Ninth Bieleschweig Workshop, Hamburg, May 14-15 2007

The Ninth Bieleschweig Workshop on Systems Engineering:
Model-based System Development; Incident Analysis

14-15 May 2007, Germanischer Lloyd, Hamburg

Organised by

• Germanischer Lloyd, Hamburg
• Causalis Limited, Bielefeld
• RVS Group, University of Bielefeld Faculty of Technology

Bieleschweig Workshops Steering Committee

• RVS Group, University of Bielefeld, Faculty of Technology
• Siemens Transportation Systems, Rail Automation Division, Braunschweig
• Technical University of Braunschweig, Institut für Eisenbahnwesen und Verkehrssicherung

This workshop was the ninth in the regular series of Bieleschweig Workshops on System Engineering, now in its fifth year. The goals of the Bieleschweig series are

• Sharing experience in system engineering methods, especially in areas in which different areas of expertise come together to provide solutions,
• Discussion and comparison of methods proposed in talks,
• Building a community of system engineers to exchange experience and develop best practice.

The two main themes of the Ninth Bieleschweig Workshop were model-based system development, and incident analysis. We also had two talks on the regulatory and social consequences of accidents. In addition to contributed talks from participants, we organised for the first time a small industrial trade show to give participants a chance to promote their organisation's expertise, respectively to inform themselves of the expertise of others. There was lively discussion in the show room during the slot

Organisation

The Workshop took place at the headquarters of Germanischer Lloyd, Vorsetzen 35, 20459 Hamburg, on the harbor waterfront at the Ship Museum. Germanischer Lloyd were excellent hosts, providing a comfortable and well-equipped meeting room as well as sponsoring lunch on both days and the evening meal, at the Brauerei Gröninger, on Monday. The programme attracted over 30 participants, from Germany, the U.K. and the U.S.

Talks

The following talks were given:

• Prof. Dr. Vince Brannigan, University of Maryland
  The Regulatory Use of System Safety Analysis: A Regulatory Effectiveness Analysis [Abstract | [Talk]
  
  
• Model-Based Development of Safety-Critical Systems, Christian Buckl and Matthias Regensburger, Technical University of Munich (München) [Abstract | Talk]
  
  
• Prof. Dr. Bettina Buth, Hamburg University of Applied Sciences,
  Effiziente Safety-Analysen durch Kombination von Methoden [Abstract | [Talk]
  
  
• Prof. Dr. Maritta Heisel, University of Duisburg-Essen,
  A Model-Based Development Process for Embedded Systems [Abstract | [Talk] ]
  
  
• Risk-based approval of ship systems: a new process, Dr. Rainer Hamann, Strategic Development Department, Germanischer Lloyd, Hamburg [Abstract | Talk]
  
  
• Negotiating Accidents: Analysis and Blame, Peter Ladkin, University of Bielefeld [Abstract | Talk]
  
  
• Overview of the SAFEDOR project, Dr. Pierre Sames, Germanischer Lloyd, Hamburg [Abstract | Talk]
  
  
• Why-Because Analysis of a Power Outage in various countries in Europe, at the launch of the Norwegian Pearl at the Meyer shipbuilders, Papenburg, North Germany on 4 November 2006, Bernd Sieker, Causalis Limited, Bielefeld [Abstract | [Talk]
  
  
• Why-Because Analysis of the Brazilian midair collision, 29 September 2006, Jörn Stuphorn, Causalis Limited, Bielefeld [Abstract | Talk]
  
  
• Formal Specification and Analysis of AFDX Redundancy Management Algorithms, Jan Täubrich, Fa. Dipl.-Inform. Jan Täubrich, Kiel and Philips Medical Systems, Hamburg [Abstract | [Talk] ]
  
  
• System Simulation, Transient Analysis and Reliability Analysis Based on One Model, Andreas Uhlig, ITI Dresden [Abstract | Slides]
  
  
• Why-Because Analysis of a Power Outage on the Swiss Railways (SBB), 22 June 2005, Carsten Weber, Technical University of Dresden [Abstract | [Slides (in German)]

The following companies exhibited:

• ITI (Dresden). SimulationX is a modelling and simulation tool for complex heterogeneous systems whose purpose is to assess the interaction of components. A new feature is the local annotation of failure data and the semi-automatic generation of fault trees.
  
  
• Causalis Limited (Bielefeld). WhyBToolset 1 is a freeware toolset to support causal analysis of incidents. It incorporates a WYSIWYG tool for drawing causal graphs, a list-of-facts editor, a timeline display, and printing facilities, and has been field-tested in industrial tutorials and university courses. It is provided as a VMWare™ virtual machine. WhyBToolset 2 is a fully-portable toolset for Why-Because Analysis of incidents. Both Java 1.5 and Java 1.6 versions are available. It supports enhanced and optimised WB-Graph drawing and list-of-facts editing facilities, as well as timelines and the production of reports in standard document formats. Facilities under development provide extensive support for comparison of causal graphs using the IQualiseIT component and controlled-language tools for analysing facts.
  
  
• Adelard (London). ASCE, the Assurance and Safety Case Environment, is a powerful, flexible and highly usable application for creating structured, graphical hypertexts. ASCE is currently being used across a wide range of industries to create, edit and review a wide range of technical documentation such as safety cases, quality documentation, compliance cases and help documentation. ASCE version 3.5 takes assurance and safety case practice to new levels. Its newly designed plugin architecture provides powerful, user-extensible capability. A growing range of schemas permit a variety of notations to be used. As well as the key assurance case notations - Goal Structuring Notation and Claims-Arguments-Evidence - these also include Why-Because Analysis and ECFA (both for accident analysis), decision trees, 'Bow Tie' analysis, and project management.
  
  
• Germanischer Lloyd (Hamburg). AENEAS is a simulation tool for the assessment of evacuation processes. It has been developed by Germanischer Lloyd in co-operation with TraffGo HT. The software is certified by the German Maritime Authority (See-BG) to meet the guidelines of the International Maritime Organisation (IMO). The simulations are based on a discrete Multi-Agent-Model which grasps the core attributes of persons moving in crowds. The concept of agents along with an efficient implementation makes the simulations very fast, even when accounting for very large numbers of people. AENEAS provides an intuitive understanding of the evacuation process and statistical information e.g. for the expected evacuation duration and areas of congestions. Since it provides the main results in typically only a few minutes, multiple design variants, evacuation concepts and stochastical influences can be assessed - in time and at any design stage.

• Home
• People & Info
• Publications
• Research & Projects
• Why-Because Analysis
• Lectures
• Compendium CRICA
• System Safety Society
• Bieleschweig Workshops
• RVS Blog
• Photo Gallery
• Contact & Impressum