This program is preliminary and may change before the workshop. Sessions and times will also be set later.
Jay Fleming (Invited Talk), Boston Fire Department: Why the failure to investigate residential fires for “cause of death” instead of simply “cause of the fire, ” i.e. is it arson or accidental, has led to the failure to identify simple solutions that could save hundreds of lives per year.
Megan France, CAST Analysis of a Boston Fire, MIT
Diogo Castilho, Scenarios of over-automation in flight testing of manned aircraft, MIT (and Brazilian Air Force)
Ioana Koglbauer, STPA-based model of threat and error management in dual flight instruction, Technical Univ. of Graz, Austria
Daniel Pereira, Celso Hirata, Rodrigo Pagliares, Francisco de Lemos, STPA-Sec: System Theoretic Process Analysis for Security of Flight Management System, Instituto Tecnológico de Aeronáutica (ITA), Universidade Federal de Alfenas, Instituto de Pesquisas Energéticas e Nucleares (IPEN), and Embraer, Brazil
Simon Whiteley, Applying CAST: Runway Incursion Case Study, Whiteley Aerospace Safety Engineering and Management Ltd., U.K.
Liz Juhnke, The Human Element: Integrating user research into STPA for workplace safety analysis, Boeing
Katherine Belvin, Using STPA trend analysis to determine key system drivers, Boeing
Andrea Scarinci, Felipe Xavier de Oliveira, Ricardo Moraes, Amanda Iriarte Quilici, Daniel Patrick, Danilo da Costa Ribeiro. A complete STPA application to the Air Management System of Embraer Regional Jets family, Embraer, Brazil
Stephanie Alvarez, Yves Page, Franck Gurarnieri, AV-CAST: A technique for the analysis of road crashes involving vehicle automation, Ecole des Mines ParisTech and Renault
Torben Stolte, Marcus Nolte, Bernd Amlang, and Markus Maurer. Evaluating High Voltage Safety Measures for an Experimental Full-by-Wire Vehicle Utilizing STPA, Technical University of Braunschweig, Germany.
Gerrit Bagschik, Markus Maurer, Klaus Bengler, Uwe Becker, Rene Hosse, Evolution Issues of Automated Driving Functions by Application of Systemic Accident Analysis: On the Example of the Tesla Model S Fatality, Technical University of Braunschweig and Technical University of Munich, Germany
Asim Abdulkhaleq, Stefan Wagner, Daniel Lammering, Hagen Boehmert, and Pierre Blueher. Using STPA in Compliance with ISO 26262 for Developing a Safe Architecture for Fully Automated Vehicles, University of Stuttgart and Continental Corp, Germany
Haneet Mahajan, Thomas Bradley and Sudeep Pasricha. Application of STPA to a Lane Keeping Assist System, Colorado State University
John Thomas, Analyzing Changes to Automation and New Unsafe Human Interactions That Can Occur, MIT
Nicolas Malloy, Using STPA to Develop a MIL-STD-882E Compliant FHA and Promote Organizational Change, General Dynamics Missions Systems
Alex Boydston and David Horney, STPA during Early Concept Formation for Military Rotorcraft, U.S. Army and MIT
Sarah Summer, Sarah Folse, Dan Montes, SUAS Airspace Safety Analysis at Edwards Air Force Base, U.S. Air Force and MIT
Kip Johnson, Extending STPA for Coordination Analysis. U.S. Air Force
Michael Shnaid and Daniel Hartmann, CAST analysis of the 2003 critical baby food disastrous event in Israel, Ben Gurion University of the Negev, Israel
Masa Katahira, Naoki Ishimama, John Thomas, Nancy Leveson, Nobuyuki Hoshino, STAMP accident model of HITOMI and expansion to future safety culture, Japanese Space Agency (JAXA), MIT, and Japan Manned Space Systems Corp. (JAMSS), Japan
Carlos Lahoz, Idoaldo Lima, Marcelo Sousa, and Claudio Alves, CAST analysis of the PT-OVC Learjet 35A accident in Sao Paulo, Instituto Tecnológico da Aeronáutica (ITA), and Universidade Federal de Itajubá (UNIFEI), Brazil
Carlos Lahoz and Idoaldo Lima, Preliminary CAST analysis of LaMia CP-2933 accident,
Instituto Tecnológico da Aeronáutica (ITA), Brazil
Ioannis Dokas, Towards a STAMP-based Safety Plans Approach for Construction Projects, Democritus University of Thrace, Greece
Mikela Chatzimichailidou, A STAMP-based dissimilarity indicator for railway Maintenance, Imperial College, U.K.
Esteban Montero, Application of STPA to understand marine operations at Chevron, Chevron Corporation Energy Technology Company
Greg Pope, STPA for IOT (Internet of Things), Lawrence Livermore National Laboratory
Tim Stirrup, STPA applied to Laser and Deuterium/Flammable Gas, Sandia National Laboratories
Kadupokotla Kumar, STPA analysis for Clinical Programming Software of Cochlear Implant System for Profoundly Deaf People, Jawaharlal Nehru Technological University, India
Aleksandar Sotic and Marko Ivetic, STAMP as Risk Analysis Method for Water Supply Systems. Belgrade Public Water Utility and University of Belgrade, Serbia.
Daniel Sepulveda, The Use of STPA for Understanding Cyber Risks in a Physical Supply Chain, Technical University of Denmark
Panel/Session on Industrialization Issues (Company education, acceptance, etc.): This will be a session on issues in commercialization such as overcoming roadblocks to adoption by companies and employee education. [Please tell me if you are interested in participating in the session.]
How to apply STPA in the aeronautical industry – Embraer experience (Andrea Scarinci, Felipe Xavier de Oliveira, Ricardo Moraes, Amanda Iriarte Quilici, Daniel Patrick, Danilo da Costa Ribeiro). Embraer, Brazil
Gus Larard (Cathay Pacific)?
Martin Rejzek and Sven Stefan Krauss: STPA Based Hazard and Risk Analysis Tool (SAHRA), Zurich University of Applied Sciences, Switzerland
Martin Rejzek and Svana Helen Björnsdóttir. Enhanced Risk Management Framework (ERMF), Zurich University of Applied Sciences, Switzerland and Stiki Information Services, Iceland
Manabu Okada, Using STPA Improving Method of Derivation of Safety Requirements for ISO 26262 Development JASPAR, Nissan Motor Company, Japan
Yukihiro Mihara, Keisuke Toyama, Takashi Kawano and Shigeru Kanemoto. A proposal for “Hint words” to identify hazard causal factors for systems including human and/or organization. Information Processing Technology Agency (IPA), East Japan Railway Company, and the University of Aizu, Japan
Yusuke Kaizuka, Comparison of Railway system between U.S. and Japan, JR Central Railway, Japan
Ephraim Chen, STPA Analysis of Auto-Hold, MIT and Boeing
Yasuhiko Kawabe, Natthaphon Laochintanasri, Masahiro Udo, and Tatsuki Mikami, The case study of the results and considerations in the autonomous system in boat operation in coastal area concerning STAMP/STPA, Japan MOT Society, Nissan Motor Company, Univance Corporation, and Hosei University, Japan
Aisha Alomar and Haley Cope, STPA applied to SCADA, MIT (and ARAMCO)
Harding Hall and Max Reele, Biopharmaceutical Purification, MIT
Akshay Kothakonda, CAST Analysis of the International Space Station EVA 23 Suit Water Intrusion Mishap, University of Southern California
Amanda Hamlet, STPA Analysis of Uranium Extraction from Seawater, MIT
|8:30-10:00||STAMP and Systems Theory Intro Nancy Leveson||STPA and CAST Practicums(Exercises, discussion of issues, etc.)||
Cyber-Security and STPA
Col. Bill Young, USAF
|10:20-11:50||STPA IntroJohn Thomas 32-082|
|1:00-2:30||STPA Practicum 32-082||CAST Intro Nancy Leveson, 32-||
Human-Automation Interaction in STPA
|2:50-4:20||STPA Practicum 32-082||CAST Practicum 32-||STAMP in Workplace SafetyEmily Howard, Katherine Belvin, Shawna Murray, Liz Juhnke (Boeing)Larry Hettinger (Liberty Mutual Research Institute for Safety)Megan France (MIT)32-|
|4:30-5:30||Panel/Session on Industrialization|
Beginners: We suggest attending the STAMP Intro + STPA intro in morning and the CAST intro in the afternoon
STAMP and Systems Theory Intro: Introduction to STAMP and its theoretical foundations
STPA Intro: An introduction to STPA for beginners
STPA and CAST Practicums: Exercises, examples, discussion for those already familiar with these tools
Cyber-securiy and STPA: Use of and extensions to STPA for cyber-security
CAST Intro: Introduction to CAST for beginners
Human-Automation Interaction in STPA: New extensions to STPA for integrating human factors concepts
STPA in Workplace Safety: In 2015, Boeing began utilizing STAMP, working with Dr. Leveson and researchers from Liberty Mutual Research Institute for Safety (LMRIS), to understand systemic problems and develop effective solutions for our factory and flight line, consistent with recent, sociotechnical approaches to workplace safety. Although traditionally applied to product safety engineering for complex systems, STAMP can also enable workplace safety professionals to understand how humans and physical components (hardware and software) interact in the context of a broader environment (which is also both technical and social). This characterization of the complete system, in turn, allows safety professionals to define solutions that may achieve more comprehensive and lasting changes toward improving workplace safety. Furthermore, the model creates opportunity to examine productivity and quality “losses” in the same context as safety incidents, helping designers focus on solutions that provide the greatest positive benefit. This tutorial will demonstrate the application of STAMP, and specifically, STPA, to a safety procedure (Lockout/Tagout) used during product assembly, maintenance and repair, and present results from our ongoing study.