Comparison of Designs for Safety/Mission Critical Systems 2005-01-0775
We investigate and analyze the concept of “missed detection” and its application to the design of architectures that integrate multiple safety/mission critical functions. The analysis is based on considering different design alternatives with varying levels of missed fault detection of the components constituting the functions or subsystems. The overall system reliability and availability in a fault tolerant architecture relies as heavily on the ability to detect a fault as it does on being able to prevent a fault as one would attempt by having multiple levels of redundancy and/or improved reliability of the components in such an architecture. In short, the safety of a particular architecture depends not only on component reliability, and fault tolerance, expressed as redundancy, but also on fault detectability.