All Topics  
Fail-safe

 

 
   Email Print
   Bookmark   Link
 

 

Fail-safe
 
 
  Topics Fail-safe Topic Home

Fail-safe or fail-secure describes a device or feature which, in the event of failure
Failure mode

Failure causes are defects in design, process, quality, or part application, which are the underlying cause of the failure or which initiate a process which leads to failure....
, responds in a way that will cause no harm or at least a minimum of harm to other devices or danger to personnel. Fail-safe components of a system are distinguished from fail-secure components in that, in the former, component failure allows but does not cause or invite a certain improper system behavior, whereas in the latter, component failure does not allow a certain improper system behavior, although some proper behaviors are impeded.






Discussion
Ask a question about 'Fail-safe'
Start a new discussion about 'Fail-safe'
Answer questions from other users
Full Discussion Forum



Encyclopedia


Fail-safe or fail-secure describes a device or feature which, in the event of failure
Failure mode

Failure causes are defects in design, process, quality, or part application, which are the underlying cause of the failure or which initiate a process which leads to failure....
, responds in a way that will cause no harm or at least a minimum of harm to other devices or danger to personnel. Fail-safe components of a system are distinguished from fail-secure components in that, in the former, component failure allows but does not cause or invite a certain improper system behavior, whereas in the latter, component failure does not allow a certain improper system behavior, although some proper behaviors are impeded. For example, a lock that unlocks at the wrong time has failed, but it may be considered fail-safe if its failure does not send the door flying open or attract undue attention to the door's unlocked state. In contrast, a fail-secure lock will remain locked during a failure, but cannot be unlocked even by the correct key.

Definitions

  • “A device that will provide its intended function upon loss of power.” (2007 NFPA
    National Fire Protection Association

    The National Fire Protection Association is a United States organization charged with creating and maintaining minimum standards and requirements for fire prevention and suppression activities, training, and equipment, as well as other life-safety codes and standards....
    -80)
  • An operation
    Manufacturing operations

    Manufacturing operations concern the operation of a facility, as opposed to maintenance, supply and distribution , health, and safety, emergency response, human resources, security, information technology and other infrastructureal support organizations....
     which ensures that a failure of equipment, process, or system
    System

    System is a set of interacting or interdependent entities, real or abstract, forming an integrated whole.The concept of an "integrated whole" can also be stated in terms of a system embodying a set of relationships which are differentiated from relationships of the set to other elements, and from relationships between an element of the se...
     does not propagate beyond the immediate environs of the failing entity.


Examples


Mechanical or physical

  • Aircraft landing on an aircraft carrier
    Aircraft carrier

    An aircraft carrier is a warship designed with a primary mission of deploying and recovering aircraft, acting as a seagoing airbase. Aircraft carriers thus allow a navy force to project air power great distances without having to depend on local bases for staging aircraft operations....
     increase the throttle to full power at touchdown. If the arresting wires fail to capture the plane, it safely takes off again.
  • Coiling/Rolling Fire Doors that are activated by building alarm systems or local smoke detectors must close automatically when signaled regardless of power. In case of power outage the coiling fire door does not need to close, but must be capable of automatic closing when given a signal from the building alarm systems or smoke detectors. A temperature sensitive fusible link
    Fusible link

    A fusible link is a device consisting of two strips of metal soldered together with a fusible alloy that is designed to melt at a specific temperature, thus allowing the two pieces to separate....
     may be employed to hold the fire doors open against gravity or a closing spring. In case of fire, the link melts, releases the doors and they close.
  • Luggage
    Luggage

    Luggage is any number of bags, cases and containers which hold a traveller's articles during transport. The modern tourist can be expected to have packages containing clothing, toiletries, small possessions, trip necessities, and on the return-trip, souvenirs....
     carts in airports in which the hand-brake must be held down at all times. If it is released, the cart will stop. See dead man's switch
    Dead man's switch

    A dead man's switch , as its name suggests, is a switch that is automatically operated in case the human operator becomes incapacitated.The switch usually stops a machine, and is a form of fail-safe....
    .
  • Air brakes
    Air brake (rail)

    An air brake is a conveyance brake applied by means of Gas compressor. Modern trains rely upon a fail-safe air brake system that is based upon a design patented by George Westinghouse on March 5, 1872....
     on railway train
    Train

    A train is a connected series of vehicles that move along a track to rail transport from one place to another. The track usually consists of two rail tracks, but might also be a monorail or magnetic levitation train guideway....
    s and air brakes
    Air brake (road vehicle)

    Air brakes are used in trucks, buses, Trailer , and semi-trailers. George Westinghouse first developed Air brake for use in railway service. A safer air brake was patented by him on March 5, 1872....
     on truck
    Truck

    File:Red truck USA.JPGA truck is a type of motor vehicle commonly used for carrying goods and materials. Some light trucks are relatively small, similar in size to a passenger automobile....
    s. The brakes are held in the 'off' position by air pressure
    Pressure

    Pressure is the force per unit area applied to an object in a direction surface normal to the surface. Gauge pressure is the pressure relative to the local atmospheric or ambient pressure....
     created in the brake system. Should a brake line split, or a carriage become de-coupled, the air pressure will be lost and the brakes applied. It is impossible to drive a train or truck with a serious leak in the air brake system.
  • Motorized gates - In case of power outage the gate can be pushed open by hand with no crank or key required. However, as this would allow virtually anyone to go through the gate, a fail-secure design is used: In a power outage, the gate can only be opened by a hand crank that is usually kept in a safe area.
  • During early Apollo program missions to the Moon, the spacecraft was put on a free return trajectory
    Free return trajectory

    A free return trajectory is one of a very small sub-class of trajectories in which the trajectory of a satellite traveling away from a primary body is modified by the presence of a secondary body causing the satellite to return to the primary body....
     – if the engines failed at lunar orbit
    Lunar orbit

    In astronomy, lunar orbit refers to the planetary orbit of an object around the Moon.As used in the space program, this refers not to the orbit of the Moon about the Earth, but to orbits by various manned or unmanned spacecraft around the Moon....
     insertion, the craft would safely coast back to Earth.


Electrical or electronic

  • Avionics
    Avionics

    Avionics means "aviation electronics". It comprises Electronics systems for use on aircraft, artificial satellites and spacecraft, comprising communications, navigation and the display and management of multiple systems....
     using redundant systems
    Redundancy (engineering)

    In engineering, redundancy is the duplication of critical wikt:Components of a system with the intention of increasing reliability of the system, usually in the case of a backup or fail-safe....
     to perform the same computation with voting logic to determine the "safe" result.
  • Traffic light
    Traffic light

    Traffic lights, also known as traffic signals, stop lights, traffic lamps, stop-and-go lights, robots or semaphore, are signaling devices positioned at road intersections, pedestrian crossing, or other location to control the flow of traffic....
     controllers use a Conflict Monitor Unit to detect faults or conflicting signals and switch an intersection to all flashing red
    Red

    Red is any of a number of similar colors evoked by light consisting predominantly of the longest wavelengths of light discernible by the human eye, in the wavelength range of roughly 625?740 Nanometer....
    , rather than displaying potentially dangerous conflicting signals, e.g. showing green
    Green

    Green is a color, the perception of which is evoked by light having a spectrum dominated by energy with a wavelength of roughly 520?570-Nanometre....
     in all directions.
  • The automatic protection of programs and/or processing systems when a hardware
    Hardware

    Hardware is a general term that refers to the physical cultural artifacts of a technology. It may also mean the physical components of a computer system, in the form of computer hardware....
     or software failure is detected in a computer system. A classic example is a Watchdog timer
    Watchdog timer

    A watchdog timer is a computer hardware timing device that triggers a system Reset if the main computer program, due to some fault condition, such as a hang , neglects to regularly service the watchdog ....
    . See fail-safe (computer).
  • A control operation
    Control operation

    In telecommunication, a control operation is an Instruction that affects the recording, processing, transmission , or interpretation of data....
     or function that prevents improper system functioning or catastrophic degradation
    Degradation

    Degradation may refer to;* Degradation , metal band from Chicago, IL USA* Biodegradation, the processes by which organic substances are broken down by living organisms...
     in the event of circuit
    Electronic circuit

    An electronic circuit is a closed path formed by the interconnection of electronic components through which an electric current can flow. The electronic circuits may be physically constructed using any number of methods....
     malfunction or operator error; for example, the failsafe track circuit
    Track circuit

    A track circuit is a simple electrical device used to detect the presence or absence of a train on rail tracks, used to inform signallers and control relevant signals....
     used to control railway block signal
    Railway signalling

    Railway signalling is a system used to control railway traffic safely, essentially to prevent trains from collision. Being guided by fixed rail tracks, trains are uniquely susceptible to collision; furthermore, trains cannot stop quickly, and frequently operate at speeds that do not enable them to stop within sighting distance of the driver...
    s.
  • The iron pellet ballast on the Bathyscaphe
    Bathyscaphe

    A bathyscaphe is a free-diving self-propelled deep-sea diving submersible, consisting of a crew cabin similar to a bathysphere , but suspended below a float rather than from a surface cable, as in the classic bathysphere design....
     is dropped to allow the submarine to ascend. The ballast is held in place by electromagnets. If electrical power fails the ballast is released, and the submarine then ascends to safety.


Strategic

  • A system that has been structured such that it cannot fail (or that the probability of such failure is extremely low) to accomplish its assigned mission, regardless of environmental factors; for example, the hardening of a nuclear missile
    Nuclear weapons delivery

    Nuclear weapons delivery is the technology and systems used to place a nuclear weapon at the position of detonation, on or near its intended target....
     bunker
    Bunker

    A military bunker is a hardened shelter, often buried partly or fully underground, designed to protect the inhabitants from falling bombs or other attacks....
    , or the dispersion of nuclear bomber
    Bomber

    A bomber is a military aircraft designed to attack ground and sea targets, primarily by dropping bombs on them....
    s to multiple secret locations.


Other Terminology

Fail-safe (foolproof
Foolproof (disambiguation)

Foolproof means designed to function despite human error .Foolproof may also refer to:* Foolproof, a 2003 Canadian heist film...
) devices are also known as Poka-Yoke
Poka-yoke

is a Japanese term that means "Fail-safe", "Foolproof" or "mistake-proofing" — avoiding inadvertent errors ) is a behavior-shaping constraint, or a method of preventing errors by putting limits on how an operation can be performed in order to force the correct completion of the operation....
 devices. Poka-yoke, a Japanese
Japanese language

IPA: [n?iho?go] is a language spoken by over 130 million people in Japan and in Japanese emigrant communities. It is related to the Ryukyuan languages....
 term, was coined by Shigeo Shingo
Shigeo Shingo

, born in Saga, Saga, Japan, was a Japanese industrial engineer who distinguished himself as one of the world?s leading experts on manufacturing practices and The Toyota Production System....
, a quality guru.

See also

  • Control theory
    Control theory

    Control theory is an interdisciplinary branch of engineering and mathematics, that deals with the behavior of dynamical systems. The desired output of a system is called the reference....
  • Dead man's switch
    Dead man's switch

    A dead man's switch , as its name suggests, is a switch that is automatically operated in case the human operator becomes incapacitated.The switch usually stops a machine, and is a form of fail-safe....
  • Fail-deadly
    Fail-deadly

    Fail-deadly is a concept in Nuclear warfare military strategy which encourages Deterrence theory by guaranteeing an immediate, automatic and overwhelming response to an attack....
  • Fault-tolerant system
    Fault-tolerant system

    Fault-tolerance or graceful degradation is the property that enables a system to continue operating properly in the event of the failure of some of its components....
  • Interlock
  • Safe-life design
    Safe-life design

    In Safe-Life design products are designed to survive a specific design life with a chosen reserve.The Safe-life design technique is employed in critical systems which are either very difficult to repair or may cause severe damage to life and property....
  • Safety engineering
    Safety engineering

    Safety engineering is an applied science strongly related to systems engineering and the subset System Safety Engineering. Safety engineering assures that a life-critical system behaves as needed even when pieces fail....
  • Poka-yoke
    Poka-yoke

    is a Japanese term that means "Fail-safe", "Foolproof" or "mistake-proofing" — avoiding inadvertent errors ) is a behavior-shaping constraint, or a method of preventing errors by putting limits on how an operation can be performed in order to force the correct completion of the operation....