Commenced in January 2007
Frequency: Monthly
Edition: International
Paper Count: 32726
VISMA: A Method for System Analysis in Early Lifecycle Phases

Authors: Walter Sebron, Hans Tschürtz, Peter Krebs


The choice of applicable analysis methods in safety or systems engineering depends on the depth of knowledge about a system, and on the respective lifecycle phase. However, the analysis method chain still shows gaps as it should support system analysis during the lifecycle of a system from a rough concept in pre-project phase until end-of-life. This paper’s goal is to discuss an analysis method, the VISSE Shell Model Analysis (VISMA) method, which aims at closing the gap in the early system lifecycle phases, like the conceptual or pre-project phase, or the project start phase. It was originally developed to aid in the definition of the system boundary of electronic system parts, like e.g. a control unit for a pump motor. Furthermore, it can be also applied to non-electronic system parts. The VISMA method is a graphical sketch-like method that stratifies a system and its parts in inner and outer shells, like the layers of an onion. It analyses a system in a two-step approach, from the innermost to the outermost components followed by the reverse direction. To ensure a complete view of a system and its environment, the VISMA should be performed by (multifunctional) development teams. To introduce the method, a set of rules and guidelines has been defined in order to enable a proper shell build-up. In the first step, the innermost system, named system under consideration (SUC), is selected, which is the focus of the subsequent analysis. Then, its directly adjacent components, responsible for providing input to and receiving output from the SUC, are identified. These components are the content of the first shell around the SUC. Next, the input and output components to the components in the first shell are identified and form the second shell around the first one. Continuing this way, shell by shell is added with its respective parts until the border of the complete system (external border) is reached. Last, two external shells are added to complete the system view, the environment and the use case shell. This system view is also stored for future use. In the second step, the shells are examined in the reverse direction (outside to inside) in order to remove superfluous components or subsystems. Input chains to the SUC, as well as output chains from the SUC are described graphically via arrows, to highlight functional chains through the system. As a result, this method offers a clear and graphical description and overview of a system, its main parts and environment; however, the focus still remains on a specific SUC. It helps to identify the interfaces and interfacing components of the SUC, as well as important external interfaces of the overall system. It supports the identification of the first internal and external hazard causes and causal chains. Additionally, the method promotes a holistic picture and cross-functional understanding of a system, its contributing parts, internal relationships and possible dangers within a multidisciplinary development team.

Keywords: Analysis methods, functional safety, hazard identification, system and safety engineering, system boundary definition, system safety.

Digital Object Identifier (DOI):

Procedia APA BibTeX Chicago EndNote Harvard JSON MLA RIS XML ISO 690 PDF Downloads 1066


[1] C. E. Ericson, II, Hazard Analysis Techniques for System Safety, 2nd ed., New Jersey: Wiley, 2016, ch. 5.2.2
[2] J. McDermid, “Issues in development of safety-critical systems,” Safety-critical Systems, first ed.London: Chapman & Hall, 1993, pp. 16–42.
[3] IEC, IEC 61508-6 Functional safety of electrical/electronic/ programmable electronic safety-related systems, ed. 2.0, part 6, Geneva: IEC, 2010
[4] IEC, IEC 60812- Analysis techniques for system reliability – Procedure for failure mode and effects analysis (FMEA), ed. 2.0, Geneva: IEC, 2006
[5] U.S. Nuclear Regulatory Commission, NUREG-0492 - Fault Tree Handbook, Washington: U.S. Government Printing Office, 1981
[6] C. E. Ericson, II, Fault Tree Analysis Primer, 2nd ed., Charleston: CreateSpace Independent Publishing Platform, 2011
[7] R. Preiss, Methoden der Risikoanalyse in der Technik, Vienna: Edition TÜV Austria, 2009
[8] H. Tschürtz, Safety-Vorgehensmodell zur Konzeption und Entwicklung von sicherheitskritischen Systemen, Dtechn Thesis, Institute for Engineering Design and Logistics Engineering, Vienna University of Technology, Austria, 2016