I think that is a bit contradictorary. Unless there is an earthquake or other mayor event, technical systems should not fail under proper maintenance. Especially if the system has been operated since more than a hundred years now.
That realistically only leaves inadequate maintenance or sabotage. Both aren’t “tragic accidents”.
You check security critical components to be non defective before using them. Security systems have fail-safes and redundancies.
With due diligence it is not possible for established systems to just fail in a way that is killing a dozen people. The technology isn’t new and there is plenty of cable or cog-wheel railways operating around the world, so there is established practices for security.
You check security critical components to be non defective before using them. Security systems have fail-safes and redundancies.
Obviously.
With due diligence it is not possible for established systems to just fail in a way that is killing a dozen people. The technology isn’t new and there is plenty of cable or cog-wheel railways operating around the world, so there is established practices for security.
Ok, so you have two cables, one principal and the other one as redundancy. The main one snap and in doing so damage the backup cable (or any other part that must use the backup cable) more than what falls within safety limits, so even the backup cable (or mechanism) fail. Then ? (I personally see something like that btw)
Look, I am not saying that there could not have be some problem with lack of maintenance, it looks this way, but that even fail safe and redundancy have limits to what they can do. And since some tests are destructive for the tested item you can only trust the fact that every item would be built the same way at the same quality level, which do not remove the possibility that one item end up being defective.
Obviously, but QA is based on statistic.
You need to destroy or damage the item tested If you want to check how a steel cable hold, You test it to the limit but after that you cannot use it anymore. So you get another one with the same specification. But if this one is defective for some reason, you would never know it until it fail.
I think that is a bit contradictorary. Unless there is an earthquake or other mayor event, technical systems should not fail under proper maintenance. Especially if the system has been operated since more than a hundred years now.
That realistically only leaves inadequate maintenance or sabotage. Both aren’t “tragic accidents”.
Even if you have adequate maintenance , there is always the possibility you use a defective part.
That’s what redundancy is for.
You check security critical components to be non defective before using them. Security systems have fail-safes and redundancies.
With due diligence it is not possible for established systems to just fail in a way that is killing a dozen people. The technology isn’t new and there is plenty of cable or cog-wheel railways operating around the world, so there is established practices for security.
Obviously.
Ok, so you have two cables, one principal and the other one as redundancy. The main one snap and in doing so damage the backup cable (or any other part that must use the backup cable) more than what falls within safety limits, so even the backup cable (or mechanism) fail. Then ? (I personally see something like that btw)
Look, I am not saying that there could not have be some problem with lack of maintenance, it looks this way, but that even fail safe and redundancy have limits to what they can do. And since some tests are destructive for the tested item you can only trust the fact that every item would be built the same way at the same quality level, which do not remove the possibility that one item end up being defective.
You can perform QA on parts.
Obviously, but QA is based on statistic.
You need to destroy or damage the item tested If you want to check how a steel cable hold, You test it to the limit but after that you cannot use it anymore. So you get another one with the same specification. But if this one is defective for some reason, you would never know it until it fail.