Documente Academic
Documente Profesional
Documente Cultură
1 GENERAL ............................................................................................................................................................... 4
1.1 PURPOSE............................................................................................................................................................................ 4
1.2 SCOPE OF SYSTEM SAFETY WORK ................................................................................................................................ 4
1.3 SYSTEM SAFETY STRATEGY ........................................................................................................................................... 5
1.4 APPLICABLE DOCUMENTS .............................................................................................................................................. 6
1.5 DEFINITIONS AND ABBREVIATIONS .............................................................................................................................. 7
2 SYSTEM DESCRIPTION ..................................................................................................................................... 9
3 SYSTEM SAFETY ORGANISATION ............................................................................................................... 10
3.1 PROJECT STRUCTURE ................................................................................................................................................... 10
3.2 OVERVIEW ENGINEERING ORGANISATION AND RESPONSIBILITIES .................................................................... 10
3.3 SYSTEM SAFETY ORGANISATION................................................................................................................................ 11
3.4 CONSORTIUM SYSTEM LEVEL ..................................................................................................................................... 11
3.5 CONSORTIUM SYSTEM PARTNERS LEVEL ................................................................................................................. 12
3.6 CONSORTIUM SYSTEM PARTNERS SUBSYSTEMS LEVEL ......................................................................................... 12
4 SYSTEM SAFETY ACTIVITIES ........................................................................................................................ 13
4.1 SAFETY REQUIREMENTS .............................................................................................................................................. 13
4.2 SYSTEM SAFETY PROGRAMME.................................................................................................................................... 13
4.2.1 Hazard Identification ................................................................................................................................................. 14
4.2.2 Hazard Identification and Analysis...................................................................................................................... 14
4.3 RISK ASSESSMENT AND ACCEPTANCE ....................................................................................................................... 15
4.3.1 Priority Order of Risk Reduction ........................................................................................................................... 16
4.3.2 Safety Risk Matrix ........................................................................................................................................................ 16
4.3.3 Fault Tree Analysis ...................................................................................................................................................... 17
4.3.4 Failure Mode Effects Analysis ................................................................................................................................. 18
4.3.5 Safety Integrity Levels ................................................................................................................................................ 18
4.3.6 Safety Requirements Specification ....................................................................................................................... 18
4.3.7 Safety Critical Item List ............................................................................................................................................. 19
4.4 HAZARD MANAGEMENT .............................................................................................................................................. 19
4.4.1 Hazard Log Format ..................................................................................................................................................... 19
4.4.2 Verification of Safety Controls................................................................................................................................ 20
4.5 SAFETY CASES ............................................................................................................................................................... 21
4.5.1 Design Safety Cases...................................................................................................................................................... 21
4.5.2 Final Safety Cases ......................................................................................................................................................... 21
4.6 INDEPENDENT SAFETY ASSESSMENT ........................................................................................................................ 22
4.7 SAFETY VERIFICATION TO MEET THE RAILWAY REGULATIONS........................................................................... 22
4.8 SAFETY AUDITS. ............................................................................................................................................................ 24
4.9 SAFETY REVIEWS .......................................................................................................................................................... 24
5 OTHER SYSTEM SAFETY ACTIVITIES ........................................................................................................ 25
5.1 SAFETY RELATED STUDIES ......................................................................................................................................... 25
5.1.1 Fire Hazards.................................................................................................................................................................... 25
5.1.2 EMC and EMI .................................................................................................................................................................. 25
5.1.3 Human Factors .............................................................................................................................................................. 26
5.2 SAFETY MANAGEMENT PROCESSES ........................................................................................................................... 26
5.2.1 Quality Management .................................................................................................................................................. 26
5.2.2 Verification and Validation...................................................................................................................................... 27
5.2.3 Engineering Design Assurance Gates .................................................................................................................. 27
Document No. M-BAC-000000-GE00-MPL-000003 Page 2 of 41 Printed:3 Jun. 15
Consortium System Safety Plan
Electronic documents once printed, are uncontrolled and may become out-dated. Refer to Aconex for current revision.
2013 High Commission for the Development of ArRiyadh
5.2.4 Design Reviews .............................................................................................................................................................. 27
5.2.5 Requirements Management .................................................................................................................................... 27
5.2.6 Configuration Management .................................................................................................................................... 27
5.2.7 Problem Reporting and Corrective Action ........................................................................................................ 28
5.2.8 Interface Management............................................................................................................................................... 28
5.2.9 System Validation......................................................................................................................................................... 28
5.2.10 Software Safety Management ........................................................................................................................... 28
5.2.11 Change Management ............................................................................................................................................. 28
5.3 BUILT ENVIRONMENT RISK ASSESSMENT ................................................................................................................ 29
5.3.1 Geotechnical Conditions ............................................................................................................................................ 29
5.3.2 Impact on Existing Structures and Utilities ..................................................................................................... 29
6 SYSTEM SAFETY DOCUMENTATION .......................................................................................................... 30
6.1 DOCUMENTATION STRUCTURE................................................................................................................................... 30
6.1.1 Plans ................................................................................................................................................................................... 31
6.1.2 Procedures ....................................................................................................................................................................... 31
6.1.3 Reports .............................................................................................................................................................................. 31
6.1.4 Document Reviews ....................................................................................................................................................... 31
6.2 CONSORTIUM SYSTEM SAFETY DOCUMENTS ........................................................................................................... 32
ATTACHMENT A CONSORTIUM SYSTEM SAFETY APPROACH ............................................................... 33
ATTACHMENT B CONSORTIUM FUNCTIONAL STRUCTURE .................................................................... 34
ATTACHMENT C SAFETY CASE DEVELOPMENT .......................................................................................... 35
ATTACHMENT D SAFETY LIFECYCLE AND PHASE RELATED SAFETY TASKS ................................... 36
ATTACHMENT E SAFETY PLAN TRACEABILITY MATRIX ......................................................................... 39
1.1 Purpose
The purpose of this Plan is to:
Describe the system safety organisation within the BACS Consortium,
Describe the processes being implemented by the BACS Consortium to ensure that the
safety requirements are adequately addressed during the design and project
implementation along with the transfer into revenue operation. This includes ensuring, as
far as reasonably practicable, the safety of passengers, railway staff and the general
public,
Describe the Consortium system safety objectives,
Identify Consortium key-stakeholders, and their supply chain along with the responsibility
for key system safety activities,
Describe the Consortium principal system safety activities, considered appropriate to
deliver the objectives,
Define the system safety deliverables and their appropriate delivery schedule milestones.
The deliverables include the Design Safety Case, Final Safety Cases and the Railway
Hazard Log.
This Plan develops themes described in the Preliminary Safety and Security Plan [RD 8] submitted
as part of the Consortium bid. In this regard security requirements have not been included in this
issue of the Plan although similar hazard identification processes will be utilised in the initial stages
of the project. In accordance with the Technical Specification Overview Safety Requirements [RT
3], the Consortium will develop a separate security programme to be documented in a Consortium
Security Plan [RD 13].
[RD 1] Railway Applications The Specification and Demonstration of Reliability, EN 50126: 1999
Availability, Maintainability and Safety (RAMS)
[RD 2] Railway Applications Communications, Signalling and Processing Systems EN 50128: 2001
- Software for Railway Control and Protection Systems
[RD 3] Railway Applications Communications, Signalling and Processing Systems EN 50129: 2003
Safety Related Electronic Systems for Signalling
[RD 4] Railway Applications Automated Urban Guided Transport (AUGT) Safety EN 62267: 2011
Requirements
[RD 5] Standard for Fixed Guideway Transit and Passenger Rail Systems NFPA 130: 2010
[RD 12] ICP/ISA Plan and Programme Line 1 and Line 2 TRME-RIYMET1&2-ICP/ISA-ICP-MM02-
& MM03-2014
Not used
[RD 28] Railway Applications The Specification and Demonstration of Reliability, CLC/TR 50126-2: 2007
Availability, Maintainability and Safety (RAMS) Part 2: Guide to the
Application of EN 50126-1 for Safety
[RD 31] Guidelines for Applying ISO 9001 to Software ISO 90003: 2004
[RD 32] Consortium Failure Mode and Effects (FMEA) Analysis Procedure M-BSM-000000-SYRM-PRO-000002
The System to be delivered by the BACS Consortium comprises the Blue Line (Line 1) and the
Red Line (Line 2). The system description is summarised as follows:
Line 1 (Blue Line) runs in the North-South direction along Olaya and Batha streets, starting from
slightly north of Prince Salman Bin Abdul Aziz Street and ending at Dar Al Badia neighbourhood in
the south. The Metro will be mostly underground in a bored tunnel along Olaya and King Faisal
Streets, and elevated on a viaduct along Batha Street and at the northern and southern ends. Line
1 extends over a length of approximately 38 km and features 22 stations, in addition to 4 transfer
stations (including 2 Iconic Stations) with other lines.
The total indicative length of the elevated, at-grade, and underground sections is as follows:
Tunnel: 17.3 km,
Elevated Guideway: 15.9 km,
At-Grade Sections: 4.8 km.
Line 2 (Red Line) (was previously referred to as the Green Line in [RT 2]) runs in the East-West
direction along King Abdullah Road, between King Saud University and the Eastern Sub-Center,
mostly on a raised strip in the median of the planned freeway. This Line extends over a length of
about 25.3 km and features 13 stations, in addition to 3 transfer stations with other lines.
The total indicative length of the elevated, at-grade, and underground sections is as follows:
Tunnel: 2.9 km,
Elevated Guideway: 5.4 km,
At-Grade Sections: 17.0 km.
Both lines will be operated every day of the year, according to the following schedule:
The departure of the first train, in both directions, is scheduled at 6:00am.
The departure of the last train, in both directions, is scheduled at 12:00am (midnight).
For details of the System see the Technical Specification Overview Project Overview [RT 2].
Consortium Safety
Case Manager CSCM
and Safety Engineers
The safety requirements process is based on a system lifecycle model in accordance with EN
50126 [RD 1] principles and applies to the Consortium, Consortium Partners and Subsystems
levels. The safety acceptance of the Subsystems will be based on safety verification and validation
activities which will confirm that the safety requirements have been met. Refer to the Safety
Verification and Validation Procedure [RD 20].
The safety requirements contained in the Technical Specification Overview Safety Requirements
[RT 3], and in other parts of the Technical Specification, have been captured and will be managed
through the requirements management process as defined in the Requirements Management Plan
[RD 18]. Other safety requirements will be identified through project applicable standards and in
particular EN 50126, EN 50128 and EN 50129 [RD 1, RD 2, RD 3].
A key element in the identification and analysis of safety requirements are the hazard analyses and
safety study programme which is described in the following sections.
The planned Subsystems safety activities will be undertaken in accordance with the system
lifecycle approach detailed in EN 50126 [RD 1]. A V representation of the project safety lifecycle
with system safety tasks is presented in Attachment D. The system safety activities will include:
Activities in accordance with the system safety programme,
Hazard Identification and analysis,
Risk assessment,
Determination of safety requirements,
Hazard Log management,
Preparation and issue of safety cases,
Safety verification to meet Railway Regulations,
Safety Audits.
Frequent R2 R1 R1 R1
Probable R3 R2 R1 R1
Occasional R3 R2 R2 R1
Remote R4 R3 R2 R2
Improbable R4 R4 R3 R3
Incredible R4 R4 R4 R4
The safety controls and risk mitigation actions defined in the Hazard Logs will be closed (and will
therefore permit the corresponding hazard to be closed) by the provision of verification evidence.
This evidence will be provided by following safety verification activities carried out in accordance
with the Safety Verification and Validation Procedure [RD 20].
Arriyadh
Development
Authority
ADA ISA
BACS Consortium
Duty Holder
BACS Consortium
ICP/ISA
Liaison
Subsystems ISAs
(Safety) Verification
Figure 5: Safety Verification by the ICP/ISA also involving the ICE and Subsystems ISAs
The Consortium has nominated the Consortium Project Director as Duty Holder responsible for all
issues related to system safety and safety related aspects of the Consortium System, Transit
System, CWJV System and Subsystems. The Consortium Project Director is the formal interface
with the SRC for the Metro System safety related issues and will be responsible for ensuring that a
safety verification scheme is implemented including the issue of safety verification certificates.
The ICP/ISA has been appointed by the Consortium Duty Holder to implement the project safety
verification scheme described in the ICP/ISA Plan and Programme Line 1 and Line 2 [RD 12].
The Consortium Duty Holder will also be responsible for obtaining formal approval of the
appointment from the SRC.
The main duties of the ICP/ISA are described as follows:
Review and audit the implementation of system safety and the safety of designs developed
by the Systems and Subsystems. The ICP/ISA will provide safety verification certification
to SRC on behalf of the Duty Holder following completion of final design, leading to trial
running, and handover of the railway systems and infrastructure to the operator.
Review, audit and assess the process application and results of the ICE to confirm that
appropriate safety verification activities are being implemented for the project.
Review the design and implementation of the Metro System via the ongoing and
consequent checking of the RAM and safety activities. The effectiveness of the ICP/ISA
will be ensured by maintaining independence and undertaking appropriate safety
verification activities during and at the completion of each project phase as described in
the ICP/ISA Plan [RD 12].
Fire is a significant safety hazard to passengers, staff and general public. In addition to ensuring
compliance with NFPA 130 [RD 5], the Consortium will ensure that appropriate fire risk analyses
are undertaken.
The fire safety analyses will consider the Metro System track, tunnels and station areas. For
example, consideration will be given to undertaking passenger flow and smoke modeling of station
areas to assess the adequacy of the means of escape, based on the fire scenarios such as train
on fire at a platform. Fires in tunnels will also be considered.
Fire safety engineering assessments will include the following aspects:
Means of escape and maximum evacuation time to a place of safety,
Fire ventilation and pressurisation systems,
Fire compartmentation and structural fire protection,
Fire safety of materials,
Fire safety support systems including signage, emergency lighting and communications,
Civil Defence access and facilities.
Where fire safety risks are identified and risk ranking and appropriate risk mitigation actions have
been defined these will entered into the Hazard Logs for resolution and close-out.
Fire safety issues, raised at formal meetings with Civil Defence, will also be included where
necessary, in the Hazard Logs.
The Consortium will establish a system validation process for the project phases to ensure
validation activities are undertaken on all relevant system aspects of the CWJV System and Transit
System works, as well as the works of the Subsystems and suppliers.
The validation activities will be in accordance with the System Validation Plan [RD 14].
The Consortium will establish a software safety management process for the project phases to
ensure that software safety management is undertaken, , and to supervise and control the software
to be designed and delivered by the CWJV System and Transit System works, as well as the
works of the Subsystems and suppliers.
The software safety management activities will be in accordance with the System Software Safety
Procedure [RD 21].
The overall approach is that each system level provides safety analysis outputs and guidance on
the scope of the system safety activities on the underlying level and to check and release the
respective results. The particular system level provides information, analyses results and other
input for overall system safety activities based on output of the Subsystems suppliers.
The Consortium CSSM and Consortium Partners will review and audit the Subsystems documents,
procedures and safety activities.
The following groups of documents will be prepared on Consortium, Consortium Partners and
Subsystems levels as necessary:
Plans,
Procedures,
Reports.
6.1.2 Procedures
The Consortium will prepare procedures for undertaking particular safety activities to describe the
objectives, processes, documentation, roles and responsibilities.
The Consortium procedures are identified in section 6.2.
Subsystems level procedures will be identified in the Subsystems safety plans.
6.1.3 Reports
The Consortium will prepare reports to provide information on particular safety activities relevant to
the Consortium level.
The Consortium reports are identified in section 6.2.
Subsystems level reports will be identified in the Subsystems safety plans.
The Consortium Partners safety plans will be submitted to the CSSM for review and acceptance.
The Subsystems safety plans will be submitted to the CSSM for review and comment after
acceptance by the Consortium Partners.
The Subsystems documents to be reviewed by the Consortium Partners, including the Subsystems
safety plans, will be described in the Consortium Partners safety plans.
Manufacturing and
Section Detailed Design Final Design Testing Trial Running
Document Construction
Reference Stage Stage Stage Stage
Stage
System System
Definition Acceptance
Risk System
Analysis Commissioning
Safety
Requirements Subsystem
Testing
Detailed
Design
Installation &
Equipment
Lifecycle Phase Final Design Testing
Verification Lifecycle Phase
Verification
Manufacture &
Construction
EN50126 Section 6.2.3.4 Requirement Safety Plan Section Additional Source Information
a) the policy and strategy for achieving safety; 1.1 and 1.3
hazard identification and analysis; 4.2.2 Hazard Identification and Analysis Procedure
risk assessment and on-going risk management; 4.3 Hazard Identification and Analysis Procedure
verification and validation; 4.4.2, 4.7 and 5.2.2 Safety Verification and Validation Procedure
safety audit, to achieve compliance of the management process 4.8, 6.1 and
Safety Review and Audit Plan
with the Safety Plan; Attachment D
j) a process for safety approval of system modifications; 5.2.11 Quality Assurance Plan
m) interfaces with other related programmes and plans; 5.2.8 Interface Management Plan
p) requirements for periodic safety audit, safety assessment and safety Safety Review and Audit Plan
4.4.2, 4.6, 4.7, 4.8, 4.9,
review, throughout the life cycle and appropriate to the safety
5.2.2, 5.2.3, 5.2.4, 5.2.7, Safety Verification and Validation Procedure
relevance of the system under consideration, including any personnel
5.2.9 and 6.1
independence requirements. System Safety Software Procedure