Guidance for Use of CSM Recommendation - ERA - Europa
Guidance for Use of CSM Recommendation - ERA - Europa
Guidance for Use of CSM Recommendation - ERA - Europa
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
European Railway Agency<br />
Collection <strong>of</strong> examples <strong>of</strong> risk assessments and <strong>of</strong> some possible tools<br />
supporting the <strong>CSM</strong> Regulation<br />
<br />
[G 3] The safety case describes and summarises how the project documents resulting from the<br />
application <strong>of</strong> the company or project quality and/or safety management processes<br />
interrelate within the system development process to demonstrate the system safety.<br />
Usually, the safety case does not include large volumes <strong>of</strong> detailed evidence and supporting<br />
documentation but provides precise references to such documents.<br />
[G 4] Safety case <strong>for</strong> technical systems: CENELEC standards can be used as guidelines <strong>for</strong><br />
writing and/or <strong>for</strong> the structure <strong>of</strong> safety cases:<br />
(a) see EN 50 129 standard {Ref. 7} <strong>for</strong> "Railway Applications - "Communication, Signalling<br />
and Processing Systems & Safety related electronic Systems <strong>for</strong> Signalling";<br />
Appendix H.2 <strong>of</strong> the EN 50 126-2 Guideline {Ref. 9} also proposes a structure <strong>for</strong> the<br />
safety case <strong>of</strong> signalling systems;<br />
(b) see Appendix H.1 <strong>of</strong> the EN 50 126-2 Guideline {Ref. 9} <strong>for</strong> the structure <strong>of</strong> the safety<br />
case <strong>for</strong> rolling stock;<br />
(c) see Appendix H.3 <strong>of</strong> the EN 50 126-2 Guideline {Ref. 9} <strong>for</strong> the structure <strong>of</strong> the safety<br />
case <strong>of</strong> infrastructures<br />
As it appears in these references, the safety case structure <strong>for</strong> technical systems, as well as<br />
its content, depends on the system <strong>for</strong> which the demonstration <strong>of</strong> the safety compliance is<br />
to be provided.<br />
The safety case outlined in Appendix H <strong>of</strong> the EN 50 126-2 Guideline {Ref. 9} provides only<br />
examples, and may not be suitable <strong>for</strong> all systems <strong>of</strong> the given kind. There<strong>for</strong>e, the outline<br />
needs to be used with appropriate judgement <strong>of</strong> what fits to each specific application.<br />
[G 5] Safety case <strong>for</strong> organisational and operational aspects in railway systems:<br />
At present, there is not any dedicated standard providing the structure, the content and a<br />
guideline <strong>for</strong> writing the safety case <strong>for</strong> organisational and operational aspects <strong>of</strong> a railway<br />
system. However, as the safety case aims to demonstrate in a structured way the system<br />
compliance with its safety requirements, the same kind <strong>of</strong> safety case structure can be used<br />
as <strong>for</strong> technical systems. Indeed, the references in point [G 4] <strong>of</strong> section 5.1 provide advises<br />
and a checklist <strong>of</strong> items to address regardless the type <strong>of</strong> the system under assessment.<br />
The management <strong>of</strong> organisational and operational changes do require the same kind <strong>of</strong><br />
quality management and safety management processes as the technical changes, with a<br />
demonstration <strong>of</strong> the system compliance with the specified safety requirements.<br />
Requirements from CENELEC standards not applicable to organisational and operational<br />
aspects are the ones purely related to technical system design facilities, as <strong>for</strong> example<br />
"inherent hardware fail-safety" principles, electromagnetic compatibility (EMC), etc.<br />
5.2. The document produced by the proposer under point 5.1. shall at least include:<br />
(a) description <strong>of</strong> the organisation and the experts appointed to carry out the risk<br />
assessment process,<br />
(b) results <strong>of</strong> the different phases <strong>of</strong> the risk assessment and a list <strong>of</strong> all the necessary<br />
safety requirements to be fulfilled in order to control the risk to an acceptable level.<br />
[G 1] Depending on the complexity <strong>of</strong> the system, these evidences can be gathered in one or<br />
several safety cases. Refer respectively to points [G 4] and [G 5] <strong>of</strong> section 5.1 <strong>for</strong> the<br />
structure <strong>of</strong> the safety case <strong>for</strong> technical systems and <strong>for</strong> operational and organisational<br />
aspects.<br />
[G 2] Refer also to section A.4. in Appendix A <strong>for</strong> possible examples <strong>of</strong> evidences.<br />
<br />
Reference: <strong>ERA</strong>/GUI/02-2008/SAF Version: 1.1 Page 56 <strong>of</strong> 105<br />
File Name: Collection_<strong>of</strong>_RA_Ex_and_some_tools_<strong>for</strong>_<strong>CSM</strong>_V1.1.doc<br />
European Railway Agency ● Boulevard Harpignies, 160 ● BP 20392 ● F-59307 Valenciennes Cedex ● France ● Tel. +33 (0)3 27 09 65 00 ● Fax +33 (0)3 27 33 40 65 ● http://www.era.europa.eu