Computer Error Caused Qantas Jet Mishap 389
highways sends word that preliminary investigations into a Qantas Airbus A330 mishap where 51 passengers were injured has concluded that it was due to the Air Data Inertial Reference System feeding incorrect information into the flight control system — not interference from passenger electronics, as Qantas had initially claimed. Quoting from the ABC report: "Authorities have blamed a faulty onboard computer system for last week's mid-flight incident on a Qantas flight to Perth. The Australian Transport Safety Bureau said incorrect information from the faulty computer triggered a series of alarms and then prompted the Airbus A330's flight control computers to put the jet into a 197-meter nosedive ... The plane was cruising at 37,000 feet when a fault in the air data inertial reference system caused the autopilot to disconnect. But even with the autopilot off, the plane's flight control computers still command key controls in order to protect the jet from dangerous conditions, such as stalling, the ATSB said."
uhh huhs (Score:5, Insightful)
Re:Don't forget the spin (Score:5, Interesting)
So what if they do make such claims?
If all it takes is a kid with a gameboy to bring down the Airbus then their entire fleet should be grounded.
The aircraft systems design would be completely unsafe as there are far more powerful transmitters in any urban area.
No, in truth, Airbus planes would be raining from the skys if it were indeed susceptible to such interference. It would have never been certified.
But more important, why did the controls not respond to the pilots? Why would the computers be programmed to prevent a Stall in an *diving* aircraft?
Re: (Score:2, Informative)
Re:Don't forget the spin (Score:4, Insightful)
Nonsense. The air is thin but not THAT thin. B-29 Superfortresses routinely flew at that height, via human piloting. You don't "need" an autopilot.
>
>>>incorrect information... prompted flight control computers to put the jet into a 197-meter nosedive.
Nice. I hear that car manufacturers want to include similar accident-avoidance measures in cars. That's just what I need - my car's old computer going senile, and suddenly swerving me head-on into oncoming traffic.
Re:Don't forget the spin (Score:5, Informative)
Re:Don't forget the spin (Score:5, Informative)
The A330 also has much more powerful engines but neither of those really matter. The reason the pilot controls didn't respond is a matter of fly-by-wire philosophy. Do you allow the pilot to put the plane is a situation that will stall the plane or worse break it, or do you prevent the pilot from flying outside the capabilities of the plane. Airbus's philosophy is the latter. The only problem is - what if the flight control computer is wrong.
You do *not* need an autopilot to fly at that altitude. And yes I am an autopilot engineer.
Re: (Score:3, Informative)
And my understanding is that Boeing does it the other way, where it allows the human pilot to override the computer, correct? Funny, I always figured that doing it the airbus way would get someone into trouble some day...
But, then again, how many times have pilots/pilot error brought down aircraft? Maybe we should let the machines be the last line of defense =)
Re:Don't forget the spin (Score:5, Informative)
Typically, recent civilian and many military aircraft are "three dimensionally stable". The only exceptions to this are stunt planes and fighter aircraft. For pretty much everything else, the airplane will not only continue to fly straight and level once trimmed but will even return to straight and level after a control is deflected. That is, push the yoke forward and the increased speed causes additional lift and the plane returns to level flight. Deflect the yoke the other direction, the rudder or the ailerons and the same sort of "counter force" does the same thing; the plane returns to level flight. It just won't necessarily be on the same course as before. This is something that is typically demonstrated to a student pilot on their first flight with an instructor.
The old inertial autopilots kept a plane on the same course based on the directional gyro, turn and bank and rate of climb devices. Good enough to give the pilot a break but they only kept the plane headed in the direction originally input. Modern autopilots tie into the global positioning system and on-board navigation computers to allow things like a great circle route to be flown under autopilot that also corrects for changes in wind.
Only a very few recent fighter planes are so unstable that they require the on-board computer to keep the plane flying. The F-117 was the first such aircraft deployed. The idea is that making a fighter plane unstable means that it has no inherent preference as to which way to fly thus making it more maneuverable. On the other hand, there is no incentive to design such instability into an airliner and lots of reasons not to (like what happens when the autopilot fails).
Cheers,
Dave
Re:irrelevant and incorrect (Score:4, Informative)
With an aerodynamically stable airplane, if the attitude control computer fails, it's still may be possible to fly it "by hand." With an unstable airplane, the only thing the pilot can do is punch out under the same circumstances. Fly by wire (and lots of computing power) makes it possible to control an airplane that is aerodynamically unstable; it does not require that the plane be unstable. That's a design decision. Hopefully Airbus, etc. still provide the equivalent of a turn and bank indicator, rate of climb indicator, and gyro-compass so the pilot has a chance of flying the plane even if the attitude control computer goes wonky (and a way to take the attitude control compuer off-line).
Your second example is very bogus. As an example, a flying wing such as the B-2 will make a very poor Styrofoam glider but the origins of the flying wing goes back to WWII. Quite obviously, the B-35, N9M, etc. didn't have a flight control computers but were controllable none the less. The problem with your example is that modeling things like the effect of a wing's dihedral on Styrofoam glider scales and speeds is difficult to do. This is primarily a result of the simple fact that lots of effects such as boundary layer conditions are not linear. It takes a huge amount of effort to craft an aerodynamic replica of a full size airplane that allows wind tunnel tests to be run on scale models and still get valid results. Just because a styrofoam model doesn't glide says little or nothing about the stability of the full size airplane.
Cheers,
Dave
Re:Don't forget the spin (Score:5, Interesting)
Auto-pilot can make mistakes. But humans make mistakes much more frequently. We are all safer if we turn the piloting of heavy machines over to computers. That California train wreck never would have happened if we had taken the emotional, error-prone sack of meat out of the control system.
Re:Don't forget the spin (Score:4, Interesting)
Re: (Score:3, Insightful)
What's the difference? Wouldn't an aluminum gate be just as busted as a fiberglass one if a car ran through it fast enough to shatter the fiberglass?
Re:Don't forget the spin (Score:5, Informative)
Nonsense. The air is thin but not THAT thin. B-29 Superfortresses routinely flew at that height, via human piloting. You don't "need" an autopilot.
Firstly, the B-29 had the wings of a glider and cruised at 220 knots. The Airbus by contrast has swept wings optimized for cruise at .82 mach. What makes you think your intuition about the B29 is worth anything given the differences between those aircraft?
Secondly, the B29 was flown by autopilot in cruise. Preview "Bringing the Thunder" on Google books, page 155, for the memoirs of a B-29 pilot.
That said, this is not even an autopilot issue. The true source of this problem is the flight control system of the Airbus, which features a "self protection" system that intends to prevent the aircraft from stalling at any expense, and in this case, actively threatens the safety of the aircraft itself.
The truly frightening thing about this is that the air data computer clearly resumed normal operation at some point during the dive, and the aircraft was recoverable. Had this been a permanent failure of the air data computer, an airbus pilot has no way to override the aircraft's intentions and recover from the dive. An airbus pilot can only watch, as the airplane says, "No, really, I'm stalling, I have to hold the nose down and pick up airspeed!". With a failed ADC computer constantly and erroneously telling flight controls that the aircraft is in stall, an Airbus would dive, trying to recover, until it impacts the ground.
By contrast, A pilot of a Boeing aircraft can tell his aircraft that it's worldview is wrong and fly it by hand in any circumstance.
This represents a fundamental difference in philosophy. Airbus trusts the computer and the system more than it trusts the pilot -- It says that the probability of a systems failure causing incorrect control commands and threatening the aircraft is less than the probability of a confused, tired, or impaired pilot losing control of the aircraft. Boeing, by contrast, trusts the pilot more than it trusts the system.
There have been aircraft accidents where an Airbus aircraft has crashed in situations where a Boeing aircraft would have been flyable by a human pilot.
There have also been aircraft accidents where a Boeing aircraft has crashed due to incorrect pilot procedures which could have been overridden by an Airbus aircraft's flight control system.
Each philosophy has its risks and rewards.
Re:Don't forget the spin (Score:5, Insightful)
If you need an autopilot to keep the airplane from stalling, then yes, you probably have a stall within seconds after disconnecting the autopilot. And in a stall situation you have no lift from the wings, therefore the plane will immediately and rapidly lose altitude. Modern Airbus and Boeing are engineered to dive forward in these cases, so the stall is self-limiting in the sense that the aircraft will fall until the air is denser or airspeed is higher to let the wings generate lift again thus recovering from the stall.
The resulting forces are well within design limits of current airframes but may seriously injure passengers that had not used their seatbelts or were walking around at this moment.
Moderators on crack (Score:5, Funny)
Overrated? What the hell? How can this post possibly be overrated with a score of 2? Come on, you asshole moderator. Show your face and defend your score. I dare you. I'm sure you're far too cowardly to do it, but I dare you to come here and reply to my post and tell me why you think this post is "Overrated". No doubt you're too chicken to do it, but I'll be waiting.
Re:Don't forget the spin (Score:5, Insightful)
No. I am a pilot, and you are confusing 37000 feet with 56000 feet. At the altitude where the U-2 flys, over 3 miles higher than 37000 feet, the stall and maximum allowable speeds are nearly on top of each other.
At 37000 feet you have a wide margin of speed available between stall and cruise. What gets closer together is the airplane's top cruise speed and the Mach limit.
The dive after autopilot disconnect is crap; the airplane should be trimmed for level flight by the autopilot to save fuel and system wear.
The dirty secret about airbus airplanes is that the autopilot is never really disconnected; the flight computers will always play 'nanny'. In this case, the computer got 'vertigo' and said 'ZOMG we're too steep', slammed the plane around to keep up speed. Wrong move by the wrong system. If the autopilot disconnects, the airplane should hand control to the pilots, not try to tear the plane apart.
Looking at the article, people suffered spine damage as a result of the (improper) maneuver. Considering that one Airbus aircraft has had a tail fall off in flight due to stress cracking, I'd wonder if this airplane hadn't exceeded it's structural G-force limits during the computer's unscheduled aerobatics.
Re:Don't forget the spin (Score:5, Interesting)
If the pilots lost consciousness they would lose control of the aircraft and may slump on to the controls and put the plane into an unsafe course.
The computers put the plane INTO a dive to prevent a stall they *thought* was taking place.
In this case the pilots attempted to abort the 'safety' maneuver but the computer decided that the pilots through incompetence or perhaps incapacitation did not actually intend to kill all aboard and took the action it thought was necessary.
Re:Don't forget the spin (Score:5, Funny)
I'm sorry Dave, I'm afraid I can't do that...
Re:Don't forget the spin (Score:5, Informative)
RTFA. The computer was being fed random and wildly varying attitude inputs. It first pitched up, then dived, presumable responding to different random attitude inputs.
Regarding the earlier point: ATC people say they regularly hear the distinctive "ditda ditda" of an active cellphone on their channel because the pilots haven't turned off their own cellphones. So (a) active cellphones are failing to crash planes, even on presumably the most sensitive part of the craft, the flight deck, and (b) pilots know it and don't care.
Re:Don't forget the spin (Score:5, Interesting)
Most active cell phones won't cause problems. Hell, I've accidentally left my cell phone on while flying IFR and I didn't notice a thing. The track on flightaware didn't show any problems either.
The problem is that we don't know for certain that the cell phone is working properly. This is why we have regulations such as 14CFR91.21 [gpo.gov] and policies that below 10,000 AGL, you may not operate any instruments.
A quick look at NASA's ASRS database shows 9 entries concerning potential interference from portable electronic devices. So this isn't just an academic concern. Several of these entries indicated that the reporters had seen these sorts of issues before, but that it hadn't been reported.
When the flight crew tells you to shut off your toys before landing, gentlemen (and ladies, if there are any here) SHUT IT OFF! The risk of a screw-up is not yours to take. You can scream and holler at the flight crew about the injustice of denying you ten more minutes on your crack-berry once you're safely in the terminal building. Until then, their word has the full force of Admiralty Law. Shut it off or they'll do it for you.
Re:Don't forget the spin (Score:5, Insightful)
The flight crew adamantly demands a shut off my iPod shuffle, which has the EM characteristics of a wristwatch. I will continue to ignore them.
Re: (Score:3, Insightful)
Re: (Score:3, Insightful)
i think this was a prudent policy when portable electronics and wireless devices first became popular. planes were operated by complex & high tech machinery, and they had not been tested against such EM interference. it would have been foolish to allow such devices to be operated on a plane before studying the interaction between these devices and airplane equipment.
however, it's now 2008. the "we don't know what might happen, so let's just ban all electronic devices" attitude is no longer acceptable. F
Re:Don't forget the spin (Score:4, Funny)
RTFA. The computer was being fed random and wildly varying attitude inputs.
They should get Debian software.
Re: (Score:3, Informative)
It would be more accurate to say that stall is a function of airspeed and attitude. It's not dependent ONLY on airspeed or attitude, but you can induce stall by varying either.
Darn News ! (Score:2)
And I had almost finished building my 2KW Bluetooth mouse and with the Flight simulator rig, you know, in that little shed just after the airport fairway...
Re:Darn News ! (Score:5, Funny)
Did you fit that magnetron inside the mouse or did you just bluetooth-enable your microwave?
Questions: (Score:5, Interesting)
"About two minutes after the initial fault, (the air data inertial reference unit) generated very high, random and incorrect values for the aircraft's angle of attack," the ATSB said in a statement.
Correct me if I'm wrong but don't most modern aircraft have an inertial navigation system and a seperate angle of attack transmitter protruding from the plane? Why no redundancy?
The incident was the fourth involving Qantas planes in two-and-a-half months[read TFA for the other 3 incidents]...
The plane's French-based manufacturer has issued an advisory on the problem and will also issue special operational engineering bulletins to airlines that fly A330s and A340s fitted with the same air data computer, the ATSB said.
Does Qantas' aircraft maintenance suck or does Airbus' quality control suck? Do both suck?
;)
Finally, shame on the PR guys for blaming passenger electronics. Maybe it's a feature, not a bug...in case any government decides that they want to make another 9/11
Re:Questions: (Score:5, Informative)
They never did, the initial reports that they were looking at laptop was a mistake by the journalist. Qantas said they were looking at the onboard computers (ie. the computer that was flying the plane) and the journalist thought computers that were on board (ie. the laptops that passengers were using).
Re:Questions: (Score:5, Funny)
The real reason:
"It looks like you are trying to fly a commercial airliner. Would you like me to:
a) Make an announcement to passengers
b) Call the stewardess for some more coffee
c) Compensate for the incredibly high angle of attack"
Re: (Score:3, Funny)
S)pin! spin! spin! All the way down!
Sounds like a status report from the McCain campaign.
Re: (Score:3, Insightful)
Re:Questions: (Score:4, Informative)
Re: (Score:2)
Exceptional claims need exceptional proof.
Re:Questions: (Score:5, Informative)
Qantas HAD an excellent reputation for safety, but that is surely history now. What was it about 6-12 months ago they moved all of their international flights maintainance offshore. Qantas engineers went on strike etc. Lo and behold yet another outsourcing operation is falling flat on its face, unfortunately this time it could come at the expense of lives.
I'd be staying well away from Qantas international flights until they sort their shit out.
Re:Questions: (Score:5, Interesting)
If Qantas cuts the costs of maintenance to such a degree that fatalities are not only likely, but inevitable, can anyone actually be charged with murder?
Re: (Score:3, Insightful)
Re:Questions: (Score:5, Insightful)
Re: (Score:2)
Re:Questions: (Score:5, Informative)
Queensland And Northern Territory Aerial Services.
Re: (Score:2)
Which raises a good point - why is Q the only character that takes up two letters to type, since you 'can't' use it without U?
You can. See above.
Re:Questions: (Score:5, Funny)
I believe it's pronounced "KROY-kee"
Re: (Score:2, Troll)
Oh yes there have.
http://en.wikipedia.org/wiki/Air_France_Flight_296 [wikipedia.org]
And don't retort with that old guff about it being the pilots fault.
Re: (Score:3, Informative)
We don't need to. The article you linked to says it was the pilot's fault. It's listed as 'Pilot error (disputed)' insofar as the pilot blamed a dodgy altimeter and some of the evidence was improperly handled, but he was still convicted of manslaughter for it.
Re: (Score:3, Interesting)
Put simply - there have been 3,572 A320s built to date and continues to be one of the fastest selling passenger jets of all time, if there was a problem with their control system then where is the evidence? Where is the lack of confidence? Where is the customer doubt?
Also, the fact that Airbus has taken on other significant Airworthiness Directives without an
Re:Questions: (Score:5, Interesting)
Why no redundancy?
Exactly my thought.
IANAE, but the Wikipedia says An ADIRU acts as a "single, fault tolerant" source for both pilots of an aircraft., and there are 3 ADIRUs.
From TFA,
faulty computer triggered a series of alarms and then prompted the Airbus A330's flight control computers to put the jet into a 197-metre nosedive.
I wonder whether the control computers are programmed to take decision to nosedive just like that OR consult other ADIRUs OR alarm the crew before taking that kind of decision.
Having worked for nuclear installations where I designed automations for, which always demanded to have 2 out of 3 voting redundancy and a careful fault tree analysis making sure no single point of failure would lead to any kind of disaster, I feel the control computer might have been taking decision without consulting other ADIRUs OR all 3 ADIRUs went bad at the same time. And both cases look very scary.
Just my thoughts.
Re: (Score:2)
> Does Qantas' aircraft maintenance suck or does Airbus' quality control suck? Do both suck?
You hear a lot about Qantas failures, almost nothing about Airbus failures, at not any more than with the other companies. Without knowing much about Qantas, I suspect the mainly use Airbus & internal QA/maint sucks.
Re: (Score:2)
Does Qantas' aircraft maintenance suck
Considering they've recently shipped it overseas where its cheaper (as opposed to being better), I wouldn't be surprised if that were the case.
I never heard about this sort of thing before Qantas moved their maintenance offshore.
Re: (Score:3, Insightful)
Does Qantas' aircraft maintenance suck or does Airbus' quality control suck? Do both suck?
Australia is big, really big. I leave Sydney heading north, watch one full length movie, have a snooze, watch another full length movie then flick over to the map and get depressed... I have watched the only two decent films on offer, am already sick of the flight to Europe but I still have not even left Aussie borders. So with that in mind, my money is on Airbus's unit testing that sucks. Qantas is more than likely just the beta tester who runs the most miles.
Re: (Score:3, Informative)
P.S. Qantas never claimed it was passenger electronics. The Australian Transport Safety Bureau (ATSB) http://www.atsb.gov.au/newsroom/2008/release/2008_43.aspx [atsb.gov.au] said that laptops could have interfered with the plane's on-board computer system... but the bureau also said in the same breath that it's too early to make that judgment. From that bland boring statement you arrive at Slashdots and dozens of other sensationlist news headlines: "Qantas Blames Wireless For Aircraft Incidents" http://mobile.slashdot.o [slashdot.org]
Re:Questions: (Score:4, Informative)
When their A320 debuted at the French airshow, the computer got very confused at take off and simply refused to allow the pilot to pull up more than 20-30 feet off the ground, causing the a/c to crash into the forest at the end of the runway.
I remember reading about that in high school. It's one of the "cautionary tales" in The Day the Phones Stopped Ringing [amazon.com]. While the computers were initially blamed, the final conclusion was human error caused by a misplaced confidence in technology. It wasn't that the computers wouldn't let them pull up. The plane was physically incapable of pulling up when the pilots tried to. The pilots were maneuvering to give the crowd a good look and they believed the computers wouldn't let them do so if the plane couldn't handle it.
Re:Questions: (Score:5, Insightful)
Re:Questions: (Score:5, Informative)
The actual story turns out to be a lot more complicated than that. There is some evidence that Airbus didn't adequately warn pilots about two known problems: refusal of the engines to accelerate upon command, and an altimeter misreading problem (see http://www.airdisaster.com/investigations/af296/af296.shtml [airdisaster.com] for info).
What actually happened (the true data from the crash) may never be known, because there was an apparent attempt by Airbus to cover up the true cause, by faking the flight recorder data (see http://www.crashdehabsheim.net/CRenglish%20phot.pdf [crashdehabsheim.net] for info). I'm not generally a conspiracy theorist, but in this case there is a LOT of evidence that Airbus and many officials hid the truth, to protect the state-run company from the proper blame.
Aside from the controversy, it is widely accepted in the aviation community (my job, by the way) that the COMPUTER was the cause of the problems, not the engines or sensors.
Since that accident, I have heard of several other Airbus accidents related to flight control computer "fly-by-wire" anomalies, and a number of pilots with whom I work refuse to fly on any Airbus aircraft for this reason. It's not the fly-by-wire thing that bothers them - it's the Airbus way of doing things.
Re:Questions: (Score:4, Informative)
Re: (Score:2)
I always prefer Airbus because they rely on computers more. Human judgement is pretty poor, for the most part. The majority of crashes are caused by mechanical and pilot errors.
Plus they're more comfortable and I just trust European engineering more...
(p.s. Parent modded 0; -1 overrated. How?)
Re:Questions: (Score:4, Funny)
Boeing a/c do have a lot of computer controls, but they can all be easily overwritten by the CO/FO flying the a/c.
That actually sounds worse, but you probably meant overridden.
No, the GP is correct and the process is called "flash and burn" :-)
well duh (Score:4, Insightful)
Re:well duh (Score:4, Insightful)
The airlines dont ban those items.
Re:well duh (Score:5, Informative)
I think you missed his point. It isn't the airlines that banned those things, it is unrelated but authoritative departments of government which did.
The blame for what you mention rest with agencies other then the airlines.
Re: (Score:2)
> It isn't the airlines that banned those things, it is unrelated but authoritative departments of government which did.
With considerable pressure of the airlines to keep cell-phones banned. Both because they want you to shell out for the in-flight system and because studies show that the majority of people would prefer not having some random guy babbling about his ulcer treatment during their flight to $expensive_location.
Maybe they should have... (Score:5, Funny)
Re: (Score:3, Funny)
...tried turning it off and then on again.
Blue Sky of Death?
I know, ouch. X/
Been there, done that (Score:5, Insightful)
put the jet into a 197-meter nosedive.
I've been in nose dives before.. it's awesome fun. Everyone is screaming and the assholes who refuse to keep their seatbelt fastened while seated quickly learn the *reason* why they request you to do this.
People pay good money for this experience [gozerog.com], and with a little malfunction or two they give it to you for free. When you throw in the fact that you could very well be experiencing the last few minutes of your short pathetic little life - you can't get a better adrenaline rush.
Re:Been there, done that (Score:5, Funny)
I was thinking the same, "that will teach them to buckle up".
I do feel bad for those buckled in who got hit by the assholes flying through the cabin though. Also for the poor smuck on the toilet.
Re:Been there, done that (Score:5, Funny)
Also for the poor smuck on the toilet.
He must have been shitting himself...
Re: (Score:3, Funny)
He must have been shitting himself...
New meaning to the term prairie doggin'
Re: (Score:2)
Dude! If only there were a "+1, Flamebait" ;-)
Re:Been there, done that (Score:5, Interesting)
Cheapest way to experience zero G? Go along to your nearest glider/sailplane club and have a trial lesson. If you ask nicely, some of instructors will give you an aerobatic flight (loops, wing-overs, stalls, but not spins).
If the cable breaks during a winch launch, at a couple of hundred feet, you go zero g in order to recover. The motto is that if the mud (on the floor) floats around your face then you got it about right, whereas if it plasters itself on the canopy then you were too enthusiastic.
Before you go solo (which you can do at age 16/15/14 depending on where you live) you have to be able to repeatedly demonstrate that you can recover from cable breaks and also from a spin started at 1000ft in which you are descending at 100ft/s.
Not an experience you will forget.
Re:Been there, done that (Score:4, Insightful)
Astronauts in orbit are falling also but yet experiencing what is commonly referred to as "zero-G".
Sorry to get in the way of your.. whatever
Re:Been there, done that (Score:4, Informative)
On what reference frame?
Re: (Score:3, Interesting)
put the jet into a 197-meter nosedive.
the assholes who refuse to keep their seatbelt fastened while seated quickly
Actually I think a lot of the people who got hurt in this case were either in or waiting for the toilet. One could ask why the toilet doesn't have seat belts and why you have to stand to queue for the loo.
Thanks, I'll pass on that flight... (Score:4, Interesting)
...until you get all the bugs worked out of those systems. And unfortunately, lessons of these kinds are often paid in tragedy. These passengers should consider themselves lucky that the pilots reacted so quickly.
Not trying to be too flippant, as I can scarcely imagine the complexity of trying to create what essentially needs to be an infallible system in such a complex problem space. As a programmer, thinking about putting my life in the hands of a computer program scares the living hell out of me. The whole issue is that computers, by and large, lack "common sense", and are prone to accept garbage input without question.
Apparently, this was caused by "a malfunctioning computer". Isn't there sort of redundancy check on anything that could cause the computer to send the plane plummeting toward the earth? One faulty computer can cause this? I'm sure the article is over-simplifying the problem, but still...
Re: (Score:3, Insightful)
Re:Thanks, I'll pass on that flight... (Score:4, Interesting)
Strictly speaking, the Ariane 5 first flight mishap was a specification bug, not a coding bug, so it depends on your definition as to whether it was really a "software" bug. (Even more strictly speaking, it was a procedures bug: they left running an inertial measurement unit that wasn't needed after launch (it provided ground reference for the nav system while on the pad). They'd done this on Ariane 4 but the 4's flight profile didn't take the unit out of limits the way 5's did.)
Thanks, I'll pass the ground... (Score:2)
"Apparently, this was caused by "a malfunctioning computer". Isn't there sort of redundancy check on anything that could cause the computer to send the plane plummeting toward the earth? One faulty computer can cause this? I'm sure the article is over-simplifying the problem, but still..."
Yes. It's called "a pilot". Under some circumstances "plummeting towards the earth" is a legitimate maneuver. Keeping it there too long isn't...unless of course you're stopping a hijacking. [wikipedia.org]
Re: (Score:2)
Pilots aren't infallible and make mistakes often enough. In other words a computer system doesn't need to be perfect to be better than what it's "replacing."
Re:Thanks, I'll pass on that flight... (Score:5, Insightful)
It's interesting the way people rationalize things isn't it?
Statistically, you are far more likely to die in a car on the way to work than you are in a commercial passenger aircraft. Statistically, the computer system in a commercial passenger aircraft is far less likely to fsck things up than a human pilot (although that's saying nothing about the _size_ of the fsckup, should one occur...)
I drive around 600km a week in my car. A lot of that is spent at 110km/hour on a freeway, and at 100km/hour along some reasonably windy and hilly roads. I often think about the ways that such an activity could end rather badly for me, but it doesn't worry me greatly.
In about a week though I'm going to be getting onto an airplane for the first time in about 28 years, and the thought of it has me a little nervous - far more so than driving a car which is, statistically speaking, far more dangerous.
A car crash here in Australia will often make the news, possibly only locally unless more than a few people lost their lives. A plane crash of any reasonable size will make the news world wide, and will probably continue to do so for weeks after the event. The Quantas Airbus 'mishap' didn't kill anyone, and the majority of the passengers have probably mostly healed whatever injuries they did sustain by now, and yet here in Australia the incident still makes the news daily. The logical part of your brain should tell you that that is a comforting thing - it's so unusual that it is still newsworthy a week later. The less logical parts of your brain though are constantly reminded that while safe, air travel is not 100% safe.
For me I think the difference is the time I will have to contemplate things should something go wrong. In a car, the time between the realization of error (mine or someone elses) and things ending badly is going to be measured in seconds. In an airplane, the time between when I realize that things are not as they should be and the time when I won't be thinking anymore could be measured in minutes. That is a pretty chilling thought for me...
Re: (Score:2)
Sometimes people rationalise things correctly. I've been in 4 car crashes in my life , 2 were my fault, 2 weren't. I'm still here uninjured to write about them. What are the chances I'd still be alive if I'd been involved in 4 plane crashes? Pretty damn close to zero I'd say.
Re:Thanks, I'll pass on that flight... (Score:5, Interesting)
In an airplane, the time between when I realize that things are not as they should be and the time when I won't be thinking anymore could be measured in minutes. That is a pretty chilling thought for me...
Don't worry! Most of the time, you never know what hit you in an airplane catastrophe. If the aircraft breaks up at 35,000 feet (as a result of a mid-air collision, fuel tank explosion, terrorist attack, etc.), you're none the wiser. You'll probably be killed by flying debris within a second, and if you survive the break-up, you'll have the oxygen boil out of your blood a few seconds after that.
Much more frequently, you'll hit a mountain while flying in zero visibility. Zero seconds to worry.
A large portion of accidents occur when the plane lands. Tail or wing strike, skidding off the runway, etc. These calamities are likely to occur even more rapidly than a car crash. You probably won't be able to complete the sentence "Oh shi----!"
Or maybe your plane is overweight and can't get enough power to take-off properly. In this case, you've got 20 seconds max to contemplate your fate. And it will probably take you 10 seconds realize that it is really happening. "Why is it taking so long to take off? Is the plane really flipping upside down? Is this REALLY happening?? Oh, oh, yes, it is..."
Being in a plane that plummets to the ground for a minute or two isn't that likely. When seated on your flight, you should really be aware that your life could be snuffed out without warning at any minute.
oblig star trek blahblah (Score:5, Funny)
Re: (Score:2)
SOOOOO.... you are saying the inertial dampeners were offline?
If the inertial dampeners were offline they'd only shake around a bit like on a bumpy road. No need for seat belts - or even seats at all for people along the back row. Which is actually quite realistic really, except the reason they wouldn't need them should be that they're splattered against the hull.
Re: (Score:2)
Yes, but that was only because Kirk told the flight computer that "everything I tell you is a lie, including this". Typical. If I ever see him boarding my plane, I'm switching to Klingon Air.
Not an isolated incident (Score:5, Informative)
Re: (Score:2, Funny)
a Malaysia Airlines Boeing 777 en-route to Kuala Lumpur from Perth experienced similar problems.
And the Qantas flight was also going to Perth? I blame all the iron ore thats still in the ground around Perth!
Re: (Score:3, Funny)
a Malaysia Airlines Boeing 777 en-route to Kuala Lumpur from Perth experienced similar problems.
And the Qantas flight was also going to Perth? I blame all the iron ore thats still in the ground around Perth!
Obviously the government should take all possible action to have it dug up and removed from the country as fast as possible. Won't somebody think of the children?
Re: (Score:2)
China's way ahead of you on that one. China for child safety!
Actually, I think it's the special transmitters we put in at Exmouth. It's part of a state government initiative, "F*** the Tourists." A definite vote getter.
Re: (Score:2, Informative)
"caused the autopilot to disconnect" (Score:2)
Let's all fly Qantas, then (Score:3, Funny)
As we all know, Qantas never crashed. Def-definitely never crashed.
Quantas' claims (Score:5, Informative)
From the summary: "not interference from passenger electronics, as Qantas had initially claimed"
Care to show me where Quantas claimed that? It seems to be all the rage to say that Quantas are shifting the blame, but so far I've seen nothing at all to indicate that was the case. What I *have* seen was a statement from Quantas saying they were investigating passenger electronics as a possible cause. Now I know it doesn't make such good news, but I'm afraid there's a world of difference between being investigating something and trying to place the blame on it. Unfortunately that's a distinction that appears to be lost on the crowd...
They did claim it... (Score:2)
"We're investigating passenger electronics as a possible cause" is just marketing speak for "While we have no idea what happened, we want you to think it was passenger electronics."
Computers never make errors (Score:2)
Errors are only made by Humans, from the design up to the operation level.
These "announcements" are made just to hide some possibly high level human error.
If a sensor is feeding wrong data it's because of either a human engineering error or because of some fault that goes undetected (by humans)!
If this had happened on final approach.. (Score:2)
.. this wouldn't have been a sidebar on page 5 of most papers. There would be 200 dead people lying in pieces near perth. Any computer malfunction which causes an aircraft to nosedive 650 feet in seconds is a VERY serious bug.
DO178B (Score:5, Informative)
Wiki link: http://en.wikipedia.org/wiki/DO-178B [wikipedia.org]
It set different standards for different types of code. The movies would be Class E, a non-critical nav system maybe C or D, FCS probably A. But even then, the code can be made modular to decrease the assurance level required. For instance, an artificial horizon needs to work, right? But you normally have more than one in a cockpit. If one goes bad, you can use the other, not catastrophic. But the key is the pilot(s) need to recognize that it's busted. What if one froze in place in flight during landing? The pilot might follow it and go ka-boom.
So by itself, an electronic artificial horizon would require level A ($$$) software so that it 'never' fails. This is very very expensive (for level A the post-compiler machine code must be analyzed for possible compiler issues, and MC/DC http://en.wikipedia.org/wiki/Modified_Condition/Decision_Coverage [wikipedia.org] coverage)
So instead, they write it to a lower level, and then create a small set of code that cross-checks everything and kills off any horizon that's malfunctioning by placing a big "X" (or whatever) on the screen instead. Lower risk and greatly reduced cost.
Re:DO178B (Score:4, Informative)
For those that are interested in coding/test methodologies, the FAA and EUROCAE jointly created a system called "DO178B/ED12b" which defined as set of software assurance guidelines for aircraft.
The important bit in that change is that they are guidelines, not standards; DO178b/ED12b is not mandatory (although compliance makes certification a whole lot easier).
Still one of the best aviation flight safety (Score:3, Insightful)
Swiss German (Score:2, Informative)
Swiss German is a spoken only language [1], the Swiss write standard German [2]. And the LHC is in French spoken part of Switzerland and therefore the official project languages for the LHC are English and French.
[1] Meaning: There are no official spelling rules and if one wants to write down Swiss German anyway one has to make up spelling on the fly.
[2] http://en.wikipedia.org/wiki/Standard_German [wikipedia.org]
Re: (Score:3, Funny)
Not likely. How did it take off in the first place?
Re: (Score:2)
This is precisely why having commercial aircraft under total computer control is a bad idea. Even though you can fly "stick" everything must first be put through the computer - which as we have just seen is not infallible.
Whereas, of course, humans are infallible. Er...
Re: (Score:3, Insightful)
That sounds unlikely to me. The autopilot is generally not engaged until a few minutes after takeoff. Even if it disengaged suddenly during a stable ascent, there is no reason for the plane to suddenly start falling out of the sky. (That would be a stall, and commercial airliners have so many stall warning devices that it requires some truly extraordinary circumstances to stall one.)
In any event, if your airliner was stalled for a good ten seconds, you would have lost several thousands of feet and would pro