Ninth Bieleschweig Workshop, Hamburg, May 14-15 2007
The Ninth Bieleschweig Workshop on Systems Engineering:
Model-based System Development; Incident Analysis
14-15 May 2007, Germanischer Lloyd, Hamburg
Organised by
- Germanischer Lloyd, Hamburg
- Causalis Limited, Bielefeld
- RVS Group, University of Bielefeld Faculty of Technology
Bieleschweig Workshops Steering Committee
- RVS Group, University of Bielefeld, Faculty of Technology
- Siemens Transportation Systems, Rail Automation Division, Braunschweig
- Technical University of Braunschweig, Institut für Eisenbahnwesen und Verkehrssicherung
This workshop was the ninth in the regular series of Bieleschweig Workshops
on System Engineering, now in its fifth year. The goals of the Bieleschweig
series are
- Sharing experience in system engineering methods, especially in areas in which
different areas of expertise come together to provide solutions,
- Discussion and comparison of methods proposed in talks,
- Building a community of system engineers to exchange experience and develop best practice.
The two main themes of the Ninth Bieleschweig Workshop were model-based system
development, and incident analysis. We also had two talks on the regulatory and social
consequences of accidents. In addition to contributed talks from
participants, we organised for the first time a small industrial
trade show to give participants a chance to promote their organisation's expertise,
respectively to inform themselves of the expertise of others. There was lively
discussion in the show room during the slot
Organisation
The Workshop took place at the headquarters of Germanischer Lloyd,
Vorsetzen 35, 20459 Hamburg, on the harbor waterfront at the Ship Museum.
Germanischer Lloyd were excellent hosts, providing a comfortable and
well-equipped meeting room as well as sponsoring lunch on both days
and the evening meal, at the Brauerei Gröninger, on Monday.
The programme attracted over 30 participants, from Germany, the U.K. and the U.S.
Talks
The following talks were given:
- Prof. Dr. Vince Brannigan, University of Maryland
The Regulatory Use of System Safety Analysis: A Regulatory Effectiveness Analysis
[Abstract | [Talk]
- Model-Based Development of Safety-Critical Systems, Christian Buckl and Matthias Regensburger,
Technical University of Munich (München)
[Abstract | Talk]
- Prof. Dr. Bettina Buth, Hamburg University of Applied
Sciences,
Effiziente Safety-Analysen durch Kombination von Methoden
[Abstract | [Talk]
- Prof. Dr. Maritta Heisel, University of Duisburg-Essen,
A Model-Based Development Process for Embedded Systems
[Abstract | [Talk] ]
- Risk-based approval of ship systems: a new process, Dr. Rainer Hamann,
Strategic Development Department, Germanischer Lloyd, Hamburg
[Abstract | Talk]
- Negotiating Accidents: Analysis and Blame, Peter Ladkin, University of Bielefeld
[Abstract | Talk]
- Overview of the SAFEDOR project, Dr. Pierre Sames,
Germanischer Lloyd, Hamburg
[Abstract | Talk]
- Why-Because Analysis of a Power Outage in various countries in Europe, at the launch of the Norwegian Pearl
at the Meyer shipbuilders, Papenburg, North Germany on 4 November
2006, Bernd Sieker, Causalis Limited, Bielefeld
[Abstract | [Talk]
- Why-Because Analysis of the Brazilian midair collision, 29 September
2006, Jörn Stuphorn, Causalis Limited, Bielefeld
[Abstract | Talk]
- Formal Specification and Analysis of AFDX Redundancy Management Algorithms, Jan Täubrich,
Fa. Dipl.-Inform. Jan Täubrich, Kiel and Philips Medical Systems, Hamburg
[Abstract | [Talk] ]
- System Simulation, Transient Analysis and Reliability Analysis Based on One Model,
Andreas Uhlig, ITI Dresden
[Abstract | Slides]
- Why-Because Analysis of a Power Outage on the Swiss Railways (SBB), 22 June 2005, Carsten Weber, Technical
University of Dresden
[Abstract | [Slides (in German)]
The following companies exhibited:
- ITI (Dresden). SimulationX is a modelling and simulation tool for
complex heterogeneous systems whose purpose is to assess the interaction of
components. A new feature is the local annotation of failure data
and the semi-automatic generation of fault trees.
- Causalis Limited (Bielefeld). WhyBToolset 1 is a freeware toolset to support
causal analysis of incidents. It incorporates a WYSIWYG tool for drawing causal graphs,
a list-of-facts editor, a timeline display, and printing facilities, and has been field-tested
in industrial tutorials and university courses. It is provided as a VMWare™ virtual machine.
WhyBToolset 2 is a fully-portable toolset for Why-Because Analysis of incidents. Both
Java 1.5 and Java 1.6 versions are available. It supports enhanced and optimised
WB-Graph drawing and list-of-facts editing facilities, as well as timelines and the production of
reports in standard document formats. Facilities under development provide extensive support
for comparison of
causal graphs using the IQualiseIT component and controlled-language tools for analysing facts.
- Adelard (London).
ASCE, the Assurance and Safety Case Environment, is a powerful, flexible and highly usable
application for creating structured, graphical hypertexts. ASCE is currently being used across a
wide range of industries to create, edit and review a wide range of technical documentation
such as safety cases, quality documentation, compliance cases and help documentation.
ASCE version 3.5 takes assurance and safety case practice to new levels. Its newly designed
plugin architecture provides powerful, user-extensible capability. A growing range of schemas
permit a variety of notations to be used. As well as the key assurance case
notations - Goal Structuring Notation and Claims-Arguments-Evidence - these also include
Why-Because Analysis and ECFA (both for accident analysis), decision trees,
'Bow Tie' analysis, and project management.
- Germanischer Lloyd (Hamburg).
AENEAS is a simulation tool for the assessment of evacuation processes.
It has been developed by Germanischer Lloyd in co-operation with TraffGo
HT. The software is certified by the German Maritime Authority (See-BG)
to meet the guidelines of the International Maritime Organisation (IMO).
The simulations are based on a discrete Multi-Agent-Model which grasps
the core attributes of persons moving in crowds. The concept of agents
along with an efficient implementation makes the simulations very fast,
even when accounting for very large numbers of people.
AENEAS provides an intuitive understanding of the evacuation process and
statistical information e.g. for the expected evacuation duration and
areas of congestions. Since it provides the main results in typically
only a few minutes, multiple design variants, evacuation concepts and
stochastical influences can be assessed - in time and at any design
stage.