[SystemSafety] EUROCAE document 039/ ED-80
Peter Bernard Ladkin
ladkin at rvs.uni-bielefeld.de
Wed Oct 15 07:57:13 CEST 2014
Olle,
On 2014-10-14 15:12 , Bridal Olof wrote:
> About your statement "a SIL is a safety function reliability condition and does not depend in any way on the severity of the hazard it is intended to mitigate", I have no problem with the "reliability condition" part but disagree with "does not depend in any way on the severity".
I think you're quite right. I see now how my statement is misleading.
Dependence in information flows is transitive: SIL is derived from risk, risk is derived from
severity, ergo SIL is derived from severity.
PBL
Prof. Peter Bernard Ladkin, Faculty of Technology, University of Bielefeld, 33594 Bielefeld, Germany
Tel+msg +49 (0)521 880 7319 www.rvs.uni-bielefeld.de
More information about the systemsafety
mailing list