EXECUTIVE SUMMARY:
Within the FLYSAFE preliminary Functional Hazard Assessment (FHA) report, the Next Generation Integrated Surveillance System (NG-ISS) main functions are assessed in terms of conceivable hazards that can be identified with respect to failure condition scenarios at aircraft level. The preliminary FHA, as performed within the FLYSAFE work package 1.3.2., will be used as an input to the final system FHA within the project. The preliminary FHA is not an evaluation of design adequacy but rather an identification of functional hazards that shall be considered during development of an NG-ISS. It is furthermore based on the NG-ISS functionalities as defined in the project. The results of both preliminary FHA and subsequent system FHA shall be used in the determination of System Software and Hardware Design Assurance levels.

The NG-ISS objective is to enhance flight crew awareness of “external” traffic, weather and terrain hazards. The purpose of the FLYSAFE preliminary FHA is to check that the installation of such a system onboard an aircraft does not introduce new “internal” hazards.

Most significant hazards that could be potentially introduced by such a system are mainly related to the few cases where the flight crew could be potentially misled by erroneous or conflicting indications or false alerts provided by the NG-ISS.

The NG-ISS will incorporate Data Fusion and Conflict Detection functions within each surveillance domain (traffic, weather or terrain) and Data Consolidation will be performed possibly across those domains. At the time of this preliminary FHA, the definition of those functions was not mature enough to allow for a detailed assessment, particularly for the Data Consolidation function.

In addition, few assumptions were made on the NG-ISS functions that would be implemented. In particular, the Airborne Separation Assurance System (ASAS) applications such as the Enhanced Traffic Situational Awareness on the airport Surface (ATSA-SURF) and Airborne Spacing Application - Sequencing & Merging (ASPA-S&M) were retained among the seven potential ASAS Package 1 airborne applications proposed for implementation. The NG-ISS detailed definition will have to confirm those assumptions. However, those two applications were assessed as the most mature ones with relevant to descriptive material available.

The Intelligent Crew Support (ICS) function was also left out from this preliminary FHA as a definition of this system was not available at the time. The system FHA, as follow-on of the preliminary FHA, will address this function in more details. It is anticipated that no critical hazards would be introduced by this new function.

For further information please contact:
Mr. Guy-Andre Berton: guy-a.berthon@fr.thalesgroup.com
or Mr. Hafid Smaili: smaili@nlr.nl