Hazard Analysis: the evaluation and documentation of hazards and formulation of a control mechanism that can affect a facility, system, subsystem, or component
Mishap or Accident: an unplanned event or series of events that results in death, injury, occupational illness, or the damage or loss of equipment or property
Hazard severity categories: a qualitative measurement of the worst potential consequence resulting from personnel error, environmental conditions, design inadequacies, procedural deficiencies, and system, subsystem, and component failure or malfunction. These categories are as follows:
Probable - will occur several times in the life of an item
Occasional - likely to occur at sometime in the life of an item
Remote - unlikely but possible to occur in the life of an item
Improbable - so unlikely that it can be assumed occurrence may not be experienced
Risk assessment matrix (attachment 3.2.3): Hazard information is converted to risk information by evaluating the severity of the potential hazard and by evaluating the frequency probability of the hazard producing a mishap or accident. This evaluation is done by developing a matrix wit h hazard severity on one axis and hazard frequency on the other, with a numeric code (hazard risk index) used to represent the risk associated with each hazard.
Procedure: a set of sequenced actions for operating, assembling, maintaining, repairing, calibrating, testing, transporting, handling, installing, or removing a spaceflight assembly or system
Preliminary hazard analysis (PHA): usually the initial hazard analysis that begins during the conceptual or requirements definition phase and is completed prior to the preliminary design review. The goal of the PHA is to identify and characterize possible hazards early in the design phase. It identifies known hazards such as explosion, radioactive sources, pressure vessels or lines, toxic materials, and high voltages. It specifies where each will occur, their significance in the system, and the method to be used to eliminate the hazard or control the associated risk.
Subsystem hazard analysis/system hazard analysis (SSHA/SHA): an analysis requiring detailed studies of hazards, identified in the PHA, at the subsystem and system level, including the interface between subsystems and the environment, or by the system operating as a whole. Results of this analysis include design recommendations, changes or controls when required, and evaluation of design compliance to contracted requirements. Often subsystem and system hazards are easily recognized and remedied by design and procedural measures or controls. These hazards are often handled by updating and expanding the PHA, with timing of the SSHA/SHA normally determined by the availability of subsystem and system design data (usually began after the preliminary design review and completed before the critical design review).
Operating & support hazard analysis (O&SHA): an analysis performed to identify those operating functions that may be inherently dangerous to test, maintenance, handling, transportation or operating personnel or in which human error could be hazardous to equipment or people. The O&SHA should be performed at the point in system development when sufficient data are available, after procedures have been developed. It documents and evaluates hazards resulting from the implementation of operations performed by persons and considers the planned system configuration at each phase of activity, the facility interfaces, the planned environments, the support tools or other equipment specified for use, the operation or task sequence, concurrent task effects and limitations, biotech nological factors, regulatory or contractually specified personnel safety and health requirements, and the potential for unplanned events including hazards introduced by human error. O&SHA identifies the safety requirements (or alternatives) needed to eliminate identified hazards or to reduce the associated risk to an acceptable level.
Updating analysis: In addition, the analysis should be maintained and updated as the project advances (i.e., hazard controls put in place, procedures written, etc.) as a means of hazard tracking throughout the life of the project.
The analysis should be developed as follows:
Analysis Developer:
4.1.2 Review the generic hazard definitions (attachment 3.2.1) for familiarization with appropriate terms.
4.1.3 Review the generic hazard list (attachment 3.2.2) for familiarization with typical hazards that are generally found in hazard analyses.
4.1.4 Perform a walkdown of any associated facilities, hardware, and/or support equipment, as applicable, for the item or items being analyzed. This walkdown will familiarize the analysis developer with the configuration of the item or items being analyzed.
4.1.5 Develop a listing of all systems, subsystems, or components to be analyzed.
4.1.6 For each system, subsystem, or component, list all possible hazardous conditions that can occur as a result of the following three scenarios:
4.1.6.2 Improper usage of the item
4.1.6.3 Proper usage of the item (i.e., those hazards associated with nominal operations of the system, subsystem or component).
4.1.8 For each hazard cause, list the initial hazard severity and frequency and the hazard risk index determined through the use of guidance provided in MIL-STD-882 and attachment 3.2.3.
4.1.9 The following five steps will assist the analysis developer in identifying possible hazard controls for each hazard cause. Each step should be performed in the listed order of precedence for each hazard cause identified in the analysis, since numerous possible hazard controls may be identified for each hazard cause. Project engineers should be included in the performance of these steps, since they have the greatest insight into the specifics of the design and operation of the item or items being analyzed.
4.1.9.2 If a hazard effect can be reduced by using a safety device (i.e., relief valve for pressure systems, fuse for electrical systems, etc.), this device and its usage should be listed as proposed hazard controls.
4.1.9.3 If a hazardous condition can be detected by using a warning device (i.e., alarm, signal light, etc.), this device and its usage should be listed as proposed hazard controls.
4.1.9.4 If a hazard effect can be countered or reduced by using a special procedure, this procedure and its method of countering or reducing the hazardous effect should be listed as proposed hazard controls.
4.1.9.5 If there are other hazard controls that could eliminate or reduce the hazardous condition, cause, or effect (i.e., changing the operating environment, etc.), they should be listed as proposed hazard controls.
4.1.11 Develop recommendations that will reduce the hazard risk to the system, subsystem, component, or facility. Recommendations typically emphasize those proposed hazard controls that will reduce the risk to the greatest extent. They include a combination of design changes, change of operating environments, usage of safety and warning devices, and inclusion of special procedures for the performance of hazardous operation.
4.1.12 Attach all relevant information to the hazard analysis (i.e., analysis worksheets, drawings, schematics.).
4.1.13 Include hazard analysis as part of the experiment safety documentation (see section 4.2)
The risk assessment matrix is based on MIL-STD-882: Generally, for a hazard to be acceptable it should merit a risk code of 10 or more. Hazards with a risk code of 6 through 9 normally require additional acceptance by the Executive Safety Board for the program or experiment to be performed. Risk codes of 5 or lower indicate unacceptable hazards.
######################################################################## #####################
SEVERITY ________________________________________________________________________ _____________________ I II III IV CATASTROPHIC CRITICAL MARGINAL NEGLIGIBLE PROBABILITY A) Frequent 1 3 7 13 B) Probable 2 5 9 16 C) Occasional 4 6 11 18 D) Remote 8 10 14 19 E) Improbable 12 15 17 20 ######################################################################## ##################### SEVERITY CATEGORY DEFINITION Catastrophic I Death or system loss Critical II Severe injury, severe occupational illness, or major system damage Marginal III Minor injury, minor occupational illness, or minor system damage Negligible IV Less than minor injury, occupational illness, or system loss ######################################################################## ##################### PROBABILITY LEVEL DEFINITION Frequent A Likely to occur frequently Probable B Will occur several times in life of an item Occasional C Likely to occur sometime in life of an item Remote D Unlikely, but possible to occur in life of an item Improbable E So unlikely it can be assumed occurrence may not be experienced ATTACHMENT 3.2.3 (2) Flight Research Hazard Analysis DC-9 Reduced-Gravity Aircraft Program _______________________________________________________________________ ______________________ Experiment Title Date _______________________________________________________________________ ______________________ Hazard (Describe the event that will directly produce the injury or damage. Describe the nature and extent of the injury or damage.) _______________________________________________________________________ ______________________ Causes (Describe the circumstances and events leading up to the hazard.) _______________________________________________________________________ ______________________ Controls (Describe design features and procedures that will be used to reduce the hazard's probability and/or severity. List any testing that will be done to verify the controls' effectiveness.) _______________________________________________________________________ ______________________ Risk Assessment (Assess the risk by using the MIL-STD-882 matrix (Attachment 3.2.3 (1)). Base the assessment on the controls producing the planned effects of the hazard's probability and/or severity. Severity Category:_______ Probability Level :_______ Risk Assessment Code:_______ _______________________________________________________________________ ______________________ Analysis of Prepared by / Date Checked by / Date Operations Program Final Mgr.Date Design HAZARDS IDENTIFICATION GUIDE RESEARCH ____________________________________________________________________________ _________________________________________ PROGRAM ____________________________________________________________________________ _________________________________________ A broad topical list of experiment related areas requiring examination to identify potential hazards has been included below. Additional areas expmined will be noted in the "Other" category. Interaction with aircraft hazards must be considered. ____________________________________________________________________________ _________________________________________ HAZARD EXAMINATION ANALYSIS AREA COMPLETED REQUIRED ____________________________________________________________________________ _________________________________________ Experiment Fire/ Explosion ____________________________________________________________________________ _________________________________________ Experiment Structural Strength ____________________________________________________________________________ _________________________________________ Loss of Power Source(s) ____________________________________________________________________________ _________________________________________ Over/Under Pressure ____________________________________________________________________________ _________________________________________ Overtemperature ____________________________________________________________________________ _________________________________________ Overspeed ____________________________________________________________________________ _________________________________________ Adequate Ventilation ____________________________________________________________________________ _________________________________________ Electrical Shock ____________________________________________________________________________ _________________________________________ Electrical Shielding ____________________________________________________________________________ _________________________________________ Electrical Circuit Protection ____________________________________________________________________________ _________________________________________ Control of Combustible or Explosive Mixture(s) ____________________________________________________________________________ _________________________________________ Guards Over Live Parts ____________________________________________________________________________ _________________________________________ Equipment Shielding Against Impact ____________________________________________________________________________ _________________________________________ Personnel Protection ____________________________________________________________________________ _________________________________________ Toxicity ____________________________________________________________________________ _________________________________________ Radiation ____________________________________________________________________________ _________________________________________ Bodily Injury ____________________________________________________________________________ _________________________________________ Noise ____________________________________________________________________________ _________________________________________ Fire ____________________________________________________________________________ _________________________________________ Other ____________________________________________________________________________ _________________________________________ Buddy System ____________________________________________________________________________ _________________________________________ Researcher Workload ____________________________________________________________________________ _________________________________________ Researcher/Aircrew Communications ____________________________________________________________________________ _________________________________________ Other ____________________________________________________________________________ _________________________________________ HAZARD IDENTIFICATION COMPLETED ( Research Program Manager) Date ________________ ________________ ________________ ________________ ________________ ________________ ________________ _____