View Latest Blog Entries
Close
Categories
Testing & Assessment Certification Standard & Regulation Aging Wires & Systems Maintenance & Sustainment Management Conference & Report Protection & Prevention Research Miscellaneous Arcing
Popular Tags
Visual Inspection High Voltage AS50881 MIL-HDBK MIL-HDBK-525 FAR AS4373 Maintenance Electromagnetic Interference (EMI) FAR 25.1707 Wire System Arcing Damage
All Tags in Alphabetical Order
2021 25.1701 25.1703 abrasion AC 33.4-3 AC 43 Accelerated Aging accessibility ADMT Aging Systems AIR6808 AIR7502 Aircraft Power System aircraft safety Aircraft Service Life Extension Program (SLEP) altitude arc damage Arc Damage Modeling Tool Arc Fault (AF) Arc Fault Circuit Breaker (AFCB) Arc Track Resistance Arcing Arcing Damage AS22759 AS22759/87 AS23053 AS29606 AS4373 AS4373 Method 704 AS50881 AS5692 AS6019 AS6324 AS81824 AS83519 AS85049 AS85485 AS85485 Wire Standard ASTM B355 ASTM B470 ASTM D150 ASTM D2671 ASTM D8355 ASTM D876 ASTM F2639 ASTM F2696 ASTM F2799 ASTM F3230 ASTM F3309 ATSRAC Attenuation Automated Wire Testing System (AWTS) Automotive Avionics backshell batteries bend radius Bent Pin Analysis Best of Lectromec Best Practice bonding Cable Cable Bend cable testing Carbon Nanotube (CNT) Certification cfr 25.1717 Chafing Chemical Testing Circuit Breaker circuit design Circuit Protection cleaning clearance Coaxial cable cold bend collision comparative analysis Compliance Component Selection Condition Based Maintenance Conductor Conductor Testing conductors conduit Connector Connector rating connector selection connector testing connectors contacts Corona Corrosion Corrosion Preventing Compound (CPC) corrosion prevention Cracking creepage D-sub data analysis data cables degradat Degradation Delamination Derating design safety development diagnostic Dielectric breakdown dielectric constant Dimensional Life disinfectant Distributed Power System DO-160 dry arc dynamic cut through E-CFR electric aircraft Electrical Aircraft Electrical Component Electrical Power Electrical Testing Electrified Vehicles Electromagnetic Interference (EMI) Electromagnetic Vulnerability (EMV) Electrostatic Discharge EMC EMF EN2235 EN3197 EN3475 EN6059 End of Service Life End of Year Energy Storage engines Environmental Environmental Cycling environmental stress ethernet eVTOL EWIS certification EWIS Component EWIS Design EWIS Failure EWIS sustainment EWIS Thermal Management EZAP FAA FAA AC 25.27 FAA AC 25.981-1C FAA Meeting failure conditions Failure Database Failure Modes and Effects Analysis (FMEA) FAQs FAR FAR 25.1703 FAR 25.1707 FAR 25.1709 Fault fault tree Fixturing Flammability fleet reliability Flex Testing fluid exposure Fluid Immersion Forced Hydrolysis fuel system fuel tank ignition Functional Hazard Assessment functional testing Fundamental Articles Fuse Future Tech galvanic corrosion Glycol Gold Gold plating Green Taxiing Grounding hand sanitizer handbook Harness Design harness protection hazard Hazard Analysis health monitoring heat shrink heat shrink tubing high current high Frequency high speed data cable High Voltage High Voltage Degradation HIRF History Hot Stamping Humidity Variation HV connector HV system ICAs IEC 60851 IEC60172 IEEE immersion insertion loss Inspection installation installation safety Instructions for Continued Airworthiness insulating material insulating tape Insulation insulation breakdown insulation resistance insulation testing interchangeability IPC-D-620 ISO 17025 Certified Lab ISO 9000 J1673 Kapton Laser Marking life limit life limited parts Life prediction life projection Lightning lightning protection liquid nitrogen lithium battery lunar Magnet wire maintainability Maintenance Maintenance costs Mandrel mean free path measurement mechanical stress Mechanical Testing MECSIP MIL-C-38999 MIL-C-85485 MIL-DTL-17 MIL-DTL-23053E MIL-DTL-3885G MIL-DTL-38999 MIL-E-25499 MIL-HDBK MIL-HDBK-1646 MIL-HDBK-217 MIL-HDBK-454 MIL-HDBK-516 MIL-HDBK-522 MIL-HDBK-525 MIL-HDBK-683 MIL-STD-1353 MIL-STD-1560 MIL-STD-1798 MIL-STD-464 MIL-T-7928 MIL-T-7928/5 MIL-T-81490 MIL-W-22759/87 MIL-W-5088 MIL–STD–5088 Military 5088 modeling moon MS3320 NASA NEMA27500 Nickel nickel plating No Fault Found OEM off gassing Outgassing Over current Overheating of Wire Harness Parallel Arcing part selection Partial Discharge partial discharge at altitude Performance physical hazard assessment Physical Testing polyamide polyimdie Polyimide-PTFE Power over Ethernet power system Power systems predictive maintenance Presentation Preventative Maintenance Program Probability of Failure Product Quality PTFE pull through Radiation Red Plague Corrosion Reduction of Hazardous Substances (RoHS) regulations relays Reliability Research Resistance Revision C Rewiring Project Risk Assessment S&T Meeting SAE SAE Committee Sanitizing Fluids Secondary Harness Protection separation Separation Requirements Series Arcing Service Life Extension Severe Wind and Moisture-Prone (SWAMP) Severity of Failure shelf life Shield Shielding Shrinkage signal signal cable Silver silver plated wire silver-plating skin depth skin effect Small aircraft smoke Solid State Circuit Breaker Space Certified Wires Splice standards Storage stored energy superconductor supportability Sustainment System Voltage Temperature Rating Temperature Variation Test methods Test Pricing Testing testing standard Thermal Circuit Breaker Thermal Endurance Thermal Index Thermal Runaway Thermal Shock Thermal Testing tin Tin plated conductors tin plating tin solder tin whiskering tin whiskers top 5 Transient Troubleshooting TWA800 UAVs UL94 USAF validation verification video Visual Inspection voltage voltage differential Voltage Tolerance volume resistivity vw-1 wet arc white paper whitelisting Winding wire Wire Ampacity Wire Bend Wire Certification Wire Comparison wire damage wire failure wire performance wire properties Wire System wire testing Wire Verification wiring components work unit code

ASTM F3309- A Simplified Safety Analysis for Small Aircraft

Laura Wishart Standard & Regulation

Key Takeaways
  • The ASTM F3309 provides a simplified qualitative method for the evaluation of small aircraft safety.
  • Each failure condition under evaluation must meet the minimum probability required for its level of severity.
  • Negligible and minor failure conditions only require detailed appraisals to prove the probability of failure, whereas more severe failure conditions require additional qualitative safety evaluation.

Introduction

Aircraft safety requirements vary depending on the size of the aircraft. Typically, larger aircraft have stricter requirements as a catastrophic failure in large aircraft has the potential for a much larger loss of life than that of small aircraft which hold far fewer passengers. The ASTM F3309 provides a simplified qualitative approach to evaluate the safety of small aircraft.

Safety Goals

The ASTM F3309 covers simplified qualitative assessment of the safety of small aircraft; in particular, Level 1 and Level 2 aircraft. Level 1 aircraft accommodate zero to one passengers and Level 2 aircraft accommodate two to six passengers. The primary goals are to ensure that each potential failure condition adheres to the appropriate probability and that the installation of the system under analysis does not create opportunities for additional hazards.

The following table identifies severity of failure conditions and the required minimum probability associated with each. This is the cornerstone of the ASTM F3309; all analytical methods pertain to the verification of the items in this table.

Severity of Failure Condition
Probability of Failure Condition
Design & Installation Appraisal
Qualitative Analysis

Negligible

N/A

Required

Not Required

Minor

Probable

Required

Not Required

Major

Remote

Required

Required only on Level 2 Aircraft

Hazardous

Extremely Remote

Required

Required

Catastrophic

Extremely Improbable

Required

Required

A common means of validating these criteria is a detailed FHA (Functional Hazard Assessment) (More info on this can be found in SAE ARP4761), but this article focuses primarily on the simpler means of safety analysis discussed in the ASTM F3309.

We will begin by reviewing the methods of safety analysis covered in the ASTM F3309

System Appraisals:

Qualifying small aircraft must perform both a design appraisal and an installation appraisal for approval prior to the installation of all systems and equipment.

Design Appraisal:

The ASTM F3309 identifies the design appraisal as: “a qualitative appraisal of the integrity and safety of the system design.” The appraisal should elaborate on the integrity and safety of the design under evaluation in a straightforward, easy-to-follow way, including discussion of component selection/ qualification, system independence, system separation, and redundancy. Supporting evidence for this appraisal may include system design documents such as architecture diagrams, block diagrams, and detailed FHA tables.

Installation Appraisal:

The ASTM F3309 identifies the installation appraisal as: “a qualitative appraisal of the integrity and safety of the installation.” This appraisal may include installation drawings, equipment installation requirements, and relevant analyses to support the argument of the installation’s safety. The appraisal must address potential interference with other systems during installation and maintenance as well as physical and functional separation between components. It is imperative to consider potential system failure and how it may impact the independence of nearby systems based on the means or location of installation; for instance, one must recognize the probability of an electrical arcing event causing physical or electrical damage to nearby components that may otherwise have been functionally independent.

ASTM F3309 Flowchart
The flowchart shown here is taken directly from the ASTM F3309 document and depicts the process of the safety assessment.

According to the ASTM F3309, the design and installation appraisals are sufficient analyses for the requirements of Negligible, Minor, and Major failure conditions, however this does not hold true in the case of Level 2 aircraft.

Qualitative Analysis for Failure Conditions

Hazardous and catastrophic failure conditions are the most severe conditions to consider as they have the potential to result in fatality. For each of these severe failure conditions under analysis, the method used must identify the probability of said condition to meet the respective requirements. As mentioned in the table above, hazardous failure conditions must be shown to be extremely remote and catastrophic failures must be shown to be extremely improbable. (These methods may also be applied when evaluating Major failure conditions to be remote on level 2 aircraft).

Similarity Argument:

The safety of a particular system on a small aircraft may be confirmed by a similarity argument where applicable. A similarity argument references a previously approved design/ installation and shows that the proposed design is adequately similar in regard to the safety and failure probability. If a previous similar aircraft was already shown to have a very improbable likelihood of a catastrophic failure, it can be argued that the design under analysis has that same probability.

Multiple/ Single System Failure Conditions:

For new or unique aircraft design, a similarity argument may not be applicable or available. Such circumstances call for further qualitative assessment of the systems’ potential failure conditions to ensure the safety guidelines are adhered to. There are two primary types of failure conditions assessed in this method that may cause a system’s “loss of function”.

  1. Multiple System Failure Conditions – Many systems integral to the basic function of an aircraft have redundancy, that is two or more independent systems capable of performing the same function. When evaluating the failure conditions on such systems one must prove the redundancy of the function. The individual systems of identical function must be shown to, in fact, perform identical functions in the case that one encounters a failure during operation. These systems must be shown to be both functionally and physically independent. Such independence can be shown through a common mode analysis; this analysis is used to show that the “independent” systems are truly independent – ensure they do not share any common means of failure (common power supply, ground return, etc.) and that installation or maintenance does not affect the independence of these systems.
  2. Single System Failure Conditions – If a single failure can cause the failure condition then the system should be proven to have a probability of failure equal to that of the condition under evaluation.

Catastrophic failure conditions must only be possible via a multiple system failure.

Conclusion

Though small aircraft safety requirements are more lenient than those for large passenger aircraft, it is important to identify and adhere to the appropriate safety regulations when designing and building any aircraft. For more information regarding safety assessments of your small aircraft, contact Lectromec today!

Laura Wishart

Laura Wishart

Engineer, Lectromec

Laura has been with Lectromec since 2019 and has been a key contributor on projects involving testing of EWIS/fuel system failure modes, the impact of poor installation practices on EWIS longevity, and wire/cable certification testing. Her knowledge and attention to detail ensure consistent delivery of accurate test results from Lectromec’s lab.