The Risk Surface

  • Richard R. ZitoEmail author


It is traditional in system safety engineering practice to enumerate system hazards in the worksheets of the Preliminary Hazard Analysis and the Final Hazard Analysis. The first compilation details hazards at the beginning of a program, while the latter describes hazards at the end of a program after some mitigation has taken place during system development. Hopefully, there are fewer hazards after development than before. In addition to the worksheets of these two analyses, there corresponds Qualitative Risk Characterization charts and, based on the entries in these, a program administrator must decide if a system is “safe”. This decision may be based on need as well as purely safety considerations. Clearly, human opinion as to what constitutes an acceptable system can never be completely eliminated. But, is there a more objective way to make decisions than opinion? This chapter describes a safety criterion based on a comparison of real system risk with the risk of an ideal Model Infinite System (MIS) having an infinite number of subsystems and possible failure modes.


  1. 1.
    Anon. WISE Series A, Course 5. Retrieved December 18, 2007, from
  2. 2.
    MIL-STD-882D. (2000, February 10). Standard practice for system safety. Washington DC: Department of Defense.Google Scholar
  3. 3.
    Meyer, P. L. (1970). Introductory probability and statistical applications (2nd ed., p. 199). Reading, Mass.: Addison Wesley.Google Scholar
  4. 4.
    Gradshteyn, I. S., & Ryzhik, I. M. (1965). Table of integrals series and products (4th ed., pp. 307 (sec. 3.32, subsec. 3.322, integrals #1 and # 2), 930 (sec 8.25, subsec. 8.250, integral # 1), 306 (sec. 3.32, subsec. 3.321, integral #1), or alternatively to pp. 306 see pp. 931 (sec. 8.25, subsec. 8.253, integral #1)). New York, NY: Academic Press.Google Scholar
  5. 5.
    Anon. (2016). Private Communications, Aircraft Maintenance, 1840 E. Valencia Ave., Tucson AZ 85706, (520) 445-6300.Google Scholar
  6. 6.
    Thomas, R. W. I., Eichelberger, M. J., & Lee, M. (2017). The theory of risk uncertainty reduction. In 35th International Systems Safety Conference Proceedings, Albuquerque, NM, 21–25 August 2017.Google Scholar
  7. 7.
    Thomas, R. W. I., Eichelberger, M. J., & Lee, M. (2018). The theory of risk uncertainty reduction. Journal of System Safety, 54(2) (Summer/Fall).Google Scholar
  8. 8.
    Ref. [4] p. 310, sec. 3.351, #1 and pp. 365–522.Google Scholar

Copyright information

© Springer Nature Switzerland AG 2020

Authors and Affiliations

  1. 1.Richard R. Zito Research LLCTucsonUSA

Personalised recommendations