In December of 2005, there was a breach of the dam holding back the 50-acre Tom Saulk reservoir in Missouri. This created what was called a mini-tsunami, with 17 foot waves.The proximate cause of the problem was that a simple water level gauge failed, and so the power company overfilled the dam. There were redundant systems in place to measure the water levels, but they had been bypassed, leaving a single failure mode in place.
The state public service commission investigated the accident and found that the utility's "decision to continue operating Taum Sauk after the discovery of the failure of the gauge piping anchoring system and the consequent unreliability of the piezometers upon which [its] control system was based is frankly beyond imprudent – it is reckless."
The design of safety systems for infrastructure is a science, as it is in hospitals. There is one thing common to both: If you rely on a single point of control to avoid disaster, you are likely to fail. Sometimes catastrophically.
No comments:
Post a Comment