|
|
|
|
|
|
|
|
1 |
|
|
|
½Òµ{¤¶²Ð, ¨t²Î¦w¥þ , ©M¦MÀI½T»{
Introduction to class, system safety, and hazard identification (PDF) |
|
|
|
• ¡m¦w¥þ·§©À¡n ²Ä1¡A2¡A7¡A8©M9³¹
Safeware. Ch. 1, 2, 7, 8 and 9.
¥»¤H·s®Ñ ²Ä1¡A4³¹
• New. Ch. 1 and 4.
http://sunnyday.mit.edu/book2.pdf
• MIL-STD-882B (PDF)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2 |
|
|
|
¹ï¦MÀI³d¥ô¡A PHA»P¦MÀIµû¦ô¡A¥H¤Î·N¥~¨Æ¥ó°_¦]¶i¦æ°ÝÃD°Q½×¤Î½Ò°óÅG½×
Discussion questions and in-class debate on responsibility for risk, PHA and risk assessment, causes of accidents (PDF) |
|
|
|
•¡m¦w¥þ·§©À¡n²Ä3¡A4©M5³¹
Safeware. Ch. 3, 4 and 5.
¯è¤Ó·N¥~¨Æ¥ó°O¿ý
• Aerospace Accidents paper (PDF) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
3 |
|
|
|
µû½×·N¥~¨Æ¥ó°_¦]ªº¬ÛÃö§@·~¡A·N¥~¨Æ¥ó¼Ò«¬¡Aµû½×Ãö©ó°¨¶ð¨¤«_ÀI¸¨®ªºªì¨B¦MÀI¤ÀªR¡A·N¹Ï¸Ôz
Review causes of accidents assignment, accident models, review preliminary hazard analysis for Matterhorn, intent specifications (PDF) |
|
|
|
• ¡m¦w¥þ·§©À¡n²Ä10³¹
Safeware. Ch. 10.
¥»¤H·s®Ñ ²Ä2¡A3¡A5¡A6©M7³¹
• New. Ch. 2, 3, 5, 6 and 7.
http://sunnyday.mit.edu/book2.pdf
• Rasmussen (PDF)
• ·N¹Ï¸Ôz°Q½×
Intent Specifications paper (PDF) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
4 |
|
|
|
Jeff Joyce¨Ó³X¡A«_ÀI¤ÀªR¡A°ÝÃD®Ú·½¤ÀªR
Jeff Joyce visit, hazard analysis, root cause analysis (PDF) |
|
|
|
•¡m¦w¥þ·§©À¡n²Ä13©M14³¹
Safeware. Ch. 13 and 14.
•Jeff Joyce
• Jeff Joyce paper (PDF) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
5 |
|
|
|
ª¬ºA¾÷¡A SpecTRM-RL¡A»Ý¨D©M»Ý¨D¤ÀªR
State machines, SpecTRM-RL, requirements and requirements analysis (PDF) |
|
|
|
• ¡m¦w¥þ·§©À¡n²Ä15³¹
Safeware. Ch. 15. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
6 |
|
|
|
µû½×°¨¶ð¨¤«_ÀI¸¨®²Ä¤@¼h¡ADan Gregory(Raytheonªº¨t²Î¦w¥þ¤uµ{®v)
Review Matterhorn Level 1, Dan Gregory (system safety engineer from Raytheon) |
|
|
|
|
|
|
|
²Ä¤@¶¥¬q¾Ç´Á±M®×³]p¥æ½Z
Term Project Level 1 due |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
7 |
|
|
|
¦w¥þ³]p
Design for safety (PDF) |
|
|
|
• ¡m¦w¥þ·§©À¡n²Ä16³¹
Safeware. Ch. 16.
• Knight and Leveson
•§Ú̵û½×ªº¦^´_
A Reply to Our Critics (PDF) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
8 |
|
|
|
¤HÃþ»P¦Û°Ê¾Þ§@
Humans and Automation (PDF) |
|
|
|
•¡m¦w¥þ·§©À¡n²Ä6©M17³¹
Safeware. Ch. 6 and 17.
• Bachelder »P Leveson
Bachelder and Leveson (PDF) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
9 |
|
|
|
Francis¨Ó³X¡A·N¥~¨Æ¥ó½Õ¬d, STAMP¤ÀªRªº³¯z©MTitan½Ã¬P¤ÀªRªº§@·~(Karen Marais)
Francis visit, accident investigation, presentation of STAMP analyses and assignment on Titan analysis, (Karen Marais) |
|
|
|
•¯à·½³¡¼Ð·Ç
DOE standard
•NASA¼Ð·Ç
NASA standard |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
10 |
|
|
|
¨Ó¦ÛElectric Boat¡]¼ç¤ô¸¥¡^ªº³X°ÝªÌ¡A½Æ²ß²Ä¤G¶¥¬q±M®×³]p
Visitors from Electric Boat (submarines), review level 2 of project |
|
|
|
§ìºò®É¶¡
Time to catch up |
|
|
|
¬ã¨s³ø§i²Ä¤@ª©¥æ½Z
Research Proposal first version due |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
11 |
|
|
|
¾Þ§@¡A®Ú·½¤ÀªR¡AJohn Carroll
Operations, root cause analysis, John Carroll |
|
|
|
• Carroll, John S. ¡q°ª¦MÀI¦æ·~ªº²Õ´¾Ç²ß¬¡°Ê¡G¦Û§Ú¤ÀªR¤UªºÅÞ¿è¡r¡A¡mºÞ²z¬ã¨s´Á¥Z¡n¡A¦L¨êª©
Carroll, John S. "Organizational Learning Activities in High-Hazard Industries: The Logics Underlying Self-Analysis." Journal of Management Studies, in press.
•Carroll, John S., Jenny W. Rudolph, Sachi Hatenaka ¡q¦b°ª¦MÀI²Õ´¤¤±q¸gÅ礤¾Ç²ß¡r¡Aµoªí©ó¡m²Õ´¦æ¬°¬ã¨s¡n
Carroll, John S., Jenny W. Rudolph, Sachi Hatenaka. "Learning from Experience in High-Hazard Organizations." Submitted to Research in Organizational Behavior. |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
12 |
|
|
|
½T»{¡AºÞ²z¡A¬ã¨s³ø§iµªÅG
Verification, management, presentation of research proposals |
|
|
|
• ¡m¦w¥þ·§©À¡n²Ä11¡A12©M18³¹
Safeware. Ch. 11, 12 and 18. |
|
|
|
¬ã¨s³ø§iµªÅG
Research Propoals oral presentation due |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
13 |
|
|
|
°¨¶ð¨¤«_ÀI¸¨®³]pªºµû½×¡Aºî¦X³ø§i
Review of Matterhorn designs, Wrap-Up |
|
|
|
•¡m¦w¥þ·§©À¡n§ÀÁn, pp. 509-511.
Safeware: Epilogue, pp. 509-511.
•SpecTRM¤èªk½×
SpecTRM methodology (PDF) |
|
|
|
¬ã¨s³ø§i³Ì²×ª©©M¾Ç´Á±M®×³]p¥æ½Z
Research Proposal final version and completed Term Project due |
|
|
|
|
|
|
|
|
