Safety Risk Categorization

Definitions

Safety Risk Categorization: the safety work product that categorizes the safety risks associated with accidents and hazardsin terms of accident hazard indicies and safety assurance level
Accident Hazard Indices (AHI): a category of accidents/hazards associated with a single combination of accident/hazard severity level and accident/hazard frequency level
Safety Assurance Levels (SAL): a category of hazard indicies that represent roughly the same level of safety risk

Classification

Safety Risk Categorization in the OPF Method Component Inheritance Hierarchy

As illustrated in the preceding figure, Safety Risk Categorization is part of the following inheritance hierarchy:

Type: Concrete
Superclass: Document
Subclasses:
- None

Responsibilities

The typical responsibilities of a Safety Risk Categorization are to:

Define useful categories of safety risks.
Support hazard and safety risk analysis.
Promote communication about safety.
Set safety policy (e.g., mandatory reporting)

The typical contents of the safety risk categorization are:

Accident severity category
Associated range of negative impact (harm)

Stakeholders

The typical stakeholders of the safety risk categorization are:

Producer:
- Safety Team
Evaluators:
- Safety Evaluation Team
Approvers:
- Project Management Team
- Customer Representative
Maintainers:
- Safety Team
Users:
- Safety Team, which uses the hazard indices and safety assurance levels to produce safety evidence assurance levels (SEALs).

Phases

Business Strategy: Not Applicable
Business Optimization: Not Applicable
Initiation: Completed
Construction: Maintained
Delivery: Maintained
Usage: Maintained
Retirement: Archived

Preconditions

The accident severity categorization typically can be started if the following preconditions hold:

The initiation phase is started.
The safety team is adequately staffed and trained in safety program planning.

Inputs

The safety risk categorization typically has the following inputs:

Work Products:
Stakeholders:
- Customer Representatives
- Safety Domain Experts

Guidelines

Start with an safety risk categorization from some international standard.
Modify it to meet the needs of the endeavor.
Group accident hazard indices (AHIs) into safety assurance levels (SALs) of roughly the same level of risk.

Conventions

The safety risk categorization is typically constrained by the following conventions:

Content and Format Standard
MS Word Template
XML DTD
Evaluation Checklist

As illustrated by the following example tables, the number and definitions of accident hazard indices and safety assurance levels varies by application domain and international standards. Example safety risk categorization tables from various international standards include:

Medical Equipment
Railways
United Kingdom Ministry of Defense
United States Department of Defence

Medical Equipment

The International Electrotechnical Commission (IEC) standard, Medical Electrical Equipment - Part 1: General Requirements for Safety (IEC 601-1-4: 1996), defines accident hazard indices and safety assurance levels as follows:

Accident Hazard Indices / Safety Assurance Levels
	Accident Frequency Levels
Accident Severity Level	Frequent	Probable	Occasional	Remote	Improbable	Incredible
Catastrophic	1 - Intolerable	2 - Intolerable	3 - Intolerable	4 - ALARP	5 - ALARP	6 - ALARP
Critical	7 - Intolerable	8 - Intolerable	9 - Intolerable	10 - ALARP	11 - ALARP	12 - Acceptible
Marginal	13 - Intolerable	14 - Intolerable	15 - Intolerable	16 - ALARP	17 - ALARP	18 - Acceptible
Negligible	19 - Intolerable	20 - ALARP	21 - ALARP	22 - ALARP	23 - Acceptible	24 - Acceptible

The International Electrotechnical Commission (IEC) standard thus categorizes the 24 accident hazard indices (AHIs) into the following three safety assurance levels (SALs) for dealing with safety risks:

SAL	AHIs
Intolerable	1, 2, 3, 7, 8, 9, 13, 14, 15, 19
As Low As Reasonably Practical (ALARP)	4, 5, 6, 10, 11, 16, 17, 20, 21, 22
Acceptable	12, 18, 23, 24

Railways

The European Community standard, Railway Applications: Software for Railway Control and Protection Systems (CENELEC EN 50128: 1997), defines accident hazard indices and safety assurance levels as follows:

Accident Hazard Indices / Safety Assurance Levels
	Accident Frequency Levels
Accident Severity Level	Frequent	Probable	Occasional	Remote	Improbable	Incredible
Catastrophic	1 - SIL 4	2 - SIL 4	3 - SIL 3	4 - SIL 3	5 - SIL 3	6 - SIL 2
Critical	7 - SIL 4	8 - SIL 3	9 - SIL 3	10 - SIL 3	11 - SIL 2	12 - SIL 2
Marginal	13 - SIL 3	14 - SIL 3	15 - SIL 3	16 - SIL 2	17 - SIL 2	18 - SIL 1
Insignificant	19 - SIL 3	20 - SIL 3	21 - SIL 2	22 - SIL 2	23 - SIL 1	24 - SIL 1

The European Community railway standard thus categorizes the 24 accident hazard indices (AHIs) into the following five safety assurance levels (SALs) for dealing with safety risks:

SAL	SAL Definition	AHIs
SIL 4	Intolerable - Very High	1, 2, 7
SIL 3	Undesirable - High	3, 4, 5, 8, 9, 10, 13, 14, 15, 19, 20
SIL 2	Tolerable - Medium	6, 11, 12, 16, 17, 21, 22
SIL 1	Negligable - Low	18, 23, 24
SIL 0	Nonsafety related

United Kingdom Ministry of Defense

The United Kingdom Ministry of Defense military standard, Safety Management Requirements for Defence Systems Containing Programmable Electronics: Part 1 - Requirements (DEF STAN 00-56 (Part 1)/Issue 2: 1996), defines accident hazard indices and safety assurance levels as follows:

Example accident severity categorization tables, adapted from:

Accident Hazard Indices / Safety Assurance Levels
	Accident Frequency Levels
Accident Severity Level	Frequent	Probable	Occasional	Remote	Improbable	Implausible
Catastrophic	1 - Class A	2 - Class A	3 - Class A	4 - Class B	5 - Class C	6 - Class C
Critical	7 - Class A	8 - Class A	9 - Class B	10 - Class C	11 - Class C	12 - Class D
Marginal	13 - Class A	14 - Class B	15 - Class C	16 - Class C	17 - Class D	18 - Class D
Negligible	19 - Class B	20 - Class C	21 - Class C	22 - Class D	23 - Class D	24 - Class D

The United Kingdom Ministry of Defense military standard thus categorizes the 24 accident hazard indices (AHIs) into the following four safety assurance levels (SALs) for dealing with safety risks:

SAL	SAL Definition	AHIs
Class A	Intolerable	1, 2, 3, 7, 8, 13
Class B	Undesireable, and shall only be accepted when risk reduction is impractical	4, 9, 14, 19
Class C	Tolerable with the endorsement of the Project Safety Review Committee	5, 6, 10, 11, 15, 16, 20, 21
Class D	Tolerable with the endorsement of normal project reviews	12, 17, 18, 22, 23, 24

United States Department of Defence

The US Department of Defense military standard, Mishap Risk Management (MIL-STD-882D: 1998), uses accident frequency levels to define accident hazard indices and safety assurance levels as follows:

Accident Hazard Indices / Safety Assurance Levels
	Accident Frequency Levels
Accident Severity Level	Frequent	Probable	Occasional	Remote	Improbable
Catastrophic	1 - High	2 - High	3 - High	4 - Serious	5 - Medium
Critical	6 - High	7 - High	8 - Serious	9 - Medium	10 - Medium
Marginal	11 - Serious	12 - Serious	13 - Medium	14 - Medium	15 - Low
Negligible	16 - Medium	17 - Medium	18 - Low	19 - Low	20 - Low

The US Department of Defense military standard thus categorizes the 20 accident hazard indices (AHIs) into the following four safety assurance levels (SALs) for dealing with safety risks:

SAL	AHIs
High	1, 2, 3, 6, 7
Serious	4, 8, 11, 12
Medium	5, 9, 10, 13, 14, 16, 17
Low	15, 18, 19, 20

For software safety risk, the US Department of Defense military standard, Mishap Risk Management (MIL-STD-882D: 1998), uses software control categories to define accident hazard indices and safety assurance levels as follows:

Accident Hazard Indices / Safety Assurance Levels
	Software Control Categories
Accident Severity Level	I (total)	II a and b (direct)	III a and b (indirect)	IV (none)
Catastrophic	1 - High	2 - High	3 - Medium	4 - Moderate
Critical	5 - High	6 - Medium	7 - Moderate	8 - Moderate
Marginal	9 - Moderate	10 - Moderate	11 - Low	12 - Low
Negligible	13 - Low	14 - Low	15 - Low	16 - Low

The US Department of Defense military standard thus categorizes the 16 accident hazard indices (AHIs) into the following four safety assurance levels (SALs) for dealing with software safety risks:

SAL	AHIs
High	1, 2, 5
Medium	3, 6
Moderate	4, 7, 8, 9, 10
Low	11, 12, 13, 14, 15, 16