Human Reliability Assessment In ATM: the CARA tool

Similar documents
Application of the CARA HRA Tool to Air Traffic Management Safety Cases

Modelling of potential hazards in agent-based safety risk analysis

Human Error Quantification Railway Action Reliability Assessment. Huw Gibson Senior Human Factors Specialist RSSB

Some Trends in Next Generation Air Traffic Management

EUROPEAN ORGANISATION FOR THE SAFETY OF AIR NAVIGATION EUROCONTROL EUROCONTROL EXPERIMENTAL CENTRE

Keywords: separation provision, conflict resolution strategy, conflict geometry, ATC

Final Project Report. Abstract. Document information

NextGen ATM Concept of Operations: ASAS-Reliant

Final Project Report. Abstract. Document information

SESAR & NextGen Working together for Aviation Interoperability

Using Complexity Science in Analyzing Safety/Capacity of ATM Designs

Conflict detection and resolution aid to controllers. Jean-Louis Garcia, DSNA

Today s Operations Task Analysis

Final Project Report. Abstract. Document information

4 TH USA / Europe. R&D Seminar. Rapporteur s Report. Steve Bradford

First ATC Support Tools Implementation (FASTI) Cognitive Task Analysis

Controller and Pilot Evaluation of a Datalink-Enabled Trajectory-Based. Eric Mueller

SESAR The European ATM Improvement Programme. Regional ANC 2012 Preparatory Symposium Michael STANDAR Moscow March 2012

Model-Driven Requirements Engineering with i*: Synchronising Models in an Air Traffic Management Case Study

METHODOLOGY REPORT FOR A SAFETY TARGET ACHIEVEMENT ROADMAP (STAR)

Using System Theoretic Process Analysis (STPA) for a Safety Trade Study

Measuring En Route Separation Assurance Performance. Ella Pinska, Brian Hickling

Modelling Human Reliability in Air Traffic Management

The future of Air Traffic Management

ATM & UTM INTEGRATION

Increasing ATM Efficiency with Assistant Based Speech Recognition (ABSR)

EPISODE 3. Episode 3 paves the way for SESAR validation

First European Air traffic controller Selection Test (FEAST) package. Information to Candidates applying as Student Air Traffic Controllers

Final Project Report. Abstract. Document information

Contextual note SESAR Solution description form for deployment planning

Instantaneous self- assessment of workload technique (ISA)

Safety Analysis Methodology for ADS-B Based Surveillance Applications

FRAM & ATM. Report from a collaboration on the use of FRAM in the context of ATM

European Aviation Safety Agency

SAFEGUARDING. Aviation Consultancy at its best.

Capacity Planning and Assessment Additional considerations

Lessons Learned In Cognitive Systems Engineering AMY PRITCHETT GEORGIA TECH JULY 5, 2016

I-AM-SAFE Feasibility Study Report

ICAO competency provisions for the RPL. Nicole Barrette RPAS Symposium 20 September 2017

Safety Nets Safety Forum June 2016 Brussels:

EUROPEAN ORGANISATION FOR THE SAFETY OF AIR NAVIGATION EUROCONTROL EUROCONTROL EXPERIMENTAL CENTRE

Episode 3 D FTS on 4D trajectory management and complexity reduction - Experimental Plan EPISODE 3

SESAR: a European initiative for an enhanced ATM system

Analysis of Multi-Sector Planner Concepts in U.S. Airspace

Federal Aviation Administration The NextGen Vision of Future Safety

Clarifying Cognitive Complexity and Controller Strategies in Disturbed Inbound Peak ATC Operations

The SESAR Joint Undertaking is a EU body created by the EU Council (REG 219/2007)

Future Area Control Tools Support (FACTS) Peter Whysall

Final Project Report. Abstract. Document information

SESAR Release 2 RESULTS

RESULTS OF THE PD/1++ TRIAL

Strategic Approach to Safety. Issued June 2011

Agent-Based Modelling and Simulation of Trajectory Based Operations under Very High Traffic Demand

A System Concept for Facilitating User Preferences in En Route Airspace

SESAR PJ09 DCB

Enhancing the role of Human Factors in Safety Investigation and Analysis

DOC Volume 2 of 2

CARA: A Human Reliability Assessment Tool for Air Traffic Safety Management Technical Basis and Preliminary Architecture

SESAR development and deployment

Contextual note SESAR Solution description form for deployment planning

Fachpanel Environment & Human Factors Impuls Talk: Human Factors in Air Traffic Management

HUMAN ERROR QUANTIFICATION: DEVELOPING NARA FROM HEART

EVALUATION OF CONCEPTUAL CHANGES IN AIR TRAFFIC CONTROL USING TASK-BASED WORKLOAD MODELS

IAPA Project Final Report Synthesis and guidelines. Implications on ACAS Performances due to ASAS implementation IAPA Project

CORE TOPICS Core topic 3: Identifying human failures. Introduction

Contextual note SESAR Solution description form for deployment planning

The role of research organizations in SESAR German Aerospace Center (DLR) Dr. Helmut H. Toebben Prof. Dr. Dirk Kuegler

A-CDM Benefits & Network Impact Study

Human dimension in Remote tower

COFLIGHT AS A SERVICE

Airport Collaborative Decision Making Enhancing Airport Efficiency

Designing to Reduce Human Error

Not all or nothing, not all the same: classifying automation in practice

Single European Sky Interoperability Regulation

Strategic Planning in Air Traffic Control as a Multi-Objective Stochastic Optimization Problem

Time-Based Arrival Management for Dual Threshold Operation and Continuous Descent Approaches

Statistical Approaches to Estimation of Nominal HEPs using Simulation Data

EUROCONTROL Guidance Material for Short Term Conflict Alert Appendix B-1: Safety Argument for STCA System

International Civil Aviation Organization AIR TRAFFIC MANAGEMENT REQUIREMENTS AND PERFORMANCE PANEL (ATMRPP) TWENTY SIXTH WORKING GROUP MEETING

SESAR Progress. Specific focus on ATC related WPs (WP4, WP5,WP10) Prepared for ODT by Bernard Brunner 17th September 2009

Design according to liabilities: ACAS X and the treatment of ADS B position data

SESAR Exploratory Research. David Bowen Chief ATM, SESAR JU

Tamsyn Edwards 1 San Jose State University/NASA Ames Research Center, Moffett Field, CA, and

COSPACE HAZOP REPORT (combined controller and pilot)

ANS performance review in Europe

SATCAS Standard Air Traffic Control Automation System

Publishable Final Activity Report

Using Dynamic Risk Modelling in Single European Sky Air Traffic Management Research (SESAR)

HUMAN FACTORS. FASTI Human Factors and Managing the Transition Good Practice Guidelines. Making change in En-Route Air Traffic control DELIVERABLE

Prioritising safety in unmanned aircraft system traffic management

ESTIMATING HEPS FROM THE OPERATIONAL EXPERIENCE OF DOMESTIC NUCLEAR POWER PLANTS A FRAMEWORK AND CASE STUDIES

TRAINING FOR PROTECTION OF HUMAN PERFORMANCE AND LIMITIATIONS IN AVIATION A CHALLENGE FOR DEVELOPERS

Go-around Decision Making. Capt Bertrand de Courville ECAST European Commercial Aviation Safety Team Brussels 18th June 2013

taking automation to the next level Symptomatic 20st century joke in the world of Process Automation The operator is there to feed the dog

Outbound Punctuality Sequencing by Collaborative Departure Planning

Wildlife Surveillance Concept (WiSC)

Integrated Human Centered Systems Approach to the Development of Advanced Air Traffic Management Systems

RETINA Validation Report

A Conflict Probe to Provide Early Benefits for Airspace Users and Controllers

Autoflight Mode Awareness Issues: An Overview

Transcription:

Human Reliability Assessment In ATM: the CARA tool Barry Kirwan EUROCONTROL Experimental Centre France barry.kirwan@eurocontrol.int

What I m going to talk about CARA: Controller Action Reliability Assessment HRA How CARA works How it was developed Application Example Validation check )

Where does CARA fit in HRA? Document & Feed forward to Ops Task Analysis Human Error Identification Define Error Reduction Measures HRA Process Model the human in the safety case Evaluate the human contribution Consider Human Dependence Quantify Human Error Probability

Elements of Quantification the HEART template Define the Generic Task Type (GTT) Human Error Assessment & & Reduction Technique Williams, 1985 Calculate the Human Error Probability (HEP) =GTTxEPC i..n Consider Error Producing Conditions (EPCs) Assess how much each EPC affects task performance

Generic Task Types

Deriving the Generic Tasks - the Model Underlying CARA Attention and Action Hierarchy Position take-over A. Offline tasks B. Checking Monitoring Confirming/ updating mental picture Sector plan D. Solving conflicts E. Plan aircraft in/out of sector F. Manage routine traffic G. Issuing instruction s to ac C. Monitoring for conflicts Workload monitoring Managing requests Radar FPS Info displays Reminders Verbal Instruction Datalink Non-communication

Quantification Sources Other HRA techniques Published HF Studies Real world Data collection Simulator Data

Task Context Generic Task Type HEP Uncertainty Bounds A. Offline tasks A. Offline tasks. 0.03 - B1. Active search of radar or FPS, assuming some confusable information on display. 0.005 0.002-0.02 B. Checking B2. Respond to visual change in display (e.g. aircraft highlighted changes to low-lighted). 0.13 0.05-0.3 B3. Respond to unique and trusted audible and visual indication. 0.0004 - C. Monitoring for conflicts or unanticipated changes D. Solving conflicts C1. Identify routine conflict. 0.01 Holding Value C2. Identify unanticipated change in radar display (e.g. change in digital flight level due to aircraft deviation or corruption of 0.3 0.2-0.5 datablock). D1. Solve conflict which includes some complexity. Note, for very simple conflict resolution consider use of GTT F. D2. Complex and time pressured conflict solution (do not use time pressure EPC). 0.01 Holding Value 0.19 0.09-0.39

E. Plan aircraft in/out of sector F. Manage routine traffic E. Plan aircraft in/out of sector. 0.01 F. Routine element of sector management (e.g. rule-based selection of routine plan for an 0.003 aircraft or omission of clearance). G1. Verbal slips. 0.002 G. Issuing instructions G2. Physical slips (two simple choices). 0.002 M. Technical and support tasks M3. Routine maintenance task. 0.004

Pilot actions

Error Producing Conditions

Sources of Error Producing Conditions Incidents & Error Classification Schemes (eg HERA) HRA Models (eg CREAM, NARA, HEART SPAR-H Human Factors Literature on ATM Performance

Error Producing Conditions (examples) x11 x10 Traffic Complexity Time Pressure Unfamiliarity x20 x3 Vigilance EPCs Procedures x5 x5 Poor equipment feedback Cognitive Overload Shift Handover On 0n the job Training x8 x6 x10

What does it look like, What does it tell us?

CARA in practice: airport example Aircraft Need to 1 speed fails to up exit airport runway throughput ATCO Aircraft fails 1 vacates to identify runway a/c1 early stopped Or Aircraft ATCO 2 fails anticipates to warn this, a/c2 lands in time sooner a/c2 a/c1

CARA in practice Task: Identify AC1 stopped: Audible and visual warning: Controller identifies AC 1 is stationary within the OFZ Generic Task Type: B3. Respond to unique and trusted audible and visual indication Human Error Probability: 0.0004 Error Producing Conditions: None identified Assumptions/ HF Requirements Assumptions/ HF Requirements: Well designed alarm with unique compelling audible signal (non-startling); directional from radar display; visual alarm flashing until acknowledged (flash rates as per standards); attentiongaining; trials must verify HF acceptability

CARA in practice Task: Warn AC2 in time: - Audible and visual warning: Controller identifies AC 1 is stationary within the OFZ Generic Task Type: F: Routine instruction or clearance Human Error Probability: 0.003 Error Producing Conditions: Time Pressure Maximum Affect x11 Assessed Proportion of Affect: 0.2 Human Error Probability: 0.009 Assumptions/ HF Requirements Assumptions/ HF Requirements: Assume controllers trained to warn AC2 rather than talk to AC1 to identify the problem procedures need to be developed/assessed and trained

An example of CARA in action 1.0 1.00E+00 Task HEP = 0.0004 + 0.009 = 0.0094 0.1 1.00E-01 HEP 0.01 1.00E-02 0.001 1.00E-03 Audio/Visual Visual Audible and visual alarm Visual alarm only No visual or audible alarm HEART assessment Interface Neither Original HEP

How does it compare to HEART?

Ground-Based Augmentation System Safety Case

1 HEART Value CARA Value 0.1 0.01 0.001 0.0001 A1 A2 A3a A3b A4 B1 B2 B3 B4 B5 C2a C2b C4

Key Findings from GBAS study for CARA GTT application more straightforward Fewer EPCs Required - better match at GTT level Similar error probabilities Identified improvements to CARA

Future work Data collected on alarm response Internal Review 08 Manual Production (08) Application in Macro Safety Case (SESAR)

24 Questions?

Do the Generic Tasks Match Safety Case Needs? ASAS (Airborne Separation Assurance System) Instruct wrong aircraft Give ASAS instruction to non-asas equipped aircraft Fail to detect ASAS aircraft deviation Send incorrect spacing Link wrong aircraft on screen Fail to detect deceleration of aircraft Pilot exceeds spacing Pilot targets wrong aircraft Pilot turns early RVSM (Reduced Vertical Separation Monitoring) Fail to detect level bust Issue wrong flight level clearance Fail to react in time to short term conflict alert Fail to provide collision avoidance advice Fail to use correct emergency terminology Fail to detect non-rvsm aircraft Fail to coordinate aircraft into sector with conflict-free trajectory F F/G1 C2 F G2 C2 P P P C2 F B3 D2 G1 C1 E

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback