hei Flashcards
A risk assessment team concludes that the knowledge-based probability of a
specific event A is equal to 0.05 given the knowledge K. Provide an interpretation
of this statement. Give also an interpretation of an imprecise probability of
maximum 0.05.
Interpretation of P(A|K): The team has the same uncertainty and degree of belief
for the event A to occur as randomly drawing a red ball out of an urn that comprise
100 balls and where 5 are red.
Imprecise probability P(A|K) ≤ 0.05: The team has the same uncertainty and
degree of belief for the event A to occur as randomly drawing a red ball out of an
urn that comprise 100 balls and where 5 or less are red. The assessor is not willing
to be more precise. Alternatively the team expresses that the probability is less
than or equal to 0.05, where 0.05 is interpreted as above. The team is not willing
to be more precise.
Does a frequentist probability for the following event B exist? Why/why not?
B: Risk science will be a distinct subject in school in Norway before 2050.
Define a frequentist probability p for an event C.
No, it does not exist as a population of similar type of situations to the one
considered cannot be meaningfully defined.
p= the fraction of time the event C occurs if we could repeat the situation
considered over and over again infinitely under the same conditions
A risk assessment is conducted with the aim of describing the risk related to
severe events which could lead to a high number of fatalities. The following risk
description is used:
P(an event occurring with at least 10 fatalities) = 0.05
Is this a good risk characterization? Why/why not?
The event ‘an event occurring with at least 10 fatalities’ is a severe event with a
high number of fatalities so this is fine, but may be also other numbers should be
covered, for example more than 100 fatalities etc. In addition, the characterization
should include the knowledge that the probability is based on and in particular a
judgment of the strength of this knowledge.
How does Taleb define a Black swan? How is a Black swan defined by Aven
in his books? Explain the three different types of black swans referred to in the
curriculum.
See book.
The following barrier block diagram represents a technical system with six
components:Draw the corresponding fault tree diagram, linking the top event ‘system failure’
to failures of the components 1-6. Assume independence and unreliability qi =
0.1 for each of the components. Calculate the unreliability of the system exactly
and approximately using the minimal cut set approach.
In what sense does the independence assumption represent risk in this case?
Exact:
P(System failure) = (1-p1p2) x (1- (1-q3q4)(1-q5q6)) = (1-0.92) * (1-(1-0.12)2) = 3.781 * 10-3
Approximately:
P(System failure) ≈ q1q3q4 + q1q5q6 + q2q3q4 + q2q5q6 = 4 * 10-3
The assumption can be wrong, and thus the calculated probabilities misleading.
A risk analyst argues that the main objective of the risk assessment is to
accurately estimate the risk. Do you agree? Why/why not?
A risk assessment could have this purpose in some cases (when frequentist based
probabilities can be meaningfully defined and there exist considerable relevant
data) but more generally the purpose of a risk assessment is
to help understand the risk and express risk:
identify risk sources, threats, hazards and opportunities; understanding how these can
materialize/occur, trigger events/event sequences, and what their consequences can be; representing
and expressing uncertainties and risk; and determining the significance of the risk using relevant
criteria.
This again provide decision support, on choices of measures and arrangements,
the need for such measures and arrangements, etc.
Explain the ALARP principle. Discuss to which extent the principle supports
Protection or Development.
The ALARP principle says that risk should be reduced to a level that is As Low As
Reasonably Practicable (ALARP). A risk reducing measure should be implemented unless
it can be demonstrated that the costs are grossly disproportionate relative to the gains
obtained (the burden of proof is reversed).
Thus if there is a safety measure that can improve safety, it shall be implemented as a rule,
unless you can demonstrate that the cost are in gross disproportion to the benefits gained.
This means that Protection is highlighted. On the other hand, if cost benefit analysis is
used to verify ALARP which is often seen in practice, Development is supported as this
analysis is based on expected values.
Argue how a cost-effectiveness analysis based on ICAF calculations can
contribute to identifying suitable safety measures. Discuss the
limitations/weaknesses of this method.
The ICAF for a safety measure calculates the expected cost per expected number
of saved lives. A high ICAF means that the measure is not justified, it costs too
much compared to the benefits gained, whereas if the ICAF is low, the costs are
not so high and the measure can be justified. The SVL (Statistical value of a life)
provides a reference point for what is too high.
The problem is that the approach is based on expected values which do not capture
all relevant aspects of benefit and costs. The potential for extreme outcomes are
not reflected, nor the strength of the knowledge supporting the judgments made.
Society for Risk Analysis (SRA) has developed a new Glossary. Is the
development of this Glossary to be seen as a contribution to Applied risk science
or Generic risk science? Explain.
The development of the Glossary is a contribution on Generic risk science B, but
with the intention to serve applied risk science A.
Consider the case where a person is thinking about jumping onto a stone (bolt)
located between two rocks, with a direct drop below of several hundred meters
(think of the Kjeragbolt in Lysefjorden if you like).
Trine has high competence in risk science. Her friend Tone asks her: ‘You as an
expert on risk science Trine, is it a good idea to jump on this bolt?’ How should
Trine respond to this question on the basis of the curriculum of this course?
She should say that the risk science does not provide answers what is the best
decision but it provides support for how to think and generate a basis for making
the decision. It helps us for example characterizing the risk and understanding
the balance that has to be made between different concerns (development and
protection).
What is ‘risk science’, and in particular ‘applied risk science’ and ‘generic risk science’?
Climate change research provides knowledge about risk as a result of climate change. Would
you classify this research as contributing to applied or generic risk science? Explain.
Risk science is the most warranted statements (justified beliefs) produced by the risk field or
discipline
Applied risk science: Risk science based applied risk analysis, which is about
supporting risk knowledge generation in relation to specific activities., and supporting the
tackling of specific risk problems (A)
Generic risk science: Risk science based on generic risk analysis, which is about generic
concepts, principles, approaches and methods on how to understand, assess, characterize,
communicate, manage and govern risk (B)
See also book Section 3.1.
Climate change risk: It is Applied risk science as it supports risk knowledge generation in
relation to specific activities.
Define ‘knowledge’ in a risk science context. Give an example to motivate and explain the
definition, which points to the need for deviating from an understanding of knowledge often
referred to in the literature. What is ‘risk research’?
Justified beliefs. See p. 24, arguing that knowledge cannot be ‘justified true beliefs’.
Risk research can be understood as knowledge generation in relation to risk, for concrete
activities and for how to analyse (in a wide sense) risk.
A risk analyst presents the result of a risk assessment for a process plant, and shows some
probability numbers for loss of life categories, including an imprecise probability of one or
more fatalities for a period of one year equal to [0, 0.005]. The assessor states that the numbers
represent the analyst’s degree of belief for these events to occur - where the assessor is not
willing to assign a precise number. Provide an interpretation of the above imprecise probability
statement [0, 0.005]. Is the probability uncertain? Explain why/why not.
Interpretation: The analyst has the same uncertainty and degree of belief for the event (at least
one fatality in that period) to occur as randomly drawing a red ball out of an urn that comprises
1000 balls and where maximum 5 are red. The assessor is not willing to be more precise.
It is not uncertain, it is the analyst’s judgment of uncertainty, but the knowledge supporting it
could be more or less strong.
In its most general form, risk can be described by (A’,C’,Q,K) and vulnerability by
(C’,Q,K|A’). Explain what these terms express.
Give an example illustrating how vulnerability can be described, which also includes the SoK
aspects.
A’: specified event, for example leakage
C’: specified consequences, for example number of fatalities.
Q: measure or description of the uncertainties about A’ and C’. Typically Q is probability P and
strength of knowledge judgments (SoK)
Vulnerability: (C’,Q,K|A’), as above but given the occurrence of an event, for example a gas
leakage in a process plant.
Probability of a fatality given the occurrence of a fire, with a SoK judgment expressing how
strong the background knowledge for this probability is considered.
How is a Black swan defined? Explain the three different types of black swans introduced.
Give an example for each type.
See book pp 77-81.
Explain the concept of validity of a risk assessment.
See Section 5.1.1
What is the difference between risk perception and professional judgments about risk?
See Section 6.1.1
The risk descriptions and characterization provide ‘pure’ judgements of the consequences of
the activities studied and associated uncertainties as in (A’,C’, Q,K), without adding feelings
and value judgements related to how people like or dislike the consequences and uncertainties.
Risk perception, on the other hand, is a personal judgement or appraisal of risk, also including
such aspects. We know from the literature on risk perception and behavioural decision-making
that aspects like affect, familiarity, control, catastrophic potential, etc., are important for how
people understand and deal with risk
Discuss to what extent successful risk communication depends on high quality risk analysis.
See Section 6.2.1
A risk scientist argues that it is important to stress that the decision-making should not be
purely ‘risk-assessment-based’. What is this scientist thinking about? Explain the concept of
managerial review and judgment.
The key is that the risk results should not prescribe what to do, as the risk assessments have
limitations in capturing all aspects of risks and uncertainties, and there are also different values
(we may all agree on the risks, but disagree on what to do as we have different values, what is
important, how much weight to give to uncertainties, how to balance protection and
development). The decision making should be risk informed.
Managerial review and judgement: process of summarising, interpreting and deliberating
over the results of risk assessments and other assessments, as well as of other relevant issues
(not covered by the assessments), in order to make a decision
The managerial review and judgment is the process between risk assessment and the
decision-making.
Discuss to what extent resilience analysis and management are a part of risk analysis and
management.
See Section 7.4
A risk analyst presents the result of a risk assessment for a process plant, and
shows some probability numbers for loss of life categories, including a probability
of one or more fatalities for a period of one year equal to 0.001 = 1 x 10-3. The
analyst states that the numbers represent the analyst’s degree of belief for these
events to occur. Provide an interpretation of the probability 0.001 in line with
this. What do we call this type of probability? Is it uncertain? Explain why/why
not.
Interpretation: The analyst has the same uncertainty and degree of belief for the
event (at least one fatality in that period) to occur as randomly drawing a red ball
out of an urn that comprises 1000 balls and where 1 is red.
It is referred to as a knowledge-based, or subjective or judgmental probability.
It is not uncertain, it is the analyst’s judgment of uncertainty, but the knowledge
supporting it could be more or less strong.
A person listening to the above risk analyst is not familiar with this type of
probability and thinks the number is a frequentist probability estimate. Suppose
that this was the case. Would the number then be subject to uncertainty?
Why/why not? Provide an interpretation of the underlying frequentist probability
being estimated.
Yes, as the number is an estimate of an underlying frequentist probability p which
has a true value: the fraction of time the event (at least one fatality) would occur
if we could repeat the situation considered (producing similar process plant years)
over and over again infinitely under the same conditions
In its most general form, risk can be described by (A’,C’,Q,K). Explain what
these elements express. A risk analyst establishes a 90% prediction interval for
the number of gas leakages in a process plant, with related strength of knowledge
judgments. Explain how to interpret this interval, and how it relates to
(A’,C’,Q,K). How can vulnerability be expressed using the (A’,C’,Q,K)
terminology?
A’: specified event, for example leakage
C’: specified consequences, for example number of fatalities.
Q: measure or description of the uncertainties about A’ and C’. Typically Q is
probability P and strength of knowledge judgments (SoK)
A 90 % prediction interval [a,b] is such that P(a ≤ number of leakages ≤ b |K) =
0.90. Hence we can interpret the interval as a way of expressing Q in relation to
A’ types of events (or C’ if C’ has a component referring to the number of
leakages).
Vulnerability description: (C’,Q,K|A’)
- How is a Black swan defined by Aven in the curriculum? What is an unknown
known in a risk assessment context? And unknown unknown? What are the
‘problems’ raised by restricting the Black swan metaphor to unknown unknowns?
See book.
Problems: a) unknown unknowns are so rare events, so not so relevant comparted
to other types of surprises (unknown knowns …) b) not in line with the origin of
the metaphor
The following barrier block diagram represents a technical system with six
components:
Minimal cut sets: {1,5}, {2,5}, {1,3,4}, {2,3,4},
Exact:
Unreliability of parallel system 3-4: 0.2 x 0.2 = 0.04
Reliability of series system 3-4 and 5 : 0.96 x 0.80 = 0.768
Reliability of series system 1-2 : 0.8 x 0.8 = 0.64
Unreliability of parallel of these two systems: 0.36 x 0.232 = 0.08352
Approximation method:
Unreliability ≈ q1q5 + q2q5 + q1q3 q4 + q2q3 q4 = 2 x 0.2 x 0.2 + 2 x 0.2 x 0.2 x 0.2 = 8 * 10-2 + 1.6 x
10-2 = 0.096
The general purpose of a risk assessment can be formulated in this way (SRA
2017):
Risk assessment is the systematic process to identify risk sources, threats, hazards and opportunities;
understanding how these can materialize/occur, trigger events/event sequences, and what their
consequences can be; representing and expressing uncertainties and risk; and determining the
significance of the risk using relevant criteria.
FMEA is an example of a risk assessment method. Explain its basic ideas. Outline
a typical FMEA sheet. Explain to what degree this approach is providing a
comprehensive overview of the risk related to the system studied.
List the main stages of a risk assessment process, from planning to risk treatment,
as presented in the curriculum (explanations of the various stages should not be
given).
See book
The approach identifies failures in a system by failure of individual units of the
system, looks at its effects and also discusses likelihood in relation to these failure
and effects. This provides some insights about risk, but many aspects are not
covered, for example that severe losses and consequences can be the result of
simultaneous occurrences of events. The approach can be seen as an input to a
more comprehensive risk assessment. SoK knowledge judgements for the
likelihoods should also be included but are not commonly included.
See book
A risk scientist argues that it is important to stress that the decision-making
should be ‘risk-informed’ and not ‘risk-based’. Present the argumentation
provided for this statement. Explain the concept of managerial review and
judgment.
The key is that the risk assessment results should not prescribe what to do, as risk assessments
have limitations in capturing all aspects of risks and uncertainties, and there are also different
values (we may all agree on the risks, but disagree on what to do as we have different values,
what is important, how much weight to give to uncertainties, how to balance protection and
development)
Managerial review and judgement: process of summarising, interpreting and deliberating
over the results of risk assessments and other assessments, as well as of other relevant issues
(not covered by the assessments), in order to make a decision
The managerial review and judgment is the process between risk assessment and the
decision-making.
What is a cost-benefit analysis (CBA). Explain its basic ideas. What is the
meaning of the concept of ‘value of a statistical life’? What is the rational used in
the curriculum to argue that we need to see beyond CBAs when making decisions
in relation to risk?
See book.
Value of a statistical life: the maximum you are willing to pay to reduce the
expected number of fatalities by 1.
The key point is that the CBAs are based on expected values which do not reflect
well risk and uncertainties. SoK judgments are also commonly lacking.
Define ‘knowledge’ according to the curriculum. What is knowledge in
relation to generic risk science?
Knowledge: justified beliefs
Generic risk science: knowledge relates to the development of generic concepts,
principles, approaches and/or methods on how to understand, assess, characterise,
communicate, manage and govern risk
Think about the current climate change risk discussion.
Does the risk science tell us how we should deal with this risk? Explain.
How can risk science be useful in this regard?
No, the risk science does not provide answers what are the best decisions, it does
not take a stand on what we should do. The weight we give to uncertainties and
risks are not scientific, but ethical, political …
It can still be useful as it provides support for how to think and generate a basis
for making the decision. It helps us for example characterizing the climate change
risk
A risk assessment team concludes that the knowledge-based probability of a
specific event A is equal to 0.95 given the knowledge K. Provide an interpretation
of this statement. Give also an interpretation of an imprecise probability of
minimum 0.95.
Interpretation of P(A|K): The team has the same uncertainty and degree of belief
for the event A to occur as randomly drawing a red ball out of an urn that comprise
100 balls and where 95 are red.
Imprecise probability P(A|K) ≥ 0.95: The team has the same uncertainty and
degree of belief for the event A to occur as randomly drawing a red ball out of an
urn that comprise 100 balls and where 95 or more are red. The assessor is not
willing to be more precise. Alternatively the team expresses that the probability
is at least 0.95, where 0.95 is interpreted as above. The team is not willing to be
more precise.
Let C be the outcome from the throw of a die and let p = Pf(C=1). Explain what
p expresses. The die is of a special type, and p is not necessarily 1/6. Let us assume
that p is either 1/6 or 1/3. Explain how you can express your uncertainty about p
using knowledge-based probabilities. Assign concrete numbers to illustrate how
it is done.
p= the fraction of time the event ‘C=1’ occurs if we could repeat the situation
considered over and over again (i.e. throw the die over and over again) infinitely
under the same conditions
We could assign P(p=1/6) and P(p=1/3) (where the sum is 1), for example 0.5
for each. These probabilities are conditional on my knowledge K.
A risk assessment is conducted with the aim of describing the risk related to
the number of fatalities related to a process plant in a specific period of time. The
following risk description is used:
P(an event occurring with at least 1 fatality) = 0.10
Is this a good risk characterization? Why/why not?
The event ‘an event occurring with at least 1 fatalities’ is a severe event so the
probability is of interest, but also other numbers should be covered, for example
more than 10 fatalities, more than 100 fatalities etc. In addition, the
characterization should include the knowledge that the probability is based on
and in particular a judgment of the strength of this knowledge.
How is a Black swan defined by Aven in the curriculum? Why is this metaphor
considered important?
See book
Because it gives focus on the potential for surprises relative to risk numbers and
assessment results – the surprise aspect and the unforeseen is a risk issue but often
not given enough attention in risk assessment and management. Events could have
been overlooked in the assessments, or ignored because of low judged
probabilities – the metaphor stimulates further reflections in such situations: is
there a potential for surprise. Can we improve our methods to better meet potential
surprises.
The following barrier block diagram represents a technical system with six
components:List the minimal cut and path sets of the diagram. Is {1,2,3,4} a minimal cut set?
Why/why not? Assume independence and unreliability qi = 0.1 for each of the
components. Assume that component 1 is not functioning. Calculate
(approximately) the unreliability of the system using the minimal cut set
approach.
Minimal cut sets, 134, 156, 234, 256,
Minimal path sets: 12, 35, 36, 45, 46
P(System failure) ≈ q3q4 + q5q6 = 2 * 10-2 = 0.02
In case of large uncertainties, risk assessments are not able to produce accurate
risk estimations or predictions. Can risk assessment still be useful? How?
Yes to help understand and describe risk
to identify risk sources, threats, hazards and opportunities; understanding how these can
materialize/occur, trigger events/event sequences, and what their consequences can be; representing
and expressing uncertainties and risk; and determining the significance of the risk using relevant
criteria.
This can be done when the uncertainties are small or large. So they can be useful
and provide decision support, on choices of measures and arrangements, the need
for such measures and arrangements, etc.
Why is it problematic to use standard cost benefit analysis (CBA) to verify
ALARP?
The ALARP principle says that risk should be reduced to a level that is As Low As
Reasonably Practicable (ALARP). A risk reducing measure should be implemented unless
it can be demonstrated that the costs are grossly disproportionate relative to the gains
obtained (the burden of proof is reversed). Thus if there is a safety measure that can improve
safety, it shall be implemented as a rule, unless you can demonstrate that the cost are in
gross disproportion to the benefits gained. This means that Protection is highlighted.
However, if standard CBA is used to verify ALARP which is often seen in practice,
development is supported as this analysis is based on expected values: risk and uncertainties
are not given much weight and the idea of the principle is not followed up.
Define the concept of VSL (Value of a Statistical Life). Say VSL =30. Explain
how this value is used in CBAs.
VSL: how much one is wiling to pay for reducing the expected number of lost
lives with 1.
In a CBA we compute the expected value related to loss of lives, so if we for
example expect 0.2 lost lives, a value contribution of 0.2 x 30 = 6 is computed,
which is plugged into the ENPV formula.
A researcher has developed a new approach for how to visualize risk. Is this an
example of Applied risk science or Generic risk science? Explain.
The example is an example of Generic risk science, B, as it is a generic
contribution which is relevant for all types of applications.
Consider the case where a person is thinking about jumping onto a stone (bolt)
located between two rocks, with a direct drop below of several hundred meters
(think of the Kjeragbolt in Lysefjorden if you like).
Does the risk science tell you what you should do in this case? Explain. If you
decide not to jump, how would you explain that using risk science concepts and
terminology?
No, the risk science does not provide answers what is the best decision but it
provides support for how to think and generate a basis for making the decision. It
helps us for example characterizing the risk and understanding the balance that
has to be made between different concerns (development and protection).
If you decide not to jump you can say that you gave considerable weight to the
cautionary principle. You weigh pros and cons but did not find the benefits large
enough compared to the risks involved.
What is ‘risk science’? Are all risk assessments contributing to new risk science
knowledge? Why/why not?
Risk science is the most warranted statements (justified beliefs) produced by the risk field or
discipline, it is about concepts, principles, approaches and methods on how to understand,
assess, characterise, communicate, manage and govern risk
Risk science is the most updated and justified knowledge on risk fundamentals (concepts), risk
assessment, risk perception and communication and risk management and governance. Risk science is
also about the process – the practice – that gives us this knowledge.
No, as not all lead to new knowledge on concepts, principles, approaches or methods on how
to understand, assess, characterise, communicate, manage or govern risk. Not all risk
assessment are published in risk science journals, they do not have scientific contributions in
relation to risk science.
Define ‘knowledge’ according to the curriculum. Use the judgment that the
probability is 1/6 for a symmetric die, to argue that knowledge cannot be
meaningfully defined as ‘justified true beliefs’.
Knowledge: justified beliefs
See youtube
https://www.youtube.com/watch?v=z4E-y7CQ5-
0&list=PL1Oi4O0iZ7iagjE80latDc4lUXXboK6EX&index=16&t=0s
We have some ‘knowledge’ by seeing that the die is symmetric and from that we
can claim that the probability p for getting 6 is 1/6, but we cannot be sure, so if
we require justified true beliefs, we do not have knowledge in this case and that
does not sound meaningful.
The same if we perform many trials, we do not get knowledge according to
justified true beliefs which shows that the idea is not working in this context.
A risk analyst presents the result of a risk assessment for a process plant, and
shows some probability numbers for loss of life categories, including a probability
of one or more fatalities for a period of one year equal to 0.001 = 1 x 10-3. The
analyst states that the numbers represent the analyst’s degree of belief for these
events to occur. Provide an interpretation of the probability 0.001 in line with
this. What do we call this type of probability? Is it uncertain? Explain why/why
not.
Interpretation: The analyst has the same uncertainty and degree of belief for the
event (at least one fatality in that period) to occur as randomly drawing a red ball
out of an urn that comprises 1000 balls and where 1 is red.
It is referred to as a knowledge-based, or subjective or judgmental probability.
It is not uncertain, it is the analyst’s judgment of uncertainty, but the knowledge
supporting it could be more or less strong.
What is the difference between risk perception and professional judgments about risk?
Suppose a professional risk judgment is based on risk equal to expected value. A lay person
perceives the risk completely different than the professional – does this mean that the person is
strongly influenced by perceptional factors like fear and dread?
The figure below shows the difference, risk perception may also include how the person like
or dislike aspects of the risk, as well as aspects of affect (emotions) and trust, also acceptability
– which are not the case of a professional judgment (C’,Q,K)
No, this person’s perception may represent a conscious judgment of risk and the uncertainties
(C,U), using (C’,Q,K) type of consideration and therefore be completely different than the
professional who refers to risk as expected value, E[C’], which har strong limitations in
reflecting all aspects of risk (the specter of consequences and uncertainties).
You are considering two projects, I and II. The projects are characterized by frequentist probability
distributions of the consequences (i.e. benefits, profit) C as follows: Explain/interpret the following quantities for project II:
Pf(C=100) and Ef[C].
Should you choose project II as it has the highest expected value? Explain?
Is the cautionary principle relevant in this case? Why/why not?
The precautionary principle? Why/why not
Solution
Pf(C=100): the fraction of times the consequences is equal to 100 if we could consider an infinite
(very large) number of similar projects of type II
Ef[C]: the average value if we could consider an infinite (very large) number of similar projects of type
II
If you have a large number of such projects, project II is most attractive as it gives the best average
value. In general it is not possible to say as it depends on the decision maker’s preferences. Project II
may for example be rejected because of rather high probability of a loss of 100.
The cautionary principle could be relevant, but not the precautionary principle as there are no
scientific uncertainties. The person may dislike the relatively large uncertainties associated with a
considerable loss (0.05 probability for a loss of 100) and reject project II, assuming the person does
not have many projects.
Explain how scenario 1 can happen. Compute the probability that this scenario occurs given a fire.
Suppose the expected rate of fires is 2 per year. What is then the probability of a fire occurring
which leads to scenario 2?
Suppose for scenario 1, an expected number of fatalities of 5 is specified. And suppose no fatalities
for the other scenarios. Compute an expected number of fatalities for this event tree.
What is the PLL associated with this tree?
Compute a FAR value associated with this tree? Suppose the number of exposed hours in a year is 1
million.
Can you use this event tree model to present an F-N curve? Explain.
Solution
A fire starts, the fire spreads quickly, the sprinkler fails, people cannot evacuate leading to multiple
fatalities
P(scenario 1|fire) = 0.1 x 0.3 x 0.5 = 0.015 = 1.5%
P(fire scenario 2) = 0.015 x 2 = 0.03 (a good approximation)
(scenarios 1 and 2 have the same probability)
Expected number of fatalities= 5 x 0.03 = 0.15
PLL = 0.15
FAR = (0.15/106)108 = 15
FN curve : Not possible without specifying probabilities for different numbers of fatalities for scenario
1
You are considering two projects, I and II. The projects are characterized by known frequentist
probability distributions of the consequences (i.e. benefits, profit) C as follows:
Solution
Pf(C=0): the fraction of times the consequences is equal to 0 if we could consider an infinite (very
large) number of similar projects of type II
Ef[C]: the average value if we could consider an infinite (very large) number of similar projects of type
II
If you have a large number of such projects, project II is most attractive as it gives the best average
value. In general it is not possible to say as it depends on the decision maker’s preferences. Project II
may for example be rejected because of rather high probability of a loss of 100.
VaR = 0 ( 0 is the value so that P(C ≤ VaR) = 0.90 (or at least 0.90) – for project I the level is not 90%
but 99%
Suppose for scenario 1, an expected number of fatalities of 10 is specified. And suppose no fatalities
for the other scenarios. Suppose the expected rate of fires is 2 per year.
Compute the PLL value for this tree and a FAR value assuming the number of exposed hours in a year
is 1 million.
What changes are needed to compute P(N ≥ n), for n=1,2, … and N being the number of fatalities.
Discuss to what extent PLL and FAR in this example can be good individual risk metrics.
Solution
P(scenario 1|fire) = 0.1 x 0.3 x 0.5 = 0.015 = 1.5%
P(fire scenario 1) = 0.015 x 2 = 0.03 (a good approximation)
Expected number of fatalities= 10 x 0.03 = 0.30
PLL = 0.30
FAR = (0.30/106)108 = 30
Need to specify probabilities for different numbers of fatalities for scenario 1, we need P(N=n|fire
scenario 1) or P(N ≥ n|fire scenario 1)
PLL is not a good metric as such as it just presents the expected number of fatalities per year. If we
divide it on the number of people exposed which produces the average individual risk (AIR) and the
people have about the same level of risk, this is suitable as an individual risk metric.
FAR is suitable if the persons exposed have about the same risk level.
A) Based on the distribution, give a 90% credibility interval and provide an interpretation of
this interval.
.
.
B) Give an example of when you as a risk analyst would assign an imprecise
probability [𝑃(𝐴),𝑃(𝐴)] and provide an interpretation this probability statement.
A) A 90% credibility interval is [0.5, 0.6] (or [0.3, 0.5]). The assessor has the same degree of
belief that λ is in the interval as drawing a red ball out of an urn where 9 out of 10 balls are
red.
.
.B) As input to my risk assessment, I may have two experts expressing P(A)=0.2 and P(A)=0.3.
Then I could express my uncertainty about the occurrence of A with the imprecise probability
[0.2, 0.3]. The statement means that I compare my uncertainty about the occurrence of A
with drawing a red ball out of an urn with 10 balls where 2 or 3 balls are red.
Assume that the reliability of each detector is pn=0.9 and that the reliability of the deluge
system is pDS= 0.99. Further, assume that the components fail independently.
A) Calculate the reliability of the system exactly for both strategies.
.
.
B) List the minimal cut sets and calculate the reliability approximately.
A) Strategy A
- Reliability: (1-qD1qD2)(1-qD3qD4)pDS = 0.970299 ≈ 0.97
Strategy B
- Reliability: (1- (1-pD1pD3)(1-pD2pD4))pDS= 0.954261 ≈ 0.95
.
.
B) Minimal cut sets Strategy A
- (D1,D2) (D3,D4) (DS)
Approximation: 1-(qD1qD2 + qD3qD4 + qDS) = 0.97
Minimal cut sets strategy B
- (D1,D2) (D1,D4) (D3,D2) (D3, D4) (DS)
- Approximation: 1-(qD1qD2 + qD1qD4 + qD3qD2 + qD3qD4 + qDS) = 0.95
Below is a fault tree diagram with the top event that the reserve parachute of a skydiver fails.
Assume that the basic events are independent and the following probabilities:
q1 = 0.2
q2 = 0.05
q3 = 0.1
q4 = 0.005
A) Calculate the probability of the top event approximately by using the minimal cut set
approach.
.
B) Calculate the probability of the top event exactly.¨.
.
.
C) Say you got updated knowledge that failure of the auto activation device in some cases
causes the rip chord to break. Would you conclude that the top event probability should be
lower, the same, or higher than your initial estimate? Why/why not?
A) P(top event) ≈ q1q2+q1q3+q4 = 0.20.05 + 0.20.1 + 0.005 = 0.035
.
.
B) P(top event) = 1 – p4[1 – q1(1 – p2p3)] = 1 – 0.995[1 - 0.2(1 – 0.95*0.9)] = 0.033855
.
.
C) Higher. The new knowledge indicates that Event 1 has a higher probability than 0.2 if
Event 3 or 4 occur.
