Guidance for Use of CSM Recommendation - ERA - Europa
Guidance for Use of CSM Recommendation - ERA - Europa
Guidance for Use of CSM Recommendation - ERA - Europa
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
European Railway Agency<br />
Collection <strong>of</strong> examples <strong>of</strong> risk assessments and <strong>of</strong> some possible tools<br />
supporting the <strong>CSM</strong> Regulation<br />
<br />
(ii) estimation <strong>of</strong> frequency <strong>of</strong> hazard and justification (with assumption and<br />
conditions);<br />
(iii) ranking <strong>of</strong> hazards according to their criticality and frequency <strong>of</strong> occurrence;<br />
(4) identification <strong>of</strong> additional appropriate safety measures leading to acceptable risks<br />
<strong>for</strong> each hazard (iterative process after the risk evaluation phase);<br />
A.4.7.<br />
A.4.8.<br />
A.4.9.<br />
A.4.10.<br />
A.4.11.<br />
Evidences required from the risk evaluation:<br />
(a) when explicit risk estimation is per<strong>for</strong>med:<br />
(1) definition and justification <strong>of</strong> risk evaluation criteria <strong>for</strong> each hazard;<br />
(2) demonstration/justification that the safety measures and safety requirements cover<br />
each hazard to an acceptable level (according to above risk evaluation criterion);<br />
(b) in virtue <strong>of</strong> sections 2.3.5 and 2.4.3 in the <strong>CSM</strong> Regulation, risks covered by application<br />
<strong>of</strong> codes <strong>of</strong> practice and by comparison with reference systems are considered implicitly<br />
as acceptable provided respectively that (see dotted circle in Figure 1):<br />
(1) the conditions <strong>of</strong> application <strong>of</strong> codes <strong>of</strong> practice in section 2.3.2 are met;<br />
(2) the conditions <strong>for</strong> use <strong>of</strong> a reference system in section 2.4.2 are met;<br />
The risk acceptance criteria are implicit <strong>for</strong> these two risk acceptance principles.<br />
Evidences from hazard management:<br />
(a) registration <strong>of</strong> all hazards in a hazard record, containing the following elements:<br />
(1) identified hazard;<br />
(2) safety measures preventing occurrence <strong>of</strong> hazard or mitigating its consequences;<br />
(3) safety requirements on the measures;<br />
(4) relevant part <strong>of</strong> the system;<br />
(5) actor responsible <strong>for</strong> safety measures;<br />
(6) status <strong>of</strong> hazard (e.g. open, solved, deleted, transferred, controlled, etc.);<br />
(7) date <strong>of</strong> registration, review and control <strong>of</strong> each hazard;<br />
(b) description on how hazards will be managed effectively during the whole life-cycle;<br />
(c) description <strong>of</strong> the in<strong>for</strong>mation exchange between parties <strong>for</strong> hazards at the interfaces<br />
and allocation <strong>of</strong> responsibilities.<br />
Evidences relating to the quality <strong>of</strong> the risk evaluation and assessment process:<br />
(a) description <strong>of</strong> persons involved in the process and their competence;<br />
(b) <strong>for</strong> explicit risk estimations, description <strong>of</strong> in<strong>for</strong>mation, data and other statistics used in<br />
the process, and justification <strong>for</strong> their adequacy (e.g. sensitivity study on the used data).<br />
Evidences <strong>of</strong> compliance with safety requirements:<br />
(a) list <strong>of</strong> standards used;<br />
(b) description <strong>of</strong> design and <strong>of</strong> operational principles;<br />
(c) evidences <strong>of</strong> application <strong>of</strong> a good quality and safety management system <strong>for</strong> the<br />
project: refer to point [G 3] in section 1.1.2;<br />
(d) summary <strong>of</strong> safety analysis reports (e.g. hazard cause analysis) demonstrating the<br />
fulfilment <strong>of</strong> safety requirements;<br />
(e) description and justification <strong>of</strong> methods and tools (FMECA, FTA, …) that are used <strong>for</strong><br />
the hazard cause analysis;<br />
(f) summary <strong>of</strong> safety verification and validation tests.<br />
Safety case: CENELEC advises that all previously mentioned evidences are regrouped and<br />
summarised in one document that is submitted to the assessment body: refer to points [G 4]<br />
and [G 5] in section 5.1.<br />
<br />
Reference: <strong>ERA</strong>/GUI/02-2008/SAF Version: 1.1 Page 70 <strong>of</strong> 105<br />
File Name: Collection_<strong>of</strong>_RA_Ex_and_some_tools_<strong>for</strong>_<strong>CSM</strong>_V1.1.doc<br />
European Railway Agency ● Boulevard Harpignies, 160 ● BP 20392 ● F-59307 Valenciennes Cedex ● France ● Tel. +33 (0)3 27 09 65 00 ● Fax +33 (0)3 27 33 40 65 ● http://www.era.europa.eu