SAM Toolkit
The EUROCONTROL Safety Assessment Methodology (SAM) is a framework, a toolbox containing methods and techniques to carry out safety assessment of changes to the functional systems of the Air Navigation Service Providers (ANSP). It was developed in the noughties of the 21st century as means of compliance to ESSAR 4.
The objective of the methodology is to support the provision of assurance of the safety of the Air Traffic Services (ATS) provided by an ANSP. It covers the entire system/change life cycle: specification, design, implementation, integration, transfer into operation and operation and maintenance. The assessment process includes Functional Hazard Assessment (FHA), Preliminary System Safety Assessment (PSSA) and a System Safety Assessment (SSA).
SAM is organised in three levels: level 1 explains the "what", level 2 provides details on "how" to perform a safety assessment and level 3 provides real life examples from ANSPs and the industry.
Although there have been many changes in the regulatory framework in Europe and elsewhere, SAM is still relevant and can be used for risk assessment and mitigation purposes.
SAM Toolkit filters
SAM Level
SAM Step
Project Manager Profile
Project Safety Manager Profile
Safety Practitioner Profile
Showing below 30 results in range #1 to #30.
Level 1
About SAM
SAM v2-1 intro – Air navigation system safety assessment methodology
SAM v2-1 intro – Air navigation system safety assessment methodology
This document provides background information on the Safety Assessment Methodology (SAM); the reader will learn the overall purpose and scope of the SAM Methodology and will be guided through the subsequent SAM documents, structured in four different parts and on three levels of the material.
FHA
FHA v2-1 Intro – Introduction
FHA v2-1 Intro – Introduction
This document introduces the objectives of a Functional Hazard Assessment (FHA) as well as the various steps which constitute the FHA. These steps are described in subsequent documents. The main objectives of the FHA are to identify hazards, to assess the consequences of their occurrences on the safety of operations and to set- their maximum acceptable frequency of occurrence (Safety Objectives).
FHA V2-0 Chapter 1 – Initiation
FHA V2-0 Chapter 1 – Initiation
The objective of the FHA initiation step is to develop a level of understanding of the system, its operational environment and, if appropriate, its regulatory framework, sufficient to enable the safety assessment activities to be satisfactorily carried out.
FHA V2-0 Chapter 3 – Safety Objectives Specification
FHA V2-0 Chapter 3 – Safety Objectives Specification
The objectives of the FHA Safety Objectives Specifications step are the following: identification of all potential hazards associated with the system, identification of hazard effects on operations, assessment of the severity of hazard effects and specification of Safety Objectives.
FHA V2-0 Chapter 4 – Evaluation
FHA V2-0 Chapter 4 – Evaluation
The objective of the FHA Evaluation step is to demonstrate that the FHA process meets its overall objectives and requirements. The Evaluation is carried out in three stages: Verification, Validation and Process Assurance.
FHA V2-0 Chapter 5 – Completion
FHA V2-0 Chapter 5 – Completion
The objective of the FHA Completion step are the following: recording of the results after the completion of the FHA process and dissemination of these results to all interested parties.
PSSA
PSSA V2-1 INTRO – Introduction
PSSA V2-1 INTRO – Introduction
This document introduces the objectives of a Preliminary System Safety Assessment (PSSA) as well as the various steps which constitute the PSSA. These steps are described in subsequent documents. The main objective of the PSSA is to demonstrate whether the assessed system architecture can reasonably be expected to achieve the Safety Objectives specified in the FHA.
PSSA V2-0 Chapter 1 – Initiation
PSSA V2-0 Chapter 1 – Initiation
The objectives of the PSSA Initiation step are to develop a level of understanding of the system design and its rationale, to update the description of the operational environment and, when appropriate, to identify the regulatory requirements and/or standards applicable to the system design.
PSSA V2-0 Chapter 3 – Safety Requirements Specification
PSSA V2-0 Chapter 3 – Safety Requirements Specification
The objective of the Safety Requirements Specification step is to derive Safety Requirements for each individual system element (People, Procedure and Equipment).
PSSA V2-0 Chapter 4 – Evaluation
PSSA V2-0 Chapter 4 – Evaluation
The objective of the PSSA Evaluation is to demonstrate that the PSSA process meets its overall objectives and requirements. The Evaluation is carried out in three stages: Verification, Validation and Process Assurance.
PSSA V2-0 Chapter 5 – Completion
PSSA V2-0 Chapter 5 – Completion
The objectives of the PSSA Completion step are the following: recording of the results after the completion of the PSSA process and dissemination of these results to all interested parties.
SSA
SSA V2-1 INTRO – Introduction
SSA V2-1 INTRO – Introduction
This document introduces the objectives of a System Safety Assessment (SSA) as well as the various steps which constitute the SSA. These steps are described in subsequent documents. The main objectives of the SSA are to demonstrate that the system as implemented achieves an acceptable (or at least a tolerable) risk and, consequently, satisfies its Safety Objectives specified in the FHA and the system elements meet their Safety Requirements specified in the PSSA.
SSA V2-0 Chapter 1 – Initiation
SSA V2-0 Chapter 1 – Initiation
The objectives of the SSA Initiation step is to develop a level of understanding of the system development, implementation, operation, maintenance and decommissioning and its rationale, to update the description of the operational environment and to identify, when appropriate, the regulatory requirements and/or standards applicable to the system implementation, integration, transfer into operation, operation, maintenance and decommissioning.
SSA V2-0 Chapter 3 – Safety Assurance and Evidence Collection
SSA V2-0 Chapter 3 – Safety Assurance and Evidence Collection
The objective of the Safety Assurance and Evidence Collection step is to collect evidences and to provide assurance that each system element meets its Safety Requirements, that the system satisfies its Safety Objectives throughout its operational lifetime, that any assumptions made during the safety assessment are correct, that the system satisfies users’ expectations with respect to safety and that the system achieves an acceptable risk.
SSA V2-0 Chapter 4 – Evaluation
SSA V2-0 Chapter 4 – Evaluation
The objective of this SSA Evaluation step is to demonstrate that the SSA process meets its overall objectives and requirements. The Evaluation is carried out in three stages: Verification, Validation and Process Assurance.
SSA V2-0 Chapter 5 – Completion
SSA V2-0 Chapter 5 – Completion
This document’s objectives are the following: recording of the results after the completion of the SSA process and dissemination of these results to all interested parties.
Level 2
About SAM
SAM V2-1 INTRO GUIDANCE A – SAM Content
SAM V2-1 INTRO GUIDANCE A – SAM Content
This guidance material provides the up-to-date list of contents on the three levels of the material part of SAM.
SAM V2-1 INTRO GUIDANCE B – ESARR4 compliance matrix
SAM V2-1 INTRO GUIDANCE B – ESARR4 compliance matrix
This document provides a self-assessment of the compliance of SAM with ESARR4, prepared by the Authors.
FHA
FHA V2-0 Chapter 3 GUIDANCE G – Methods for setting Safety Objectives
FHA V2-0 Chapter 3 GUIDANCE G – Methods for setting Safety Objectives
This guidance material proposes methods to define the Safety Objectives, which are qualitative or quantitative statements that define the maximum frequency at which a hazard can be accepted to occur.
PSSA
PSSA V2-1 Chapter 3 GUIDANCE A – Safety Requirements
PSSA V2-1 Chapter 3 GUIDANCE A – Safety Requirements
This guidance material provides guidance on the definition, content, phrasing, criteria of eligibility of safety requirements. It also includes the process to allocate Assurance Levels (Procedure: PAL and Software: SWAL).
PART IV
PART IV V2-1 ANNEX A-B-C – Acronyms, Glossary, Initial Safety Palnning
PART IV V2-1 ANNEX A-B-C – Acronyms, Glossary, Initial Safety Palnning
This annex proposes Acronyms (Annex A), Glossary (Annex B) and Safety Planning ‘as a whole’ (i.e. including FHA, PSSA, SSA) Preliminary Guidance Material.
PART IV V2-0 ANNEX D – Safety Techniques Survey
PART IV V2-0 ANNEX D – Safety Techniques Survey
This annex provides guidance for practical and effective use of Safety Techniques and Methods to achieve some parts of SAM step. These Safety Techniques cover the overall SAM (FHA, PSSA and SSA) lifecycle.
PART IV V2-0 ANNEX D (REPORT) – Safety Techniques Survey - Report
PART IV V2-0 ANNEX D (REPORT) – Safety Techniques Survey - Report
This annex presents the main results of a survey conducted, aimed at collecting and evaluating techniques and methods that can be used to support the guidelines of the EATMP Safety Assessment Methodology.
PART IV V2-0 ANNEX D (TECHNICAL ANNEX) – Safety Techniques Survey - Technical Annex
PART IV V2-0 ANNEX D (TECHNICAL ANNEX) – Safety Techniques Survey - Technical Annex
This annex proposes the technical annex to the report presented in “Part IV Annex D (Core) – Summary of the Review of techniques to support EATMP Safety Assessment”.
PART IV V1-0 ANNEX E – Recommendations for ANS SW
This document is kept for information purpose only and has been replaced in 2009 by ED153PART IV V1-0 ANNEX E – Recommendations for ANS SW
This annex provides a reference against which stakeholders can assess their own practices for software specification, design, development, operation, maintenance and decommissioning as well as recommendations on the major processes required to provide assurance for software in Air Navigation Systems. This annex provides recommendations on the major processes required to provide the appropriate level of safety and quality assurance for software in Air Navigation Systems.
PART IV V3-0 ANNEX F – ANS Software Lifecycle
This document is kept for information purpose only and has been replaced in 2009 by ED153PART IV V3-0 ANNEX F – ANS Software Lifecycle
As a companion to Annex E, this annex defines a recommended SW lifecycle and identifies the objectives/activities/tasks required by each referred standards and describes their commonalities and differences.
PART IV V0-1 ANNEX G – Safety Assessment of ATM Procedures (SAAP)
PART IV V0-1 ANNEX G – Safety Assessment of ATM Procedures (SAAP)
This annex supplements the ANS Safety Assessment Methodology (SAM) by providing specific guidelines related to the performance of safety assessments of ATM procedures. The guidelines focus on PSSA step of the SAM and provide guidance to elaborating safety requirements and allocating the procedures assurance level (PAL).
PART IV V2-0 ANNEX G APPENDIX B – SAAP-Example
PART IV V2-0 ANNEX G APPENDIX B – SAAP-Example
This annex is part of SAAP and illustrates it with its application to Helsinki Vantaa Independent Parallel Approach procedure.
PART IV V2-0 ANNEX I CORE SCDM – Safety Case Development Manual
PART IV V2-0 ANNEX I CORE SCDM – Safety Case Development Manual
This annex provides explanations on different types of Safety Cases (Project Safety Case, Unit Safety Case and Preliminary Safety Case) and proposes a manual for their construction and development.
PART IV V3-0 ANNEX K CORE – Fault Tree Analysis
PART IV V3-0 ANNEX K CORE – Fault Tree Analysis
This document provides guidance to apply Fault Tree Analysis in the framework of the Safety Assessment Methodology (SAM), for both PSSA (Preliminary System Safety Assessment) and SSA (System Safety Assessment).
