arundelo comments on Rationality Quotes August 2014

arundelo 5 Aug 2014 5:19 UTC
35 points

That’s why I’m skeptical of people who look at some catastrophic failure of a complex system and say, “Wow, the odds of this happening are astronomical. Five different safety systems had to fail simultaneously!” What they don’t realize is that one or two of those systems are failing all the time, and it’s up to the other three systems to prevent the failure from turning into a disaster.

-- Raymond Chen
- satt 7 Aug 2014 1:16 UTC
  11 points
  Parent
  In other words, some of the slices in one’s Swiss cheese model are actually missing entirely.
- dspeyer 5 Aug 2014 21:24 UTC
  10 points
  Parent
  Correlary: if you’re running a system for which five simultaneous failures is a disaster, monitor each safety system seperately and treat any three simultaneous failures as if it were a disaster.
- Gunnar_Zarncke 7 Aug 2014 22:02 UTC
  8 points
  Parent
  Also known as Fundamental Failure Mode. From Systemantics:
  
  System failure
  
  The Fundamental Failure-Mode Theorem (F.F.T.): Complex systems usually operate in failure mode.
  
  A complex system can fail in an infinite number of ways. (If anything can go wrong, it will.) (See Murphy’s law.)
  
  The mode of failure of a complex system cannot ordinarily be predicted from its structure.
  
  The crucial variables are discovered by accident.
  
  The larger the system, the greater the probability of unexpected failure.
  
  “Success” or “Function” in any system may be failure in the larger or smaller systems to which the system is connected.
  
  The Fail-Safe Theorem: When a Fail-Safe system fails, it fails by failing to fail safe.