A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems

Nikolaos Papakonstantinou, Teemu Tommila, Bryan O'Halloran, Jarmo Alanen, Douglas L. Van Bossuyt

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    2 Citations (Scopus)

    Abstract

    Defense in Depth (DiD) is a key design principle helping to improve the safety of complex systems in domains like nuclear power, oil and gas, and mining. DiD affects the basic design of the system because it contains requirements for isolation, diversity and safety divisions. If the DiD assessment happens late in the design process, there is a risk of costly redesign and project delays. To avoid this issue, this paper refines a set of early DiD assessment design rules and proposes a model-driven methodology for early assessment of the implementation of the DiD capabilities of a complex system design. The topology of the different design aspects of the system under study (mechanical, electrical, human factors, and others) and the dependencies between system elements are captured in a High Level Interdisciplinary Model (HLIM) that also holds DiD specific attributes. The resulting system model is assessed against the proposed set of DiD rules and requirements, and then it can be improved according to the results. The methodology is applied to a case study of an early nuclear power plant model of a spent fuel pool cooling system. The proof-of-concept software tool developed for early DiD assessment and presented in this paper is able to identify undesired dependencies between system elements of redundant systems, of different defense lines and other DiD related weaknesses. This provides practitioners with insights into potential vulnerabilities in the design and enables focused redesign to address the identified problems early in the design process.
    Original languageEnglish
    Title of host publication37th Computers and Information in Engineering Conference
    PublisherAmerican Society of Mechanical Engineers ASME
    Number of pages10
    Volume1
    ISBN (Electronic)9780791858110
    ISBN (Print)978-0-7918-5811-0
    DOIs
    Publication statusPublished - 1 Jan 2017
    MoE publication typeA4 Article in a conference publication
    Event13th ASME/IEEE International Conference on Mechatronic and Embedded Systems and Applications - Cleveland, United States
    Duration: 6 Aug 20179 Aug 2017
    Conference number: 13

    Conference

    Conference13th ASME/IEEE International Conference on Mechatronic and Embedded Systems and Applications
    Abbreviated titleIDETC/CIE 2017
    CountryUnited States
    CityCleveland
    Period6/08/179/08/17

    Fingerprint

    Socio-technical Systems
    Large scale systems
    Complex Systems
    Model
    Design Process
    Spent fuels
    Safety
    Human engineering
    Cooling systems
    Nuclear energy
    Redundant System
    Nuclear power plants
    Design Rules
    Nuclear Power Plant
    Methodology
    Human Factors
    Requirements
    Systems analysis
    Topology
    Software Tools

    Cite this

    Papakonstantinou, N., Tommila, T., O'Halloran, B., Alanen, J., & Bossuyt, D. L. V. (2017). A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems. In 37th Computers and Information in Engineering Conference (Vol. 1). [67257] American Society of Mechanical Engineers ASME. https://doi.org/10.1115/DETC2017-67257
    Papakonstantinou, Nikolaos ; Tommila, Teemu ; O'Halloran, Bryan ; Alanen, Jarmo ; Bossuyt, Douglas L. Van. / A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems. 37th Computers and Information in Engineering Conference. Vol. 1 American Society of Mechanical Engineers ASME, 2017.
    @inproceedings{7c6b0f9db31241adb55938e90a9001f8,
    title = "A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems",
    abstract = "Defense in Depth (DiD) is a key design principle helping to improve the safety of complex systems in domains like nuclear power, oil and gas, and mining. DiD affects the basic design of the system because it contains requirements for isolation, diversity and safety divisions. If the DiD assessment happens late in the design process, there is a risk of costly redesign and project delays. To avoid this issue, this paper refines a set of early DiD assessment design rules and proposes a model-driven methodology for early assessment of the implementation of the DiD capabilities of a complex system design. The topology of the different design aspects of the system under study (mechanical, electrical, human factors, and others) and the dependencies between system elements are captured in a High Level Interdisciplinary Model (HLIM) that also holds DiD specific attributes. The resulting system model is assessed against the proposed set of DiD rules and requirements, and then it can be improved according to the results. The methodology is applied to a case study of an early nuclear power plant model of a spent fuel pool cooling system. The proof-of-concept software tool developed for early DiD assessment and presented in this paper is able to identify undesired dependencies between system elements of redundant systems, of different defense lines and other DiD related weaknesses. This provides practitioners with insights into potential vulnerabilities in the design and enables focused redesign to address the identified problems early in the design process.",
    author = "Nikolaos Papakonstantinou and Teemu Tommila and Bryan O'Halloran and Jarmo Alanen and Bossuyt, {Douglas L. Van}",
    year = "2017",
    month = "1",
    day = "1",
    doi = "10.1115/DETC2017-67257",
    language = "English",
    isbn = "978-0-7918-5811-0",
    volume = "1",
    booktitle = "37th Computers and Information in Engineering Conference",
    publisher = "American Society of Mechanical Engineers ASME",
    address = "United States",

    }

    Papakonstantinou, N, Tommila, T, O'Halloran, B, Alanen, J & Bossuyt, DLV 2017, A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems. in 37th Computers and Information in Engineering Conference. vol. 1, 67257, American Society of Mechanical Engineers ASME, 13th ASME/IEEE International Conference on Mechatronic and Embedded Systems and Applications, Cleveland, United States, 6/08/17. https://doi.org/10.1115/DETC2017-67257

    A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems. / Papakonstantinou, Nikolaos; Tommila, Teemu; O'Halloran, Bryan; Alanen, Jarmo; Bossuyt, Douglas L. Van.

    37th Computers and Information in Engineering Conference. Vol. 1 American Society of Mechanical Engineers ASME, 2017. 67257.

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    TY - GEN

    T1 - A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems

    AU - Papakonstantinou, Nikolaos

    AU - Tommila, Teemu

    AU - O'Halloran, Bryan

    AU - Alanen, Jarmo

    AU - Bossuyt, Douglas L. Van

    PY - 2017/1/1

    Y1 - 2017/1/1

    N2 - Defense in Depth (DiD) is a key design principle helping to improve the safety of complex systems in domains like nuclear power, oil and gas, and mining. DiD affects the basic design of the system because it contains requirements for isolation, diversity and safety divisions. If the DiD assessment happens late in the design process, there is a risk of costly redesign and project delays. To avoid this issue, this paper refines a set of early DiD assessment design rules and proposes a model-driven methodology for early assessment of the implementation of the DiD capabilities of a complex system design. The topology of the different design aspects of the system under study (mechanical, electrical, human factors, and others) and the dependencies between system elements are captured in a High Level Interdisciplinary Model (HLIM) that also holds DiD specific attributes. The resulting system model is assessed against the proposed set of DiD rules and requirements, and then it can be improved according to the results. The methodology is applied to a case study of an early nuclear power plant model of a spent fuel pool cooling system. The proof-of-concept software tool developed for early DiD assessment and presented in this paper is able to identify undesired dependencies between system elements of redundant systems, of different defense lines and other DiD related weaknesses. This provides practitioners with insights into potential vulnerabilities in the design and enables focused redesign to address the identified problems early in the design process.

    AB - Defense in Depth (DiD) is a key design principle helping to improve the safety of complex systems in domains like nuclear power, oil and gas, and mining. DiD affects the basic design of the system because it contains requirements for isolation, diversity and safety divisions. If the DiD assessment happens late in the design process, there is a risk of costly redesign and project delays. To avoid this issue, this paper refines a set of early DiD assessment design rules and proposes a model-driven methodology for early assessment of the implementation of the DiD capabilities of a complex system design. The topology of the different design aspects of the system under study (mechanical, electrical, human factors, and others) and the dependencies between system elements are captured in a High Level Interdisciplinary Model (HLIM) that also holds DiD specific attributes. The resulting system model is assessed against the proposed set of DiD rules and requirements, and then it can be improved according to the results. The methodology is applied to a case study of an early nuclear power plant model of a spent fuel pool cooling system. The proof-of-concept software tool developed for early DiD assessment and presented in this paper is able to identify undesired dependencies between system elements of redundant systems, of different defense lines and other DiD related weaknesses. This provides practitioners with insights into potential vulnerabilities in the design and enables focused redesign to address the identified problems early in the design process.

    UR - http://www.scopus.com/inward/record.url?scp=85034747534&partnerID=8YFLogxK

    U2 - 10.1115/DETC2017-67257

    DO - 10.1115/DETC2017-67257

    M3 - Conference article in proceedings

    SN - 978-0-7918-5811-0

    VL - 1

    BT - 37th Computers and Information in Engineering Conference

    PB - American Society of Mechanical Engineers ASME

    ER -

    Papakonstantinou N, Tommila T, O'Halloran B, Alanen J, Bossuyt DLV. A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems. In 37th Computers and Information in Engineering Conference. Vol. 1. American Society of Mechanical Engineers ASME. 2017. 67257 https://doi.org/10.1115/DETC2017-67257