Engineering Modeling and Design-CRC Press (1992)
Engineering Modeling and Design-CRC Press (1992)
Engineering Modeling and Design-CRC Press (1992)
series editor
A. Terry Bahill^ University of Arizona
The Art of Systems Architecting
Eberhardt Rechtin, University of Southern California
Mark Maier, University of Alabama at Huntsville
Fuzzy Rule-Based Modeling with Applications to Geophysical, Biological and
Engineering Systems
Andras Bardossy, University of Stuttgart
Lucien Duckstein, University of Arizona
Systems Engineering Planning and Enterprise Identity
Jeffrey O. Grady, JOG System Engineering
Systems Integration
Jeffrey O. Grady, JOG System Engineering
Model-Based Systems Engineering
A. Wayne Wymore, Systems Analysis and Design Systems
Linear Systems Theory
Ferenc Szidarovszky, University of Arizona
A. Terry Bahill, University of Arizona
The Road Map to Repeatable Success: Using QFD to Implement Change
Barbara A. Bicknell, Bicknell Consulting, Inc.
Kris D. Bicknell, Bicknell Consulting, Inc.
Engineering Modeling and Design
William L. Chapman, Hughes Aircraft Company
A. Terry Bahill, University of Arizona
A. Wayne Wymore, Systems Analysis and Design Systems
The Theory and Applications of Iteration Methods
loannis K. Argyros, Cameron University
Ferenc Szidarovszky, University of Arizona
Systems Engineering Guidebook: A Process for Developing Systems
and Processes
James N. Martin, Texas Instruments
Fuzzy Ride Based Computer Design
John Newport, Newport Systems Incorporated
System Validation and Verification
Jeffrey O. Grady, JOG System Engineering
System Engineering Deployment
Jeffrey O. Grady, JOG System Engineering
Systems Architecting of Organizations: Why Eagles Cant Swim
Eberhardt Rechtin, University of Southern California
Engineering
Modeling and
Design
W illiam L. Chapm an
A. T erry Bahill
A. W ayne W ym ore
CRC Press
Boca Raton London New York Washington, D.C.
Library of Congress Catalogìng-ìn-Publìcatìon Data
This book contains information obtained from authentic and highly regarded sources. Reprinted material
is quoted with permission, and sources are indicated. A wide variety of references are listed. Reasonable
efforts have been made to publish reliable data and information, but the author and the publisher cannot
assume responsibility for the validity of all materials or for the consequences of their use.
Neither this book nor any part may be reproduced or transmitted in any form or by any means, electronic
or mechanical, including photocopying, microfilming, and recording, or by any information storage or
reti'ieval system, without prior permission in writing from the publisher.
The consent of CRC Press LLC does not extend to copying for general distribution, for promotion, for
creating new works, or for resale. Specific permission must be obtained in writing from CRC Press LLC
for such copying.
Direct all inquiries to CRC Press LLC, 2000 N.W. Corporate Blvd., Boca Raton, Florida 33431.
Tradem ark Notice: Product or corporate names may be trademarks or registered trademarks, and are
used only for identification and explanation, without intent to infringe.
Preface vii
1 Systems engineering 1
5 Pinewood 83
5.1 Document 1: Problem Situation ... . 93
5.2 Document 2: Operational Need . . . . 96
5.3 Document 3: System Requirements . 106
5.4 Document 4: System Requirements Validation 128
5.5 Document 5: Concept Exploration . . . . 130
5.6 Document 6: System Functional Analysis . . . 164
5.7 Document 7: System Physical Synthesis . . . . 178
. 5.8 Round-robin schedules for a Pinewood Derby . 182
vi Contents
6 SIERRA 213
6.1 Document 1: Problem Situation . . . . . 221
6.2 Document 2: Operational Need . . . . . 225
6.3 Document 3: System Requirements . . . 230
6.4 Document 4: System Requirements Validation .. 248
6.5 Document 5: Concept Exploration . . . . . . . . . . .. 251
6.6 Document 6: System Functional Analysis . . 266
6.7 Document 7: System Physical Synthesis . . . . . . . . 286
8 Projects 335
8.1 Regular projects . . 336
8.2 Other projects . . 353
8.3 Large projects . 354
Appendix 357
Bibliography 361
Index 363
Preface
This book was written to help engineering students learn systematic princi
ples for designing systems. We think an effective approach is with case
studies; so we base the book on two, one from engineering and one from Boy
Scouting.
This book was designed to be a text for an upper-division course on
Concurrent Engineering or Total Quality Management, or a capstone Senior
Engineering Design course. However, its basic treatment of the key issues
would also make it suitable as a supplemental text for a graduate course in
Systems Engineering, or as a text for a systems engineering course for indus
try. This book has no prerequisites, although familiarity with set theoretic
notation as presented at the high school level would be helpful to the reader.
The need for prerequisite material has been minimized so that this book may
be used as a text for a first course in engineering fundamentals at schools with
exceptional students. In the last 30 years, we have found that students who
learned this material as freshmen and sophomores had an advantage over
other students throughout their academic careers. This book could be used
by students of all disciplines (e.g., engineering, business, sociology), except
for the case study in Chapter 6, which was designed for upper-division
engineering students; for this chapter, other students may need thoughtful
guidance from their instructor. At innovative institutions the text could be
used for a multi-disciplinary course in design. Most of the projects herein are
intended for teams of students; for example, one electrical engineer, one
mechanical engineer, one systems engineer, one business major, and one
psychologist comprising a multi-disciplined team would be ideal.
Designing big or complex systems requires the cooperation of many
people and usually many companies. In most big companies such design
projects are coordinated by a Systems Engineering Department. One of the
most important tasks of this department is concurrent engineering, which
requires that at the very start of the project all players (e.g., customers, sales,
marketing, human factors, purchasing, quality control, engineering, manu
facturing, maintenance, support, repair) be involved and all facets of the
system life cycle (e.g., requirements specification, testing, operation, retire
ment) be considered. Documenting the contributions of the concurrent
Vltl Preface
Concurrent Engineering, that are often used in the system design process. We
confine ourselves to tools we think will be enduring in influence or usefulness.
Because of the wide audience this book was designed to reach, a lot of the
teaching comes in the projects and homework problems. Therefore, an exten
sive instructor's manual is available from the publishers.
We thank William J. Karnavas for his elegant sensitivity analysis of our
Pinewood Derby model. This analysis helped us find and remove many
design errors.
William L. Chapman
A. Terry Bahill
A. Wayne Wymore
Tucson, Arizona
Authors
Systems engineering
The design of big or complex systems requires the cooperation of many people
and usually many companies. In most big companies, such design projects
are coordinated by the Systems Engineering Department. This department,
which has overall responsibility for ensuring that systems designed by the
company do what they were intended to do, typically includes electrical
engineers, mechanical engineers, business majors, and communications spe
cialists. The Systems Engineering Department must ensure that at the very
start of the project and throughout the entire life of the system all players (e.g.,
customers, marketing, finance, purchasing, suppliers, engineering, manufac
turing, testing, and field support) are involved and that all facets of the system
life cycle (e.g., requirements specification, concept exploration, and replace
ment) are considered. This description is often called concurrent engineering.
Systems engineering, as presented in this book, is a superset of concurrent
engineering. In this chapter we discuss systems engineering, and in Chapter
7 we will examine specijfic attributes associated with concurrent engineering.
Total quality management is an important new term in American industry.
Systems engineering, as presented in this book, is a subset of total quality
management. Some other components of total quality management are men
tioned in Chapter 7.
Systems engineering usually is one of the first courses taken by engineering
students. After learning how to design systems, they become specialists in
electrical, mechanical, or biomedical engineering. The same sequence is fol
lowed in industry and senior design courses, with systems engineering first
and electrical, mechanical, and other engineering disciplines covered later.
To understand what a Systems Engineering Departments does, we must
first define systems engineering. This is not as easy as it sounds, because
systems engineering means different things to different people. In the follow
ing paragraphs are some definitions that can be read rapidly. The differences
in detail between them are not important; their similarities should be noted.
(1) Systems Engineering is concerned with the design, modeling, and
analysis of technological systems that use people and machines, software
and hardware, material, and energy for such purposes as communication,
health care, transportation, and manufacturing. Research emphasizes tools
Chapter one: Systems engineering
engineering changes during the operation phase. Finally, they are responsible
for writing proposals and specifications during the design and replacement
phase of the system life cycle.
Many professional groups and societies are writing standards and trying
to derive a consensus on what systems engineering is and what systems
engineers do. Some of these are: IEEE Systems Engineering Industry Stan
dards Committee; IEEE Systems, Man, and Cybernetics Society; Electronic
Industry Association (EIA) G-47 Committee; National Council on Systems
Engineering (NCOSE); Worldwide International Systems Institutions Net
work (WISINET); Defense Systems Management College; U.S. Air Force
Systems Command; U.S. Air Force Aeronautical Systems Division Directorate
of Systems Engineering; and Department of Defense (DoD) Production and
Logistics Branch.
Each of these definitions highlights different aspects of systems engineer
ing. Taken as a whole, they might encompass systems engineering, but as the
definitions themselves imply, there is no unique way to do systems engineer
ing. In this book we present one generic approach. No company does it exactly
this way, but we believe that it will be easier for the reader to understand each
company's approach having first encountered this general approach.
Problems
1. Systems engineering principles illustrated in W ar and Peace.
Jaroslav Jirasec— a world renov/ned Czechoslovakian systems scientist and
co-founder of IIASA, a multinational systems science think tank in Austria—
told us that his first lecture to his Systems Science class is based on the Battle
of Borodino from Tolstoy's War and Peace.
For the first homework assignment, read the sections of War and Peace that
cover August 25 and 26,1812 (in some books they are labeled Sections 19 to
39 of Part 2 of Book III), and point out the good and bad systems engineering
principles used by the rival commanders Napoleon and Kutuzov and their
generals.
2. D efining systems engineering. Provide a consensus of the various
definitions of systems engineering that were given in this chapter.
3 . The expedient engineer. Once upon a time a mathematics student, a
physics student, and an engineering student were bragging about the quality
of their education. They decided to have a contest to determine who had been
educated the best. The mathematics student proposed a challenge. He said,
"I have been told that all odd numbers are prime. I will now use everything
my professors have taught me to evaluate the truth of this hypothesis." He
started thinking aloud like this: "1 .. .3 . . .5 . . .7 .. .9 .. .11. . .13. . .15. . .17. . .19. . .21....
Whoops! No, the hypothesis is not true, because 21 is an odd number and it is
not prime."
Next the physics student took up the gauntlet. He said, "I will now use
everything my professors have taught me to evaluate the truth of the hypothe
sis that all odd numbers are prime." He started thinking aloud like this: "1...
3 . . . 5 . . . 7 . . .9 . . .11. . . 13. . . 15. . . . 15? Well that might just be experimental error.. .17
. . . 19 . . . 21 . No, the hypothesis is not true."
Finally, the engineering student attacked the problem. He said, "I will now
use everything my professors have taught me to evaluate the truth of the
hypothesis that all odd numbers are prime." He thought aloud like this: "1...
3.. .5.. .7" and said, "Yep, it's true."
chapter two
2.1 Introduction
The design process in the United States is a creative engineering activity. That
is, however, a problem since the design itself is creative, but the process is not.
The events that must take place to ensure a successful design are not creative
because they are predictable. When the design process is changed from one
design to the next, important and necessary parts of the process may be
omitted. The result is a design that does not meet the customer's requirements.
Changes in the design after the system is in production indicate how
poorly the design was planned and executed. Failure to consider all the
requirements for producing a product, delivering it to the customer, and
maintaining it will result in many changes in the design and cause a loss of
confidence in the product by the customer. Figure 2.1 shows the trend for
design changes over the system life cycle. The curve labeled Traditional
engineering, which has higher change rates, is from the actual data of a U.S.
car company. The lower rates, shown as the curve labeled Concurrent engi
neering, are from a Japanese automobile manufacturer that is gaining market
share. A controlled design process from the outset gives the consumer a
quality product and the company increased market share and profits.
Traditional
t engineering
Number of Concurrent
design engineering
changes
Figure 2.1 Design changes as a function of time for an American and Japanese
automobile (data from the American Supplier Institute).
10 Chapter two: The system design process
Most costs associated with a product are determined early in its life cycle.
Initial system design determines 80% of the system cost. This portion of the
system can no longer be optimized with respect to cost or performance. Figure
2.2 shows that with only 20% of product development costs spent, 80% of the
total product cost has already been locked in. Any future optimization of the
product during its life will affect only the remaining 20% of the product's cost.
By spending more time and money initially in the design cycle and ensuring
that the concept selection is optimized, the company can increase the prospect
of delivering a quality product to the customer.
One of the primary tasks of the systems engineer is to ensure the optimi
zation of the design process. Systems engineering is defined as the intellec
tual, academic, and professional discipline principally concerned with ensur
ing that all requirements for a human/machine/software system are satisfied
throughout the life cycle of the system. Therefore, the responsibilities of
systems engineers for human/machine/software systems must also include
the design and analysis of such systems. By this definition, any person
responsible for documenting the requirements of a system—laying out the
initial system design and ensuring that the system will do what is intended
for as long as is needed—is performing a systems engineering function.
A system is broadly defined as any process or product that accepts inputs
and delivers outputs; commonly encountered systems are transportation,
communication, health care, food delivery, and sound (home stereo) systems.
Parts of these systems are sometimes systems in themselves, such as cars,
telephones, doctors' offices, restaurants, and loudspeakers. Transportation
system inputs include people and goods to be transported to a destination as
well as the fuel, vehicles, and other resources necessary to complete the task.
The outputs are the individuals and goods delivered to a specific destination,
wear on the vehicles, and pollution. The inputs for a car—a system within the
2.1 Introduction 11
EXHIBIT 2.1
From Gary Stix (1988) "Moon Lander," IEEE Spectrum, Vol. 25, No.
11, pp. 76-82,1988.
Figure 2.3 System design must consider the capabilities of the user. (The Far Side cartoon
by Gary Larson is reprinted by permission of Chronicle Features, San Francisco, CA.)
EXHIBIT 2.2
For further reading, see John Voelcker, Paul Wallich, and Glenn
Zorpette (1986) "Personal Computers: Lessons Learned," IEEE Spec
trum, Vol. 23, No. 5, pp. 44-75.
EXHIBIT 2.3
Human System Integration
Humans operate most manufactured systems, and if their tasks are
considered at an early stage, productivity can be greatly enhanced.
and all can influence the performance of the system. If the horses are not fed
they will not perform well; likewise, if the bettors are not comfortable they
may go home early.
Members of an engineering design team may include mechanical engi
neers, electrical engineers, manufacturing engineers, and logistics, finance.
2.2 The design process 15
EXHIBIT 2.4
For further reading, see George Field and Donald Goldsmith (1989)
The Space Telescope, Contemporary Books, Chicago, and Richard T.
Fienberg (1990) "Space Telescope; Picking Up the Pieces," Sky &
Telescope, Vol. 80, No. 4, pp. 352-358.
2.2 The design process 17
requesting the project must be notified that a system cannot be built to satisfy
the requirements. Further effort would be a waste of time and money.
Sometimes the validation can be very difficult. Meeting the cost requirement
and obtaining adequate functionality may seem possible with a new technol
ogy, but there is a risk involved in validating the requirements, which should
then be made obvious in the documentation. On the other hand, sometimes
validation is easy, it being sufficient to merely show that an existing system
meets the customer's requirements. For example, if a company decides to
enter the television market and a competitor has a product on the market that
fully satisfies the consumer, then the validation of the customer's require
ments is obvious. The company's requirements for profit or market share
must be validated on their own merits.
Once the design requirements have been detailed and validated, the
design manager will select team members to begin concept exploration. This
team should include the original team members, but this is not always
necessary or possible. A brainstorming session is an opportunity for the
creative thought process to take place, where all team members participate
and discuss ideas. No ideas should be excluded, since some of the most
outrageous ideas can become the technical breakthroughs of the future. The
systems engineer is responsible for documenting the session and ensuring
that the discussion addresses the customer's requirements. A systems engi
neer with a broad background can act as referee for the many ideas that will
be presented.
After a set amount of time, the design manager should select the most
appealing choices—as many as can be handled with the time and budget
allotted—and have the team produce trade studies. Trade studies are research
documents that compare the performance and costs of alternative designs.
Literature searches, past experience, and analyses of models can be used to
produce the trade study. Most designs require a model upon which analysis
can be focused. The analysis should include a measure of all the characteristics
the customer wants in the finished product. The concept selection will be
based on the measurements from the models.
The models are created by first partitioning each conceptual design into
functions. This decomposition often occurs at the same time major physical
components are selected. For example, the design of a new car requires either
mechanical or electronic ignition systems. These are two separate concepts.
The top level function, firing the spark plugs, is the same, but when the
physical components are considered, the functions break out differently. The
firing of the spark plugs is directed by a microprocessor in one design and a
camshaft in the other. Both perform the same function, but with different
devices. Which is superior will be determined by customer requirements such
as cost, performance, and reliability. These characteristics are measured based
on the test criteria. System analysis and trade-off studies are done by the
systems engineer. Other members of the team will help build the models
depending on the technology being used.
18 Chapter two: The system design process
the system requirements, which include function, cost, and schedule. Most
errors are caught before the design review, but many important decisions are
changed and mistakes prevented through tlie formal review process.
The system enters production after the design stage. The transition to
production is error prone. Regardless of the quality of the drawings, mistakes
in interpretation and intent will be made. Concurrent engineering requires
that the processes are designed at the same time as the product. This will limit
the number of mistakes made during the transition to production. For exam
ple, a designer may use a new plastic for a console, but manufacturing has
found this material hard to work with. Concurrent engineering would catch
EXHIBIT 2.5
seemed to be breaking down. This bad news was not passed up the
management ladder!
GE offered a five year warranty on the refrigerators, but they could
not wait five years before beginning full-scale manufacturing. Evalu
ating a five-year life span based on two months of testing is tricky, so
the original test plan was to field-test some refrigerators for two years
before full-scale manufacturing began. Pressure to stay on schedule
reduced this test time to nine months.
By the end of 1986, GE had produced over one million new compres
sors. Everyone was ecstatic over the new refrigerators; however, in
July of 1987 the first refrigerator failed. Quickly thereafter came an
avalanche of failures, and the engineers could not fix the problems.
In December of 1987, GE started buying foreign compressors for the
refrigerators. Finally, in the summer of 1988 the engineers made their
report. The two powdered-metal parts were wearing excessively,
increasing friction, burning up the oil, and causing the compressors
to fail. GE management decided to redesign the compressor without
the powdered-metal parts, and in 1989 they voluntarily replaced over
one million defective compressors.
The designers who specified powdered-metal made a mistake, but
everyone makes mistakes. Systems engineering is supposed to reveal
such problems early in the design cycle or at least in the testing phase.
This example was a failure of systems engineering.
this problem during the design phase. The traditional approach of imple
menting the manufacturing processes after the design is complete would
require a design change and a delay in implementation. The system require
ments must be strictly followed during production. If the original require
ments fully allowed for manufacturing difficulties, there should be no need
for design changes.
The systems engineer is responsible for the system test. This test verifies
that all components work when put together on the factory floor, in the field,
or at a construction site.
The systems engineer's responsibility does not end when the product or
process is in service. The operational support, maintenance, and retirement
of a product must have been planned as original requirements; however,
unforeseen events occur and enhancements are common, so it is necessary for
2.3 System design 21
2 .3 .1 S y s te m re q u ir e m e n t s
There are six categories of system requirements that the systems engineer
must specify:
1. Input/Output and Functional Requirement
2. Technology Requirement
3. Input/Output Performance Requirement
4. Utilization of Resources Requirement
5. Trade-Off Requirement
6. System Test Requirement
The Input/Output and Functional Requirement consists of definitions of
the time scale, the set of all admissible inputs over time, the set of all eligible
outputs over time, and the required functional relationship between the
inputs and the outputs. It represents what the system must do independent
of the technology.
The Technology Requirement consists principally of limitations, as speci
fied by the customer, on the technologies available to build the system. It can
list certain components or processes that shall be used or not used to solve
the problem. It may also include budgets and schedule constraints for the
design.
The Input/Output Performance Requirement specifies how well the
Input/Output and Functional Requirement is to be met. This may be ex
pressed in measurable terms called figures of merit, and for any design under
consideration it is necessary to be able to estimate or measure the values of
these figures of merit.
The Utilization of Resources Requirement specifies how well the Tech
nology Requirement is to be met. It is expressed in terms of figures of merit
also. An example of a typical measure is operating cost per year.
The Trade-Off Requirement specifies the nature of the trade-offs between
the Input/Output Performance Requirement and the Utilization of Resources
Requirement. The Trade-Off Requirement will make the actual system selec
tion based on the priorities of the customer.
The System Test Requirement specifies the methods for observing and
testing the final system that is built. The System Test Requirement includes
specifications for estimating or measuring values for all the figures of merit
defined as part of the Input/Output Performance, Utilization of Resources,
22 Chapter two: The system design process
Exhibit 2.6 and the Pinewood and SIERRA case studies for examples of these
documents.)
The Problem Situation Document is the executive summary. It explains
the overall problem, the history of the project, who the customer and design
ers are, and the plan that will be used to control the design process. This
document is written in plain language and is intended for management. It
should be continually updated.
The Operational Need Document states in plain language what the
customer expects from the new system. It is described in terms of the six
categories of requirements mentioned in Section 2.3.1. The human problem,
not the technical problem, that needs a solution is described in this document.
It is intended for management, the customer, and systems engineers. Exhibit
2.6 has a simplistic example of an Operational Need Document.
The System Requirements Document describes mathematically, or in
complete textual detail, each of the requirements addressed in the Opera
tional Need Document. Figures of merit for each requirement are stated, along
with detailed tests to measure them. The audience is systems engineers. This
document should be as long as is necessary to describe the requirements
completely. In Exhibit 2.6, Document 3 describes the technical requirements
for making a loud sound.
The System Requirements Validation Document contains an examination
of the mathematical description of the requirements presented in the System
Requirements Document to check for consistency and a demonstration that a
real world solution can be built and adequately tested to prove that it satisfies
the requirements. Identifying an existing system that satisfies all the require
ments is usually enough to complete the system validation. Risks associated
with meeting the requirements should be discussed when applicable.
2 .3 2 2 Concept developm ent phase
After validating the system requirements either by finding at least one system
concept that solves the problem or by system analysis, the next responsibility
of systems engineering is to select the best system design concept to pursue
for the design of the final system. A system design concept, in this context, is
a class of solutions that all have the same general form. Systems engineering
selects the best system design concept from all the perceived alternatives by
comparing all the alternative system design concepts with regard to the
satisfaction of system requirements. The system design concepts will guide
all future system functional analysis and physical synthesis activities. The best
system design concept is selected on the basis of the approximation, simula
tion, or measurement of the figures of merit and on a trade-off analysis.
The Concept Exploration Document identifies the best of the alternative
design concepts through the use of trade studies and modeling. For each
concept, a value for each figure of merit is approximated, simulated, or
derived from a prototype. A trade-off and sensitivity analysis is done based
24 Chapter two: The system design process
EXHIBIT 2.6
Document 7 of Exhibit 2.6 the physical elements are described for the func
tions of Document 6. It is possible to have different physical elements perform
the same function: a student could make the decision for the teacher.
To end the Concept Development Phase, systems engineering writes a
detailed set of specifications for each one of these physical elements in such
a way that hardware, software, and human factors engineers can develop a
detailed design in the Full-Scale Engineering Development Phase. The System
Physical Synthesis Document will describe the decomposition of the system
design concept into physical units and will assign the system functions to a
system physical element for implementation. Each system physical element
is described in three ways: in plain language, graphically, and in exact
mathematical detail. Interrelations among the system physical elements and
interfaces between inputs and outputs must be documented. The intended
audience of this document is systems engineering personnel.
That may be how an event is described, but it is not how one writes system
design documents, which are constantly changing and being updated. New
data is added and the old removed as the project progresses. Initially, the
Problem Situation and Operational Need Documents are created. A rough
draft of the System Requirements Document is next created and then Concept
Exploration begins, the concepts being necessary to appropriately define
system requirements in detail. For example, if a trip to Mars is a manned flight,
the human factors involved must be considered before a System Require
ments Validation can be done. The iterative approach is to rough out some
concepts, then improve the System Requirements Document and the System
Requirements Validation Document. (3nce enough detail has been put into
2.5 Summary 29
these documents, a more complete set of concepts can be derived. This does
not imply that the requirements are written with a solution in mind, but
rather, that the requirements cannot be fully detailed until a set of concepts
exists. After a set of concepts is selected, the System Functional Analysis and
Decomposition and System Physical Synthesis Documents can be started.
Often, system requirements will be modified as system functions are better
described. No systems engineer thinks of everything at the start, and bad
engineering is the result of an inflexible system design. Data from Documents
6 and 7 are fed back into Document 5 until a firm decision on the best concept
is made; then all documents are updated and completed.
2.5 Summary
The process of system design is important, requiring an orderly procedure.
There is no magic for doing it right the first time; careful consideration of the
customer's needs throughout the life cycle of the product will guarantee a
satisfied customer and a successful design.
Problems
1. D efining the customer. Assume that you have just been hired as a
teaching assistant for a college course in Numerical Methods. Before you start
lecturing, you decide to design a system for teaching and administering this
course. The set of all people who have the right or responsibility to impose
requirements on a system is the customer. Describe your customer by provid
ing information for each of the items in the portion of the Systems Engineer
ing Document 1 shown below. You are limited to one page.
Owners
Bill Payers, the Client
Users
Operators
Beneficiaries
Victims
Technical Representatives
Social Impact
Economic Impact
Environmental Impact
i. Requirements specification. Suppose your boss wants you to order
a digital clock from a company in Japan. You do not have their catalogue, so
you must describe what you want so as to obtain their most acceptable item.
Write the requirements that you intend to send them. Make sure you get it
right, because it takes a long time to receive things from Japan and it is too
expensive to clarify things on the telephone (your boss will be mad if you
30 Chapter two: The system design process
waste money). You should take no more than two pages in specifying the
following requirements:
Input/Output
Technology
Performance
Utilization of Resources
System Test
3. System life cycle-1. Assume you were hired on June 1 to teach a
two-semester course on systems engineering that would run from September
to May, Assign the seven phases of the system life cycle to the twelve months.
4. System life cycle-2. Like other terms used in this book, there is no
unique definition of the system life cycle. Ask a dozen companies and you
will get a dozen definitions. The definition will even differ for a product
design, such as a bus, versus a project design, such as a municipal bus system.
The following two life cycles come from Kerzner, 1989.
Life cycle 1
Research and development
Market introduction
Growth
Maturity
Deterioration
Death
Life cycle 2
Conceptual Phase
Definition Phase
Production Phase
Operational Phase
Divestment Phase
Which of these is for a product and which is for a project?
5. System life cycle-3. The definition of system life cycle even varies
from industry to industry. These four life cycles come from Kerzner, 1989:
Life cycle 1
Startup
Definition
Main analysis
Termination
Life cycle 2
Formation
Buildup
Production
Problems 31
Phase-out
Final audit
Life cycle 3
Conceptual
Planning
Definition and design
Implementation
Conversion
Life cycle 4
Planning and data gathering
Studies and basic engineering
Major review
Detailed engineering
Construction
Testing and commissioning
Which of these life cycles is from Construction, Manufacturing, Computer
Programming, and Engineering?
6. Concept exploration. Assume you were hired on June 1 to teach a
two-semester course in systems engineering that would run from September
to May. What concepts would you explore in the Concept Exploration Docu
ment that you would write in the Concept Development Phase of the system
life cycle?
7. System test. At the behest of the federal government, many states,
counties, and municipalities have mandated that gasoline contain ether or
alcohol to reduce carbon monoxide emissions. If you are in one of these
localities, find out what the performance requirements are (i.e., what is
supposed to be improved and by how much), and find out what system tests
were designed to verify air quality improvement. Be aware that these "oxy-
fuels" also increase formaldehyde emissions, and aldehydes are injurious to
the human respiratory system.
8. Functional decomposition. Assume that you will be teaching a
course in systems engineering this coming semester. Do a functional decom
position of your job. Consider administrative as well as academic matters.
9. Retirement and replacement. What should be done with the Hubble
Space Telescope when it reaches the end of its four year life cycle?
10. Extinguishing a candle. Write the seven systems engineering docu
ments for a system to extinguish a candle. You are limited to two pages.
11. Moving a sheet of paper. Write the seven systems engineering docu
ments for a system to move a sheet of paper (8.5 x 11 inches or 21 x 29.7 centi
meters) across the room (10 feet or 3 meters). You are limited to two pages.
32 Chapter two: The system design process
Defining the state of a system is one of the most important, and often most
difficult, tasks in system design. The state of the system is the most concise
description of its past history. The current system state and a sequence of
subsequent inputs allow computation of the future states of the system. The
state of a system contains all the information needed to calculate future
responses without reference to the history of inputs and responses. For
example, the current balance of your checking account is the state of that
system. There are many ways that it could have gotten to the current value,
but when you are ready to write a check, that history is irrelevant. The names
of the states are often described by a set of variables aptly named state
variables. For systems described by differential equations, these state vari
ables are often the independent variables of the dynamic equations. For
sequential logic circuits (computers), the state variables are the outputs of the
memory elements. During the execution of a computer program, the memory
map and program counter provide the system state. It is important to note
that the choice of state variables for a particular system is not unique— most
physical systems can be described with many different sets of state variables,
A system is typically described by a state diagram, as shown in Figure 3.1.
A circle indicates the state. The name of the state is above a line drawn in the
middle of the circle and the value of the output is below the line. There exists
a unique output for every state, but the same output can be produced from
different states. Arrows connect the circles, each representing a unique com
bination of inputs. Every state must have the same number of arrows leaving
34 Chapter three: A tool for modeling systems
it. In other words, each state must be defined so that it responds in some way
to every input defined for the system.
Example 3.2 A three-state system for a light with an on-off switch on the
wall and a turn-type switch on the lamp.
(Up,NoTurn)
3.2 System design set theory 35
There are two common types of state machines: level output (Moore)
machines, in which the outputs are associated with the states, and pulse
output (Mealy) machines, in which the outputs are associated with the
transitions between the states. The similarities and differences between these
two types of machines are presented in most books on digital logic design. In
this book, only level output machines are discussed.
A X B = { ( a 1 , b 1 ) , ( a 1 , b 2 ) , ( a 2 , b 1 ),
(a2,b2),(a3,b1),(a3,b2>>
We now define a system design notation. The form for a system model is:
w h e r e Z is th e n a m e o f th e s y s te m o r s y s te m m o d e l, a n d S Z , I Z , O Z , N Z , a n d
R Z a r e th e a r tif a c ts o f Z. T h e s e t S Z c o n ta in s all p o s s ib le s ta te s o f th e s y s te m .
36 Chapter three: A tool for modeling systems
The input set, IZ , contains all possible inputs to the systena, and the output
set, OZ, contains all possible system outputs. The next state function, NZ,
provides a mapping of a given state from S Z with an input from I Z to form
another state of S Z. Finally, R Z is the readout function, which provides a
mapping of states from S Z to outputs from 0 Z.
Example 3.3 Redefine Example 3.1 using the system design notation.
Z = (SZ, IZ, OZ, NZ, RZ)
where
SZ =
-COn, Off>,
IZ =
-CUp, Down>,
OZ =
-CLightOn, L ig ht O f f l ,
NZ =
*C((On,Up), On), ( (O n, Do wn ), Off),
(( Of f, Up ), On), ( (O ff ,D ow n) , Of f),>,
RZ = -C(On,LightOn), ( Of f , Li gh tOf f ) >
The definitions of sets S Z, I Z, and 0 Z in this example are clear, but those
for N Z and R Z are not so obvious. The first element of N Z says: If the sys
tem is in the 0 n state when the input U p is applied, then the next state of
the system will be On. The siecond element says: If the system is in the On
state when the input Down is applied, then the next state of the system will
be Off. The readout function, RZ, says: If the system is in the On state, the
output will beLightOn; but if the system is in the Off state, the output will
beLightOff.
Example 3.4 Redefine Example 3.2 using the system design notation.
Z = (SZ, IZ, OZ, NZ, RZ)
where
SZ iOn, 0ff1, 0f f2>,
IZ 11 X 12,
11 = iUp, Down>,
12 = -CTurn, N o T ur nl ,
OZ •CLightOn, L ig ht O f f l ,
NZ C((Off1,(Up,Turn)),0n),
((Offi,(Down,Turn)),0ff2),
((0ff1,(Up,NoTurn)),0ff1),
((Offi,(Down,NoTurn)),Offi),
((On,(Up,Turn)),Offi),
((On,(Down,Turn)),Offi),
3.3 Input and output trajectories 37
Most systems not only have many inputs, but also have many kinds of
inputs. For example, in a car wash system the cars coming in represent one
kind of input; electrical power and water represent two more. Each differ
ent kind of input may be designated as an "input port." In considering the
nature of system inputs, there is sometimes a question as to whether a
model should have one input port with multiple input values or multiple
input ports with fewer input values. Inputs that may occur simultaneously
must be assigned to different input ports. Inputs that have different values
and cannot occur simultaneously can be in the allowed set for one port. An
input port has a set of allowed values each of which is possible individually, but no
two can occur simultaneously. In our car wash example, the allowed values
for the input port cars might be the license plate numbers of the cars. Differ
ent input ports could have the same set of allowed values. For example, in a
bank with four tellers on duty, each of the tellers is an input port, and the
allowed input values for each port would be {money, checks, withdrawal
slips, etc.). In Example 3.4, the two input ports correspond to switches si
and s2.
Outputs have the same restrictions: An output port has a set of allowed values
each of which is possible individually, but no two can occur simultaneously. If two
outputs can occur simultaneously, then they must be values for two different
output ports.
The statements in the examples above are all that is needed to describe
the function of the models. However, to operate the model, a starting state
and series of inputs are needed. For example, the light in Example 3.4 may be
on, but the current status of the two switches is needed to determine what
will happen when one of them changes.
TZ IZ
0 1
1 0
2 3
3 2
This could be interpreted as: At opening time one person was in line. Assum
ing a time scale of hours, the next time increment represents what happens in
the first hour; in this case, no one else arrived. Between the first and second
hour, three people arrived, and between the second and third, two more
arrived. This may be written ITZ = i ( 0 , 1 ) , ( 1 , 0 ) , ( 2 , 3 ) , ( 3 , 2 ) > .
The output trajectories (OTZ) are treated similarly. Trajectories are useful in
that they are a way of describing data coming into the system model. Test
trajectories are created to determine if given input trajectories generate spe
cific output trajectories or a set of possible output trajectories.
Example 3.5 For Example 3.1, the following input trajectory f is provided:
f = •C(0, Up), ( 1, Up), (2, Down) , ( 3, Up), (4, Down) , (5, Down)>.
Assume the system starts in the O ff state. Provide the output trajectory.
OTZ(f,Off) = f(0 ,L ig h t0 ff), (1,Light0n),
(2,Light0n), (3,Light0ff),
(4,Light0n), (5,Light0ff),
( 6 , L i g h t 0 f f )>.
The notation 0 T Z ( f , 0 f f ) represents the output trajectory generated using
the input trajectory f and the starting state Of f . The new output takes effect
on the next time interval. This is a "causal" system, since the inputs caused
the outputs to occur.
11
12
Components are put together using System Coupling Recipes (SCR). The
outputs of one system become the inputs of another system by connecting the
output port of one component to the input port of another. If feedback is
needed, the output of the system is entered back into the system through
another input port. For the resultant of the SCR to be a system, it must accept
inputs and send outputs external to itself.
The resultant of a coupling is defined to be Z@. A system coupling recipe
consists of two parts in the equation Z@ = SCR(VSCR, CSCR), where VSCR is
a vector listing the systems to be connected and CSCR is the connections that
must be made.
To illustrate, we define a system with two components. The first compo
nent, Z1, is a temperature-setting control with the switch positions Off, Low,
or High. The system accepts another input for air temperature. It will output
a temperature setting associated with the inputs. The second system compo
nent, Z2, is a heater that will accept an integer temperature input between 60
and 120 °F and produce heat at that setting, but only if the setting is above
80 °F. We couple this system together so that the second output port of Z1 is
connected to the input port of Z2, as shown in Figure 3.3.
Z1 = •CS Z1 , I Z1 , 0 Z1 , NZ1 , RZ1 >
where
SZ1 = -COf f , Lo w, Hi >,
IZ1 11 Z1 X I2Z1,
I I Z1 •COf f ,Low,Hi gh>,
I 2Z1 IJSC60-1203,
0Z1 01 Z1 X 02Z1,
4 01 Z1 •COf f ,0n>,
02Z1 IJSC:60-120],
NZ1 = f(0ff,(0ff,IJSC60-1203),0ff),
(Off, (Low,IJSC60-791),Low),
(Of f , (Low,IJSC80-99]|),0f f ),
(Of f, (Low, u s e 100-1 203 ),0ff).
40 Chapter three: A tool for modeling systems
( O f f , ( H i g h , I J S C 6 0 “ 7 9 3 ) , H i ),
( O f f , ( H i g h , I J S C 8 0 - 9 9 D ) , H i ),
( O f f , ( H i g h , I J S C 1 0 0 - 1 2 0 1 ) , 0 f f ),
( L o w , ( 0 f f , I J S C 6 0 - 1 2 0 l ) , 0 f f ),
(Low,(Lo w, IJ SC6 0~ 79 !] ), Lo w),
(Low,(Low,IJSC80-99U),Low),
( L o w , ( L o w , I J S C 1 0 0 - 1 2 0 D ) , 0 f f ),
( L o w , ( H i g h , I J S C 6 0 - 1 2 0 3 ),Hi ),
( H i , ( O f f , I J S C 6 0 “ 1 2 0 3 ) , 0 f f ),
(Hi,(Low,IJSC60-793),Low),
(Hi, (Low,IJSC80-993),Low),
( H i , ( L o w , I J S C 1 0 0 - 1 2 0 3 ) , 0 f f ),
( H i , ( H i g h , I J S C 6 0 - 1 2 0 3 ) , H i )>,
RZ1 = i ( O f f , ( 0 f f , 0 ) ) , ( L o w , ( O n , 90)),
( H i , ( 0 n ,1 10 )) >.
and
Z2 = {:SZ2,IZ2,0Z2,NZ2,RZ2>
w h e re
SZ2 = IJSC60-1203,
IZ2 = IJSC60-1203,
0Z2 = IJSC60-1203,
NZ2 = -C ( (x ,y ) ,x ) : x G IZ2, y e SZ2>,
RZ2 = f ( x , x ) : X G SZ2>.
T h e n o ta tio n 1 1 Z 1 is u s e d fo r th e f irs t in p u t to c o m p o n e n t Z 1 . T h e s e c o n d
in p u t p o r t to Z 1 is 1 2 Z 1 , w h ic h is a n in te g e r (d e n o te d b y th e f u n c tio n U S )
b e tw e e n 6 0 a n d 1 2 0 .
F o r Z 2 , w e h a v e a s im p le n e x t s ta t e fu n c tio n in w h ic h th e n e x t s ta te is
b a s e d e n tir e ly o n th e in p u t ; t h a t is , if th e i n p u t is 1 0 0 , th e n n o m a t t e r w h a t
th e c u r r e n t s ta t e is, th e n e x t s ta te is 1 0 0 . T h is is d e s c r ib e d b y th e lin e N Z 2 =
f ( ( x , y ) , x ) : X G IZ2, y G S Z 2 >. In th is e x p r e s s io n , th e in p u t to th e
f u n c tio n is x , a n d it is c u r r e n tl y in s ta t e y . T h e s y m b o l G in d ic a te s th a t th e
in p u t X is a n e le m e n t o f th e in p u t s e t I Z 2 , a n d th e s ta te y is a n e le m e n t o f th e
s ta te s e t S Z 2 . T h e n e x t s ta te is x . T h is o n ly w o r k s if th e in p u t s e t is a s u b s e t
o f th e s ta te s .
In Z 2 w e h a v e s ta te r e a d o u t f o r R Z 2 ; th a t is, th e o u tp u t m a t c h e s th e s ta te
fo r a ll s ta te s . T h is is d e s c r ib e d b y th e s e t n o ta tio n f ( x , x ) : x g SZ2>,
w h ic h s a y s th a t th e o u tp u t o f th e f u n c tio n is th e s ta te .
T h e tw o s y s te m s a r e c o n n e c te d o r c o u p le d a s d e s c r ib e d b y th e fo llo w in g
s y s te m c o u p l in g re c ip e :
HS = • C ( S Z 1 , S Z 2 ) > , w h e r e H S is a f u n c tio n m a p p in g S Z 1 o n to S Z 2 .
HI = i ( I Z 1 , I Z 2 ) > , w h e r e H I is a fu n c tio n m a p p in g I Z 1 o n to IZ 2 .
HO = - C ( 0 Z 1 , 0 Z 2 ) >, w h e r e HO is a fu n c tio n m a p p in g 0 Z 1 o n to 0 Z 2 .
Homomorphisms are defined as many to one; that is, the mapping from Z1
to Z2 is not necessarily reversible from Z2 to Z1. For example, squaring the
value of the inputs, (-1, 2, -3) becomes (1, 4, 9); that is, -1 maps to 1, 2 maps
to 4, and -3 maps to 9. But the inverse mapping, using the square root func
tion, yields (1, 2,3), which is a different input set.
An isomorphic mapping is a one-to-one mapping, in which the sets are
simply renamed from one system to another.
Example 3.6 Create another input set for Example 3.4 that is isomorphic to
the original.
si
-or^ >
Power
si
F igu re 3.4 Schem atic diagram of a light system : (top) switch si is open, no current flows,
and the light is off; (bottom) switch s i is closed, current I flows, and the light is on.
01 = -CLightOn, L ig h t Of f l ,
NZ = •C((On,Up), On), ( (O n,D ow n) , Off),
(( Off,Up), On), (( Of f, Do wn ), Off),>,
RZ = -C(On,Li ghtOn) , (Of f , Li ghtOf f ) > .
HS = i(On, I fl ow in g) , (Off, I st op pe d) >,
HI = f(Up,s1 clos ed ), (D own,s2 open)>,
HO = {( Li gh tO n, L on), (L ig htOff, L off)>.
E
o>
JZ
o
Fig u re 3 .5 Relationships betw een sim ulations, m odels, and the real w orld.
see Yakowitz and Szidarovszky, 1989) such as the integration step size,
truncation errors, and the integration technique (e.g., quadrature, Adams,
Runge-Kutta); (3) implementation considerations, such as using a commer
cial simulation package that is much bigger than the model (e.g., using a
calculator to add single digit numbers so that in some situations the unused
routines could cause problems by overwriting areas of memory or forcing
pointers out of bounds); and (4) the possibility that the hardware is defective
(How often do you run the diagnostics on your personal computer?). In our
study we carefully assessed each of these to see how they would affect our
predictions about the real world.
Finally, at the extreme right of Figure 3.5 we find pure mathematicians
working in the computer world with no regard to the real world. Early studies
of fractals were performed by pure mathematicians.
For a further discussion of the philosophy and practice of modeling, see
Clements (1989), Bahill (1981), or Jeffreys and Berger (1992).
Models are especially used in system design and analysis. Conceptual
designs will change as a model is built. The problems in communications
between components, the matching of inputs and outputs, and the unambi
guous representation of states will all become clear as the model is perfected.
The analysis of the model is often cheaper and easier than using a prototype,
but the data collected from the analysis is only as good as the original model
and should be treated as such.
The modeling language introduced in this chapter is actually much more
elaborate than the usage in the examples above (see Wymore, in press), but
we have presented only enough to be able to understand the modeling used
in the Pinewood and SIERRA case studies. There is no agreed upon modeling
language. State diagrams are common, but become difficult to use when the
number of states, inputs, or outputs becomes large. Other modeling lan
guages are briefly described in Chapter 7.
One of the major aspects of dynamic modeling that is handled poorly by
state diagrams is the representation of time. Time phase diagrams are very
common in engineering applications. "What happens when?" is critical
knowledge for complex systems. The question may be answered by creating
a model using state diagrams and then varying the input trajectories, but a
visual presentation is lacking. The actual diagrams needed to represent
46 Chapter three: A tool for modeling systems
Problems
1. Set theory. These problems are intended to help familiarize you with
our set theoretic notation. Let
A = I J SC 1- 93 ,
/*The n o t a t i o n IJSC1-9!] in these h om e w o r k
p r o b l e m s means the in te ge rs 1 to 9-*/
B •Cx: X E A; X is odd>.
/★This m ean s B is the set of all x where x is an
el e me n t of the set A and x is odd.*/
C = i x : X E A; x is even>,
D = I J SC 3- 5D ,
E = ix: X E D; X is odd>-
These sets can also be defined by enumeration as follows:
Problems 47
A = {1, 2, 3, 4, 5, 6, 7, 8,9),
B= 5, 7,9),
C = { 2, 4 , 6,81,
D = { 3 , 4,51,
E = {3,51.
Find:
(i) B u C. This is called B union C.
(ii) B X D. This is the Cartesian product of sets B and D.
(hi) E n C. This is called the intersection of E and C.
(iv) A - B. This is often expressed as A n B.
(v) Deduce the possible sets X for which X n B = {).
Define F by enumeration, where F = {1 ,2)'^3; that is F = (1,2) x {1,2) x {1,2).
2. Automobile ignition circuit. Derive a state diagram for a system to
enable the ignition circuit of an automobile only if the driver first sits down
in the seat and then fastens the seat belt. Label the states with meaningful
names. State all the assumptions you make. Call this system Z 2, and specify
Z2 = (SZ2, IZ2, 0Z2, NZ2, RZ2).
t Construct a state table and derive state equations for this system. Use RS
flip-flops. You will probably have an unused state. What happens to your
system if it inadvertently gets into this unused state, either when power is
first applied or due to noise?
3. Odd parity detector. Assume that computer words are transmitted
in binary form over a wire. Draw a state diagram for a system whose output
will be 1 if, and only if, the present and previous bits showed odd parity; that
is, the output is 1 if the previous two bits were 01 or 10, and it stays at 1 until
the next bit is received. Conversely, the output is 0 if the bits were 00 or 11.
Call this system Z 3, and specify Z 3 = (SZ3, IZ3, 0Z3, NZ3, RZ3).
Describe a test for your model that would assure its correctness.
Defining inputs and states is usually the most difficult task in design
ing systems. Inputs to state rnachines should be simple. Typical inputs
are switches that can be open or closed. Inputs should not be described
as having memory. For example, if you are trying to detect the pres
ence of two consecutive I's or two consecutive O's in a communications
line, you should not describe the inputs with the phrases "present bit"
and "previous bit." Furthermore, inputs should not be described as
intelligent machines. For example, if you were to design a system for
a space shuttle launch to determine if all pre-launch operations (e.g.,
load crew, close door, load oxygen, load hydrogen, release clamps)
have been done in the correct order, then your input should not be:
X = 1 means all operations were done in correct order and
X = 0 means operations were not done in correct order.
Names of states should reflect concern for the sequence of past events.
They should not sound like combinations of present inputs. For exam
ple, for the automobile seat belt problem, "Seat Occupied and Seat Belt
Fastened" is an incorrect choice for a state name, but "Seat Occupied
then Seat Belt Fastened" might be appropriate. In general, if a state has
the same name as an input, then you have probably made a mistake.
It is acceptable for a state name to be the same as that of an output, in
which case you have merely used the state readout.
For most of our problems you may, if you wish, ignore start-up states
and assume that the system is operating in steady-state.
5. Input port structure. Draw a state diagram and deduce the input
port structure for the following system, Z5.
15 = -CSZS, IZ5, 0Z5, NZ5, RZ5>
where
SZ5 •CRed, White>,
IZ5 9
0Z5 iOn, Off>,
NZ5 f((Red, (1, 3 ) Red),
),
((Red, (1, 4 ) W),
hi te ),
((Red, (2, 3 ) Red),
),
((Red, (2, 4 ) ),W hit e) ,
( (Whi te, (1, 3)), Wh it e) ,
((Whi te. (1, 4)), R e d ),
((White, (2, 3)), White),
((White, (2, 4)), Red)>,
RZ5 = {(Red, On), (White, Off)>-
6. Three-way switches. Create a model of a household three-way
switch system in which the light is controlled by switches at each end of a
hallway. Use state readout and let the state and the output be the condition
of the bulb whether 0 n or 0 f f. Let the inputs be NCif there has been no change
in switch position, and CHif there has been a change in switch position. Call
this system Z6; specify Z6 = ( S Z 6 , I Z 6 , 0 Z 6 , NZ6, RZ6).
7. Invalid BCD digit detector. In the Binary Coded Decimal (BCD)
representation, each decimal digit is represented with four binary bits. The
numbers 0 to 9 are represented by valid four-bit BCD digits, and the numbers
10 to 15 constitute invalid BCD digits. Assume the four bits are being trans
mitted on a serial line. Draw a state diagram for a single-input, single-output
system that determines whether an invalid BCD digit has been received. If, at
the end of the BCD word (the four bits), your system determines that the BCD
digit is invalid, then its output should be 1 and remain 1 until another bit is
received. The output should be 0 at all other times. Least-significant bits of
the words appear first in time. You may ignore start-up transients; design
your system for steady-state operation. You need not minimize your system.
It will be easier if you treat the input as a sequence of words and not as a string
of bits. That is, test bits 1, 2, 3, and 4, then bits 5 ,6 ,7 , and 8; do not test bits 1,
2,3, and 4, then bits 2, 3, 4, and 5. Call this system Z7; specify 17 = (.S17 ,
IZ7^ 0 Z 7 , NZ7, RZ7). If you wanted to test your model by applying all
possible input trajectories and all reasonable initial states, how many test
trajectories would you need and how long would they have to be?
8. Input ports. How many input ports should there be in a model for
(i) a laboratory door combination lock? Typically these locks have five
buttons that can be pressed alone or in combination and a door knob.
50 Chapter three: A tool for modeling systems
(ii) a combination lock for a school locker? The lock requires you to first
turn the dial two complete turns clockwise and stop on the first
combination number, turn it one complete turn counterclockwise
and stop on the second number, and finally turn it clockwise and
stop on the final number.
(iii) a pushbutton telephone in normal operation?
(iv) a keyboard connected to an IBM-compatible personal computer?
(v) a human being?
You may give short explanations for your answers if you wish.
9. Candy machine. In the SIE geedunk machine, candy bars cost 15i
(OK, it's an old machine). The machine sorts coins into three categories:
nickels, dimes, and others. Draw a state diagram for a system that will drop
a candy bar if the customer deposits either three nickels or a nickel and a dime.
If the customer deposits foreign coins or illegal combinations (such as two
dimes), all deposited coins are returned. Describe your inputs, outputs, and
states. Label your states with meaningful names. State all assumptions that
you make. Call this system Z9; specify Z9 = (SZ9, IZ9, 0Z9, NZ9,
RZ9).
10. Telephone system. In many parts of the United States it is not
necessary to dial an initial 1 to tell the system you are placing a long distance
phone call. You merely dial the area code and the system figures it out. How
does it do this? All area codes have a 1 or a 0 as the second digit; no phone
numbers do (except for 911— emergency). Design a system that will turn on
a light after the third number if it is an area code. The light should stay on
until the customer hangs up. Describe your inputs, outputs, and states. Label
your states with meaningful names. State all assumptions that you make. Call
this system Z1 0; specify Z1 0 = (SZ10, IZ10, 0Z10, NZ10, RZ10).
11. Spelling checker. Design a system to detect spelling errors. Or more
simply, implement the spelling rule "i before e except after c." If a word
violates this rule, your system should stop processing words and turn on an
error light. When the system operator acknowledges the mistake and turns
off the error light, your system should resume processing words. For example,
the words "piece" and "receive" are correct so your system should continue
processing words. However, "yeild" and "weird" violate this rule, so your
system should stop and wait for operator action. You may assume that bizarre
sequences such as "ceie" will go undetected and that Professor Luczcn Duck-
stein will not use it. Describe your inputs, outputs, and states. Label your
states with meaningful names. Assume that the system starts in a reset state.
State all assumptions that you make. Call this system Z11 ; specify Z11 =
(SZ11, IZ11, 0Z11, NZ11, RZ11).
How can you test your system?
Problems 51
12. Combination lock. A new combination lock has recently been in
stalled on the door of our laboratory. It has five buttons that can be pressed
individually or in combination and a door knob that can be turned clockwise
only. Presume that the correct combination is to push buttons 4 and 2
simultaneously and then push button 3. Turning the door knob clockwise
opens the door and resets the lock. Make a model of this system. Describe
your inputs, outputs, and states. Draw a state diagram. Label your states with
meaningful names. State all assumptions that you make. Call this system Z1 2;
sp ecifyZ l2 = ( S Z 1 2 , I Z 1 2 , 0 Z 1 2 , NZ12, RZ12) .
Now presume that you are not allowed to push two or more buttons at the
same time and that the combination is changed to 4, then 3. Describe the
necessary changes in your system. You need not specify the new system, just
the changes. Words are sufficient.
13. Minimization. We have designed a system, Z1 3 described below, to
detect two consecutive heads in a coin flipping contest. We do not think the
system is minimal. Minimize it using any technique you wish, but explain
your work.
Definition: States are equivalent if they give exactly the same output
for each member of a set of inputs and send the system either to the
same state or to an equivalent state. Equivalent states can be combined
into one state.
52 Chapter three: A tool for modeling systems
tank.) When the running total you owe equals the amount you chose, the
computer turns off the pump. Design such a system. Describe your inputs,
outputs, and states. Draw a state diagram. Label your states with meaningful
names. State all assumptions that you make. Call this system Z1 5; specify
Z15 = (SZ15, IZ15, 0Z15, NZ15, RZ15).
16. t Homomorphic images. A single-input, single-output system,
Z1 61, is described below. It detects invalid Binary Coded Decimal (BCD)
words. At the end of each word, if the four bits constitute an invalid BCD digit
(the binary equivalents of 10 to 15) the output is a 1. Otherwise, the output is
a 0. Least significant bits of the words appear first in time. (Yes, Z1 61 is the
same as Z7 of Problem 7.) Another system, Z1 6 2, also described below, is a
homomorphic image of Z1 61. Find the mapping between these two systems.
Hint: it might help to minimize Z1 61.
Definition: Two models for the same system are called homomorphic
images. Sometimes the mapping between the two models is just a
renaming of the inputs, outputs, and states. Sometimes one of the
models is a simplification or an elaboration of the other.
(k, 0), (I, 0), (m, 0), (n, 0), (p, 0),
(q, 1)>.
and
Z162 = (SZ162, IZ162, 0Z 16 2, NZ162, RZ162)
where
SZ162 =
{A, B, C, D , E, F, G> ,
IZ162 =
iNo, Yes>,
0Z 16 2 =
iOff, 0n>,
NZ 16 2 =
<((A, No), F), ( (A, Yes), F),
((B, No), F), ( (B, Yes), F),
((C, No), A), ((C, Yes), B),
((D, No), G ) , ( (D, Yes), C),
((E, No), C), ((E, Yes), c).
((F, No), D), ((F, Yes), E),
((G, No), A), ( (G, Yes), A)>,
RZ162 = {(A, Off), (B, O n ), (C, Off), (D,
(E, Off), (F, Off) , (G, Off )>■
17. Campus phone system. We need only dial five numbers to get
someone on campus; all main campus numbers begin with a 1 and all medical
school numbers begin with a 6. To get an outside line we dial 9. To call long
distance we dial 82 unless it is inside Arizona, in which case we dial 81 instead.
Of course, 0 calls the operator. Design a system that will monitor a telephone
and turn on an error light if a mistake is made. The light should stay on until
the person hangs up. You may ignore the * and # buttons. Describe your
inputs, outputs, and states. Draw a state diagram. Label your states with
meaningful names. State all assumptions that you make. Call this system Z1 7;
specifyZ17 = ( S Z 1 7 , I Z 1 7 , 0 Z 1 7 , NZ17, RZ17) .
18. t Homomorphisms. Distinguish between a copy, an isomorphic im
age, and a homomorphic image.
19. System coupling recipes. For systems Z191 and Z192, draw (or
specify CS CR in set notation) all system coupling recipes that yield valid
systems, that is systems with at least one external input and output.
Z191 = t : S Z1 9 1 , IZ191, 0Z191, NZ191, RZ191>
where
SZ191 = CAa, Bb>,
I Z191 = < 1 , 2> X -C3, 4 > ,
0Z191 = -C4, 5 > ,
21. t System modes-2. Your boss wants to build systems Z21 2 and
Z21 3, which are described below and shown in the figure. However, you
notice that system Z 2 1 1 is right over there on the shelf, and you know that
Z 2 1 2 and Z 2 1 3 are both system modes of Z 211 (you do not have to prove
this). So, you propose to merely use Z211, controlling its initial state appro
priately to get the behavior you want, whether that be of system Z 21 2 or
Z 21 3. Did you do a good job? Do you deserve a bonus or do you deserve to
be fired? Why?
(1,3) ( 1, 3)
23. t Controllability and observability. Draw the state diagram for the
system described below. Fill in the table with yes or no answers, depending
on whether State y is reachable from State x. Let
Z23 = (SZ23, IZ23 , 0Z23 , NZ23, RZ23)
where
SZ23 = ÎA1, A2, A3>,
I1Z23 = Î6, 7>,
0Z23 = tA, 5>,
NZ23 = i((A1, 6), A2), ( (A1 , 7), A D ,
((A2, 6), A2), ((A2, 7), A D ,
((A3, 6), A3), ((A3, 7), A D > ,
RZ23 = {(A1, 4), (A2, 5), (A3, 5)>.
A1
A2
24. The wolf, goat, cabbage riddle. On the left bank of a river in the
forest there is a traveler with his large dog (which is part wolf), his goat, and
two dozen heads of cabbage. He wishes to reach a town on the right bank of
the river with all his possessions in a small boat that has a capacity for him
and only one of his charges. His task is complicated by the fact that if left alone
the wolf will eat the goat and the goat will eat the cabbage. Furthermore, he
does not want the cabbage sitting alone on the bank by the forest, because the
mice in the forest might eat it. (Attributed to Alcuin, a friend of Charlemagne.)
is wise to associate the state variables with the energy storage elements. Let
us choose the current through the inductor, k , and the voltage across the
capacitor, z;out/ as our state variables X\ and Xi, respectively. The state equa
tions become
hie ■1 ■
0
L L
x= x+
hj^
0 0
C -
and
c ^ = (0 ,1).
Any system design effort begins with the creation of requirements, which
must be stated in a clear, unambiguous way. This chapter discusses what
these requirements are and how they should be specified so that a system may
be designed to satisfy them.
EXHIBIT 4.1
a list of certain components or processes that may or may not be used to solve
the problem. It may also include budgets and schedule constraints for the
design. Those items that are available for use must be listed in complete
textual detail. For example, if all metals must conform to the American
Standards for Metals (ASM) specifications, then a reference to ASM parts is
needed. Specific design or manufacturing techniques often need be specified
as part of the technology requirements.
1. N u m b er of collisions 8 0.258
2. Trips by Train A 7 0.225
3. Trips by Train B 7 0.225
4. S purious stops by A 3 0.096
5. S purious stops by B 3 0.096
6. A vailability 2' 0.064
7. Reliability 1 0.032
68 Chapter four: Specifying system design requirements
where
Lower = lower threshold of the figure of merit.
Baseline = baseline value of the figure of merit.
Slope = slope of the curve at the baseline value,
FigureMerit = value of the figure of merit measured during testing or
analysis, and
Power = 2 Slope * (Baseline + FigureMerit- 2 * Lower).
The monotonie increasing function of Figure 4.2a has the following four
ranges:
1. For FigureMerit values less than the lower threshold. Score = 0.
2. For values of FigureMerit between the lower threshold and the base
line value:
3. For values of FigureMerit between the baseline value and the upper
thresholds:
of merit are multiplied by the sealed score and summed to give the overall
Input/Output Performance Index.
More complex methods for comparing systems exist, such as multi-objec
tive analysis. These are beyond the scope of this text, but many good books
are available on the subject. See, for example, Szidarovsky, Gershun, and
Duckstein (1986).
where
n = number of Input/Output Performance Figures of Merit,
m = number of Utilization of Resources Figures of Merit,
IFOPl = overall Input/Output Performance Requirement score,
IFwPl = n^^ Input/Output Performance Requirement score,
IWwPl = weight of the n^^ Input/Output Performance Figure of Merit,
UFOPl = overall Utilization of Resources Requirement score,
UFmPl = Utilization of Resources Requirement score.
4.2 The system design problem 71
1. N u m b er of collisions 0 1 0.258
2. Trips by Train A 8 0.917 0.225
?. Trips b y Train B 8 0.917 0.225
4. S purious stop s by A 0 1 0.096
5. S pu rious stops by B 0 1 0.096
6. A vailability 1 1 0.064
7. Reliability 1 1 0.032
1. N u m b er of collisions 0 1 0.258
2. Trips by Train A 9 0.961 0.225
3. Trips by Train B 10 0.982 0.225
4. S purious stops by A 0 1 0.096
5. S pu rious stops by B 0 1 0.096
6. A vailability 1 1 0.064
7. Reliability 1 1 0.032
Figu re 4.3 Tests m u st be designed to en su re that system s perform correctly. (The Far
Side cartoon by G ary Larson is reprinted by perm ission of C hronicle Featu res, San
Fran cisco, C A .
Example 4.1
An inventor in New Mexico developed glasses for blind people. These glasses
used sonar technology to beep when objects got close. All who tested the
product were ecstatic, but lawyers strongly recommended that the product
not be built because of future liability considerations—if a person wearing
the glasses were to get in an accident, the inventor would undoubtedly be
liable by government law. The project was dropped without further consid
eration.
Example 4.2
A thermocouple does not produce a linear signal over all temperature ranges.
An inexpensive thermocouple may be linear only from 20 to 40 °C, but a more
expensive device may be linear from 0 to 100 °C. Assume that a system re
quires a device to function from 10 to 50 °C. In this case, the system require
ment is the functional temperature range. The technology requirements are
the two available thermocouples. The solution is to either use the more
expensive device or possibly adjust the system's function to work with the
nonlinear extreme ranges of the cheaper thermocouple. The trade-off between
these two options would be determined based on all the factors affecting
Input/Output Performance Requirements and the Utilization Of Resource
Requirements.
Example 4.3
This is a classic case of the "Voice of the Engineer" driving the system design
rather than "Voice of the Customer."
Example 4.4
In the early 1980s, the Ford Motor company did not believe there was a quality
difference between their cars and foreign imports. To disprove the growing
reports of quality problems by the public. Ford obtained the maintenance
76 Chapter four: Specifying system design requirements
records of rental car companies. Much to their surprise, the rental agencies
were spending twice as much time maintaining U.S. made cars compared to
the imports. This benchmark created a major change at Ford that now has it
the leading American auto maker in terms of quality.
4.4 Summary
Requirements definition is a critical step in the design process. Requirements
that are defined completely and unambiguously in terms the designers un
derstand will result in a system that will satisfy the customer.
The next two chapters are case studies, the first of a Pinewood Derby and
the second of a train controller. By following these case studies, one will gain
a much clearer understanding of the requirements definition and the use of
modeling tools.
Problems
1. Systems engineering. Explain the major difference between systems
engineering and applied mathematics, applied probability, applied statistics,
management, operations research, computer science, human factors engi
neering, software engineering, electrical engineering, mechanical engineer
ing, manufacturing engineering, and "just good engineering."
2. Scoring functions. In the Pinewood Derby documentation (Chap
ter 5), the bell-shaped scoring function of Figure 4.2c was used for the figure
of merit for the cost of the new components to be purchased. Why do you
think this was done? After all, isn't the cheapest alternative always the best?
3. Matching functions. Sometimes we cannot make a neat description
of the desired input/output behavior, as we have done so far in this book. In
these cases, we need a new tool. With it we describe all possible input
trajectories, all possible output trajectories, and a matching function that says
which output trajectories are acceptable for each input trajectory.
The figure shows an input trajectory and six possible output trajectories for
an automobile windshield wiper system. The input trajectory shows that the
switch is on for a while, then off for a while, then on again. The first output
trajectory shows that the wiper is stationary. The second output trajectory
shows that after receipt of the off input, the wiper stops at its first return to
the zero position. In the third output trajectory, after receiving the off input,
the wiper completes one more full cycle before coming to rest at zero. In the
fourth output trajectory, upon receipt of the off input, the wiper simply stops
wherever it is. In the fifth output trajectory, after receiving the off input, the
wiper makes a quick return to zero. In the sixth output trajectory, the wiper
Problems 77
Off--
90®
90 ®
Time
g3
90 ® •
0® ^A A A A AA.
Time
g4
90 ®
90 ®
0® \ / \ / ^ _______ / X / :
Time
Time
never stops. Write a matching function that pairs the input trajectory to the
output trajectories that you think are acceptable. [Based on Wymore (1976).]
Suppose your customer now introduces a new input/output requirement:
The wiper frequency must be greater than one cycle per second. What is your
new matching function?
4. Input/Output Requirem ents-l. Define an Input/Output Require
ment for a system that accepts integers as inputs and produces a real number
output that is the average of the last three inputs. Ignore startup transients
(i.e., f = 0 ,1 ,2 ).
78 Chapter four: Specifying system design requirements
life, and deterioration from rain, salt, and termites. How wide is the
river?
G: About 30 meters.
E: How much water flows in the river?
G: Well, none from October to June, but in half the days of July and
August it gets one meter.. .sometimes we see two meters. In Septem
ber, the average is about 15 centimeters.
E: So, when it rains south of Tucson, there will be water in the river.
Otherwise, it is dry?
G: Yes
E: Who uses this road?
G: December to March, hundreds of tourists use it daily. Throughout
the year, dozens of Indians use it daily to get from their homes near
the mission to their Bureau of Indian Affairs Medical Facility.
E: If there were no bridge, what would be their alternative?
G: A 6 kilometer detour.
E : Is it needed by emergency vehicles such as fire trucks or ambulances?
G: No.
Assume that you are going to do the systems engineering for this project.
Write the requirements for this system. At the least, you should specify the
Deficiency and the following requirements: Ihput/Output, Technology, Per
formance, Utilization of Resources, and System Test. List at least ten candidate
systems that you think should be considered. Do not restrict yourself to
bridges—often the customers do not know what they want. As with all real
world problems, if you do not have data, guess. Your answer should not take
more than two pages.
9. Trade study. A primitive digital computer system has three opera
tions that must be completed in a certain order. For example, if we wish to
add two numbers, we can
move Xi to DO
add X2 to DO
move DO to memory
This system should receive a completion pulse from each subcycle and a check
pulse, K, when the major cycle is complete. None of these pulses will occur
simultaneously. After the third pulse is received, your system should output
a 0 if the pulses occurred in the correct order, or a 1 if they were in an incorrect
order. This output will remain until the K pulse resets the system to a state
80 Chapter four: Specifying system design requirements
where it is ready to begin another cycle. Each completion signal will occur
exactly once in each major cycle. The K check pulse will not occur until after
three pulses on A, B, and C have occurred.
Let the Input/Output Requirement, 10 R 8, be defined as follows:
f2 = S T E P ( C N S ( B ) , 1, CN S( A) , 2, CNS(C), 3,
C N S ( K ) , 4) , (B , A, c. K)*/
f3 = S T E P ( C N S ( A ) , CN S( C) , 2 , CNS(B), 3,
CNS(K), 4) , (A , c. B, K)*/
0R8 = iO, 1>,
fl
0
c
B
A
Time
gi2
0 -O
4
="Tlme
Problems 81
Find four alternative designs that satisfy the requirements, or in other words,
draw state diagrams, specify the systems (i.e., state SZ, IZ, OZ, NZ, and RZ),
and specify the system coupling recipes (if necessary) for four systems that
satisfy the above input/output requirements.
For the four systems you just designed, assume that our Input/Output
Functional Performance figure of merit for the systems that satisfy I 0R8
determines that outputs of 1 are expensive and are to be minimized. Which
of your designs is best? Assume that the most common input sequence is (A,
B, C, K) and that it occurs 90% of the time. Each of the other two input
82 Chapter four: Specifying system design requirements
Pinewood
Contents
!
5 .1 .1 T h e top lev el s y s te m f u n c t i o n
The top level system function is to conduct a cub scout Pinewood Derby that
maximizes scout enjoyment and minimizes hard feelings.
5 .1 .2 H is t o r y o f th e p ro b lem a n d th e p r e s e n t sy s te m
Since the 1950s, over 80 million cub scouts have built cars and raced them in
Pinewood Derbies. Pack 212 in Tucson, Arizona, has conducted derbies since
1977. Problems that have developed in past Pinewood Derbies include:
1. scouts and parents wasting large amounts of time,
2. irate parents,
3. questions about the fairness of races,
4. other people touching the scouts' cars,
5. adverse weather conditions,
6. scouts unable to tell which cars were called to race or in which lane
the cars were to run,
7. scouts unable to tell which cars won, and
8. scouts unable to figure out which cars were winning the derby.
The cub scouts build cars from a Pinewood Derby Kit to prescribed
requirements. Systems engineers will design a derby to alleviate the existing
adverse factors. This project is known as Pinewood.
5 .1 .3 T h e cu sto m er
5.1.3.1 Owners
The system will be owned by Cub Scout Pack 212, Catalina Council, Boy
Scouts of America.
5.1.3.2 Bill payers: The client
The budget for the system will be provided by Dr. A. Terry Bahill.
5.1.3.3 Users
The system will be used by the cub scouts of Pack 212, their parents, and the
Pinewood Derby Committee.
94 Chapter five: Pinewood
5 .1 3 A Operators
The system will be operated by the members of the Pinewood Derby Com
mittee (judges, inspectors, track managers, etc.) of Pack 212.
5 .1 .3 .5 Beneficiaries »
The cub scouts, their parents, the organizers, and spectators are the benefici
aries of the system.
5 .1 .3 .6 Victim s
Those who might feel the system adversely affected them are
1. those cub scouts who lose,
2. cub scouts whose cars are broken,
3. disgruntled parents,
4. those who must clean up the area after the event, and
5. committee members who take verbal abuse from irate parents.
5 .1 .5 .2 Econom ic impact
The new system will improve the utilization of the economic resources.
Though the new system might not require more resources than existing
systems, it may cost up to $300 more.
5 .1 .5 .3 Environm ental impact
The local environment may be affected by debris from the crowd or by
graphite deposits left by the scouts (the scouts use graphite during the races).
This will have to be cleaned up following the event. The Pinewood Derby
Committee or maintenance personnel will restore the environment to an
acceptable state. Other potential problems are noise and parking congestion
during the event.
5 .1 .5 .4 Interoperability
The system must be compatible with the environment and the established
components of the derby, such as the pinewood cars and the racing track.
Furthermore, the system must be in compliance with existing Boy Scouts of
America Pinewood Derby specifications.
5 .2 .1 D e fic ie n c y
In the past, the emphasis for this derby was placed on winning, rather than
racing. Also, hard feelings were created by wasted time and what the parents
and the scouts perceived to be incorrect or unfair judging. The new system
will change the emphasis to racing, reduce the number of irate parents, and
increase the number of happy kids.
5 .2 .2 I n p u t / O u t p u t a n d F u n c t io n a l R e q u ir e m e n t
5.2.2.1 T im escale
The system will use a time scale with a resolution of tenths of milliseconds.
The life expectancy of the system will be six hours.
5.2.2.2 Inputs
The system has eight inputs:
1. name of the owner of the current Pinewood Derby car entering the
system,
2. division the owner is in,
3. den the owner is a member of,
4. car's speed ability.
5 .2 Document 2: Operational Need 97
5 .2 .2 .S In p u t trajectories
The system input trajectories will be restricted to the order of divisional
racing: Webelos, Bears, Wolves, Tiger Cubs, and Family.
5 .2 .2 .4 O utputs
The outputs of the system are indicators of:
1. the first, second, and third place finisher of each race,
2. the name, division, and den of the first, second, and third place
finishers in each division event,
3. the first, second, and third place winners of the Pack Championship
and the Family car races and the winner of the Classy Chassis Com
petition for each division,
4. the first, second, and third place winners of each den and a list of the
other den entrants,
5. scouts who are either happy or not,
6. parents who are either irate or not, and
7. qualifying or disqualifying of cars.
98 Chapter five: Pinewood
5 2 2 .5 O u tp u t trajectories
The output trajectories shall be restricted as follows:
1. The determination of the division winners will precede the Pack
Championship race, and the Family car category will conclude the
derby events.
2. No race can end in a tie.
3 . The final Classy Chassis determinations will occur after all the events
are completed.
5 .2 .2 .6 M a tch in g function
The required matching between input trajectories and output trajectories are
as follows:
1. The Webelos winner will be a car from the Webelos car division.
2. The Bears winner will be a car from the Bears car division.
3. The Wolves winner will be a car from the Wolves car division.
4. The Tiger Cubs winner will be a car from the Tiger Cubs division.
5. One Classy Chassis winner will be selected from the Family cars and
one will also be selected from the Webelo, Bear, and Wolf division
nominees.
6 . The Pack Champions will be from the Webelos, Bears, or Wolves
division.
7. The Family cars winner will be from the Family car division.
EXHIBIT 5.1
Typical Pinewood Derby Rules
Cars must be built using an Official Cub Scout Pinewood Derby Kit;
however, weights, paint, decals, decoration, and graphite may be
added. Other wheels or axles are not permitted, as we do not want
the scouts to buy expensive components. The cars should be built by
the scouts using commonly available tools. Thus, wheels may be
sanded smooth, as described in the Pinewood Derby Kit, but they
may not be turned on a lathe to produce knife edges. Likewise, axles
may be smoothed, but they cannot be plated. All parts of the car must
be firmly attached. The car must have proper clearance underneath;
weights may not be hung under the car. Nothing can project beyond
the front of the car. All cars must be built in the year of the derby. The
100 Chapter five: Pinewood
2. Number of Ties: The total number of times that races had to be rerun
in the entire derby because of ties. An upper limit of 15 ties has been
set with a baseline value of 0.5. This requirement was set by Systems
Engineering.
3. Happiness: The happiness of the scouts and parents resulting from the
derby. This is a combination of the following seven measures:
3.1. Percent Happy Scouts: The percentage of scouts that leave the
race with a generally happy feeling. A happy feeling may be the
result of a child having a good race, having a good rapport with
other scouts and parents, or a combination of these factors. It
should be maximized to meet the top level system function. The
upper limit is 100%, and 95% is the baseline. This requirement
was suggested by Sales and Marketing and the customer.
3.2. Number Irate Parents: The total number of parents that are dis
satisfied with the judging of the races or any other aspect of the
race. The upper limit is 10 and the baseline value is 1. These
102 Chapter five: Pinewood
Notice how we have grouped related subitems together into one fig
ure of merit, Happiness. It is important to group related items so
that individual items do not gain too much importance. We try to keep
the number of items at any level between 3 and 7, so comparisons
can be made easily.
5 2 .7 S y s te m T e s t R e q u ir e m e n t
The data and specifications were provided by Dr. Bahill and Bill Karnavas.
Below are listed some things we actually do for each derby we run
but that were omitted from this documentation either because we
forgot to include it or because we thought it would needlessly com
plicate the documentation.
(1) Find out how many scouts are in each division. Obtain historical
data for time per race for each division, as shown in Exhibit 5.2.
Produce a timetable to minimize wasted time. With electronic timing,
we found that we could schedule a race every 45 seconds. Races
can be run even faster for older kids and adults. Also, later races
can be run faster because the track needs no further adjustment and
because the parents have learned their Jobs. Small races, with 12
5 .2 Document 2: Operational Need 105
EXHIBIT 5.2
Statistical Summary of the 1991 Pack 212 Pinewood Derby
W ebelos 23 62 48 35 0.73
Bears 16 84 36 23 0.64
W olves 10 77 24 15 0.63
Tiger Cubs 7 87 18 10 0.56
Pack
Cham pionship 9 18 10 0.56
Fam ily Cars 10 24 15 0.63
Totals 66 168
This time scale does not presuppose that electronic timing will be
used. It was chosen to be fast enough to work with all alternatives.
Slower models would certainly be valid.
.5 .3 .2 .2 In p u ts
IR PO represents the set of system inputs for Pinewood. There are four input
ports:
5 .3 Document 3: System Requirements 107
w h e r e I R 1 PO is a s e t o f s e ts o f all p o s s ib le c a r e n trie s a n d is b r o k e n d o w n a s
fo llo w s :
Owner = i W o r d s (A I p h a u ) >
Den = -CWordsCALphau)}
D i v i si o n = -CVIebelos, Bear s, Wo lves, Tiger Cubs,
Family>
Speed = I JS C1- 10 0D
C h a r a c t e r i s t i c = CPass, Fail>
Speed is a relative measure used for simulation. We do not know how
fast the cars are, but they enter the system with some inherent speed capabil
ity. Likewise, C h a r a c t e r i s t i c represents the car's ability to ultimately
Pass or Fai I the inspection. This part of the modeling is simplistic, since
we are not interested in an in-depth model of this portion of the system.
IR 2 PO is the time of day provided to the system.
IR2P0 = IJSCO, 2 1 6 0 0 0 00 00 3-
IR 3 PO is the scheduled judging times.
IR3P0 = {D iv is io n, Time>
where
D i v i si o n = CWeb el os , Bears,. Wo lves, Tiger Cubs,
Family>
Time = IJSCO-2160000003-
I R 4 P O is th e s c h e d u le d r a c in g o r d e r .
5 .3 .2 .4 O utputs
0 RPO represents the system outputs for Pinewood.
ORPO = 0R 1P 0 X 0R 2P 0
where 0 R1 PO is a set of sets of cars as follows:
0R 1P 0 = Gars GOwner, Den, Di vi si on , Time in ,
Place, Event, Qual, Scout,
Pa re nt >
where
Ow ner = G W o r d s (A I p h a u )>
Den = G W o r d s ( A l p h a u ) >
D i vi s i o n = G Web el os , Bear s, Wolves, Tiger Gubs,
Family}
T i me i n = I J S C O - 2 16 0 0 0 0 0 0 D ,
Place = GFirst, Seco nd , Third, Null>
5 .3 Document 3: System Requirements 109
5 .3 2 .5 O u tp u t trajectories
0 T R P 0 is th e s e t o f a ll o u tp u t tr a je c to r ie s fo r P in e w o o d . 0 T R P 0 is th e s e t o f
all p o s s ib le o u tp u t s ( 0 R PO) o v e r th e tim e s c a le (T R PO). F o r m a lly ,
OTRP O = Cf: f G F N S ( T R P 0 , 0 R P 0 ) , and
for t G TRPO and
for 0R 1P0 = ( q 1 , q 2 , q 3 , q 4 , q 5 , q 6 , q 7 , q 8 ,
q9),
if q3 = W eb e l o s then t1 = t;
else if q3 = Bears then t2 = t;
else if q3 = Wo lv es then t3 = t;
else if q3 = Tiger Cubs then t4 = t;
else if q3 = Family then t5 = t; and
t1 < t2 < t3 < t4 < t5>
where q3 represents the third element of the output set OR 1 PO, which is the
racing division, and 1 1 is the time when the Webelos race begins.
5 .3 .2 .6 M a tch in g function
M R PO is th e m a tc h in g fu n c tio n f o r P in e w o o d .
Section 5.3.3 is very similar to Section 5.2.3. For material for which
mathematical models are not appropriate, the sections of Docu
ments 2 and 3 will be similar, but we do not eliminate one or the
other because each document must be self-contained.
5 .3 .3 .1 Available m oney
Dr. Bahill says that $200 in out-of-pocket expenses is not an unreasonable
amount to spend. Gym rentals will cost approximately $25 to $100. If the Pack
cannot afford this cost by the time of the event, then the race must be held
elsewhere, possibly outside in someone's yard.
5 .3 .3 .2 Available time
Though the time spent by Dr. Bahill and Bill Karnavas is a resource that
should not be squandered, their time before, during, and after the derby is
considered free.
5 .3 .3 .3 Available com ponents
The following components are available:
1. an IBM AT computer,
2. timing equipment and software,
3. a stopwatch,
4. committee personnel and other volunteers,
5. the three-lane racetrack,
6. awards and prizes,
7. weighing scales and rulers,
8. tables and chairs, as necessary, and
9. other materials that can be obtained "off-the-shelf," as needed and
permitted by budget.
5 .3 Document 3: System Requirements 111
5 .3 .3 A Available techniques
Preferred racing techniques include:
1. single-elimination,
2. double-elimination, and
3. round-robin formats with the following scoring techniques:
3.1. meantimes,
3.2. fastest times, and
3.3. point assignments.
Candidate timing techniques include:
1. optical sensors,
2. bar code readers,
3. mechanical switches, and
4. human observation.
5 .3 .3 .5 R equired interfaces
The proposed system is required to interface with Pack 212's existing three-
lane racetrack and derby car sizes.
5 .3 .3 .6 F o rm , fit, and other restrictions
These considerations include the size of the existing racetrack and the space
needed to house all the participants in the event along with all inspection and
timing stations. Estimated minimum floor space is 1500 square feet. The event
should be held indoors to prevent adverse effects from the weather; other
wise, arrangements for holding the event in good weather should be made.
Baseline IBIPO = 4
2. Number of Ties
Slope 1SL2P0 = -2
3. Happiness
S lo p e IS L 3P 0 = 2
Baseline IB3.1P0 = 90
Baseline IB3.2P0 = 1
Slope ISL3.2P0 = -1
Baseline IB3.3P0 = 1
S lo p e I S L 3 .3 P 0 = - 1
5 .3 Document 3: System Requirements 115
Baseline IB3.4P0 = 2
Baseline IB3.5P0 = 2
Slope ISL3.5P0 = -2
Baseline IB3.6P0 = 3
S lo p e I S L 3 .6 P 0 = - 3
SO = Odsai auipseg
ñmiqvip'g *s
T 90 0
Z = Odi^lSI adois
SO = Odtai auipseg
£ Z T
e- =odzeisi adois
01 = OdZ'SHim piogsajgx aaddn
Z = Odzsai auipseg
0 = O dZ SH ni pioqsaagx
5 .3 .4 3 W eighting criteria
The following importance values, on a scale from 1 to 10, were assigned to
each performance figure of merit. The resultant weight, IWiPO, was computed
by summing all the importance values and dividing each entry by this total.
Notice the grouping of the subitems under Happiness. The net result
of this is the significant reduction in importance of these factors. The
total score that can be achieved by Happiness is 1.0 times the
weight. Each item under this heading is weighted so that the category
Happiness achieves a score of 1.0 when all those items are at their
optimum value. Grouping is necessary to make sense of many re
lated items and can keep them from becoming too important, but its
limitations must be recognized.
Baseline UBIPO = 40
Optimum UOPT2PO = 50
Slope UUSL3P0 = -1
Baseline UB4P0 = 1
Slope USL4P0 = -1
5. Number of Adults
Baseline UB5P0 = 5
5 3 .5 .3 W eighting criteria
The following importance values, on a scale from 1 to 10, were assigned to
each Utilization of Resources Figure of Merit. Each resultant weight, UWiPO,
was computed by summing all the importance values and dividing each entry
by this total.
5 .3 .6 T ra d e -O ff R e q u ir e m e n t
where TWIPO is the weight of the Overall I/O Performance Index and TW2P0
is the weight of the overall Utilization of Resources Index. IFXOPO(FSD)
indicates the overall score for the feasible I/O Performance Requirement.
UFXOPO indicates the overall score for the feasible U/R Requirement.
For our initial design we will use the following weights:
TWIPO = 0.9
TW2P0 = 0.1
5 .3 .7 S y s te m T e s t R e q u ir e m e n t
5 3 .7 .1 Test plan
5.3.7.1.1 Explanation of test plan. The test plan will be based on data
submitted for simulation before an actual system is developed. Since there is
no time or money for an actual system test before deployment, we will base
our selection on the results of our simulation using the test trajectories. The
test trajectories are based on actual data collected during the 1991 Pinewood
Derby.
The system will be acceptable if
1. all requirements from this document are satisfied,
2. the system allows for adverse weather conditions,
3. no more than 1500 square feet are used,
4. the system is completed by the first Sunday in February, and
5. restroom facilities are available for participants.
The system will be in compliance if the upper and lower bounds set for
each figure of merit are met.
The figures of merit are measured as described under each test trajectory
for each of the tests where appropriate. The results are summed and entered
in concept selection data sheets.
These are the product failure modes:
1. Electrical failure (if the final system uses electricity) including
1.1. total loss of electric power and
1.2. computer failure (if the final system uses computers).
2. Adverse weather conditions preventing the Derby from being com
pleted.
3. Mistakes in judging race finishes or recording results.
4. Human mistakes in
4.1. weighing the cars.
122 Chapter five: Pinewood
The Grand Marshall will determine if any of these product failure modes are
entered during the Derby.
53.7.1.2 Test Trajectory 1. Test Trajectory 1 will determine the system
performance through the use of the data for 23 cub scouts from each division.
The actual data from the 1991 Pinewood Derby, shown in Exhibit 5.3, will be
used as input trajectories in a computer simulation to estimate racing results.
5.3.7.1.3 Test Trajectory 2. Test Trajectory 2 will determine if the race
judging components are fair. Several cars with similar speeds will be used.
Dr. Bahill and Bill Karnavas will be the judges. Forty-six races will be run (in
round-robin format with 23 entries), and in each a winner or a tie is declared.
Ties will be counted and used as a performance figure of merit.
1. Average Races per Car: This will be calculated by dividing the sum of
the number of races for each car by the total number of cars that raced
based on Test Trajectories 1 and 2.
2. Number of Ties: The number of ties are observed during the event
either visually (human) or automatically (computer sensing device)
based on Test Trajectory 2.
3. Happiness: This is a computed measure based on Figures of Merit
5.3.1 through 5.3.7.
3.1. Percent Happy Scouts: This figure of merit is calculated by divid
ing the number of happy scouts leaving the event by the total
number of scouts attending. A happy scout is defined as one that
leaves the event looking happy, contented, or pleased. Since this
determination is subjective, the final decision will be made by the
Race Marshall. It will be based partly on the results of Test
Trajectory 1.
3.2. Number Irate Parents: This figure of merit will be determined by
the committee volunteers during the event. An irate parent is
defined as one that disputes the result of a race or some other
judging decision or who makes rude or inappropriate remarks
to judges. It will be based on the results of Test Trajectories 1 and
2. Since this is subjective, the final output will be decided by
Grand Marshall.
5 .3 Document 3: System Requirements 123
EXHIBIT 5.3
1 1 1 A 2.5813 First
1 1 2 B 2.6603 Third
1 1 3 C 2.6200 Second
1 2 1 D 2.5779 First
1 2 2 E Did not Finish
1 2 3 F 2.7185 Second
1 3 1 G 2.6301 First
1 3 2 H 2.7010 Second
1 3 3 I 3.3249 Third
1 4 1 ] 2.6370 First
1 4 2 K 2.8017 Second
1 4 3 L 2.8209 Third
1 5 1 M 2.9979 Third
1 5 2 N 2.6052 First
1 5 3 O 2.6454 Second
1 6 1 P 2.8248 Third
1 6 2 Q 2.5749 First
1 6 3 R 2.6750 Second
1 7 1 S 2.5837 First
1 7 2 T 2.5898 Second
1 7 3 U 2.6382 Third
1 8 1 V 3.0123 Second
1 8 2 w 2.7434 First
2 1 1 L 2.8310 Second
2 1 2 P 2.9599 Third
2 1 3 F 2.7036 First
2 2 1 B 2.6450 Second
2 2 2 M 3.2100 Third
2 2 3 Q 2.5768 First
2 3 1 H 2.7083 Second
2 3 2 W 2.7709 Third
2 3 3 A 2.5892 First
2 4 1 T 2.5720 First
2 4 2 C 2.6224 Second
2 4 3 V 2.8033 Third
2 5 1 s 2.5739 First
2 5 2 D 2.6139 Second
2 5 3 I 2.9690 Third
2 6 1 E 2.5982 First
2 6 2 N 2.6105 Second
124 Chapter five: Pinewood
2 6 3 G 2.6037 First
2 7 1 J 2.7318 Third
2 7 2 U 2.6614 Second
2 7 3 R 2.6370 Second
2 8 1 K 2.7612 Third
2 8 2 O 2.5880 First
3 1 1 L 2.9174 Second
3 1 2 G 2.6172 First
3 1 3 W 2.7918 Third
3 2 1 N 2.6160 Second
3 2 2 Q 2.5635 First
3 2 3 M 3.0267 Third
3 3 1 J 2.7044 Second
3 3 ' 2 H 2.6813 First
3 3 3 A 2.5632 First
3 4 1 F 2.6709 Second
3 4 • 2 I 2.9112 Third
3 4 3 R 2.6446 Second
3 5 1 S 2.6641 Third
3 5 2 B 2.6279 First
3 5 3 C 2.5735 First
3 6 1 O 2.6450 Second
3 6 2 P 2.8474 Third
3 6 3 K 2.7667 Third
3 7 1 T 2.6426 Second
3 7 2 D 2.5989 First
3 7 3 E 2.5822 First
3 8 1 U 2.6755 Second
3 8 2 V 2.8769 Third
4 1 1 N 2.6405 First
4 1 2 S 2.6503 Second
4 1 3 P 2.8917 Third
4 2 1 F 2.6738 Second
4 2 2 B 2.6522 First
4 2 3 W 2.7659 Third
4 3 1 Q 2.5961 First
4 3 2 O 2.6072 Second
4 3 3 G 2.6481 Third
4 4 1 J 2.7152 Third
4 4 2 R 2.6936 Second
4 4 3 T 2.6397 First
4 5 1 U 2.6858 First
4 5 2 H 3.1447 Second
4 5 3 V 2.8496 Third
4 6 1 A 2.6222 First
4 6 2 D 2.6275 Second
5 .3 Document 3: System Requirements 125
4 6 3 I 2.9596 Third
4 7 1 L 2.9526 Third
4 7 2 C 2.6647 First
4 7 3 E 2.5839 First
4 8 1 M 3.2985 Third
4 8 2 K 2.7837 Second
5 1 1 W 2.7738 Third
5 1 2 C 2.6280 Second
5 1 3 E 2.5887 First
5 2 1 F 2.6618 Second
5 2 2 Q 2.6184 First
5 2 3 J 2.7273 Third
5 3 1 U 2.6384 First
5 3 2 P 2.9492 Third
5 3 3 B 2.6701 Second
5 4 1 I 2.9798 Second
5 4 2 K 2.7707 First
5 4 3 D 2.5896 First
5 5 1 G 2.6432 Second
5 5 2 M 3.0676 Third
5 5 3 T 2.5643 First
5 6 1 A 2.5925 Second
5 6 2 L 2.8194 Third
5 6 3 H 2.8914 Third
5 7 1 R 2.6579 Second
5 7 2 N 2.6097 First
5 7 3 O 2.5995 First
5 8 1 V 2.8129 Third
5 8 2 s 2.6071 Second
6 1 1 K 2.7295 Second
6 1 2 U 2.6894 First
6 1 3 W 2.8001 Third
6 2 1 L 2.9437 Second
6 2 2 V 2.8436 First
6 2 3 M 2.9730 Third
6 3 1 N 2.6021 Second
6 3 2 A 2.5825 First
6 3 3 B 2.6655 Second
6 4 1 D 2.6212 First
6 4 2 J 2.6748 Third
6 4 3 O 2.6255 Second
6 5 1 F 2.7286 Third
6 5 2 T 2.6215 First
6 5 3 C 2.6036 First
6 6 1 G 2.6718 Third
6 6 2 R 2.6418 Second
126 Chapter five: Pinewood
6 3 P 2.9009 Third
7 1 H 2.7924 Second
7 2 E 2.5737 First
7 3 Q 2.5610 First
8 1 I 2.9521 Third
8 2 S 2.5989 Second
We had only 600 square feet of space to run the races last year; crowd
control was a problem. More room would help the scouts to see the races
and prevent confusion and damage to their cars. We need parking space
for at least 30 automobiles.
Bleachers would enable everyone to see the races.
An upper limit of six hours for the entire derby is reasonable.
We think 50 linear feet of storage space is optimal for cars between races.
A major disappointment for a scout is when his car does not make it to
the bottom of the track because of design flaws. Other boys laugh and
his feelings get hurt. We don't know what can be done to avoid this.
5 .4 .1 I n p u t /o u t p u t a n d f u n c t io n a l d e s ig n
After examining the required inputs and outputs for the Pinewood Derby, it
is obvious to us that all of the requirements had been satisfied (although not
optimized) in prior years. All of the information needed for this examination
was easily obtained. Therefore, we are satisfied that the system's inputs and
outputs are feasible.
5.4 Document 4: System Requirements Validation 129
5 .4 .2 T e c h n o lo g y fo r th e b u ild a b le s y s te m d e s ig n
5 .4 .3 I n p u t /O u t p u t P e r fo r m a n c e R e q u ir e m e n t
All the requirements in this category have been satisfied in past derbys. The
most restrictive is the limiting of the number of ties to an upper threshold of
five. That number is based on 23 entries in the event. Two closely matched
cars may present a problem if the judging resolution is poor. Available
technology includes computerized monitoring of the finish line. This will
provide a resolution of 0.0001 second, which is accurate enough to prevent
ties. Therefore, this requirement can be met.
5 .4 .4 U tiliza tio n o f R e s o u rc e s R e q u ir e m e n t
The requirements of this section also have been met in prior derbys. The most
restrictive requirement is the upper limit of $300 on acquisition cost. The
timing mechanism needed to ensure that only few ties occur could be expen
sive, but we have found that using a borrowed computer for processing and
purchasing switches for installation at the bottom of the track can be done for
less than $300.
5 .4 .5 Test R e q u ir e m e n t
The median time might be better than the mean time because some
times a race can be a disaster, with the car falling off the track or a
very slow finish of three to four times the car's average time. This
5 .5 Document 5: Concept Exploration 131
kind of poor finish very heavily influences the average timer putting
such a contestant essentially out of the running. The median is also
easier to calculate than the mean.
The seven concepts above are not independent concepts. They pro
vide alternatives for two independent subproblems—five alternatives
for the racing format and two alternatives forjudging technique. One
alternative must be selected from each category. In general, some
system designs will list only one subproblem and others will list
many.
are used to compute the overall figures of merit for each design, where m is
the number of I/O Performance Figures of Merit and n is the number of
resource figures of merit, and
ISFIPO = ISlPOdFXlPO(FSDO)
USFIPO = US1P0(UFX1P0(FSD0)
IFOPO(FSDl) = 0.6 5 6
U / R FIG U R ES O F M ERIT
UFOPO(FSDl) = 0.786
5 .5 Document 5: Concept Exploration 135
IFOPO(FSDl) = 0 .637
U / R n C U R E S O F M ERIT
UFOPO(FSDl) = 0.786
136 Chapter five: Pinewood
IF0P0(FSD 2) = 0.669
U / R FIG U R ES O F M ERIT
IF0P0(FSD 2) = 0.648
U / R R G U R E S O F MERIT
UF0P0(FSD2) = 0.656
138 Chapter five: Pineivood
IF0P0(FSD 2) = 0 .628
U / R H G U R ES O F M ERIT
UF0P0(FSD2) = 0.842
5 .5 Document 5: Concept Exploration 139
IF0P0(FSD 3) = 0.852
U / R n C U R E S O F M ERIT
UF0P0(FSD3) = 0.577
140 Chapter five: Pinewood
IF0P0(FSD 3) = 0.852
U / R FIG U R ES O F M ERIT
UF0P0(FSD3) = 0.577
5.5 Document 5: Concept Exploration 141
IF0P0(FSD 4) = 0.864
U / R n C U R E S O F M ERIT
UF0P0(FSD4) = 0.577
142 Chapter five: Pinewood
IF0P0(FSD 4) = 0.864
U / R n C U R E S O F M ERIT
UF0P0(FSD4) = 0.577
5 .5 Document 5: Concept Exploration 143
IF0P0(FSD 4) = 0.847
U / R n C U R E S O F M ERIT
IF0P0(FSD 5) = 0.798
U / R R G U R E S O F MERIT
UFOPO(FSDS) = 0.577
5 .5 Document 5: Concept Exploration 145
IF0P0(FSD 5) = 0.824
U / R H G U R ES O F M ERIT
UF0P0(FSD5) = 0.577
146 Chapter five: Pinewood
IF0P0(FSD 5) = 0.804
U / R H G U R E S O F M ERIT
UF0P0(FSD5) = 0.615
5 .5 Document 5: Concept Exploration 147
For the tables for Concepts 6 and 7, we inserted zeros for the Average
Races per Car figure of merit because this figure of merit had no
direct relationship with the judging technique. Perhaps we should
have also done this for other figures of merit, such as Number of
Broken Cars and Number of Lane Repeats. We should have done a
betterJob in defining the figures of merit, identifying some for choos
ing the racing format and others for selecting the Judging technique.
IF0P0(FSD 6) = 0.601
U / R H G U R E S O F M ERIT
UF0P0(FSD6) = 0.798
5 .5 Document 5: Concept Exploration 149
IF0P0(FSD 6) = 0.528
U / R n C U R E S O F M ERIT
UF0P0(FSD6) = 0.767
150 Chapter five: Pinewood
IF0P0(FSD 6) = 0.541
U / R H G U R E S O F M ERIT
UF0P0(FSD6) = 0.761
5,5 Document 5: Concept Exploration 151
IF0P0(FSD 7) = 0.725
U / R n C U R E S O F M ERIT
IF0P0(FSD 7) = 0.831
U /'R n C U R E S O F M ERIT
UF0P0(FSD7) = 0.586
5 .5 Document 5: Concept Exploration 153
IF0P0(FSD 7) = 0.798
U / R R G U R E S O F M ERIT
UF0P0(FSD7) = 0.611
154 Chapter five: Pinewood
IF0P0(FSD 7) = 0 .946
U / R FIG U R ES O F M ERIT
U F0P 0(FS D 7) = 0 .7 6 7
5 .5 Document 5: Concept Exploration 155
EXHIBIT 5.4
Statistical Race Data
S tandard
C ar A v erag e D eviation
A 2.5885 0.0194
B 2 .6534 0.0158
C 2 .6187 0.0300
D 2.6048 0.0193
E 2.5853 0.0090
F 2.6930 0.0278
G 2.6 3 5 7 0.0241
H 2.8200 0.1773
I 3.0161 0.1531
J 2.6984 0.0363
K 2 .7689 0.0241
L 2.8808 0.0637
M 3.0956 0.1300
N 2.6140 0.0138
O 2.6184 0.0241
P 2 .8 9 5 7 0.0536
Q 2.5818 0.0218
R 2.6583 0.0221
S 2.6130 0.0364
T 2.6050 0.0343
U 2 .6593 0.0236
V 2.8664 0.0762
W 2.7743 0.0200
t EXHIBIT 5.5
Estimate of Lane Bias
The data were the results from races in the Webelos division. The data
from another race (Bears division) showed similar results. Therefore,
it was decided to include the lane bias as a percent increase over the
true time of the car.
A confidence interval can be computed based on these measure
ments. The computations are shown below.
2.7203 - ^
-1.96 < — — 7 7 = < 1.96 = 0.95
0.1436/ - ^ ■
The 95% confidence interval for the total of all lanes is then
t M aterial in this exhibit is based on tools not presented in the text. It m ay be skipped without
loss of continuity.
160 Chapter five: Pinewood
The system is sensitive to the trade-off weightings. For example, changing the
weights of the Trade-Off Requirement can easily sway the answer. The
current trade-off puts heavy emphasis on the I/O performance of the system
(0.90) and not on the utilization of resources (0.10). Changing the degree of
emphasis can change the results, as summarized below using a 0.50/0.50
weighting and then a 0.30/0.70 weighting.
2 0.735 2 0.778
4 0.712 4 0.658
5 0.709 5 0.672
6 0.651 6 0.695
7 0.704 7 0.667
If this was increased from 0.1 to 0.3, Concept 3 (round robin, mean
time) would be preferable to Concept 4 (round robin, best time).
This sensitivity study shows our design is insensitive to variations in
almost all of the parameters. It is a robust design. We are pleased
with this result
3. Bar code readers. Paper bar codes could be glued to the bottom of each
car, and bar code readers could be installed under the track at the
finish line. This technique would not only tell which lane won, but
also which car was in that lane. Merely stating that Lane 1 won could
produce mistakes if, as often happens. Car A was supposed to be in
Lane 1, but Car B was actually put there. The bar code readers we used
cost $1000, and one would be needed for each lane. This alternative
was considered too expensive.
4. Optical sensors. We used optical sensors mounted in the track at the
start and finish lines to determine the winner of each race. The optical
sensors were attached to electronic stop watches that were accurate to
0.01 second. We found that this was not more accurate than human
judges. This system worked until the temperature dropped 30 °F, and
the batteries lost their ability to deliver power. It has been said that
such systems give false results in the presence of flash photography,
although we did not experience this problem.
5. Mechanical switches. We installed mechanical switches in each lane at
the start and finish lines. The disadvantages of such switches are that
they bounce, and sometimes they fail to make good contact. However,
we found ways to overcome these problems. The advantage of this
mechanical switch timing system was that we could buy a complete
system for $150. The mechanical switches were connected to an IBM-
compatible personal computer. The system was accurate to 0.0001 sec
ond. We had no ties using this system. The computer was also used
for scheduling and analyzing results.
For simplicity in the rest of this case study, the selection of the judging
technique (Concepts 6 and 7) will not be considered a part of the system we
are designing. We will only consider the consequences of 0.01-second and
0.0001-second resolutions.
164 Chapter five: Pinewood
Pinewood
EXHIBIT 5.6
Single-Elimination Tournament: 23 Cars (A Through W)
1 A B C
2 D E F
3 G H I
4 j K L
5 M N O
6 P Q R
7 S T u
8 V W
9 FI F2 F3
10 F4 F5 F6
11 F7 F8
12 F9 FIO F ll 1st is first place
Note: FI means the first place finisher of the first race; F2 means the
first place finisher of the second race; and so on.
3. Third place awarded to the car that crosses the finish line last.
4. A tie occurs if the first and second cars finish at the same time.
5. A nil occurs if the car does not cross the finish line.
The Judging component outputs the cars to the Impound area if there was
no tie. If there was a tie, the cars are sent back to Racing component, and a
judging flag is set to -1. If no judging is occurring, the flag is 0. If a valid race
has occurred, then the judging flag is set to 1. The results of the race for each
car are sent to the Results component.
5.6.12.5 Subfunction 5. Subfunction 5 is the Results function. The re
sults of each race are sent here from the Judging component. Race results are
tallied per race. Results of every race are output to outside of the system (the
spectators and scouts), showing the current place of each car.
In this particular example, the five sub functions coincide with the five
physical components of the system. This is not always the case; for
example, a computer may handle hundreds of different functions on
one processor.
5 .6 Document 6: System Functional Analysis 167
5.6.13.1 Terminology
Z1* = (SZ1*, IZ1', 0Z1', NZ1*, RZ1')
where
Z1 * = model of the Results component of the system,
S Z 1 * = states of the s y s t e m ,
IZ 1 * = inputs to the system,
0 Z1 ' = outputs of the system,
NZ1 * = next state function, and
RZ1 * = readout function.
5.6.13.2 States
SZ1* = iWait,Fix$cheduLe#ijk,TaLLy#ijkp1p2p3>
This lists all the states where Uis the index number; i j k represents the valid
car names in Lanes 1, 2, and 3, respectively; and p 1 p 2 p 3 are the places for
Lanes 1,2, and 3, respectively.
5.6.1.3.3 Inputs
I Z 1 ' = 11Z1 • X I2Z1*
1 1 Z1 • where
= {#,i. j , k , p l a c e l , p l a c e 2 , p l a c e 3 >
u = IJSCO ,391 /*the sc he du le i n d e x * /
i = ALPHA / * vali d car label i n
lane 1★/
j = ALPHA / *v al id car label i n
lane 2*/
k = ALPHA / * v al id car label i n
lane 3*/
placel = {1 S t , 2 n d , 3 r d , Ni l>
/ ★ f in is h place for car i ★/
place2 = {1 S t , 2 n d , 3 r d , Ni l>
/ ★f in is h place for car j ★/
pl ace3 = { 1 s t , 2 n d , 3 r d , Ni l>
/★fi ni sh place for car k*/
I2Z1* = {(index,Lane1,lane2,lane3)^num>
/★this r e p r e s e n t s the sc he du le in*/
/★the form of Ex hibit 5.6. The*/
/ ★v a r i a b l e num re pr es en ts the*/
/★le ng th of the s c h ed ul e* /
5.6.1.3.4 Outputs
0 Z 1 ' = 01Z1 ' X 0 2 Z 1 * X 03Z1 '
01Z1* = { i n d e x , i , j , k , p l a c e 1 , p l a c e 2 , p l a c e 3 >
168 Chapter five: Pinewood
5 .6 .2 S y s te m fu n c t io n a l a n a ly sis o f C o n c e p t 2
EXHIBIT 5.7
1 A B C
2. D E F
3 G H I
4 j K L
5 M N O
6 P Q R
7 S T U
8 V W
9 FI F2 F3
10 F4 F5 F6 0 losses, 2nd race
11 F7 F8 0 losses, 2nd race
12 SI S2 T7 1 loss, 2nd race
13 S3 S4 T6 1 loss, 2nd race
14 S5 T4 T3 1 loss, 2nd race
15 S6 S7 T5 1 loss, 2nd race
16 S8 T2 T1 1 loss, 2nd race
17 S9 TIO S ll 1 loss, 3rd race
18 SIO T9 F12 1 loss, 3rd race
19 F13 F14 1 loss, 3rd race
20 F16 FI 5 1 loss, 3rd race
21 F9 FIO F ll 0 losses, 3rd race, 1st is winner
22 S21 FI 7 F18 1 loss, 4th race
23 T21 F19 F20 1 loss, 4th race
24 F22 F23 1st is second, 2nd is third
Note: FI is the first place finisher of the first race, F2 is the first place
finisher of the second race, and so on. SI is the second place finisher
of the first race, and T1 is the third place finisher of the first race.
5.62.3.1 Terminology
Z2* = (SZ2*, IZ2', 0Z2', NZ 2 ' , RZ2' )
where
Z2 * = model of the Racing component of Concept 2,
S Z2 • = states of the system,
IZ 2 ' = inputs to the system.
170 Chapter five: Pinewood
5 .6 .3 S y s te m fu n c t io n a l a n a ly sis o f C o n c e p t 3
5.6.3.3.1 Terminology
Z3* = (SZ3', IZ3', 0Z3*, NZ3*, RZ3*)
where
Z3 * = model of the Racing system,
S Z3 * = states of the system,
IZ 3 * = inputs to the system,
0 Z3 * = outputs of the system,
N Z3 * = next state function, and
R Z3 * = readout function.
5.6.3.3.2 States
SZ3* = • C Wa it , F i x S c h e d u L e # i j k , T a l L y # i j k p 1 p 2 p 3 >
5.Ó.3.3.3 Inputs
IZ3* = I1Z3' X I2Z3' X I3Z3'
I1Z3* = i i , j , k , p L a c e l , p I ace2,pI ace3> where
U = IJSC0,39I1 /*the sc he du le index*/
i = AL PH A / * va li d car label in lane 1*/
3 = AL PHA /* va li d car label in lane 2*/
k = AL PHA / * va li d car label in lane 3*/
5 .6 Document 6: System Functional Analysis 171
EXHIBIT 5.8
Part of a Tally Sheet
Webelos
Pack 212 Pinew ood D erby Tally Sheet
Round N um ber
Car Den Division
Label Scout's N am e Den 1 2 3 4 5 6 Result W inners W inners
DD
EE
FF
GG
HH
JJ
pLacel = IJSCO,INFINITY)
/ ★ f in is h place for car i*/
place2 = I J S C O , I N F I N I T Y )
/ ★f in is h place for car } * /
plac es = I J S C O , I N F I N I T Y )
/★ fi ni sh place for car k * /
I2Z3' = •((index,Iane1,lane2,lane3)'^num>
/★this r e p r e s e n t s the s ch ed ul e i n * /
/★the form of Exhibit 5-6. T h e * /
/ ★v a r ia b l e num re pr es en ts t h e * /
/★length of the sc he du le ^/
172 Chapter five: Pinewood
5 .6 3 3 .4 Outputs
0 1 5 ' = 01Z3* X 02Z3' X 03Z3*
01Z3' = -Ci ndex, i , 3 , k, p Ia ce1 ,p Ia ce2, p La ce3>
/*This r e p r e s e n t s the Tally sheet*/
/*as shown in Exhibit 5.8*/
02Z3' = I J S C 1 , IN FI NI TY ) /*This is the*/
/ * s c h e d u l e index numb er */
0 3 Z 3 ’ = ■C (i nd ex ,l an e1 ,l an e2 ,l an e3 )^ nu m>
/*This r e p r e s e n t s the new sc he du le */
/*in the form of those shown in*/
/ * Se ct io n 5.8. The v a r ia bl e num*/
/ * r e p r e s e n t s the length of the*/
/ * s c h e d u l e -*/
5 .6 .4 S y s te m fu n c t io n a l a n a ly s is o f C o n c e p t 4
5 .6 .4 2 Subfunction decomposition
The functional decomposition is the same as Concept 3 except for the Results
subfunction. For this concept, the best time in each race is calculated and
stored in the Results component. The result of each race is as provided by the
Judging component. The division winners are those having the best time in
all the races.
5.6.4.3.1 Terminology
Z4* = ( S Z4 , IZ4*, 0Z4 NZ4V RZ4* )
where
Z4 •= model of the system,
S Z4 *= states of the system,
IZ 4 *= inputs to the system,
0 Z4 *= outputs of the system,
NZ4 *= next state function, and
RZ4 *= readout function.
Z4 ' is identical to Z3 * except for the scoring method used.
5 .6 .5 S y s te m fu n c t io n a l a n a ly sis o f C o n c e p t 5
5 .6 .5 .2 Subfunction decomposition
where
Z5 ' = model of the Racing com ponent,
S Z 5 * = s ta te s o f th e s y s te m ,
IZ 5 * = inputs to the system,
0 Z5 * = outputs of the system,
NZ 5 ’ = next state function, and
RZ 5 * = readout function.
System Z5 ' is identical to system Z3 ' except for the scoring method.
5 .6 .6 S y s te m fu n c t io n a l a n a ly sis o f C o n c e p t 6
5 . 6 .6 2 Subfunction decomposition
The system decomposition is the same for this model as that for Concept 1,
except for the Judging component. The judges will decide which car has won
only when the difference in their finish times is greater than 0.01 s. Otherwise,
a tie will be declared.
5.6.6.3.1 Terminology
16' = (SZ6', IZ6', 0Z6', NZ6 ' , RZ6' )
where
Z6 * = model of the Judging system ,
S Z6 ' = states of the system,
IZ 6 * = inputs to the system,
0 Z6 * = outputs of the system,
NZ6 * = next state function, and
RZ6 ' = readout function.
5.6.6.3.2 States
SI 6' = ÍStart,Lane1First,Lane2First,Lane3First,
Lane123ijk,Lane132ijk,Lane213ijk,
Lane231ijk,Lane312ijk,Lane321ijk,Tie>
where i j k represents the valid names of cars in lanes 1,2, and 3, respectively.
5.6.6.3.3 Inputs
IZ6* = i(car,t)^3> / *w her e car is any vali d* /
/*name of a car in the*/
/ * de rb y or is Nil, and t is*/
/*the time the car reac he d* /
/*the finish line*/
5.6.Ó.3.4 Outputs
0 1 6 ' = 01Z6' X 02Z6'
01Z6' = icar s^ 3> /* wh er e cars r ep r e s e n t s any*/
/* va li d name of a car in*/
/*the derby, or is Nil*/
02Z6* = { - 1 , 0 , 1> /* wh er e -1 re pr es en ts a*/
/*tie, 0 is no race, and 1*/
/*is a v ali d race*/
03Z6* = { ( c a r , p l a c e ) ^ 3 > /* where car is a*/
/ * va li d car entry and place*/
/*is First, Second, T hir d, */
/*Tie, or Nil*/
176 Chapter five: Pinewood
where resolve = 0.01 for human judges, and i j k corresponds to pi 1, p21, and
p31, respectively.
where w e I e t( ( p 1 1 , p 1 2 ) , ( p 2 1 , p 2 2 ) , ( p 31 , p 3 2 ) ) = IZ6*.
178 Chapter five: Pinewood
5 .6 .7 S y s te m fu n c t io n a l a n a ly sis o f C o n c e p t 7
5 .7 .1 P h y s ic a l s y n th e s is o f C o n c e p t 1
5 .7 .1 .2 S u b u n it physical synthesis
5.7.1.2.1 Subunit 1. At the end of each race, the first, second, and third
place winners will be determined. The names of the cars in the race and the
results are combined for one input. The other inputs are the schedule and race
index. The place the participants finish in will be recorded in the Results
column of the race schedule and in the tally sheet, as shown in Exhibit 5.8,
The winner of each race will be designated as F#, where # is the index number.
5 .7 Document 7: System Physical Synthesis 179
The second place finisher will be S#, and the third place finisher, T#. The
schedule is updated to indicate these results. The tally sheet will be updated
with the results of this race, and the results will also be made available to the
participants.
5 .7 1 2 1 Subunit 2. A paper schedule of races will be provided. A
sample of this schedule for a single-elimination tournament is given in
Exhibit 5.6.
5.71.2.3 Subunits. A Tally sheet will be used for this race as per
Exhibit 5.8.
5 .7 .3 .2 S u b u n it physical synthesis
5.7.3.2.1 Subunit 1. At the end of each race, the first, second, and third
place winners will be determined. The names of the cars in the race and the
results are combined for one input. The other inputs are the schedule and race
index. The actual finish times will be recorded in the Results column of the
race schedule and in the tally sheet, as shown in Exhibit 5.8. The winner of
each race will be designated as F#, where # is the index number. The second
place finisher will be S#, and the third place finisher, T#. The schedule is
updated to indicate these results. The tally sheet will be updated with the
results of this race, and the results will also be made available to the partici
pants. The winner of all races will be determined at the end of all races. At
that time, an average of all race times will be calculated. In this unit, only the
times are recorded.
5.7.3.2.2 Subunit 2. A paper schedule of races will be provided. Sam
ple schedules for a round-robin tournament are given in Section 5.8.
5.7.3.2.3 Subunits. A Tally sheet will be used for this race as per
Exhibit 5.8.
180 Chapter five: Pinewood
5.7.4.2.1 Subunit 1. At the end of each race, the first, second, and third
place winners will be determined. The names of the cars in the race and the
results are combined for one input. The other inputs are the schedule and race
index. The actual finish times will be recorded in the Results column of the
race schedule and in the tally sheet, as shown in Exhibit 5.8. The winner of
each race will be designated as F#, where # is the index number. The second
place finisher will be S#, and the third place finisher, T#. The schedule will be
updated to indicate these results. The tally sheet will be updated with the
results of this race and the results will also be made available to the partici
pants. The winner of all races will be determined at the end of all races. At
that time, the best time of all the races for each participant will be calculated.
In this unit, only the times will be recorded.
5.7.4.2.2 Subunit 2. This subunit is identical to Subunit 2 of Concept 3.
5.7.4.2.3 Subunit 3. This subunit is identical to Subunit 3 of Concept 3.
5 .7 .6 .2 S u b u n it physical synthesis
5 .7 .7 2 S u b u n it physical synthesis
5.7.7.2.1 Subunit 1. The race will be computerized. The jobs of the
Finish Line Judge are to control the crowds, reset the finish line switches,
verify that the computer is working correctly, and be prepared to step in and
run the race manually in the case of power failure. The Finish Line Judge will
watch the finish line and (1) ensure that the cars are in the proper lanes, (2)
reset the finish line sensors and tell the starter when they are ready for the
next race, and (3) keep the scouts away from the finish line. The Finish Line
Judge will then pick up the cars and hand them to the scouts or, if the scout
owner is not there, put them on a pillow. The Computer Guru will be available
to troubleshoot in case of computer malfunction.
5.7.7.2.2 Subunit 2. A paper schedule of races, as shown in the exhibits
for Concepts 1,2, and 3, will be used.
5.7.7.2.3 Subunit 3. Sensors that detect the passage of the cars will be
installed at the end of the racetrack. These will be interfaced to a computer
with software that can determine race time. The judge must reset these sensors
after each race. The sensors are capable of determining the race times to a
resolution of 0.0001 second.
R ound 1
R ace 1 A B C
R ace 2 D E F
R ace 3 G H I
R ound 2
R ace 1 A D G
R ace 2 B E H
R ace 3 C F I
R ound 3
R ace 1 B F G
R ace 2 D C H
R ace 3 E I A
R ound 4
R ace 1 C G E
R ace 2 F H A
R ace 3 I D B
R ound 5
R ace 1 E B C
R ace 2 G A F
R ace 3 H I D
Round 6
R ace 1 F C D
R ace 2 H A E
R ace 3 I G B
184 Chapter five: Pinewood
R ound 1
R ace 1 A B C
R ace 2 D E F
R aces G H I
R ace 4 j K L
R ound 2
R ace 1 B D H
R ace 2 A E J
R ace 3 G C K
R ace 4 F I L
R ound 3
R ace 1 C H E
R ace 2 D I J
R aces B F K
R ace 4 L A G
R ound 4
R ace 1 H L I
R ace 2 E G B
R ace 3 C F J
R ace 4 K A D
R ound 5
R ace 1 J B G
R ace 2 H F A
R aces I K E
R ace 4 L D C
R ound 6
R ace 1 K J H
R ace 2 E L B
R ace 3 I C A
R ace 4 F G D
L ane 1 L an e 2 L ane 3
C ar Place C ar P lace C ar Place
R ound 1
R ace 1 A B C
R ace 2 D E F
R ace 3 G H I
R ace 4 J K L
R aces M N O
R ound 2
R ace 1 C F G
R ace 2 D B H
R ace 3 A J M
R ace 4 E K N
R ace 5 I L O
R ound 3
R ace 1 L N C
R ace 2 E G J
R ace 3 H F K
R ace 4 I M B
R ace 5 O A D
R ound 4
R ace 1 M C D
R ace 2 B E L
R ace 3 G A K
R ace 4 J O H
R ace 5 F I N
R oun d 5
R ace 1 N D G
R ace 2 F L A
R ace 3 C I J
R ace 4 H M E
R ace 5 K O B
R ound 6
R ace 1 N H A
R ace 2 B J F
R ace 3 K D I
R ace 4 L G M
R aces O C E
186 Chapter five: Pineivood
Lane 1 L an e 2 L ane 3
C ar Place C ar Place C ar Place
R ound 1
R ace 1 A B C
R ace 2 D E F
R ace 3 G H I
R ace 4 j K L
R ace 5 M N O
R ace 6 P Q R
R oun d 2
R ace 1 E N I
R ace 2 R o A
R ace 3 H B K
R ace 4 C j P
R ace 5 Q F G
R ace 6 L D M
R ound 3
R ace 1 B L N
R ace 2 O P D
R ace 3 E G C
R ace 4 M F R
R ace 5 H J A
R ace 6 I K Q
R ound 4
R ace 1 P E B
R ace 2 I A L
R ace 3 N Q D
R ace 4 F O H
R ace 5 R C K
R ace 6 G M J
5.8 Round-robin schedules 187
L ane 1 L an e 2 Lane 3
C ar Place C ar Place C ar Place
R ound 5
R ace 1 A G N
R ace 2 J I F
R ace 3 D R B
R ace 4 L P H
R ace 5 O C Q
R ace 6 K M E
R ound 6
R ace 1 Q L E
R ace 2 B I O
R ace 3 C H M
R ace 4 N R J
R ace 5 F A P
R ace 6 K D G
188 Chapter five: Pinewood
R ound 1
R ace 1 A B C
R ace 2 D E F
R ace 3 G H I
R ace 4 J K L
R aces M N O
R ace 6 P Q R
R ace 7 S T U
R ound 2
R ace 1 I Q J
R ace 2 F O H
R ace 3 M P S
R ace 4 R T c
R ace 5 U A D
R ace 6 K E B
R ace 7 G L N
R ound 3
R ace 1 U F I
R ace 2 C D G
R ace 3 T J E
R ace 4 A H R
R ace 5 K S N
R ace 6 O L P
R ace 7 B M Q
R ound 4
R ace 1 L U B
R ace 2 I C E
R ace 3 N P T
R ace 4 D J O
R aces S A Q
R ace 6 R F G
R ace 7 H K M
5.8 Round-robin schedules 189
R ound 5
R ace 1 T M L
R ace 2 B R D
Race-3 Q U K
R ace 4 N C F
R ace 5 E G P
R ace 6 H S J
R ace 7 O I A
R ound 6
R ace 1 C O U
R ace 2 J N A
R ace 3 P I K
R ace 4 L D H
R ace 5 E R M
R ace 6 F B S
R ace 7 Q G T
190 Chapter five: Pinewood
R ound 1
R ace 1 A B C
R ace 2 D E F
R ace 3 G H I
R ace 4 j K L
R ace 5 M N O
R ace 6 P Q R
R ace 7 S T U
R ace 8 V W X
R ound 2
R ace 1 L P F
R ace 2 B M Q
R ace 3 H W A
R ace 4 T C V
R ace 5 S D X
R ace 6 I E N
R ace 7 G I U
R ace 8 R K O
R ound 3
R ace 1 X L G
R ace 2 W N Q
R ace 3 M J H
R ace 4 A F I
R ace 5 R S B
R ace 6 C O P
R ace 7 K T D
R ace 8 E U V
R ound 4
R ace 1 N S P
R ace 2 F B W
R ace 3 Q O G
R ace 4 J R T
R ace 5 u X H
R ace 6 V A D
R ace 7 I L C
R ace 8 E M K
5.8 Round-robin schedules 191
Lane 1 L an e 2 Lane 3
C ar Place C ar Place C ar Place
R ound 5
R ace 1 W C E
R ace 2 F Q J
R aces U P B
R ace 4 X I K
R ace 5 D G M
R ace 6 T A L
R ace 7 H R N
R ace 8 O V S
R ound 6
R ace 1 K U W
R ace 2 L V M
R ace 3 N X A
R ace 4 B D J
R ace 5 O F T
R ace 6 C G R
R ace 7 P H E
R ace 8 Q I S
192 Chapter five: Pinewood
Lane 1 L an e 2 Lane 3
C ar Place C ar Place C ar Place
R ound 1
R ace 1 A B C
R ace 2 D E F
R aces G H I
R ace 4 j K L
R aces M N O
R ace 6 P Q R
R ace 7 S T U
R aces V W X
R ace 9 Y Z AA
R ound 2
R ace 1 L R S
R ace 2 M A Y
R aces U I W
R ace 4 j Z X
R ace 5 B T V
R ace 6 H AA C
R ace 7 Q D G
Race 8 E O K
R ace 9 F N P
R ound 3
R ace 1 N R I
R ace 2 Z A W
R ace 3 C U V
R ace 4 B X K
R ace 5 F Q AA
R ace 6 L Y T
R ace 7 D P H
R ace 8 O G J
R ace 9 s E M
R ound 4
R ace 1 G M F
R ace 2 R O T
R ace 3 P V Y
R ace 4 H J Q
R ace 5 A S D
R ace 6 I X L
R ace 7 K c Z
R ace 8 W AA B
R ace 9 N U E
5.8 Round-robin schedules 193
R ound 5
R ace 1 X S G
R ace 2 T P Z
R ace 3 I Y j
R ace 4 Q W N
R ace 5 AA D M
Race 6 C F O
R ace 7 E B H
R ace 8 R K U
R ace 9 V L A
Round 6
R ace 1 U j A
R ace 2 K M P
R ace 3 O V Q
R ace 4 T c D
Race 5 W L N
R ace 6 X H R
R ace 7 Y F B
R ace 8 Z G E
R ace 9 AA I S
194 Chapter five: Pinewood
Lane 1 L an e 2 Lane 3
C ar Place C ar Place C ar Place
R oun d 1
R ace 1 A B c
R ace 2 D E F
R aces G H I
R ace 4 j K L
R ace 5 M N O
R ace 6 P Q R
R ace 7 s T U
R aces V W X
R ace 9 Y Z AA
R ace 10 BB CC DD
R ound 2
R ace 1 W CC A
R ace 2 Y C X
R ace 3 Z B BB
R ace 4 K F Q
R ace 5 DD L AA
R ace 6 U D R
R ace 7 E M H
R aces G S V
R ace 9 P N j
R ace 10 I O T
R ound 3
R ace 1 U M B
R ace 2 cc S H
R aces N V C
R ace 4 BB o J
R aces Q w T
R ace 6 I D DD
R ace 7 X R K
Race 8 L P Y
R ace 9 Z A E
R ace 10 F AA G
5.8 Round-robin schedules 195
Lane 1 L an e 2 Lane 3
C ar Place C ar Place C ar Place
R ound 4
R ace 1 Q Y BB
R ace 2 D V P
R ace 3 W G B
R ace 4 L H U
R aces J Z CC
R ace 6 X T M
R ace 7 R E N
R aces O K S
R ace 9 C AA I
R ace 10 F DD A
R ound 5
R ace 1 C R L
R ace 2 K A G
R ace 3 H J F
R ace 4 S I W
R ace 5 E P CC
R ace 6 M Y V
R ace 7 AA U N
R aces O X Z
R ace 9 T BB D
R ace 10 B DD Q
R ound 6
R ace 1 N Q S
R ace 2 AA X D
R ace 3 R BB M
R ace 4 H C O
R ace 5 V F Z
R ace 6 T G P
R ace 7 CC I K
R ace S DD U W
R ace 9 A I Y
R ace 10 B L E
196 Chapter five: Pinewood
R ound 1
R ace 1 A B C
R ace 2 D E F
R ace 3 G H I
R ace 4 j K L
R ace 5 M N O
R ace 6 P Q R
R ace 7 S T U
R ace 8 V W X
R ace 9 Y Z AA
R ace 10 BB cc DD
R ace 11 EE FF GG
R ound 2
R ace 1 N V Y
R ace 2 O A DD
R ace 3 Z K BB
R ace 4 L FF CC
R ace 5 B U AA
R ace 6 J EE C
R ace 7 W GG D
R ace 8 X R G
R ace 9 E H M
R ace 10 Q F S
R ace 11 I P T
R ound 3
R ace 1 C Z CC
R ace 2 D DD L
R ace 3 G S GG
R ace 4 M BB W
R aces AA T FF
R ace 6 O I B
R ace 7 U X Y
R ace 8 N P A
R ace 9 H F EE
R ace 10 Q E J
R ace 11 V R K
5.8 Round-robin schedules 197
R ound 4
R ace 1 FP O U
R ace 2 T BB EE
R ace 3 H 1 R
R ace 4 A W E
R ace 5 K AA M
R ace 6 L G B
R ace 7 CC I X
R ace 8 S Y P
R ace 9 c N Q
R ace 10 z V D
R ace 11 DD GG F
R ound 5
R ace 1 W J FF
R ace 2 U CC Q
R ace 3 K o E
R ace 4 F L N
R ace 5 Y A T
R ace 6 GG X H
R ace 7 P B Z
R ace 8 AA EE G
R ace 9 I C S
R ace 10 R D BB
R ace 11 DD M V
R ound 6
R ace 1 GG L A
R ace 2 BB G J
R ace 3 R C O
R ace 4 T D N
R aces X S Z
R ace 6 B Q V
R ace 7 CC Y w
R ace 8 EE M I
R ace 9 FF DD H
R ace 10 E AA P
R ace 11 F U K
198 Chapter five: Pinewood
Lane 1 L an e 2 Lane 3
C ar Place C ar Place C ar Place
R ound 1
R ace 1 A B C
R ace 2 D E F
R ace 3 G H I
R ace 4 j K L
R aces M N 0
R ace 6 P Q R
R ace 7 s T U
R aces V W X
R ace 9 Y Z AA
R ace 10 BB cc DD
R ace 11 EE FF GG
R ace 12 HH II JJ
R ound 2
R ace 1 P X Y
R ace 2 Q A GG
R ace 3 BB L EE
R ace 4 M HH FF
R ace 5 B W AA
R ace 6 K CC II
R ace 7 Z DD D
R aces jj T H
R ace 9 c I E
R ace 10 s F N
R ace 11 G j O
R ace 12 R U V
R ound 3
R ace 1 Z BB V
R ace 2 I D HH
R ace 3 X U J
R ace 4 O P cc
R ace 5 T Y E
R ace 6 GG AA DD
R ace 7 K N JJ
R aces H F L
R ace 9 EE G B
R ace 10 C M Q
R ace 11 R S w
R ace 12 FF II A
5.8 Round-robin schedules 199
R ound 4
R ace 1 Q V CC
R ace 2 D X K
R ace 3 T o R
R ace 4 II Y BB
R ace 5 U L I
R ace 6 AA E H
R ace 7 N DD A
R ace 8 W JJ EE
R ace 9 j M B
R ace 10 FF Z C
R ace 11 F G P
R ace 12 GG S HH
R ound 5
R ace 1 W C II
R ace 2 HH H N
R ace 3 CC J D
R ace 4 I A F
R ace 5 J] O FF
R ace 6 U B Y
R ace 7 V K M
R ace 8 E P S
R ace 9 X Q G
R ace 10 AA R BB
R ace 11 DD EE T
R ace 12 L GG Z
R ound 6
R ace 1 H C J
R ace 2 CC EE M
R ace 3 II R Z
R ace 4 Y GG G
R ace 5 DD V P
R ace 6 A AA K
R ace 7 L FF W
R ace 8 B BB Q
R ace 9 E HH U
R ace 10 F JJ X
R ace 11 N D T
R ace 12 O I S
200 Chapter five: Pinewood
R ound 1
R ace 1 A B C
R ace 2 D E F
R ace 3 G H I
R ace 4 j K L
R ace 5 M N O
R ace 6 P Q R
R ace 7 s T u
R aces V W X
R ace 9 Y Z AA
R ace 10 BB CC DD
R ace 11 EE FF GG
R ace 12 HH II JJ
R ace 13 KK LL MM
R ound 2
R ace 1 B Z W
Race 2 K P S
R ace 3 EE U Y
R ace 4 F jj AA
R ace 5 BB L O
R ace 6 LL H E
Race 7 I CC J
R aces C D M
R ace 9 R N T
R ace 10 V DD FF
R ace 11 GG MM HH
R ace 12 X II Q
R ace 13 KK A G
R ound 3
Race 1 GG JJ Z
R ace 2 AA MM V
R ace 3 R HH EE
R ace 4 S E BB
R aces Q Y CC
R ace 6 FF KK H
R ace 7 I W A
R aces DD F M
R ace 9 II O P
R ace 10 G LL B
R ace 11 j C T
R ace 12 D K N
R ace 13 U L X
5.8 Round-robin schedules 201
Lane 1 L an e 2 Lane 3
C ar Place C ar Place C ar P lace
R ound 4
R ace 1 X DD Y
R ace 2 CC EE B
R ace 3 K AA W
R ace 4 N P C
R ace 5 L M Q
R ace 6 H U R
R ace 7 FF D S
R ace 8 HH F z
R ace 9 O GG KK
R ace 10 T G BB
R ace 11 II A V
R ace 12 jj I LL
R ace 13 MM J E
R ound 5
R ace 1 L EE II
R ace 2 W Y D
R ace 3 JJ V CC
Race 4 LL AA A
R ace 5 DD GG G
R ace 6 Z C I
R ace 7 MM M U
R ace 8 B Q J
R ace 9 N s HH
R ace 10 T o F
R ace 11 E R FF
R ace 12 H X K
R ace 13 P BB KK
R ound 6
R ace 1 A J H
R ace 2 C R DD
R ace 3 CC G MM
R ace 4 E I GG
R ace 5 F B K
R ace 6 M S EE
R ace 7 O FF JJ
R ace 8 Q V D
R ace 9 AA T II
R ace 10 U BB LL
R ace 11 W HH L
R ace 12 Y KK N
R ace 13 Z X P
202 Chapter five: Pinewood
Problems
1. S c o r i n g f u n c tio n s . F o r th e P in e w o o d D e r b y s y s te m d e s c r ib e d in th is
c h a p te r , s k e tc h s c o r in g f u n c tio n s f o r th e fo llo w in g U tiliz a tio n o f R e s o u r c e s
F ig u r e s o f M e r it: T o ta l E v e n t T im e , N u m b e r o f E le c tr ic a l C ir c u its , a n d N u m
b e r o f A d u lts .
2. M a t c h i n g f u n c tio n s . T h is is a s c h e d u le fo r a n in e c a r P in e w o o d
D e r b y r o u n d ro b in .
R ound 1
R ace 1 A B C
R ace 2 D E F
R aces G H I
R ound 2
R ace 1 I A E
R ace 2 C D H
R ace 3 F G B
R ound 3
R ace 1 H F A
R ace 2 B I D
R aces E C G
R ound 4
R ace 1 A D G
R ace 2 B E H
R ace 3 C F I
W ith th is s c h e d u le , e a c h c a r r a c e s f o u r tim e s . E a c h s c o u t r a c e s e v e r y o th e r
s c o u t e x a c tl y o n c e . E a c h c a r r a c e s in e a c h la n e a t le a s t o n c e . A s s u m e th e s e a r e
th e r a c e tim e s f o r e a c h c a r n o t in te m p o r a l o r d e r :
T h e s y s te m h a s th r e e in p u t p o r ts , th e th r e e la n e s . T h e y a c c e p t d a ta p a ir s a s
in p u ts , e a c h d a ta p a ir c o n s is tin g o f a c a r n a m e a n d a tim e . T h e s y s te m h a s
th r e e o u tp u t p o r ts , th e n a m e s o f th e f ir s t-, s e c o n d -, a n d th ir d -p la c e c a r s . W e
w ill lo o k o n ly a t th e o u tp u t s a t tim e s 1 2 n , w h e r e n = 0 , 1 , 2 , 3 , . . . . W e a r e ju d g in g
th is e v e n t o n a b a s is o f 1 p o in t fo r firs t p la c e , 2 p o in ts fo r s e c o n d p la c e , a n d 3
p o in ts fo r th ir d p la c e . A t th e e n d o f f o u r r o u n d s , th e c a r w ith th e fe w e s t to ta l
p o in ts w in s . O n th e f o llo w in g p a g e s w e s h o w th r e e p o s s ib le in p u t tr a je c to rie s ,
th e n s e v e r a l p o s s ib le o u tp u t tr a je c to rie s . Y o u r job is to d e r iv e a m a tc h in g
f u n c tio n th a t is a p p r o p r ia te fo r th e s e tr a je c to rie s .
Inputs O utp u ts
R ound 1
0 R ace 1 A 2.40 B 2.41 C 2.42
1 R ace 2 D 2.43 E 2.44 F 2.45
2 R ace 3 G 2.46 H 2.47 I 2.48
R ound 2
3 R ace 1 I 2.49 A 2.41 E 2.45
4 R ace 2 C 2.43 D 2.44 H 2.48
5 R ace 3 F 2.46 G 2.4 7 B 2.42
R ound 3
6 R ace 1 H 2.49 F 2.4 7 A 2.42
7 Race 2 B 2.43 I 2.50 D 2.45
8 R ace 3 E 2.46 C 2.44 G 2.48
R ound 4
12 A B C
204 Chapter five: Pinewood
R ound 1
R ound 2
R ound 3
R ound 4
N o te : T h e d if f e r e n c e s b e tw e e n ta b le s f2 a n d f l a r e in b o ld f a c e ty p e .
R ound 1
R ace 1 A 2.43 B 2.44 C 2.42
R ace 2 D 2.43 E 2.44 F 2.45
R ace 3 G 2.46 H 2.47 I 2.48
R ound 2
R ound 3
R ound 4
R ace 1 A 2.40 D 2.46 G 2.49
R ace 2 B 2.41 E 2.47 H 2.50
R aces C 2.45 F 2.48 I 2.51
N o te : T h e d iff e re n c e s b e tw e e n ta b le s f3 a n d f l a r e in b o ld f a c e ty p e .
H e r e a r e s o m e p o s s ib le v a lu e s fo r th e o u tp u t tr a je c to rie s a t tim e t = 1 2 .
g l ( 1 2 ) = (A , B , C ),
g 2 (1 2 ) = (A , C , B ),
g 3 (1 2 ) = (B , A , C ),
g 4 (1 2 ) = ( B , C , A ) ,
g 5 (1 2 ) = (C , B , A ),
g 6 (1 2 ) = (C , A , B ),
g 7 (1 2 ) = (A , B , D ),
g 8 (1 2 ) = (A , D , E ).
F o r in p u t tr a je c to r y f l , th e to ta l p o in ts a r e
A = 4
B = 5
C= 6
D= 7
E = 8
F = 9
G= 10
H = 11
I = 12
T h e r e f o r e , a n a p p r o p r ia te o u tp u t is g l .
N o w y o u s h o u ld c o m p u te a p p r o p r ia te o u tp u t s fo r f2 a n d f3 a n d th e n w r ite
th e m a t c h i n g f u n c tio n .
t H o w m a n y in p u t tr a je c to rie s a r e p o s s ib le ? H o w m a n y o u tp u t tr a je c to ry
v a lu e s a r e p o s s ib le fo r e a c h tim e \ 2n 7 H o w m a n y m a tc h in g f u n c tio n s a r e
p o s s ib le if y o u in c lu d e all p o s s ib le in p u t a n d o u tp u t tr a je c to r ie s ? (A s s u m e
th a t th e tim e s g iv e n a r e o n ly a p p r o x i m a t e a n d th a t e le c tr o n ic tim in g w ill
t This part of the problem is intended for students w ho have had a class in probability.
206 Chapter five: Pinewood
e n s u r e th a t n o r a c e e n d s in a tie. D u r i n g a c tu a l P in e w o o d D e r b ie s w ith h u m a n
ju d g e s th e r e a r e tie s a n d th o s e r a c e s a r e r e r u n . R e r u n r a c e s a r e v e r y s e ld o m
tie s. W ith e le c tr o n ic tim in g a w h o le d e r b y is u s u a lly r u n w ith n o tie s .)
3. T r a d e - o f f s tu d ie s . A s s u m e th a t y o u g e t a n e w G r a n d M a rs h a ll f o r
th e P in e w o o d D e r b y w h o is n o t w o r r ie d a b o u t ir a te p a r e n ts . H e s a y s h e w ill
tell ir a te p a r e n ts to " g e t lo s t," s o h e c h a n g e s th e w e ig h t o n " N u m b e r o f I r a te
P a r e n ts " to 0 . R e c a lc u la te th e fin a l s c o r e f o r th e th r e e a lte r n a tiv e s . U s e th e
s im u la tio n d a ta . (T h is is a lo n g , te d io u s p r o b le m , b u t it w ill g iv e y o u a g o o d
u n d e r s t a n d i n g o f th e tr a d e -o f f p r o c e s s .)
R ound 1
R ace 1 A B C
R ace 2 D E F
Race 3 G H I
Round 2
R ace 1 I A E
R ace 2 C D H
R ace 3 F G B
R ound 3
R ace 1 H F A
R ace 2 B I D
R ace 3 E C G
R ound 4
R ace 1 A D G
R ace 2 B E H
Race 3 C F I
W ith th is s c h e d u le , e a c h c a r r a c e s f o u r tim e s . E a c h s c o u t r a c e s e v e r y o th e r
s c o u t e x a c tl y o n c e . E a c h c a r r a c e s in e a c h la n e a t le a s t o n c e . A s s u m e th e s e a r e
th e fin ish tim e s n o t in te m p o r a l o r d e r .
t This problem uses more detailed notation than is used in the text.
Problems 207
O u r i n p u t / o u t p u t re q u ir e m e n t h a s th r e e in p u t p o r ts , th e th r e e la n e s . T h e y
a c c e p t d a ta p a ir s a s in p u ts , e a c h d a ta p a ir c o n s is tin g o f a c a r n a m e (A th r o u g h
I) a n d a fin ish tim e (f r o m 2 .4 0 to 2 .5 1 ). T h e s y s te m h a s th r e e o u tp u t p o r ts th a t
p r e s e n t th e n a m e s o f th e first, s e c o n d , a n d th ird p la c e c a r s . W e a r e ju d g in g
th is e v e n t o n a b a s is o f 1 p o in t fo r firs t p la c e , 2 p o in ts f o r s e c o n d p la c e , a n d 3
p o in ts fo r th ir d p la c e . A t th e e n d o f f o u r r o u n d s , th e c a r w ith th e fe w e s t to ta l
p o in ts w in s . O n th e fo llo w in g p a g e s w e s h o w th r e e p o s s ib le in p u t tr a je c to rie s ,
th e n s e v e r a l p o s s ib le o u tp u t tr a je c to rie s .
Inputs O u tputs
R ound 1
R ound 2
R ound 3
12
208 Chapter five: Pinewood
Lane 1 L an e 2 L ane 3
C ar Tim e C ar Tim e C ar Tim e
R ound 1
R ound 2
R ound 3
R ace 1 H 2.49 F 2.47 A 2.42
R ace 2 B 2.43 I 2.50 D 2.45
R ace 3 E 2.46 C 2.44 G 2.48
R ound 4
R ace 1 A 2.40 D 2.46 G 2.49
R ace 2 B 2.44 E 2.47 H 2.50
Race 3 C 2.45 F 2.48 I 2.51
N o te : T h e d if f e r e n c e s b e tw e e n ta b le s f2 a n d f l a r e in b o ld f a c e ty p e .
R ound 1
R ound 2
R ace 1 I 2.49 A 2.41 E 2.45
R ace 2 C 2.43 D 2.44 H 2.48
R ace 3 F 2.46 G 2.47 B 2.42
R ound 3
R ound 4
N o te : T h e d iff e re n c e s b e tw e e n ta b le s f3 a n d f l a r e in b o ld f a c e ty p e .
W e n o w s h o w v a lu e s o f s o m e p o s s ib le o u p u ts . {N o te : th e s e a r e n o t te c h n i
c a lly tr a je c to r ie s , b u t th e y a r e o n ly v a lu e s o f tr a je c to rie s fo r s o m e p a r tic u la r
tim e .)
g l = ( A , B ,C ) ,
g 2 = ( A , C , B),
g 3 = (B , A ,C ),
g 4= (B ,C ,A ),
g 5 = ( C , B, A ) ,
g 6 = ( C , A , B),
g 7 = ( A , B, D) ,
g 8 = ( A , D , E ),
g9=au),
gio = (A , B, E ).
F o r s im p lic ity , a s s u m e th a t n o in d iv id u a l r a c e e n d s in a tie. D u r in g a c tu a l
P in e w o o d D e rb ie s w ith h u m a n ju d g e s th e r e a r e tie s a n d th o s e r a c e s a r e re r u n .
T h e r e r u n r a c e s a r e v e r y s e ld o m tie s. W ith e le c tr o n ic tim e r s , a w h o le d e rb y is
u s u a lly r u n w ith n o ties.
TR pw dO = IJSC O- 12 ],
/*Th es e r e q u i r em en ts must be s a t i sf ie d for the
times 0 to 12.*/
IRpwdO = IRIp wd O X IR 2p wd O X IR3pwdO,
IR Ip w dO = ( A L P H A B E T C A - n , R L S C 2 .40-2.51 D )
/* Name of car and finish time for lane 1*/
210 Chapter five: Pinewood
where
T Rpw d3 = I JSC 0- 12 ],
lRpwd3 = IR 1p ud 3 X I R 2p wd 3 X IR2pwd3,
I R 1p w d3 = ( A L P H A B E T : a - j :, R L S C 2 . 40 -2 .5 13 )
/* Name of car and f ini sh time for lane 1*/
I R 2p w d3 = ( A L P H A B E T C A - J 3 , R L S C 2 .40-2.513)
/*Name of car and f ini sh time for lane 2*/
I R3 pwd 3 = ( A L P H A B E T C A - J 3 , R L S C 2 .40-2.513)
/*Name of car and f ini sh time for lane 3*/
I T Rp w d3 = FN S( TR pw d3 , IR pw d3 ),
0 R pw d3 = A L P H A B E T C A - I 3 /*Name of third place
car*/
0 T R p w d 3 = FN S( TR pw d3 , 0 Rp w d 3 ) ,
M R pu d 3 = i(f, 6); wh er e f e ITRpwd3; G is a
subset of 0 TR p w d 3 ;
6 = lg: g € 0T Rp wd 3; n e I JS CO- 11 3;
g(n) = g9
if (f = fl) then g(12) = Gl
eise if (f = f2) then g(12) = Am
eise if (f = f3) then g(12) = Be
eise g(12) = g 9 > > .
chapter six
SIERRA
Contents
6.1 Document 1: Problem Situation 221
6.1.1 The top level system function............................................................221
6.1.2 History of the problem and the present system ........................... 221
6.1.3 The custom er..........................................................................................222
6.1.3.1 Ow ners.................................................................................... 222
6.1.3.2 Bill payers: The client.........................................................222
6.1.3.3 U sers........................................................................................ 222
6.1.3.4 Operators................................................................................ 222
6.1.3.5 Beneficiaries............................................................................ 222
6.1.3.6 Victims......................................................................................222
6.1.3.7 Technical representatives to
systems engineering.............................................................. 223
6.1.4 Technical personnel and facilities.....................................................223
6.1.4.1 Life Cycle Phase 1:Requirements development............ 223
6.1.4.2 Life Cycle Phase 2: Concept development......................223
6.1.4.3 Life Cycle Phase 3: Full-scale engineering
development............................................................................ 223
6.1.4.4 Life Cycle Phase 4: System development.......................223
6.1.4.5 Life Cycle Phase 5: System test and
integration................................................................................ 223
6.1.4.6 Life Cycle Phase 6: Operations support and
modification............................................................................. 223
6.1.4.7 Life Cycle Phase 7:Retirement and replacement........... 223
6.1.5 System environment............................................................................. 224
6.1.5.1 Social Impact........................................................................... 224
6.1.5.2 Economic Im pact...................................................................224
6.1.5.3 Environmental Im pact......................................................... 224
6.1.5.4 Interoperability...................................................................... 224
6.1.6 Systems engineering management plan ......................................... 224
215
6.5.1.1.1 Explanation of
System Design Concept 1...................................251
6.5.1.1.2 Model of System Design Concept 1..................251
6.5.1.1.2.1 Terminology u sed..........................251
6.5.1.1.2.2 States.................................................. 251
6.5.1.1.2.3 Inputs................................................ 251
6.5.1.1.2.4 Outputs.............................................252
6.5.1.1.2.5 Next state function......................... 252
6.5.1.1.2.6 Readout function............................ 252
6.5.1.2 System Design Concept 2 .....................................................253
6.5.1.2.1 Explanation of
System Design Concept 2 ................................... 253
6.5.1.2.2 Model of System Design Concept 2..................253
i 6.5.1.2.2.1 Terminology u sed.......................... 253
6.5.1.3 System Design Concept 3 .....................................................253
6.5.1.3.1 Explanation of
System Design Concept 3 ................................... 253
218 Chapter six: SIERRA
SI S3
222 Chapter six: SIERRA
two crossover points where the trains can collide. The students' task is to build
a system that prevents collisions and maximizes the number of trips com
pleted by each train. Students must use existing detection and power control
devices. This project is known as the Systems and Industrial Engineering
Railroad Assignment (SIERRA).
6 .2 .3 The customer
6 .1 3 .1 O w ners
The system will be owned by the SIE Department of the University of Arizona.
6.2.3.3 U sers
The system will be used by the teaching assistants (TAs) in the SIE-370 class
to verify the students' design, and it will be used by professors and TAs to
demonstrate the SIE systems engineering philosophy to department visitors.
6 .1 .3 .4 O perators
The system will be operated by the students who built the system and by the
TAs in the SIE-370 lab.
6.2.3.5 Beneficiaries
The students are the beneficiaries of the system in that they gain knowledge
and experience. They learn good systems engineering documentation prac
tices and techniques.
6 .1 .3 .6 Victim s
Victims of the system are those who feel that the system had a negative impact
on them. The only known victims of SIERRA are students who complain that
their grades do not reflect the energy they expended on the project.
6 1 5 System environment
6 1 .5 1 Social impact
In interviews with alumni of the past thirty years Dr. Bahill always asks, "Of
all the tools and techniques that we have taught you, which have you found
to be the most valuable?" The most common answers have been
1. the principles of system design,
2. learning to work with other people on a project, and
3. learning to write and present a systems engineering report.
The social impact of this project is the value in learning those three lessons.
6 .1 .5 .2 Econom ic impact
The laboratory for this course is the most expensive one in the SIE Depart
ment. Dr. Bahill must continually compete with other professors for hardware
and personnel resources.
6 .1 .5 .3 Environm ental irhpact
If the necessary hardware were affordable, the students would be permitted
to test their circuits at home, thus reducing the occupancy of the SIE-370
laboratory and its associated maintenance. This would also reduce the trans
portation load caused by students entering and leaving the lab.
The environment of the laboratory is affected by students breaking parts
and equipment and leaving trash behind.
6 .1 .5 .4 Interoperability
The system must interface with the existing train power controls and train
location monitors. The sensors are switches SI, S2, S3, and S4; they are located
as shown in Figure 6.1.
6 .2 .1 D e fic ie n c y
Two HO-gauge model trains are on circular tracks that intersect at two points;
the trains can collide at the intersections.
6 .2 .2 I n p u t /O u t p u t a n d F u n c t io n a l R e q u ir e m e n t
6 .2 .2 .1 T im escale
The system shall have a time scale resolution of milliseconds. The life of the
system will be 30 minutes. A few superior systems will be kept for years to
serve as demonstrations for Systems Engineering Department visitors.
6 .2 .2 .2 Inputs
The system will have four inputs that indicate train position (see Figure 6.1
in Document 1); they are labeled SI, S2, S3, and S4.
6 .2 .2 .3 In p u t trajectories
The input trajectories will be restricted as follows:
1. Train A will activate switch SI and then, after an indeterminate
amount of time, switch S2. The train's length is such that at no time
will SI and S2 both be activated.
2. Train B will activate switch S3 and then, after an indeterminate
amount of time, switch S4. The train's length is such that at no time
will S3 and S4 both be activated.
3. We can safely assume that at no time will S2 and S4 both be activated,
because for this to occur, both trains would have to be in the danger
zone at the same time, which is not permitted.
4. It is possible, as a result of switch bouncing, that a switch will read
ON, then OFF, then ON again in rapid succession. If this occurs within
10 milliseconds, it should be considered as a steady ON signal.
6 .2 .2 .4 O utputs
The outputs are power ON or OFF for each train (PA and PB).
226 Chapter six: SIERRA
6 2 2 .5 O u tp u t trajectories
The output trajectories will be restricted as follows: Power to one or both of
the trains must be ON at all times. We assume that power will be OFF or ON
1 millisecond after the output is activated. Since a train's momentum may
cause it to travel as much as 1 foot after the power is turned OFF, a maximum
safe train speed specification is required for each design. Power to one train
can be turned OFF to prevent collisions, then turned back ON again when it
is safe.
6 .2 .2 .6 M a tch in g function
The required matching between input trajectories and output trajectories is
as follows: After S2 or S4 is activated, power is turned ON to both trains.
6 .2 .3 T e c h n o lo g y R e q u ir e m e n t
6 .2 .3 .1 Available m oney
Computer time and student labor and engineering time are free. Also, com
ponents available within the lab are free.
6 .2 .3 .2 Available time
Students have 1 month to complete the project.
2. Power controllers for Train A and Train B: The two outputs (PA and
PB) are available as bits 5 and 6 of the same microcomputer word at
address $10010.
3. Six connection points for attaching the test equipment: These will be
positioned at the end of any hardware board in the following se
quence: SI, S2, S3, S4, GND, GND, PA, and PB, where GND stands for
electrical ground. A cable with an eight-pin plug will be plugged into
this section of the hardware board.
6 .2 .4 I n p u t /O u t p u t P e rfo r m a n c e R e q u ir e m e n t
1. Number of Collisions: The total number of times the two trains come
into physical contact.
2. Trips by Train A : The total number of completed trips for Train A.
3. Trips by Train B: The total number of completed trips for Train B.
4. Spurious Stops by A : The total number of spurious stops by Train A.
A spurious stop is one that is not needed to avoid a collision.
5. Spurious Stops by B: Total number of spurious stops by Train B.
A spurious stop is one that is not needed to avoid a collision.
6. Availability: If not in failure mode, the system will be considered
available when it is submitted to the TA for the testing period. The
system is in failure mode if it does not interface correctly to the input
detectors or if it does not control the outputs to both trains.
228 Chapter six: SIERRA
The data and specifications were provided during an SIE-650 class and in
subsequent discussions with Dr. Bahill.
6 .3 .2 3 In p u t trajectories
IT R P 1 is the set of input trajectories. It is the set of all possible inputs (IR P 1)
over the time scale (T R P 1). Formally,
ITRP1 = -Cf: f G FNSCTRP1 ,IRP1 );
for every t € TRP1,
Let p1 be the va lu e of I1P1 for a
given t ,
let p2 be the value of I2P1 for a
given t,
let p3 be the va lue of I3P1 for a
given t, and
let p4 be the va lu e of I4P1 for a
given t,
then (p1 = 1 and p2 = 1) = i> and
(p3 = 1 and p4 = 1) = -O and
(p2 = 1 and p4 = 1) = O T
Interpreting this notation: Train A cannot be at Switches 1 and 2 at the same
time (it is not long enough); Train B cannot be at Switches 3 and 4 at the same
time (it is not long enough either); and Train A cannot be at Switch 2 (leaving
the danger zone) at the same time Train B is at Switch 4 (leaving the danger
zone) because they would have already collided.
6 3 2 .4 O utputs
0 RP1 represents the set of outputs.
0RP1 = 01P1 X 02P1
where
01P1 = i0,1> /* where O utp ut Port 1=PA re pr es en ts
the powe r to Train A.
Power to Train A: OFF = 0,
ON = 1*/
02P1 = i0,1> /* where O utp ut Port 2=PB re pr es en ts
the po we r to Train B.
Power to Tr ain B: OFF = 0,
ON = 1*/
6 .3 .2 .5 O u tp u t trajectories
0 T R P 1 is the set of all output trajectories for SIERRA. 0 T R P1 is the set of all
possible outputs (0 R P1) over the time scale (T R P1), with the exception that
at no time can the power be OFF to both trains. Formally,
0TRP1 = if: f G F N S ( T R P 1 , 0 R P 1 );
for every t e TRP1,
let q1 be the va lu e of 01P1 for a
given t,
let q2 be the valu e of 02P1 for a
given t,
then if (q1 = 0) then q2 = 1 and
if (q2 = 0) then q1 = 1>
Interpretation; For every time and output combination, if Port 1—the power
to Train A— is OFF, then Port 2— the power to Train B—is ON, and vice versa.
6 .3 .2 .6 M a tch in g fu nction
MRP1 is the matching function.
MRP1 = -C(f,G): p G ITRP1; G G 0TRP1;
G=iq: q G 0RP1; t G TRP1 then
if p ( t ) = ( 0 , 1,0,0) or p ( t ) = ( 0 , 0,0,1)),
then q(t + 1) = ( 1 ,1 )>>
Interpretation: For any input and output over the time scale, if Switch 2 is ON
or Switch 4 is ON, then the next output puts the power ON for both trains.
We have matched the inputs and outputs by definition.
6 .3 .3 T e c h n o lo g y R e q u ir e m e n t
6 3 .3 ,1 Available m oney
Computer time on the Unix-based PC, the DOS-based IBM PC, and the
Motorola controller is free. Student engineering time is also free. Components
available in the lab are free to students, but students must purchase any other
components they decide to use.
6 .3 .3 .2 Available time
Students have 1 month to complete the project.
6 .3 .3 .3 Available com ponents
The software-based Motorola controller must be used for the train controllers.
SN7400 SN7402
Quadruple 2-input Quadruple 2-input
positive - NAN 0 gates positive-NORgates
Y=AB Y =A+ B
Notch .
LtJ l£>j
on chip
TJuninmininir
1A IB IV 2A 28 2V GNO
nLTiiriLniJi±iii]^
IV 1A 16 2V 2A 28 GNO
S N 7404 SN7408
Hex inverters Quadruple 2-input
positIve-AND gates
Y=A Y = AB
Vcc BA 6V SA SV 4A 4V Vcc 48 4A 4Y 38 3A SV
h h h
1A IV 2A 2V 2A 3V GNO 1A IB IV 2A 26 2V GNO
S N 7420 . SN742I
Dual 4-input Dual 4-input
NANO gates AND gates
Y=ABCO Y=ABCD
Vcc JO JC NC 28 2A 2V Vcc 30 JC NC 2B 2A 3V
==^>J
HC 1C 10 1C 10 IV GNO
The Unix-based PC or the DOS-based IBM PC in the lab may be used to write
the software for the Motorola controller.
Components are available in the SIE-370 lab for the protoboard controller.
Figures 6.2a and 6.2b show the TTL integrated circuits that are available.
6 .3 .3 .4 Available technologies
SN7430 SN7432
8-Input Quadruple 2 - input
NANO gates OR gates
Y=ABCDEFGH Y = A+B
Vcc NC H G NC MC V vcc «8 4V 30 3A 3V
INPUTS OUTPUTS
CLEAR CLOCK J K Q O
L X X X L H
H JT . L L Qq Oq
H
H
H
XL
XL
XL
H
L
H
L
H
H
H
L H
TOGGLE
L
w
Vcc >CK 2 22
6 .3 .4 I n p u t / O u t p u t P e r fo r m a n c e R e q u ir e m e n t
1. Number of Collisions
Score ISIPI = SSF(ILTH1P1,IB1P1,ISL1P1,IJS++)
Lower Threshold ILTHIPI = 0
Baseline IBIPI = 0.6
Upper Threshold lU TH lPl = oo
Slope ISLIPI = -2
6.3 Document 3: System Requirements 237
2. Trips by Train A
Score IS2P1 = SSF(ILTH2PUB2P1,ISL2P1,IJS++)
Lower Threshold ILTH2P1 = 0
Baseline IB2P1 = 5
Upper Threshold IUTH2P1 = oo
Slope ISL2P1 = 0.2
3. Trips by Train B
Score IS3P1 = SSF(ILTH3P1,IB3P1,ISL3P1,IJS++)
Lower Threshold ILTH3P1 = 0
Baseline IB3P1 = 5
Upper Threshold IUTH3P1 = oo
Slope ISL3P1 = 0.2
4. Spurious Stops by A
Score IS4P1 = SSF(ILTH4P1,IB4P1,ISL4P1,IJS++)
Lower Threshold ILTH4P1 = 0
Baseline IB4P1 = 1
Upper Threshold IUTH4P1 = oo
Slope ISL 4P 1= -1.0
5. Spurious Stops by B
Score IS5P1 = SSF(ILTH5P1,IB5P1,ISL5P1,IJS++)
Lower Threshold ILTH5P1 = 0
Baseline IB5P1 = 1
Upper Threshold IUTH5P1 = oo
Slope ISL 5P 1= -1.0
238 Chapter six: SIERRA
6. Availability
Score IS6P1 = SSF(ILTH6P1,IB6P1,IUTH6P1,
ISL6P1,RLS[0,1])
Lower Threshold ILTH6P1 = 0
Baseline IB6P1 = 0.5
Upper Threshold IUTH6P1 = 1
Slope ISL6P1 = 2
7. Reliability
Score IS7P1 = SSF(ILTH7P1,IB7P1,IUTH7P1,
ISL7P1,RLS[0,1])
Lower Threshold ILTH7P1 = 0
Baseline IB7P1 = 0.5
Upper Threshold IUTH7P1 = 1
Slope ISL7P1 = 2
6 3 .4 ,3 W eighting criteria
The following importance values, on a scale from 1 to 10, were assigned to
each Performance Figure of Merit. These were provided by Dr. Bahill. The
resultant weight, IW/Pl, is computed by summing all the importance values
and dividing each entry by this total. That is, the weights are normalized so
that they add up to 1.0.
1. N u m b er of C ollisions 8 0.258065
2. Trips by Train A 7 0.225806
3. Trips by Train B 7 0.225806
4. Spurious stops b y A 3 0.096774
5. Spurious stops by B 3 0.096774
6. A vailability 2 0.064516
7. Reliability 1 0.032258
6 .3 Document 3: System Requirements 239
6 .3 .5 U tiliz a tio n o f R e s o u rc e s R e q u ir e m e n t
1. Completion Time
Score U SlP l = SSF(ULTH1P1,UB1P1,USL1P1,IJS++)
Lower Threshold ULTHIPI = -1
Baseline U B lP l = 0
Upper Threshold UUTH1P1 = oo
Slope USLIPI = 1
2. Acquisition Cost
Score US2P1 = SSF(ULTH2P1,UB2P1,UUTH2P1,
USL2P1,RLS)
Lbwer Threshold ULTH2P1 = 0
Baseline UB2P1 = 0.5
Upper Threshold UUTH2P1 = 1
Slope USL2P1 = 2
240 Chapter six: SIERRA
6 3 .5 .3 W eighting criteria
The following importance values, on a scale from 1 to 10, were assigned by
the customer to each Utilization of Resources Figure of Merit. The resultant
weight, U W iPl, is computed by summing all the importance values and
dividing each entry by this total.
6 .3 .6 T ra d e -O ff R e q u ir e m e n t
6 .3 .7 S y s te m Test R e q u ir e m e n t
TZ IZ oz C om m en t
Test con tin u es for tw o m inutes, allow ing trains to gen erate their ow n
trajectories.
The time t(i) is determined at the time of the test, the above time elements
following the rule: t(i + 1) > t(/).
242 Chapter six: SIERRA
TZ IZ oz Comment
Test continues for two minutes, allowing trains to generate their own
trajectories.
The time t(0 is determined at the time of the test, the above time elements
following the rule: t(i + 1) > t(/).
6 .3 Document 3: System Requirements 243
TZ IZ oz C om m en t
The time t(/) is determined at the time of the test, the above time elements
following the rule: t(i + 1) > t(/).
244 Chapter six: SIERRA
TZ IZ oz C om m en t
T est con tin u es for tw o m inu tes, allow ing trains to gen erate their ow n
trajectories.
The time t(i) is determined at the time of the test, the above time elements
following the rule: t(/ + 1) > t(0.
6 .3 Document 3: System Requirements 245
TZ IZ OZ C om m en t
Test con tin u es for tw o m inutes, allow ing trains to gen erate their ow n trajectories.
The time t(/) is determined at the time of the test, the above time elements
following the rule: t(i + 1) > t(/).
6 .3 .7 .2 In put/outpu t perform ance tests
w h e re
6 .4 .1 .3 Inputs
There are four input ports to our system, which correspond to the four
location detectors.
11 = I1Z X I2Z X I3Z X I4Z
where
I1Z = *C0,1> /*Input Port 1 repr es en ts Switch 1*/
/*Train A not pres en t = 0, present = 1*/
I2Z = i0,1> /*Input Port 2 repr es en ts Switch 2*/
/*Train A not pres en t = 0, present = 1*/
I3Z = *C0,1> /*Input port 3 re pr es en ts Switch 3*/
/*Train B not pres en t = 0, present = 1*/
I4Z = -C0,1> /*Input port 4 repr es en ts Switch 4*/
/*Train B not pres en t = 0, present = 1*/
6 .4 .1 .4 O utputs
There are two output ports, which correspond to the power connections to
the trains.
OZ = 01Z X 02Z
where
01Z = -C0,1> /^Output port 1, 01Z, represents
j power to T r a i n A -
Power to A OFF = 0, ON = 1*/
02Z = -C0,1> /*0utput port 2, 02Z, repr es en ts
power to Train B -
Power to B OFF = 0, ON = 1*/
250 Chapter six: SIERRA
6 .4 .1 .5 N ex t state function
The next state function specifies the next state of the system given the present
state of the system and the present inputs. It is arranged as - C ( ( s t a t e 1 ,
input),nextstate), ((state2,input),nextstate),
for every possible combination of starting state and inputs. For the train
controller we have:
NZ = { ; ( S A F E , ( 1 , 0 , 0 , 0 ) , A i n B o u t ) ,
(SAFE,(0,0,1,0),BinAout),
(SAFE,(1,0,1,0),AinBout),
( A i n B o u t , ( 0 , 1 , 0 , 0 ) , S AF E ) ,
( B i n A o u t , ( 0 , 0 , 0 , 1 ) , S AFE) >
U i ( ( S A F E , p ) , S A F E ) : p e IZ;
p <> { ( 1 , 0 , 0 , 0 ) , ( 0 , 0 , 1 , 0 ) , ( 1 , 0 , 1 , 0 ) > >
U -C( ( Ai nBou t , p ) , Ai nBou t ) : p G I Z ;
p <> - C ( 0 , 1 , 0 , 0 ) > >
U -C( ( B i n A o u t , p ) , B i n A o u t ) : p G I Z ;
p <> - C ( 0 , 0 , 0 , 1 ) >>
6 .5 .2 F i g u r e s o f m e rit
The figures of merit are calculated using the test plan described in Document
3. The values obtained for thes(i figures of merit are entered here, then the
scores are computed using the standard scoring functions also defined in
Document 3. The formulas
are used to compute the Overall Figures of Merit for each design, where m is
the number of Input/Output Performance Figures of Merit and n is the
number of Utilization of Resources Figures of Merit; and
ISFIPI = ISIPKIFIPKFSD/))
USFIPI --- USIPKUFIPI(FSDO)
IFOPl(FSDl) = 0.801
UFOPl(FSDl) = 0.989
256 Chapter six: SIERRA
IFOPl(FSDl) = 0.963
IFOPl(FSDl) = 0.914
UFOPl(FSDl) = 0.739
258 Chapter six: SIERRA
IF0PKFSD2) = 0.963
UF0PKFSD2) = 0.5
6 .5 Document 5: Concept Exploration 259
IF0PKFSD2) = 0.963
UF0PKFSD2) = 0.251
260 Chapter six: SIERRA
IF0PKFSD2) = 0.987
UF0PKFSD2) = 0.5
6 .5 Document 5: Concept Exploration 261
IF0PKFSD3) = 0.963
UF0P1(FSD3) = 0.5
262 Chapter six: SIERRA
IF0PKFSD3) = 0.963
UF0PKFSD3) = 0.251
If our boss was not satisfied with this answer and demanded an
assembly language solution, we could change the weight of acquisi
tion cost (IW2P1) from 0.5 to 0.05. This would cause the overall
score of Concept 2 to be the highest. This kind of manipulation is
often done in the real world— we are not just being cynical here.
However, now there is documentation on the person responsible for
the decision, and the system design can be traced to this decision.
It is important to remember that the customer's weights are what is
important; changing them would result in a non-optimal design from
the customer's perspective.
6 .5 Document 5: Concept Exploration 265
Protoboard $30.00
Power Supply 5.00
ICs 5.00
Wire 2.00
LEDs 1.00
Supplies 1.00
Total $44.00
The cost of the creation of one copy of the software was estimated as:
ECB $450.00
Total $450.00
Estimates for quantities of 1000 and 1,000,000 were based on volume pur
chases.
Other figures of merit that could be created which might change the
recommended alternatives are:
266 Chapter six: SIERRA
6 .6 .1 S y s te m fu n c t io n a l a n a ly sis o f C o n c e p t 1
1. Monitor sensors to see when either train enters the danger zone. We
will call this Monitor! 3 to represent the function of monitoring
Switches 1 and 3. This is from the SAFE state.
2. Monitor sensors to see if Train A leaves the danger zone or if Train B
attempts to enter the danger zone. We will call this Monitor23. This is
from AinBout.
This system uses the initial states as a guideline for defining the
functions. The functions are performed by the next state function
and the readout function, but in this case the combination is unique
to each state. Therefore, it is possible to pattern the functional de
composition after our states.
( 1, 0, 0 , 0 )
Therefore, the output from this function is power to both trains. This function
is left if either Switch 1 is triggered (IlP l = 1) or Switch 3 is triggered (I3P1 = 1).
No further decomposition of this function is necessary.
6.6.122 Function 2. In the second function, Monitor23, Train A is in
the danger zone and Train B is in the safe zone. This function is entered when
Train A triggers SI (IlP l = 1) while in the Monitorl3 function.
To prevent collisions, this function will turn the power OFF to Train B.
To increase the I/O Performance Requirement for the number of laps Train
B completes, it is desirable to decompose this function into two subfunctions
that allow Train B to have power until it attempts to enter the danger zone.
The function Monitor23 will be decomposed into M onitor230n and Moni-
tor230ff. These are patterned after states AinBsafe and AinBoff. See Figure
6.5 for the new state diagram. The input from Switch SI starts function
Monitor230n. Power is maintained to both trains. This function is exited and
the M onitor230ff function is entered if Train B triggers S3 [input (0,0,1,0) is
detected]. This will turn the power OFF to Train B. If S2 is triggered [input
(0,1,0,0) is detected], the M onitorl3 function resumes.
6.6.1.2.3 Function 3. In the third function, Monitorl4, Train B is in the
danger zone and Train A is in the safe zone. This function is entered when
Train B triggers Switch 3 (I3P1 = 1), indicating that it wants to enter the danger
zone also, while in the Monitor! 3 function.
To prevent collisions, power to Train A is turned OFF. To increase the
I/O Performance Requirement for the number of laps Train A completes, it
6 .6 Document 6: System Functional Analysis 269
is desirable to decompose this function into two subfunctions that allow Train
A to have power until it attempts to enter the danger zone. The function is
decomposed into M onitorl40n and M onitorl40ff. These are patterned after
states BinAsafe and BinAoff. See Figure 6.5 for the new state diagram. An
input to Monitorl3 of (0,0,1,0) drives the system into the new function,
M onitorl40n. Power is maintained to both trains. This function is exited and
M onitorl40ff is entered if Train A triggers SI [input (1,0,0,0) is detected].
MonitorMOn goes to function Monitorl3 if S4 is triggered [input (0,0,0,1) is
detected].
6.6.13.2 States
SZ1 ' = f S A F E , A i n B s a f e , A i n B o f f , B i n A s a f e ,Bi nAof f>
6.6.1.33 Inputs
IZ1 ' = I1Z1 X I2Z1 X I3Z1 X I4Z1
11 Z1 = i0,1> /*where 1 indi cates SI a ct i va t ed*/
I2Z1 = {0,1> /*where 1 indi cates S2 act i vated*/
I3Z1 = -C0,1> /*where 1 indicates S3 act i vated*/
I4Z1 = *C0,1> /*where 1 in dicates S4 ac t i va t ed*/
6.6.13.4 Outputs
OZI ' = 01Z1 X 02Z1
01 ZI = -C0,1> /*where 1 indi cates power ON to
Train A*/
02Z1 = /*where 1 indicates power ON to
Train B*/
6.6.13.5 Next state function
NZ1 ' = i ( S A F E , (1,0,0,0) , Ai n B s a f e ) ,
( S A F E , (0,0,1,0) ,B i n A sa fe ),
(Ai nBsaf e , (0,1, 0 , 0 ) , SAFE),
(Ai n B s a f e , (0,0, 1 , 0 ) , Ai n B o f f ),
270 Chapter six: SIERRA
( A i n B o f f , ( 0 , 1 , 0 , 0 ) , Bi nAsafe)
(BinAsafe,(0,0,0,1),SAFE),
(BinAsafe,(1,0,0,0),BinAoff),
(BinAoff,(0,0,0,1),AinBsafe)>
All unlisted input combinations cause the system to remain in the same state.
6.6.1.3.6 Readout Function
RZV = i ( S A F E , ( 1 , 1 ) ) , ( A i n B s a f e , ( 1 , 1 )),
( A i n B o f f , ( 1 , 0 ) ) , ( B i n A s a f e , (1,1)),
( B i n A o f f ,(0,1 ))>
EXHIBIT 6.1
EXHIBIT 6.2
Simulation Results for Concept 1
These tables represent the output of the simulation code in Exhibit
6.1. The test trajectories from the Test Requirement were entered into
the functional design to see how the system would perform.
Begin test of hardware conceptual design simulation.
Test Trajectory 1
TZ State Input Output Train A Train B
Test Trajectory 2
Test Trajectory 3
TZ State Input O u tp u t Train A Train B
Test Trajectory 4
TZ State Input O utp u t Train A Train B
T est T ra je c to ry 4 c o n t in u e d
T est T ra je c to ry 5
End of test.
6 .6 .2 S y s te m fu n c t io n a l a n a ly sis o f C o n c e p t 2
(I3P1 = 1). The assembly language program senses the inputs sequentially
rather than in parallel, as is done in the protoboard. Because of this, it is helpful
to break this function down into two subfunctions. The first function tests for
SI and the second tests for S3. If one of the tests fails the other function is
entered. This testing continues, with the functions oscillating back and forth,
until SI or S3 is detected. This is a better model than that used for Concept 1
because the software tests for SI and ignores all other switches. This prevents
the system from entering an unknown state. The test of SI will be called
Monitorl and the safe test of S3 will be called Monitor3. Power will remain
ON to both trains while in these functions. These functions are patterned after
states SAFEl and SAFE2. See Figure 6.7.
6 .6.222 Function 2. In the second function, Monitor23, Train A is in
the danger zone and Train B is in the safe zone. This function is entered when
Train A triggers SI (IlP l = 1) while in the Monitorl3 function.
To prevent collisions, the power to Train B is OFF in this function. To
increase the I/O Performance Requirement for the number of laps Train B
completes, it is desirable to decompose this function into two subfunctions
that allow Train B to have power until it attempts to enter the danger zone.
The function Monitor23 is decomposed into M onitor230n and Monitor23off.
In addition, the model works better if Monitor230n is further decomposed
into two functions, each of which tests a different switch. The function
M onitor30n tests Switch 3 and M onitor20n tests Switch 2. M onitor30n
enters the M onitor20n function if it does not see Switch 3 triggered. Moni-
tor20n enters the Monitorl 4 function if it detects S2 triggered, otherwise it
returns to the M onitor30n function. These functions are patterned after states
AinBsafel and AinBsafe2. Refer to Figure 6.7 for the new state diagram.
M onitor30n is left and M onitor30ff is entered if Train B triggers S3 [input
(0,0,1,0) is detected]. Monitor 3 0 ff goes to Monitorl4 if S2 is triggered [input
(0,1,0,0) is detected], otherwise it remains in that function.
6 .6 Document 6: System Functional Analysis 277
6.6.2.3.1 Terminology
12' = (SZ2', IZ2 0Z2*, NZ2*, RZ2')
where
Z 2 * = th e m o d e l of a c o m p l e t e I / O functional design,
S Z 2 * = states of s y s t e m Z 2 *,
I Z 2 * = i n p u t s to s y s t e m Z 2 *,
0 Z 2 * = o u t p u t s of s y s t e m Z 2 •,
N Z 2 * = n e x t state function, a n d
RZ 2 • = r e a d o u t function.
6.6.2.3.2 States
S12' = -CSAFE1 , S A F E 2 , A i n B s a f e1 , A i n B s a f e 2 , A i n B o f f ,
BinAsafe1,BinAsafe2,BinAoff>
6.6.23.3 Inputs
112' = IZ1 '
6.6.2.3.4 Outputs
01 2 ' = O Z V
EXHIBIT 6.3
/*SAFE1*/
if the input is (x,x,1,x) then
/* S1 */
the next state is AinBsafel
A is in da nger
else
/*ot her"^/
the next state is SAFE2
B is safe
A is safe
else if the cu rrent state is AinBsafel
/*Ai n B s a f e 1 */
if the input is (x,x,1,x) then
/* S3 */
the next state is AinBoff
B has power off
A is in danger
else
/*other*/
the next state is A i n B sa fe Z
A is in da nger
else if the current state is AinB sa fe Z
/*Ai n B sa fe 2* /
if the input is (x,1,x,x) then
/* S2 */
the next state is Safe1
A is safe
else
/*other*/
the next state is AinBsafel
A i s in danger
else if the current state is BinAsafel
/*Bi n A s a f e 1 */
if the input is (1,x,x,x) then
/* S1 * /
the next state is BinAoff
A has power off
B is in danger
else
/* other*/
the next state is Bi nA s a f e 2
B i s in danger
else if the current state is BinA sa fe 2
/*Bi n A s a fe 2* /
6 .6 Document 6: System Functional Analysis 281
else
print A IS SAFE
print B IS SAFE
end of output routine if loop
end loop for test t r a j e c t o r y input
end loop for test t r a j e c t o r y
EXHIBIT 6.4
Simulation Results for Concept 2
These tables represent the output of the simulation code in Exhibit
6.3. The input to the system was the test trajectories specified in the
Test Requirement.
Begin test of software conceptual design simulation.
T est T ra je c to ry 1
T est T ra je c to ry 2
T est T ra je c to ry 3
T est T ra je c to ry 4
T est T r a je c to r y 4 c o n t in u e d
T est T ra je c to ry 5
End of test.
286 Chapter six: SIERRA
EXHIBIT 6.5
State Table for Concept 1
000 1 0 0 0 100 1 X 0 X 0 X
000 0 0 1 0 010 0 X 1 X 0 X
100 0 1 0 0 000 X 1 0 X 0 X
100 0 0 1 0 110 X 0 1 X 0 X
010 0 0 0 1 000 0 X X 1 0 X
010 1 0 0 0 111 1 X X 0 1 X
110 0 1 0 0 010 X 1 X 0 0 X
111 0 0 0 1 100 X 0 X 1 X 1
CP Cleor
F ig u re 6.8 S chem atic for A ltern ative-1.
where the state 000 corresponds to the three flip-flops having outputs of 0 in
the order A, B, C.
HI is the input homomorphic relationship relating the input $ 1 in Docu
ment 7 to 1 1 Z1 in Document 6, Section 6.6.1.3.3. Similarly, HO is the output
homomorphism relating PA from Document 7 to 01 Z1 from Document 5,
Section 6.6.1.3.4.
HI = • C ( S 1 , I 1 Z 1 ) , ( S 2 , I 2 Z 1 ) , ( S 3 , I 3 Z 1 ) , ( S 4 , I 4 Z 1 ) >
HO = -C(PA,01Z1 ),(PB,02Z1 )>
Figure 6.9 Schematic for the electronics interface to the track hardware.
290 Chapter six: SIERRA
6 .7 .2 .2 S u b u n it physical synthesis
6 .Z .2 .3 H om om orphism s
This section describes the relationships between the physical software and
the functional system for Concept 2 as described in Document 6.
HS = -C(a Line 3 , S A F E 1 ) , ( a Line 5,SAFE2),
(c Line 1 , A i n B s a f e 1 ) , ( c Line 3 , A i n B s a f e 2 ),
(b Line 1, B i n A s a f e 1 ), ( b Line 3 , B i n A s a f e 2 ),
(d,AinBoff),(e,BinAoff)>
In this case a, b, c, d, and e refer to lines in.the software.
Set PBon
Set PA on
EXHIBIT 6.6
h:
bset &5,(%aO) * turn power to train A ON
bra c * goto c
org 0x1000 * initialization work
m o v -b & 0 , 1 ( %a0) * initialization work
mo v. b &0,3(%a0) * initialization work
mov- b &0 x 8 0 , 1 5 ( % a 0 ) * initialization work
mo v. b &0 x6 0, 7 ( % a 0 ) * initialization work
lea 0 x 1 0 0 1 3 , %a0 * initialization work
6 .7 .3 P h y sica l s y n th e s is o f C o n c e p t 3
Problems
1. Buildability-1. This problem concerns the hardware controller for
SIERRA designed in Document 5. The following describes TKYl, the technol
ogy you are allowed to use:
TTL integrated circuits
2.2 kQ resistors
500 Q resistors
simple switches
22 gauge wire
protoboard
light emitting diodes (LEDs)
Is this system buildable using technology TKYl?
294 Chapter six: SIERRA
Show that Z 41 is buildable using TKYx4, where TKYx4 is the set of all systems
that are isomorphic to Z4 as given below. (The definition of isomorphic
images was given in the solutions to Problems 18 and 22 in Chapter 3.)
Z4 = (SZ4, IZ4, 0Z4, NZ4, RZ4),
where
SZ 4 = iA , B>,
IZ4 = i Y e s , No>,
0Z4 = {On, O ff> ,
NZ4 = { ( ( A , No), A) ( ( ,A , Y e s ) , B),
((B , No), B) ( ( ,B , Y e s ) , A)>,
RZ4 = {(A, O ff), (B, 0n)>.
where
SZ12 = {S ta rt, In co rrect- sequence. 4-and-2,
Correct -sequence> F
I1Z12 = { 0 , 1 > , / * 0 me a n s Button 1 not pushed
1 means Button 1 pushed*/
I2Z12 = <0, 1>, / * 0 means Button 2 not pushed
1 means Button 2 pushed*/
I3Z12 = {0, 1>, / * 0 means Button 3 not pushed
1 means Button 3 pushed*/
In this chapter, we discuss other tools and techniques used by system design
ers. The sections of this chapter are independent of one another and need not
be examiined in order.
Quolity
characteristics
Product
characteristics
Manufacturing
Customer characteristics
demands
Quality
controls
Quality
characteristics
Product
characteristics
Manufacturing
characteristics
*-
XI
o»
*5>
«>
o
o
k.
♦- w
3 w O k. Vi
O O *> Vi o «
O k. o o> u
<0
w.
*>
O
jC
jaod> o
o u
Vi o
o
k.
0) «> X) c 4> k. c c
o. jQ 0» £ >x o o
w0> c
0> o
u k. ♦-
o 3 3 «> 3
V^HATs vs HOWs o O
a O > a>
u. O o. 0> £
O
Vi
«4- (/> H- H-
Strong relationship: 0 9 o ■o •o O o o o k.
w 0> d> k. i. «> o> O» >»
Medium relationship: O 3 0> > > «> « Vi u £ c C o> «
XI w k- XJ X) 3 c o c E
0> «>
Ui o o O» !e O» 4. o
Weak relationship: A 1 E E E Vi -J OL c •o <
3 X2 Xi 3 3 Q> o 0> o 3 <3 2 H
z O O z Z q: -1 •3 C
Easily implementable 0 A A A A A 0 © 0 :: 0 0
Affordable O :: © o
u
k. o
V. o <k.
I O *> V. o
CO
CO
«
s ’>o
o O
u ■ii
0>
o
Q
O
«> jC
«> o c
a. Xi c « w
CO
c o
» x: o
if* C jco o >k Z
3
8 ai w O 3 >
WHATs vs HOWS o *> 0 O
a
w. o
«1
o Xk
o. •*- «>
•*- E CO
0k>
Strong relationship: 0 9 O T3 ■O o O o o -
9> « k. k. CO • o> x: O k o* >»
Ok
Medium relationship- O 3 «> >
X)
>
w. .o X<k»
«CO k. o
3CO co o o o» c
c c c
O 1
£
Weak relationship: A 1 En XCOk E E
jO 3 3 0> O CL c xo»> CO Z
3 o
2: O O Z z Z -J 1 O
Lots of races per scout 0 0 A A O O 0 A A O 7
Very few ties O 0 A 0 A O 0 A 5
Happy scouts 0 0 o A o A A 0 10
No irate parents O 0 A A A A 0 10
No broken cors A A A 0 o A A 7
Nobody touch scout's car A o A 0 A A 4
Fair races
Every scout races every scout A o 0 A A A 5
Every scout races in every lane A o o 0 A A A 5
All race about some # times 0 A A A 0 A 4
Don't waste time 0 A 0 O 0 A 0 6
Easily implementoble 0 A A A A A 0 0 O 0 0 9
Affordable O 0 0 5
ID lO CSl ro 00 o ro CVl
Score CVJ CVI <0 to lO (P 0> M
ro CVI CVl CVl •»4
c *p
k.
JC • ro
>*
o. o <0 c•
o
TJ
Units (0 a o jhm
o w. i
«
O x: k. CO
Ok
c
CSl CO
CO
« CO
k.
« x; fi o ••- ». 3 om O «9
o
o
w
O 3 *kk> £
o «9 X 1 i
3
O C
n o o1
OC ss O |2 o z E a a
However, this does not necessarily mean that these measures will not be used
in the product design; they may still be necessary for contractual or other
reasons. To meet the goal of satisfying the customer, we must be sure to pay
strict attention to the measures with the highest scores. Attention to the
customer's wants is the ultimate purpose of the QFD chart. The chart and its
particular results are not as important as the entire process of concentrating
on the "voice of the customer" rather than on the "voice of the producer." In
the Pinewood Derby (see Figure 7.4), the Number of Races per Scout (with a
score of 345) and the Judging Resolution (with a score of 267) were the most
important measures. This makes sense because the scouts enjoy racing their
cars and the crowd gets upset when an apparent winner is declared a loser.
Target Values and their Units are also included in QFD charts (see Figure 7.4)
so that engineers can design to these optimal values. The Target Values are
those values that gave a score of 1.0 for the scoring functions defined in
Chapters 5 and 6. The technique demonstrated in Chapters 5 and 6 has a big
advantage over QFD because of its use of scoring functions. So far no one has
incorporated scoring functions into QFD charts.
In addition to the relationships between the Whats and the Hows, Figure
7.5 shows correlations between the Hows in the top triangle, which is called
the "roof" of the House of Quality. There are five possible levels of relation
ship between the Quality Characteristics: 9 for strong positive (a circle with a
dot inside), 3 for weak positive (an open circle), 0 for none (a blank square),
-3 for weak negative (a X symbol), and -9 for strong negative (a # symbol). In
some of our examples we will use the symbols, and in others we will use the
numbers. You should use whatever method your customers are most com
fortable with. Different symbols may even be used. As stated by Akao (1990),
the foremost principle of QFD is "copy the spirit, not the form."
Relationships between the Hows help to identify correlations between the
measures. For example, the Number of Races per Scout is strongly related to
the Length of Division Races. As one measure increases, the other will also
increase. Another example is Observed Scout Behavior and Number of Bro
ken Cars. This is a strong negative correlation because as the number of
broken cars increases, the scouts behavior becomes worse (i.e., the measure
of scout behavior is low when the scouts are not happy). We will explain the
left portion of Figure 7.5 in a later section of this chapter.
The Quality Characteristics from the top of Figure 7.4 are used as entries
in our second QFD chart, which is shown in Figure 7.6 (note that the entries
are on the left side of this chart). This chart shows the Quality Characteristics
versus the Product's Parts (or Components or Subsystems, whatever desig
nation is most appropriate for the task at hand). The score of each Quality
Characteristic was determined in the first chart and is used as the weight in
the second chart. The Quality Characteristics become the new Whats and the
Parts become the new Hows. The question now is, "This is what I am going to
measure, but how will I build the part to optimize this?" It is sometimes helpful
304 Chapter seven: Other system design tools
HOWS vs HOWS
WHATs vs HOWS
Strong relationship: 0 9
Medium relationship- O 3
Weak relationship: A 1
Score
Target value
to put several parts on the chart (or even the products of the competition) and
compare their overall scores. This may help determine the trade-offs. We fill
out this chart using the the same process used for the first chart. Fill out each
cell based on how well the Part is related to the Quality Characteristics.
Multiply the weights (the scores from the previous chart) by the numerical
values for the relationships and sum the numbers in each column to give the
scores at the bottom of this chart. The column scores now indicate how well
each Part helps meet the Customer's Demands. For the Pinewood Derby,
these scores indicate that Electronic Judging and Round Robin (Best Time) are
the best mix of parts for our system design. This is the same result derived in
the trade-off study of Document 5 in Chapter 5.
7.1 Quality function deployment (QFD) 305
WHATs vs HOWS
S tro n g re la tio n s h ip : 0 9
M edium re la tio n s h ip : O 3
W eak re la tio n s h ip : A 1
Lane 00 0 64 D iffe re n c e
C ar 0 0 0 ill N am es
P la ce 0 54 1st, 2 n d , 3 r d
L e n g th o f d iv is io n ra c e s 248 H ours
T ra in in g tim e 150 M in u te s
J u d g in g re s o lu tio n 0 2 67 m se c 0.1
C ost
Money 0 93 D o lla rs 150
T im e 0 122 D oys
S c o re
Figure 7.6 The second QFD matrix. Quality Characteristics versus Parts.
The third QFD chart (not shown) evaluates the Parts with regard to the
Manufacturing Processes. The goal here is to concentrate on the processes that
are ultimately the most important to the customer. For example, a new car
buyer views as critically important the process of painting the car's body, but
not the process of painting the car's oil pan.
This technique of linking QFD charts together can continue until dozens
of charts have been filled out (see Re Velle, 1988; King, 1989; and Akao, 1990),
as suggested by the "waterfall" chart of Figure 7.1. King (1989) provides an
example of linking dozens of QFD charts for one small heuristic example.
Akao (1990), arguably the definitive work on QFD in the English language,
gives many examples derived from real manufacturing systems. QFD can also
be applied to the top-level function, then to subfunctions, and finally to their
subfunctions. Using QFD to design real systems will involve the construction
306 Chapter seven: Other system design tools
7 .1 .2 O th e r Q F D ch a rts
0» to
w c «
«> •O JZ
o
§ CO o
Q. c o0» (0
O o k. c
o
o ‘iCO
o «
O 0»
■5 o o CO
c 0» c
o o> o c JZ O
«
ti» ® 3 ok. c k. CO ♦-
It
«> •O CO o *c 0> o
s
2
WHATs vs HOWs -j
z
H~ JZ
‘5 ; O o
E
« ♦-
c to
0>
E H-
Hi (/> ti. o ♦> O o 0» ot w
4> 0> c « 0» 0» c c o> O.
«
Strong relationship: 0 9 i £ 3
O. M w £: .£ c
Medium relationship: 0 3
y ^
*|: o
0>
C: o> ‘i
o *lu ♦- c E
2 «> w •*-
£ k. o c c. CO JZ
5 P o 0 > o o «> o 0»
Weak relationship: A i 9 H u •o > .2 < o -J DC 1 k.o
uJ < S 3 1-
No irate parents :: A A O 0: : ^
o O A A 0 o 10
No broken cars : A 0 A 7
Nobody touch scout s car ; A A A 4
Fair races
Every scout races every scout 5
Every scout races inevery lane o 5
Easily impiementable ” 0 0 : A A A A A 9
Affordable ii A A 0 : A A 5
lO ro lo :
::
.. evi ^ : : «-I o> 0> N- lO
Score : *«4
to : 1^ a> 0>
00
ro to
cvi :
Rank :: ^ CSJ in . : 00
s (0 5Ì-
success of the overall system throughout its entire life cycle. This QFD chart
will help the systems engineer to focus on the most important failure modes.
(8) Product Failure Modes versus Functions: Purpose: to help engineers
focus on the key Functions.
For the Pinewood Derby, we found that the Inspect Function was affected
only by human mistakes in weighing, and the Impound Function was affected
only by humans allowing modifications after inspection. These two Functions
are easily dealt with and deserve little attention. The other three Functions
are much more susceptible to Product Failure Modes.
(9) Customer Demands versus New Concepts: Purpose: to help engineers
objectively review new ideas and technology. If one of the Demands of the
Pinewood Derby customer was Ensure That the Scouts Did Not Place Their
Cars in the Wrong Lanes, the new concept Bar Code Readers might be very
enticing.
7 . 1 .3 A d v a n ta g es o f u s in g Q F D
The QFD process helps detect and resolve bottlenecks. An engineering bot
tleneck occurs when a Quality Target Value (shown in the right column of
Figure 7.6) is set at a higher level than the previous standard, at a level difficult
to achieve. For the Pinewood Derby, the original standard for Judging Reso
lution was the 10 millisecond capability of human judges. When the target
was changed to 0.1 milliseconds, a bottleneck was created. It took us three
months to design a system to meet this new target value. We were fortunate
that this bottleneck was discovered early in the design process. Bottlenecks
discovered late in product development can cause considerable delays. Early
detection of bottlenecks is a key benefit of QFD.
Japanese and American manufacturers have reported the following ad
vantages in using QFD (King, 1989 and Akao, 1990):
• the customer needs were understood and prioritized better,
• there was increased commitment from the customer toward finalizing
the design,
• design time was reduced (usually by half or a quarter),
• there was a greater awareness of the real system requirements,
• planning became more specific, which made consensus-building within
the company easier,
• an informed balance between quality and cost was made,
• traceability of requirement specifications was improved,
• control points were clarified,
• the number of engineering bottlenecks was reduced,
• the design aim was communicated to manufacturing,
• there were fewer manufacturing problems at start up,
• there were fewer design changes late in development and during
production.
312 Chapter seven: Other system design tools
’ we say fodo^
they he^r
Figure 7.8 QFD narrows the gap between what is said and what is heard. (The Far
Side cartoon by Gary Larson is reprinted by permission of Chronicle Features, San
Francisco, CA.)
7.2 IDEF 313
7.2 IDEF
IDEF is the Integrated Definition tool developed by the U.S. Air Force to
model large systems. It is commonly used in the aerospace industry. The
largest application of IDEF that we are aware of was the government-spon
sored ECAM (Electronic Computer Aided Manufacturing) effort performed
in the early 1980s, which resulted in a large collection of data related to the
manufacture of a generic aerospace product. There are three parts to IDEF
modeling: /DEfo, IDEF], and IDEF2 .
IDEFo is a function modeling tool. Figure 7.9 is an example of an IDEFq
chart. The information is presented to highlight what is being done at each
stage, but not necessarily how it is done. Inputs are translated to outputs in a
manner similar to that of state diagrams. In addition, IDEFq charts show the
mechanisms used to perform the operations and the controls applied to
ensure that it is done properly. Each function can be separately broken down
into constituent functions, much like a system can be broken into separate
subsystems. IDEF qis used much more often than IDEF\ and IDEF 2 .
IDEF] is an information modeling tool. It is an entity-attribute-relation
ship model. Entities possess attributes. They are related to each other through
one of the following:
1. developed for/has,
2. based on/has,
3. satisfies/satisfied by, or
4 requires/required by.
The function performed and the resources used are not highlighted;
instead, the emphasis is on how the information is created and related
throughout the process. For example, the Product Design is based on the
Customer Demands. The Manufacturing Process requires the Product Design.
IDEF2 is a dynamics modeling tool. It shows work flow through a series
of queues and resource allocations. The activity performed is not highlighted,
rather the work flow is. This model is helpful as a time-based analysis of what
is going on and when.
Many system diagramming techniques attempt to combine IDEFq with
IDEF2 - The result is far too many functions, since each function also shows its
time-based sequence in the process. The major problem with this is that many
"improvements" are made by eliminating one of these functions that, in
reality, must still be performed, though not necessarily at the time shown. By
sepapting the model into two parts, it is evident that a function must still
occur, but at a different time in the sequence. For example, in an engine repair
operation a part may go through the degreaser twice, once when it comes out
of the engine and once before it goes back in. The function Degrease is the
same, but it occurs at two different times. Eliminating the second degreasing
operation may reduce the cycle time of the entire process, but it will not
eliminate the Degrease function with all its fixed costs. Many phony cost
O J
t—i
C2 C3 Cl C4
Tool specs/problems A*
Resource pions Stores requisitions
Shedules, budgets/status, costs
^ Facilities plan
Manpower plan
▼ Plant layout/power,
jspoce support needs Equip plan Tool plan Purchase
Procured items Provide requisitions
II- facilities ►03
A41 Equipment
characteristics
Facilities
Provide
equipment
A42
9
Equipment Resource
characteristics
Provide Tool choracteristics
tools ---------------- ►Ol
S
A43
Tools
Provide Vi
people
V»
Production
A
People resources
------------ ►OE a-
00
Figure 7.9 IDEFqchart. s
8
7.3 Systems Engineering Design Software (SEDSO) 315
N u m b er of Collisions 8 0.258
Trips by Train A 7 0.225
Trips by Train B 7 0.225
S purious stops by A 3 0.096
S purious stops by B 3 0.096
A vailability 2 0.064
Reliability 1 0.032
316 Chapter seven: Other system design tools
N u m b er of Collisions 0 1 0.258
Trips by Train A 8 0.917 0.225
Trips by Train B 8 0.917 0.225
S purious stops by A 0 1 0.096
Spu rious stops by B 0 1 0.096
Availability 1 1 0.064
Reliability 1 1 0.032
N u m b er of Collisions 0 1 0.258
Trips by Train A 9 0.961 0.225
Trips by T rain B 10 0.982 0.225
S purious stops by A 0 1 0.096
S purious stops by B 0 1 0.096
A vailability 1 1 0.064
Reliability 1 1 0.032
completing the projects using the software the students had a much better
understanding of systems theory and documentation practices. The results
indicate that SEDSO was a help to the students, but a more complete and
user-friendly software package is needed.
By writing our own system design documentation software, we learned
a lot about what should be in a system design report. Many of the features we
put into SEDSO were not even considered before the design began. Because
of our hypertext environment, we decided to prompt the user to enter
weights, scoring functions, test methods, test results, and sensitivity analysis
for each requirement stated by the customer. This changed the way we
thought about the reports, particularly during the Concept Exploration phase.
We never "lost" a requirement or failed to address it, because the resulting
blank paragraph gets printed in the report. The automated calculations
provided us with four concept exploration analyses: present system (if one
exists), approximation, simulation, and (when appropriate) prototype.
Many proposed systems are similar enough to an existing system that
they can use the existing values for the figures of merit. For SIERRA, we had
hundreds of previous student projects that could be used for this purpose. In
the design of a mass rapid-transit system for a metropolitan area, the present
system of streets and roads can be used for the figures of merit. However,
many proposed systems, such as a manned station on Mars, cannot obtain
figures of merit from existing systems.
We have learned from SEDSO that any systems engineering documenta
tion aid should be able to load its own output back into its database. This be
came obvious when the students output their results to disk and improved the
appearance of the documents with a word processor. The modified text in the
word processor had to subsequently be reentered into SEDSO as well. The
review and documentation process would be more efficient if SEDSO could
read the document text and update the appropriate fields automatically.
Our documentation system was implemented using an IBM AT com
puter, but the students created their reports on an IBM XT. This computer
proved to be too slow for their use, especially when they output copies of the
entire set of documents.
The advantages of a computerized document system are many; the
principal ones are the ability to easily keep track of requirements from one
document to the next and to automatically calculate scores during concept
development.
a design using the most sophisticated processes money can buy and then have
to throw away half the final products because they are out of specification.
Unfortunately, this approach has become common among many American
companies.
To design for manufacturability, the design engineer needs complete data
on the parts and processes available for making the product. This "technology
catalog" must consist of capability specifications, available times, costs, and
quality levels.
Most designers provide nominal target values along with tolerances. For
example, they may state that a hole should be located at 5.000 ± 0.003 centi
meters. This implies that the designer would be happy with a hole located at
4.997 or 5.003 centimeters. However, the designer really wants all of the holes
to be at 5.000 centimeters, but he is willing to tolerate a few as far away as
0.003 centimeters from the target.
The manufacturing facility also uses tolerances to describe capabilities.
For example, a drill machine may have shown in the past that it is capable of
drilling a hole within 0.003 centimeters of the target almost all of the time. In
fact, a large amount of the time it is within 0.001 centimeters, but not always.
The manufacturing engineer will say the process is capable of ±0.003 centi
meter accuracy. The best way to describe what the designer wants and what
manufacturing can build is with a capability curve, as shown in Figure 7.10.
This curve is characterized by the mean and standard deviation of the process.
Most processes can be assumed to follow a normal distribution pattern, the
familiar "bell-shaped" curve. Without proving it here, it is safe to make the
assumption that the capabilities of processes tend to be normally distributed.
The physical characteristics of parts and processes also tend to be normally
distributed. It is not, however, safe to assume that performance criteria are
normally distributed. Many electronic systems output nonlinear signals that
produce skewed data distributions, as shown in Figure 7.11. The top of the
normal curve is the mean or average of the data, and the tails of the curve
approach zero at ±3 standard deviations from the mean. The area under the
curve, which represents the probability of an event occurring, is a constant at
-T ~— r
-1er fj. + 1er+2 cr+ 3 0 -+40-
1.0. Figure 7.12 shows the area under the curve at various distances of the
measured value from the mean. For example, the measured value is within
±1 g (standard deviations are represented by a) from the mean 68% of the time.
We will assume that our drill machine can drill holes at 5.000 centimeters
with a standard deviation of 0.001 centimeters. If the designer were to specify
the hole tolerance as ±0.003 cm, the specification limits would match the
capability of the process 99.7% of the time. However, this still means that 0.3%
of the parts will be outside of these limits. If this hole were for a VCR that had
a production run of 1,000,000 pieces, 3000 of the VCRs would be scrapped.
The cost of this waste would be much too high for a cost-competitive product,
such as a VCR (or any other consumer electronics product). Thus, the product
is not manufacturable even though the design seems to match the capability
of the manufacturing process.
Two valid options exist: either change the tolerances on the design so that
the part is manufacturable or improve the manufacturing process. A design
that tolerates a large variation in the process and still works is called a "robust
design." Car manufacturers have improved their products recently by chang
ing the design of the car so that the car is insensitive to variations in the
manufacturing process, the environment in which it functions, and the driver.
As a rule of thumb, most products that are manufactured for mass
production are designed for at least ±4a. High quality microcircuit manufac
turers in Japan design most of their products for at least ±5 g . Motorola has set
its sights on Six Sigma^^.
The probability of two independent parts or processes both being within
tolerance can be computed by multiplying their separate within-tolerance
probabilities. For example, if two holes to be drilled in the same VCR board
were both specified to ±3 g, the probability that one of them would be good is
0.997, but the probability that both of them would be good is 0.997 x 0.997 =
0.994, or 99.4%. The chances that six holes would be good is (0.997)^ = 0.982,
or about 98%. If all the parts and processes in the product were designed for
±3 g and there were 500 parts and processes, the effective yield would be
(0.997)™ = 0.223 or about 22%. This means that 78% of the products would
be defective. Many tests and rework operations would have to be added to
the production system to fix these defective units, and the cost of the product
would skyrocket. Instead, if all of the parts and processes were designed for
±4 g, the yield would be (0.99994)™ = 0.97, or 97% yield. Still too low a yield
for a mass produced item, but controllable with test and rework to allow the
7 .5 Functional decomposition 3 21
product to compete in the market. At ±5o, the product is cheap and of high
quality, with a yield of (0.9999994)^^^ = 0.9997, or better than 99.9% good units.
Sometimes the functions can be best derived from the states of the system
model. For example, in SIERRA (described in Chapter 6) the states were
1. Safe: Both trains are in the safe zone.
2. AinBout: Train A is in the danger zone, but Train B is not.
3. BinAout: Train B is in the danger zone, but Train A is not.
These states suggest the following functions:
1. Monitor Sensors to See When Either Train Enters the Danger Zone,
2. Monitor Sensors to See if Train A Leaves the Danger Zone or if Train B
Attempts to Enter the Danger Zone, and
3. Monitor Sensors to See if Train B Leaves the Danger Zone or if Train A
Attempts to Enter the Danger Zone.
t This section requires know ledge of our set theoretic notation. It m ay be skipped w ithout loss
of continuity.
7 .5 Functional decomposition 323
I0Rx29
I0Rx25 FNS(TR0,{3,4})
IlRx25={5,6} 01Rx25={3,4}
jCNSl,CNS2} 01Rx29
I2R x25={l,2} 02Rx25=
IlR x29
I0Rx26
IlR x26=|7.8[ 01Rx26=j5,6}
I2Rx29 02Rx29
I2 R x2 6 = jl,2 | 02Rx26={3,4[
FN S(TR 0,jt.2}) jCNS3,CNS4j
and saw a bucket of water on the desk in front of him. He quickly dumped it
on the flaming wastebasket and put out the fire. The mathematics student,
buoyed by the applause of the audience, was then escorted from the room.
The second phase of the contest now began. First, the engineering student
was brought into the classroom. He was turned to face the audience, and
someone behind him threw a match into a wastepaper basket. The paper burst
into flame. The engineering student looked at the table in front of him, but the
bucket of water was not there. He furiously scoured the whole room and
finally saw a bucket of water on the floor way in the back of the room. He
rushed to the back, grabbed the bucket, rushed back to the front of the room,
and doused the fire. The audience applauded, and the highly acclaimed
engineering student was escorted from the room. The mathematics student
was then returned to the room. He was turned to face the audience and
someone behind him threw a match into the wastepaper basket. The paper
burst into flame. The mathematics student looked at the table in front of him,
but the bucket of water was not there. He furiously scoured the whole room
and finally saw a bucket of water on the floor way in the back of the room. He
rushed to the back, grabbed the bucket, rushed back to the front of the room,
and put the bucket on the table in front of him. The audience was crestfallen.
After a pregnant pause, the mathematics professor exclaimed, "What did you
do?" The mathematics student replied, "I have reduced this problem to a
previously solved problem."
play a team of all-stars, the Super Bowl winner would probably win. Why?
Because of a better game plan and better team work. That is what concurrent
engineering tries to provide in the manufacturing field (Clausing, 1990).
Lake (1991) reported two government efforts to define concurrent engi
neering. (1) An Institute for Defense Analysis report (IDA Report ¿-388)
defined concurrent engineering as "a systematic approach to the integrated,
concurrent design of products and their related processes, including manu
facturing and support. This approach is intended to cause the developers,
from the onset, to consider all elements of the product life cycle from concep
tion through disposal, including quality, cost, schedule and user require
ments." (2) The U.S. Army Communications-Electronics Command has a
Concurrent Engineering Directorate who say, "Concurrent Engineering is the
simultaneous and integrated engineering of all design, manufacturing, and
support aspects of a product from concept through availability. It is a teaming
concept. All the people who normally get involved in the product come
together as a team. They work together, trading ideas and ensuring what they
decide now (like design decisions, or major product modifications) will not
adversely affect what they have to do later (like manufacture in quality, or
ensure support in the field). Everything is addressed simultaneously."
How do you do concurrent engineering? If you have read this book
carefully, you know how. Systems engineering, as presented in this book, is
concurrent engineering. It seems to be the consensus among practitioners that
concurrent engineering is systems engineering as it should be done, not as it
is actually practiced. One of the important concepts of concurrent engineering
is the use of multi-disciplinary teams, which was articulated for systems
engineering long ago by Wymore (1976).
Traditional design and manufacturing engineering has been charac
terized as the "throw it over the wall" technique. That is, the marketing
department determines the customer's needs and throws them over the wall
to the planners, who outline the requirements for the product and throw them
over the wall to the engineers, who design the system and throw their plans
over the wall to the manufacturing department, and so on. This is also called
a "stove-pipe" organizational structure: a manager talks to employees in her
division, to her boss and to her boss's boss, but not to people in other divisions;
the design engineers only talk to other design engineers, the manufacturing
engineers only talk to other manufacturing engineers, and the quality control
people only talk to other quality control people.
In concurrent engineering, the product is designed concurrent with the
development of production capability, field support, and quality engineering.
We do not design a product—we design a system that produces a product.
Clausing (1990) describes the benefits to the product of this concurrency:
1. field support personnel and quality engineers can have an earlier start,
2. trade-offs can be made involving design, production, and maintain
ability issues, not simply within the design.
7 .6 Concurrent engineering 327
To carry this last train of thought one step further, explaining your needs to
your supplier's supplier might reduce your supplier's cost, and consequent
ly your own. On the other side of the issue, listening to your customer's
customer might allow you to manufacture a product that is more satisfac
tory to the ultimate customer. If you are very good at communicating with
your supplier's supplier and your customer's customer, you may even be able
to reduce your work to nothing, though this may not be good for your
business.
The following example shows how talking to your customer's customer
can be beneficial. Assume that you work for a medical supplies distributor
and that you sell, among other things, hypodermic needles to physicians.
When you talk to the nurses and patients of a medical practice, you find out
that they prefer sharp needles. You then talk to your supplier's supplier, the
company that makes the machines that make the hypodermic needles. You
discover that they have a new laser technique for making microelectrodes,
which are used to record the electrical activity of single neurons in animals,
and that this laser technique can be modified to make super-sharp hypoder
mic needles. If you can convince your supplier to use the new machines, your
efforts would produce substantial added value to the product. However,
talking to your customer's customer and your supplier's supplier will not
always be possible. Bureaucratic, geographical, or communications barriers
often prevent it, but it is worth a try.
Since it is unusual to get something for nothing, there must be additional
costs involved with concurrent engineering.
• A product's start-to-finish time is usually shorter with concurrent en
gineering, so the concurrent engineering process must require more
people. If more people are to understand more about the product, more
time must be spent to teach them.
• There are more up-front costs, so there must be a strong initial commit
ment to the product.
• The size of the multi-disciplinary design team must change many times
in the design process, which may cause difficulties for many companies.
• Everyone involved must be educated about the new process and their
role in it. For example, in the early stages of the system design, manu
facturing people often bog down the process with premature discus
sions of nuts and bolts issues. They must be taught that the system
design process is iterative. The overall system is first designed and then
broken down into subsystems or components. The system design pro
cess is applied to these subsystems. Nuts and bolts issues must be saved
for design meetings about the subsystems.
A series of government and industry workshops have identified the
following ten impediments to effective implementation of concurrent engi
neering (Lake, 1991).
7 .7 New trends in engineering design 329
The lunar lander described in Chapter 2 had a flexible design and was very
successful, but it was not efficient because its capabilities exceeded the re
quirements. The Hubble telescope, also discussed in Chapter 2, required
precision manufacturing and could not cope with uncertain measurements;
it was not as successful.
In some areas of human endeavor, such as professional sports, efficiency
is more important than flexibility. Few professional baseball players play both
pitcher and catcher positions. They specialize in one position or the other to
become more efficient players. However, in modern engineering design,
flexibility is becoming more important than efficiency. In some old engineer
ing curricula, optimization and operations research were the most important
tools. Recently, multi-objective decision making, managing uncertainty, the
voice of the customer, fuzzy logic, total quality management, and design for
manufacturability have become more important.
Personal computers (PCs) are very flexible tools. They are used by some
people for text processing and by others for accounting. The PC can be used
for signal processing or process control with the addition of analog-to-digital
and digital-to-analog converters. It can be used to simulate artificial neural
networks by adding parallel processing boards. Special purpose machines
that do each of these tasks are available, but most people use the flexible PC.
If the PC design engineers were to increase the number of instructions that
the PC could handle, it would become more efficient for many tasks. But PCs
were designed for flexibility, hot efficiency. Another example of flexibility is
the Motorola 68000 microprocessor, which is used in Apple's Macintosh
computer, as well as in computers by Bull, Commodore, Fujitsu, GMX,
Hewlett-Packard, Motorola, NEC, NeXT, Texas Instruments, and others. It is
also used in many laser printers and other intelligent devices. It is flexible
enough to be used by many companies for many products.
Part of the reason that flexibility is becoming more important than effi
ciency is the rapid rate at which technology is advancing. For example, a
company could buy a certain device, spend a year optimizing its inclusion
into their system, and then discover that a new device is available that
performs better than their customized system and at less cost. In the days of
vacuum tube radios, every few years an engineer would design a circuit to
eliminate one vacuum tube; he would name the circuit after himself and apply
for a patent. With modern VLSI circuits, saving even a few thousand transis
tors is not an impressive accomplishment— the Motorola 68040 microproces
sor has over a million transistors.
Reusability is a subset of flexibility. The best examples come from com
puter software. In the early 1970s, various computer users running the Unix
operating system wrote hundreds of small stand-alone programs like the
following: tr transliterates a file, sort merges input files together, uniq com
pares adjacent lines in a file, comm reads two input files and marks lines that
are common to both, and deroff rem ov es all formatting commands fronn a text
file. Each of these programs was written for a specific purpose, but they can
7 .7 New trends in engineering design 331
be reused for something different. The following line produces an index for
a book:
deroff -w filename 1 tr A-Z a-z I sort I uniq I comm -23 - common index
The phrase "deroff -w filename" removes all formatting commands from the
file called filename, and the -w option arranges the file with one word per
line. This output then becomes the input for "tr A-Z a-z," which changes
upper-case letters into lower-case letters. The output of this process is passed
to "sort," which alphabetizes the file. The program "uniq" then removes all
duplicate lines. Next, the section "comm -23 - common" produces an output
containing all those words in the input file that are not in the list of the most
common English words. This final output file is the start of an index for a
book, although creating an index for a book never entered the minds of the
designers of these programs. By putting in a little bit of thought to the design
process they were able to make programs that could be used by others for a
broad range of purposes. Admittedly, most present word processors have
specialized built-in indexing programs. They are fancier, and they certainly
cost a lot more. But these programs do not have the flexibility to be used for
other purposes. They are also limited to indexing words instead of concepts.
Of course, the number of items to be manufactured affects the flexibility-
efficiency trade-off. For three custom-made communications satellites, engi
neers will try to reuse as much as possible from previous projects—the
efficiency of the system will not be important. However, if your company
hopes to sell one million word processors, it may be willing to put in a lot of
time optimizing the product.
At one time, engineering students were taught to build precise systems.
However, there is a lot of uncertainty in the modern world, and precise
systems can seldom deal with uncertain circumstances. In designing a system
for shooting clay pigeons, you could specify a Remington®700 Mountain Rifle
in 7mm Mauser with an Aimpoint® 5000 electronic sight and hand-loaded
162-grain Nosier solid-base bullets, but a shotgun would probably be better
able to cope with the uncertainties in the disk's flight, the variable wind
currents, and the hunter's neuromuscular system. Often, we cannot even state
a precise input-output specification; we can only bound the behavior, per
haps using matching functions to show the output behaviors that are accept
able for particular inputs, as was shown in the windshield wiper system of
Problem 3 in Chapter 4.
In Section 7.4 we discussed designing for manufacturability. With that in
mind, consider the simplified process of drilling two holes in a board and
attaching a handle. We could buy handles with two flat-bottomed pegs, V4
inch diameter, spaced five inches apart that require holes 0.25 ± 0.0001 inches
in diameter be drilled in the boards 5.0 ± 0 0001 inches apart. Alternatively,
we could reduce the required precision of the manufacturing process and
increase our chances of success by buying flexible handles with round-bottom
332 Chapter seven: Other system design tools
pegs and by specifying hole diameters of 0.28 ± 0.01 inches spaced 5.0 ± 0.01
inches apart. The later design v/ould still function despite variances in the
environment or in the manufacturing process. The resulting system is termed
robust. Systems should be designed whenever possible so that high precision
is not needed and so that they will work despite unexpected variances.
If an engineer designs the world's most precise and efficient widget, but
customers do not buy it, the engineer is a failure. The engineer must listen to
the voice of the customer. As exemplified by Sections 5.1.3 and 6.1.3 (in
Chapters 5 and 6, respectively), the "customer" may actually consist of a
disparate group that must be satisfied for a successful design. The customer's
"voice" amounts to the collection of demands that require accommodation,
which is discussed in Section 7.1 (in this chapter).
Finally, as is stated so often in this book, problem solving is not as
important as problem stating.
Problems
1. Engineering education. A university has many customers, but if we
concentrate only on undergraduate engineering education at state schools,
we can narrow them down to students, parents, the state government, tax
payers, and industry. Let us ignore the first four customers and only consider
industry. We asked several industry leaders what characteristics they felt were
important in new engineering graduates. They said a new engineering gradu
ate should Have a Basic Engineering Background, Be Ready to Participate in
Design Projects, Have Interdisciplinary Knowledge, Be Computer Literate,
Be Aware of Manufacturing Processes, Be Able to Write and Speak Well, and
Be Able to Solve Small Practical Problems. We then asked industry and uni
versity leaders to name the measures that might be available to see how well
these customer wants were met. They suggested: Whether the Program Was
Accredited, the Number of Hours of Laboratory Work, the Number of Large
Projects the Students Participated in, the Hours of Computer Usage, the Use
of Manufacturing Processes, and the Number of Courses Taken That Had a
Writing or Speaking Emphasis. Construct a quality function deployment (QFD)
chart, like the one shown in Figure 7.4, for these Whats and Hows. Provide what
ever weights and relationship values you think are best. By your calculations,
what are the most important measures that an employer should look for?
Next, we asked the university administrators what instruments they had
available for implementing these measures. They said that from the ABET
accreditation materials they could readily provide the number of units in the
curriculum described by Mathematics and Basic Science, Engineering Sci
ence, Engineering Design, and the Humanities and Social Sciences. With just
a little bit more effort they could provide the number of units in the curricu
lum described by Engineering Laboratories, Engineering Project Courses,
Science Laboratories, and Courses with a Writing Emphasis. Construct a QFD
Problems 333
Projects
The best way to learn how to design systems is to design systems: students
should do system design projects. At the beginning of the semester, the
projects can be small, taking no more than 10 student-hours, but at the end of
the semester, a project requiring 100 student-hours is appropriate. It is impor
tant that these projects be done by groups of two to five students, because in
the real world, systems are designed by teams. In this chapter we present three
types of projects: (1) simple projects that require little knowledge of "physics,"
(2) simple projects that require specific knowledge about the problem domain,
and (3) large projects.
The instructor should specify the documents to be written for each
project. It is worthwhile to write all seven systems engineering documents for
a few projects, but for most projects only parts of Documents 2,3, and 5 should
be written, since writing all seven documents is a very time-consuming task.
The most important tasks are specifying the requirements in Documents 2
and 3 and performing the trade-off study of Document 5. In the real world.
Documents 4,6, and 7 would only be written for big projects. Students should
keep track of the time and money invested on projects in which the design is
followed through its entire life cycle, and they should compare this data with
Figure 2.2.
For some of these projects the figures of merit are specified, for others
they are only suggested. Choosing figures of merit, assigning weights to the
figures of merit, and writing an equation to combine the figures of merit into
the final trade-off figure of merit are important tasks that must be done by the
class and instructor before the projects are begun.
Students often expect projects to satisfy the reciprocal principle. This
principle states: "All the data needed is provided and all the data provided is
needed" (Clements, 1989). An extension to this principle says: "The accuracy
of the provided data is appropriate to the problem." Unfortunately, this
principle seldom applies in the real world. A major part in analyzing these
projects will be finding the needed data and distinguishing between relevant
and irrelevant data.
336 Chapter eight: Projects
Separation
The second, and probably more important, part of our explanation in
volves the wake of chaotic air behind the ball. Air flows smoothly around the
ball until it gets to the separation points, where it changes into a chaotic,
swirling flow called the wake. It is easy to see a wake in water on the
downstream side of bridge supports and behind boats. In a boat, swinging
the rudder to the right deflects water to the right and, according to the
principle of conservation of momentum, the back of the boat must be pushed
to the left. You can feel this force if you put your hand out of the window of
a moving car. (Make sure the driver knows you are doing this!) Hold your
hand horizontal with your palm down. Now tilt the front of your palm
upward so that the wind hits the palm of your hand at an angle. This deflects
the air downward, which causes your hand to be pushed upward. We now
relate this to the spinning baseball in Figure 8.2. Before the ball interacts with
the air, all the momentum is horizontal. The wake that develops in the air due
to the ball's spin has upward momentum. The principle of conservation of
momentum requires, therefore, that the ball have downward momentum,
meaning that the ball will be pushed downward.
There are several ways to shift the wake behind a baseball. The wake is
shifted by the spin on a curve ball. The friction that slows down the flow of
air over the top of the ball causes the air to separate from the ball sooner on
the top than on the bottom, as shown in Figure 8.2. This shifts the wake
upward and pushes the ball downward. For nonspinning pitches, such as the
knuckle ball and the scuff ball, when the seams or the scuff are near the bot
tom separation point they create turbulence, which delays the separation, as
shown at the bottom of the figure. This again shifts the wake upward and
pushes the ball downward.
When the pitcher puts horizontal spin on the ball, the wake of chaotic air
behind the ball is moved to one side, causing the ball to curve and thereby
confounding the poor batter who is trying to hit it.
The lateral force on the ball is given quantitatively by
f lateral ~ -pTcR^COZ^
where p is the air density (0.0023 is a common value), R is the radius of the
ball (0.119 feet), co is its spin rate (190 radians per second is reasonable for a
8.1 Regular projects 339
curve ball), and v is its velocity (in feet per second). The direction of this force
will be horizontal, vertical, or something in between, depending on the axis
of rotation. The ball will also decelerate due to the drag force of the air:
fd rag = ^pnR^CpV^
where p is the air density, R is the radius of the ball, Cd is the coefficient of
drag (with a value of about 0.5), and v is the ball's velocity.
Most systems are impossible to model in their entirety, but they are
composed of hierarchies of subsystems that can be modeled. Simon (1962)
discusses the need for such hierarchies in complex systems. He shows that
most complex systems are decomposable, enabling subsystems to be modeled
outside the entire hierarchy. For example, in studying the motion of a baseball
it is sufficient to apply Newtonian mechanics considering only gravity, air,
the ball, and the bat. One need not worry about electron orbits or the motions
of the sun and moon. Forces that are important when studying objects of one
order of magnitude seldom have an effect on objects of another order of
magnitude. This is an important principle of modeling and is amply demon
strated in this project.
7. Boat bailers. Boating has become a national pastime; there are over
a million small boats on the rivers, lakes, and seacoasts of this country. For
the most part, they belong to weekend sailors. Therefore, the boats sit at their
moorings for weeks at a time unattended.
A common problem with such craft is minor leaking through propeller
shaft stuffing boxes, centerboard trunks, etc. It is too expensive to hire a
watchman, and battery-powered bilge pumps would run down most batter
ies. Boat owners want a simple bailer that operates from the natural energy
found in the environment (solar power, wind, water current, or wave actionX
Note that the rocking of the boat as a result of wave action develops consid
erable kinetic energy.
Your task, should you choose to accept it, is to design a system to remove
water from a boat. Your system should be inexpensive to build, easy to install,
and require maintenance less than than once a month, and it should not get
in the way when the boat is being used. Your system must also have sales
appeal. For rough design purposes, assume a leakage rate of one or two liters
per day and assume that the boat rocks ±5 degrees ten times per minute.
We have thought of several possible solutions and some problems with
each of these solutions. A piston and cylinder attached to the mooring line
would work well, except that if the cylinder is long and the pump piston leaks,
the pump must be primed. A round ball in a cylinder on the bottom of the
boat would make a good solution, but unfortunately good one-way valves
are hard to make. A hamster in a squirrel cage would work well, but animals
require automatic feeding machines or daily attention.
to the iceberg, because pressure causes the ice to melt. If our table is helpful,
use it. But you should attempt to validate it, because the price of water is deter
mined by political, not economic, considerations. For comparison, China's
Guangdong Province sells water to Hong Kong for $240 per acre-foot.
Other alternatives under consideration include an undersea pipeline
from Alaska that would cost $150 billion and deliver 12 trillion gallons of
water per year and an overland pipeline from British Columbia's North
Thompson River that would cost $3.8 billion.
IFOP
TF0P =
UFOP
Before construction begins each class should decide on the weights for these
figures of merit. In the beginning of your design process you may want to
read R. S. Kirby et al.. Engineering in History, McGraw-Hill, New York, 1956,
pp. 220-244.
11. Traffic synchronization. Design a system for synchronizing the
traffic signals on a section of a busy street in your town. A synchronized
system is one in which the green lights cascade in each direction, enabling a
vehicle to maintain a cruising speed of 40 kilometers per hour without
stopping. We want to know how long it would take for the cost of the energy
saved by the vehicles to pay off the cost of installation and maintenance. The
class should be split into groups of two to five students. Define the problem,
plan your solution (including data collection and data analysis), and write the
systems engineering documents. This project should be preceded by a lecture
and a homework set on the time value of money.
12. Artificial heart valves. Design a one-way valve to be used as a
replacement for a human heart valve. Outline a testing procedure for this
valve. List all reference materials you use.
The heart is a four-chambered pump, and each chamber has an output
valve. Disease sometimes affects the mitral valve of humans. When this
occurs, it is sometimes advantageous to replace this valve with an artificial
valve. Many types of valves, including pig heart valves, have been tried; none
have been entirely satisfactory. The heart beats about 80 times per minute.
The valve must withstand a back pressure of at least 200 millimeters of
mercury. Artificial valves have been used on children as well as adults. With
present valves, the survival rate after ten years is about 65%.
Problems with present valves are due to infection, rejection, wear, the
slow rate of tissue in-growth, and thromboembolism (the obstruction of a
blood vessel with a blood clot that has broken loose from its site of formation).
To market this new medical device, you will need approval from the
Federal Food and Drug Administration (FDA). To gain this approval you will
8.1 Regular projects 343
need, among other things, data collected from animal experiments and care
fully controlled clinical trials on humans. As a part of the design of this valve,
you must outline a testing procedure that will help you obtain FDA approval.
Things you should consider include:
1. Biocompatibility: The surrounding tissues should not be adversely
affected by implantation, nor should the degradation of the product
be detrimental to the biological tissues.
2. Noncorrosiveness: The physiological fluids in the body correspond to
a dilute saline solution, 0.9% by weight isotonic NaCl. For this reason,
the implant materials must be able to resist corrosion that might be
caused by this fluid. Also, if metals are used, caution must be taken to
keep from setting up galvanic cells that will cause galvanic corrosion.
Corrosion is not only harmful to the tissues by inflaming and irritating
them, but it will ultimately lead to the failure of the implant.
3. Chemical stability and inertness are related to the corrosion-resistant
properties of an implant. Even if corrosion is not present, the chemical
inertness and stability come into play. For example, an implant may
absorb body fluids that might change its properties.
4. Mechanical and physical compatibility require that the valve fit in its
proper place in the heart. Consider the different sizes of valves neces
sary for children.
5. Thrombo-resistance is one of our major concerns. The implant mate
rial must permit the normal flow of blood without causing coagulation
of the blood.
6. Long service implants must not degrade in the environment of the
body. Some materials degrade, which leads to a reduced life of the
product.
7. The valves must have the necessary strength to maintain their shape
and serve their purpose.
8. Wear resistance must be considered. Low friction is desired. You do
not want to produce potentially hazardous wear fragments.
9. Electrical characteristics, if any, should be inactive with respect to the
surrounding tissues. The valve should not be adversely affected by
microwave ovens.
id. If the valve will be exposed to magnetic fields, it may have to be built
of nonferrous metals. Otherwise, the device might fail if the person
were subjected to a high magnetic field.
11. The following numbers should be of interest to you: A heart valve
costs $3000. The operation to install it costs $15,000 and maintenance
344 Chapter eight: Projects
for the first year is about $100. The following numbers are for heart
transplants, not heart valves, but they give insight to costs associated
with open heart surgery. A heart transplant costs $85,000 plus $10,000
for drugs in the first year. Costs for the ensuing years will be $4500 for
drugs and $10,000 for hospital and doctors' fees. About 2000 heart
transplants are performed per year. While waiting for donors, some
patients receive artificial hearts that can cost $300,000. [These numbers
are courtesy of Jack Copeland (heart) and Sharron Schnider (valves).1
13. Flywheel energy storage system. Power brownouts and blackouts
have become common in many countries. Suppose a homeowner decides to
remedy this problem by installing an electric motor/generator with a large
flywheel. At night, when the electric load is low and power is cheaper, the
unit will run as a motor, storing energy in the flywheel. During hot summer
days, when the power from the utility might fail, the flywheel will run the
generator and power the homeowner's electric load, which consists of air
conditioners, electric ovens, clocks, etc.— about 10 kilowatts of load alto
gether. (Flywheels have also been suggested as a means for storing energy for
buses and street cars.) You are asked to find out whether this idea has merit
using space, weight, and cost as figures of merit.
The flywheel can have a maximum speed of 10,000 revolutions per
minute. In delivering energy it may slow down to 50% of its maximum speed.
It must supply 10 kilowatts for 10 hours. Consider only a simple flywheel
having a rim one-tenth the radius of the wheel connected to the hub with light
spokes. By keeping friction low, it is hoped that 85% of the total energy stored
in the flywheel can be recovered as electric energy. One of your biggest design
constraints is to make sure that the flywheel does not fly apart due to
centrifugal forces. Assume that the material you are using has a tensile
strength of 150,000 pounds per square inch.
In your failure analysis, discuss what happens if your flywheel breaks.
Will it be a catastrophe?
14. Postage scales. The cost of postage in the United States has been
rising rapidly in the last few years. Unless some unforeseen technology or
procedure is introduced, it appears that the cost of delivering a one-ounce
first class letter may be two dollars by the year 2010. Some of the contributing
reasons include:
1. a general inflationary trend in the economy,
2. a more rapid increase in labor costs in the service sector as compared
with labor costs in other parts of the economy, and
3. the private sector paying the bills for all government and political
mailings, which have increased markedly with the growth of govern
ment and increase in political activity in the U.S. in the past few years,
particularly with the advent of computers that can produce address
labels rapidly and at a low cost.
8.1 Regular projects 345
Attempts have been made to automate the post office because people do
not want the boring jobs, but automation m.ust be carefully applied. Other
wise, the result can be an increase in cost merely to appear modern.
Your task is to design, build, and test a postage scale that is inexpensive,
convenient, and accurate. Dampening of the scale from the workers' hands
will not be allowed. Letters must remain dry and unmutilated. No materials
can be considered free of cost. Estimate the price you would have to pay for
the materials to make 10,000 of these devices. The scale should be calibrated
to give the postage required for any size first class letter up to 24 by 32 centi
meters and any weight from zero to five ounces. For calibration purposes, it
is convenient to know that 20 normal (3 by 5 inch) index cards weigh one
ounce.
In solving this problem, you can use any principle or materials available,
but the quality of your design will be measured by the final Trade-Off Figure
of Merit (TFOP) defined as follows:
^00 - Penalty
TF0P = — ------ ----- - sec ^
(Cost) (Time)
or perhaps
10"^ - 1 0 0 Penalty
TF0P = sec
(100 + Cost)(Time+ 10)
where. Cost (in cents) is the cost of the materials used to build your scale; Time
(in seconds) is the time needed to determine the postage required for five
letters ranging in weight from 0 to 5 ounces; and Penalty (in cents) is the
penalty for a lack of accuracy. This penalty is determined by comparing the
postage your scale indicates with the correct value and summing the absolute
differences for the five weighings. Which of the two above equations for the
figures of merit do you think would be best? Why? Throughout most of this
book our final Trade-Off Figures of Merit were linear combinations of the
overall Performance Figure of Merit and the overall Utilization of Resources
Figure of Merit. In this case, this combination is a ratio instead of a sum.
All systems will be verified publicly by the inventors, who will explain
how they arrived at the Cost. Your Teaching Assistant may suggest a different
value for Cost if some of the assumptions seem unreasonable. The values of
Time and Penalty will be measured when the inventors weigh five "letters"
provided by the instructor. All groups will have five minutes to set up their
system and have it ready to begin the weighings. Any design that takes more
than five minutes to set up will be disqualified.
15. Electrical transmission line towers. Electrical transmission line
towers are often subjected to horizontal forces, such as transverse forces due
to the wind blowing against ice covered conductors and longitudinal forces
346 Chapter eight: Projects
IFOP
TF0P =
UFOP
50cm
15cm
Plan view
later. Your documentation should explicitly describe how you have taken into
account such examples of Murphy's law.
16. The Lego® bridge. Build the Popsicle® stick bridge or the electrical
transmission line tower out of Lego bricks instead of wood. Or, use an
advanced Lego kit, a Fishertechnik® kit, or some other kit provided by your
instructor to make a machine that can move three meters ( or ten feet) in three
minutes. Develop a test requirement that can be used to judge the system.
17. Crane speed control. A construction elevator is used to haul mate
rial up and down a high-rise building under construction. The problem with
the system is that the hoist (with a maximum load of 100 kilograms) elevates
slower than is desired. Conversely, when the hoist carries debris back down,
it goes too fast. If a 100-kilogram load is brought down from the top of the
building, which is 50 meters above ground, the hoist can attain a speed of 25
meters per second. The motor must be controlled in such a way as to provide
a braking torque.
We want to provide an automatic control system for the motor, as shown
in Figure 8.4. A tachometer is attached to the motor shaft to measure the speed.
The tachometer produces a voltage proportional to the shaft rpm:
N volts
v=
75 rpm
A reference voltage, Wef, is selected by the operator in the range -24 to +24
volts. The error between the tachometer voltage and Vref is amplified by a
power amplifier with an output of A times the error. We would like to select
the amplifier gain A so that the speed error does not exceed 5%. The motor
nameplate reads:
T = motor torque
= 201 newton-meters, where
I = current in amps,
E = terminal voltage
= 0.133N + R1 volts, where
N = speed in rpm and
R = armature resistance.
8.1 Regular projects 349
Vref
There is a 10:1 gear reduction between the motor and the drum. The load can
vary from 0 to 100 kilograms.
18. Oil-filled cylinder. This is a "black box" problem, in which you are
to determine a physical property of a complex object by using simple labora
tory devices and basic principles. You will be given a metal cylinder closed
at both ends. All you know about the cylinder is its length, its outside
diameter, and its contents—it is filled with oil.
Your task is to experimentally determine the polar moment of inertia of
the steel container only, excluding the oil. You should discuss the probable
accuracy of your results and perform an independent approximate check on
your answer.
19. Scheduling hospital appointments. If you are able to gain the
cooperation of some hospital administrators, you might be able to design a
scheduling system for the appointments of hospital outpatients. The follow
ing description is specific to an oncology center. Typically, scheduling is done
at five separate locations:
1. Receptionist's desk: The receptionist schedules new patients for in
itial and follow-up examinations by a given doctor.
2. Operating room: An operating room is available to the center one
day each week. The operating room is used for patients receiving
radiation implants as a means of cancer therapy. Doctors requiring the
use of the operating room must request scheduled time.
3. Linear accelerators: There are four linear accelerators that are used
for patient treatment and for research by the laboratories within the
center. Each machine has a schedule book. Scheduling is done by the
technician who operates the machine. The patient's doctor must be
present for the initial setup of the patient on the machine.
Simulator: Before treatment on a linear accelerator, a patient is
viewed by a simulator that uses X-rays to determine the exact location
350 Chapter eight: Projects
that many Teaching Assistants would have the patience to sit through such a
test. Suggest the design of a system that could test your system for malfunc
tions, but do not build it. That is, any time your system is not performing its
task properly, it could be programmed to do self testing.
22. A digital clock. Write an assembly language (or some other lan
guage) program that will simulate a digital clock. The clock should display
minutes and seconds in decimal numbers. The format of the output should
be mimorsiSo, where m\mo is a two-digit decimal number between 0 and 59
representing minutes and siSo represents seconds. Your program should
generate the time for seconds using a loop that counts down from some large
number to zero or by performing some large number of other operations that
will delay time. (We do not expect it to be very accurate.) After the clock is
incremented, the program should replace the current display with the new
time (just as a digital watch does). At first, your waste-time loop should be
long enough to clearly show the lab instructor the first transition from seconds
to uiQ. After this, the waste-time loop should be shortened—to make the clock
run faster—so that the transition from 59:59 to 00:00 can be seen by the lab
instructor. Design, but do not build, a system to verify that your clock is
performing correctly.
352 Chapter eight: Projects
W ho's got the digital watch? Ask two people what time it is. The person
with the analog watch will say, "It's a quarter to five," and the person with
the digital watch will say, "It's four forty-four." The digital watch owner's
response fallaciously implies greater accuracy. He probably set his watch last
month using the clock on his stove, whereas the guy with the analog watch
may have set his watch that morning using radio station WWV. On a flight
across the international date line, a pilot was reported to have said, "Here in
Samoa it is 4:30 on Tuesday, but at our destination in the Fiji Islands, it is 3:30
on Wednesday. So when we land, those of you with analog watches should
turn your watches back one hour. For those of you with digital watches, God
help you. As for me, I prefer a sundial."
23. The SIE Railroad. Design and build the three controllers men
tioned in Chapter 6 for the Systems and Industrial Engineering Railroad. In
your first design, use integrated circuits and wires to form a hard-wired
controller. Build this on the protoboard and control the trains with it. In your
second design, write a high-level (i.e., Pascal) program to do the same job. In
your third design, write an assembly language program to do the same job.
In your final report, you must compare and contrast these disparate technolo
gies. Include a discussion of cost per unit, capital costs, number of units to be
built, time of construction, ease of construction, ease of maintenance, ease of
modification, ease of modification by someone other than the designer, reli
ability, debugging, and testing methods.
For ease of construction you will probably assume that no two sensors
can be activated simultaneously. However, you should analyze your systems
and explain what each of them would do if there were simultaneous inputs.
How will you test your system? One obvious way is to use four switches
to represent the input sensors and two LEDs to represent the output power
controls. Apply the input trajectories, as shown in Chapter 6, and record the
output trajectories. Design, but do not build, an appendage to your system
that could test the whole system for proper operation any time a Built-In Test
Signal (BITS) is presented.
24. Don't flatten your soda pop. Do you get annoyed when you pour
your soda pop over ice and all the bubbles come out? Let me suggest a simple
alternative: Wash your ice cubes first. First, fill your glass with ice. Then, cover
the ice with water and quickly put your fingers over the top of the glass and
pour out the water. Now when you pour in the soda pop, you will not lose
the bubbles. Why does this work? Do you have dirty ice? Describe this method
as a series of functions with inputs and outputs.
merit must be traded-off against others. For an excellent article about the
systems engineering of GM's electric car, see David H. Freedman, "Batteries
Included," Discover^ March 1992, pp. 90-98.
26. Index Card Towers. Other popular projects involve building struc
tures with cardboard index cards. The only materials allowed are 3 by 5 inch
index cards and paper clips. Two suggested projects are:
1. design and build the tallest tower that will support one red brick and
2. design and build the structure that will support the most red bricks at
least three inches off the ground.
Of course, the weight of the red bricks must be specified, and specifying a
maximum number of index cards is advisable. Figures of merit must also be
designed. Some reasonable ones include:
6. Design a device that will allow my dog, but no other animal or human,
to enter and leave my house. She is a big dog.
7. Design a household water conservation system.
8. Design a system to provide food and water for a dog while its owners
are away for the weekend. If your device were to fail (due to a
lightning strike, power failure, etc.), would it be better to overfeed or
underfeed the dog?
9. Discuss the role of alchemists in defining a technology for a project
that has the input/output specification of turning lead into gold.
10. Design a device to be installed in a car or a truck that will show a traffic
inspector that the speed limit has been exceeded. The design of the
device must take into account the fact that honesty is not an inherent
property of human beings. How will you test your system?
11 . Design a device that will inform the handlers of a fragile package that
it is suffering undesirable shocks during transportation. Will your
system be one-shot (like a flash bulb) or reusable (like a strobe light)?
Design a test program for both types.
13. Design an automobile instrument panel. Include gauges for water
temperature and level, transmission fluid level, the need for an oil
change, etc. Show power and sensor connections. Is your system
fail-safe if an indicator light burns out?
14. Design a system for improving an automobile's traction on ice. Default
systems include snow tires (with or without studs), tire chains, cable
chains, and four-wheel drive. How will you test your system?
A floppy disk containing an interactive program that plots the scoring func
tions of Figure 4.2 is available from the authors. It was written by Dave
Voorhees using Lotus 1-2-3® and runs on IBM-compatible computers. The
values for scoring functions may also be computed using the C language
program listed below.
^ i nc l u d e < st di o . h >
ma i n ()
i
do ub le ssf(), score, a;
/* e x am pl e of a o n e - s i d e d scor in g fu nc ti on */
printf ("One sided s cor in g f u n c ti on \n " ) ;
for (a=0-0; a<=5-0; a+= 0-25)
/* S t a n d a r d Sc oring F u n c ti on */
/* I => lower t h r e s h o l d */
/* b => b a s el in e */
/* u => upper t h r e s h o l d */
/* s => slope at b a s e l i n e */
/* V => figure of me ri t */
d o ub le ssf(l,b,u,s,v)
do ub l e l,b,u,s,v;
i
d o ub l e score, ssf1();
int ne gs lo pe ;
/ * score => c a l c u l a t e d score based on input */
/* n e g s l o p e => flag i n d i c a t i n g n e g at iv e
slope */
if (s < 0.0) i
s = ~s;
negslope=1;
>
else
n e g s l o p e = 0;
/* fi gu re of merit is ab ove the b as e l i n e */
if ( v > b ) -C
score = 1.0 - (s s f 1 ( 2 . 0 * b - u , b , s , 2 . 0 * b ~ v ));
>
/* f i gu re of merit is be low the b as e l i n e */
else
score = s s f 1 ( l,b,s,v)
i f (negs lope == 1)
score = 1-0 - score;
return (score);
>
/* this routine does the math */
d o ub le s sf 1 ( l , b , s , v )
d o ub l e l,b,s,v;
{
/* I => lower t h r e s h o l d */
Appendix 359
/* b = > base 1 */
/* s = > slope */
/* V = > f i gu r */
/* X => power */
/* B IGNUM =>
(999-0 is okay) */
static float BI GN UM = 999.0;
d o ub le X , pow();
if (v <= 1) i
return (0.0);
>
else
i
X = 2. 0 * s * ( b + v - 2 . 0 * l ) ;
if (x > BIGNUM)
X = BIGNUM;
return ( 1.0/ (1.0 + p o w ( ( ( b - I )/ (v - 1 ) ) , x )) );
>
Monotonic, 69 165-167,170,172-175,
Moore, 35 203, 205,207,209,210
Mr. Wrong Wrench, 64 in SIERRA, 215, 217,219,
Multi-disciplinary, 3, 326-329 225-228,230,232,234,
235,246,248-254,
Next state, 3 6 ,40,43,89-91,167, 267-269,275,278,279,
168,170,172-176 282,286,288,290,292,
Normal curve, 319 295,296
Notation, 3 ,3 5 ,3 6 ,3 8 ,4 0 ,4 6 ,5 4 , Output port, 37,39,41,234,249
61, 80,210,322 Output trajectories, 37,38,66,85,
Number Irate Parents, 101,114, 86,98,109,215,226,232,
117.122.134- 154,157 241
Number of Adults, 103,120,127,
134-154,161,202 Parity, 47,52
Number of Broken Cars, 102,114, Percent Happy Scouts, 101,114,
117.126.134- 154,303 117,122,134-154,156,161
Number of Collisions, 67,71,72, Phase, 6 ,1 8 ,2 0 ,2 2 ,2 3 ,2 7 ,2 8 , 30,
227,236,238,245, 31,45,84,94-96,214,223,
255-262,297,315-317 318,325
Number of Electrical Circuits, 103, Phone, 50,54
120.127.134- 154,202Physical synthesis, 18,22,23,25,
Number of Lane Repeats, 102,115, 26.27.29.321
117.126.134- 154 for Pinewood Derby, 91,92,
Number of Repeat Races, 102,115, 96,178-182
117.126.134- 154 for SIERRA, 220,286,292,295
Number of Ties, 101,113,117,122, Pinewood, 1 ,2 ,4 ,2 2 ,2 3 ,4 5 ,6 6 ,7 6 ,
129.133.134- 154 83-212,300,303,304,306,
308.309.311.312.317.321
Observability, 60,129 Popsicle stick bridge, 341-342,348
Operational Need Document, 2, Porch (of House of Quality),
2 2 -24,27,28,336 306-308
for Pinewood Derby, 85,87, Postage, 344-345
9 5 ,96,104,127 Problem Situation Document,
for SIERRA, 215,216,225,230, 22-24,2 8 ,6 4 ,8 4 ,9 3 ,9 5 ,
247,292 214,221
Others Touching Scout's Car, 102, Problem stating, 63,329,332
115.117.126.134- 154Project 1 ,3 -5 ,1 2 ,1 3 ,1 7 ,2 1 ,2 3 ,2 8 ,
Output, 2 1 ,2 4 ,3 0,33-36,38-41, 30,74, 79,315-317,329,
4 3 ,4 7 -4 9 ,5 1 ,5 3 ,5 4 ,6 0 , 332
65-67,70-74,76-81,316, for assignment, 335,337,
318,319,321-324,331, 339-342,346,350,353
342,348,350-353 Pinewood Derby, 93,95,96,
in Pinewood Derby, 85,86, 98,103,127,128
89-91,97,103,108-110, SIERRA, 213,222-224,226,
112,122,126,128,155, 228,233,246,248,292
368 Index