A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems

Nikolaos Papakonstantinou, Teemu Tommila, Bryan O'Halloran, Jarmo Alanen, Douglas L. Van Bossuyt

Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

2 Citations (Scopus)

Abstract

Defense in Depth (DiD) is a key design principle helping to improve the safety of complex systems in domains like nuclear power, oil and gas, and mining. DiD affects the basic design of the system because it contains requirements for isolation, diversity and safety divisions. If the DiD assessment happens late in the design process, there is a risk of costly redesign and project delays. To avoid this issue, this paper refines a set of early DiD assessment design rules and proposes a model-driven methodology for early assessment of the implementation of the DiD capabilities of a complex system design. The topology of the different design aspects of the system under study (mechanical, electrical, human factors, and others) and the dependencies between system elements are captured in a High Level Interdisciplinary Model (HLIM) that also holds DiD specific attributes. The resulting system model is assessed against the proposed set of DiD rules and requirements, and then it can be improved according to the results. The methodology is applied to a case study of an early nuclear power plant model of a spent fuel pool cooling system. The proof-of-concept software tool developed for early DiD assessment and presented in this paper is able to identify undesired dependencies between system elements of redundant systems, of different defense lines and other DiD related weaknesses. This provides practitioners with insights into potential vulnerabilities in the design and enables focused redesign to address the identified problems early in the design process.
Original languageEnglish
Title of host publication37th Computers and Information in Engineering Conference
PublisherAmerican Society of Mechanical Engineers ASME
Number of pages10
Volume1
ISBN (Electronic)9780791858110
ISBN (Print)978-0-7918-5811-0
DOIs
Publication statusPublished - 1 Jan 2017
MoE publication typeA4 Article in a conference publication
Event13th ASME/IEEE International Conference on Mechatronic and Embedded Systems and Applications - Cleveland, United States
Duration: 6 Aug 20179 Aug 2017
Conference number: 13

Conference

Conference13th ASME/IEEE International Conference on Mechatronic and Embedded Systems and Applications
Abbreviated titleIDETC/CIE 2017
CountryUnited States
CityCleveland
Period6/08/179/08/17

Fingerprint

Socio-technical Systems
Large scale systems
Complex Systems
Model
Design Process
Spent fuels
Safety
Human engineering
Cooling systems
Nuclear energy
Redundant System
Nuclear power plants
Design Rules
Nuclear Power Plant
Methodology
Human Factors
Requirements
Systems analysis
Topology
Software Tools

Cite this

Papakonstantinou, N., Tommila, T., O'Halloran, B., Alanen, J., & Bossuyt, D. L. V. (2017). A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems. In 37th Computers and Information in Engineering Conference (Vol. 1). [67257] American Society of Mechanical Engineers ASME. https://doi.org/10.1115/DETC2017-67257
Papakonstantinou, Nikolaos ; Tommila, Teemu ; O'Halloran, Bryan ; Alanen, Jarmo ; Bossuyt, Douglas L. Van. / A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems. 37th Computers and Information in Engineering Conference. Vol. 1 American Society of Mechanical Engineers ASME, 2017.
@inproceedings{7c6b0f9db31241adb55938e90a9001f8,
title = "A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems",
abstract = "Defense in Depth (DiD) is a key design principle helping to improve the safety of complex systems in domains like nuclear power, oil and gas, and mining. DiD affects the basic design of the system because it contains requirements for isolation, diversity and safety divisions. If the DiD assessment happens late in the design process, there is a risk of costly redesign and project delays. To avoid this issue, this paper refines a set of early DiD assessment design rules and proposes a model-driven methodology for early assessment of the implementation of the DiD capabilities of a complex system design. The topology of the different design aspects of the system under study (mechanical, electrical, human factors, and others) and the dependencies between system elements are captured in a High Level Interdisciplinary Model (HLIM) that also holds DiD specific attributes. The resulting system model is assessed against the proposed set of DiD rules and requirements, and then it can be improved according to the results. The methodology is applied to a case study of an early nuclear power plant model of a spent fuel pool cooling system. The proof-of-concept software tool developed for early DiD assessment and presented in this paper is able to identify undesired dependencies between system elements of redundant systems, of different defense lines and other DiD related weaknesses. This provides practitioners with insights into potential vulnerabilities in the design and enables focused redesign to address the identified problems early in the design process.",
author = "Nikolaos Papakonstantinou and Teemu Tommila and Bryan O'Halloran and Jarmo Alanen and Bossuyt, {Douglas L. Van}",
year = "2017",
month = "1",
day = "1",
doi = "10.1115/DETC2017-67257",
language = "English",
isbn = "978-0-7918-5811-0",
volume = "1",
booktitle = "37th Computers and Information in Engineering Conference",
publisher = "American Society of Mechanical Engineers ASME",
address = "United States",

}

Papakonstantinou, N, Tommila, T, O'Halloran, B, Alanen, J & Bossuyt, DLV 2017, A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems. in 37th Computers and Information in Engineering Conference. vol. 1, 67257, American Society of Mechanical Engineers ASME, 13th ASME/IEEE International Conference on Mechatronic and Embedded Systems and Applications, Cleveland, United States, 6/08/17. https://doi.org/10.1115/DETC2017-67257

A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems. / Papakonstantinou, Nikolaos; Tommila, Teemu; O'Halloran, Bryan; Alanen, Jarmo; Bossuyt, Douglas L. Van.

37th Computers and Information in Engineering Conference. Vol. 1 American Society of Mechanical Engineers ASME, 2017. 67257.

Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

TY - GEN

T1 - A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems

AU - Papakonstantinou, Nikolaos

AU - Tommila, Teemu

AU - O'Halloran, Bryan

AU - Alanen, Jarmo

AU - Bossuyt, Douglas L. Van

PY - 2017/1/1

Y1 - 2017/1/1

N2 - Defense in Depth (DiD) is a key design principle helping to improve the safety of complex systems in domains like nuclear power, oil and gas, and mining. DiD affects the basic design of the system because it contains requirements for isolation, diversity and safety divisions. If the DiD assessment happens late in the design process, there is a risk of costly redesign and project delays. To avoid this issue, this paper refines a set of early DiD assessment design rules and proposes a model-driven methodology for early assessment of the implementation of the DiD capabilities of a complex system design. The topology of the different design aspects of the system under study (mechanical, electrical, human factors, and others) and the dependencies between system elements are captured in a High Level Interdisciplinary Model (HLIM) that also holds DiD specific attributes. The resulting system model is assessed against the proposed set of DiD rules and requirements, and then it can be improved according to the results. The methodology is applied to a case study of an early nuclear power plant model of a spent fuel pool cooling system. The proof-of-concept software tool developed for early DiD assessment and presented in this paper is able to identify undesired dependencies between system elements of redundant systems, of different defense lines and other DiD related weaknesses. This provides practitioners with insights into potential vulnerabilities in the design and enables focused redesign to address the identified problems early in the design process.

AB - Defense in Depth (DiD) is a key design principle helping to improve the safety of complex systems in domains like nuclear power, oil and gas, and mining. DiD affects the basic design of the system because it contains requirements for isolation, diversity and safety divisions. If the DiD assessment happens late in the design process, there is a risk of costly redesign and project delays. To avoid this issue, this paper refines a set of early DiD assessment design rules and proposes a model-driven methodology for early assessment of the implementation of the DiD capabilities of a complex system design. The topology of the different design aspects of the system under study (mechanical, electrical, human factors, and others) and the dependencies between system elements are captured in a High Level Interdisciplinary Model (HLIM) that also holds DiD specific attributes. The resulting system model is assessed against the proposed set of DiD rules and requirements, and then it can be improved according to the results. The methodology is applied to a case study of an early nuclear power plant model of a spent fuel pool cooling system. The proof-of-concept software tool developed for early DiD assessment and presented in this paper is able to identify undesired dependencies between system elements of redundant systems, of different defense lines and other DiD related weaknesses. This provides practitioners with insights into potential vulnerabilities in the design and enables focused redesign to address the identified problems early in the design process.

UR - http://www.scopus.com/inward/record.url?scp=85034747534&partnerID=8YFLogxK

U2 - 10.1115/DETC2017-67257

DO - 10.1115/DETC2017-67257

M3 - Conference article in proceedings

SN - 978-0-7918-5811-0

VL - 1

BT - 37th Computers and Information in Engineering Conference

PB - American Society of Mechanical Engineers ASME

ER -

Papakonstantinou N, Tommila T, O'Halloran B, Alanen J, Bossuyt DLV. A model driven approach for early assessment of defense in depth capabilities of complex sociotechnical systems. In 37th Computers and Information in Engineering Conference. Vol. 1. American Society of Mechanical Engineers ASME. 2017. 67257 https://doi.org/10.1115/DETC2017-67257