both the production and the safety. Two extreme states are associated with the boiler temperature, and may be defined as follows:

• 70-90⁰ C - advance warning
• 90-100⁰ C - hazard alert and automatic disconnection of the power supply.

Related topic

Updated on 12 Jun 2016.