Slashdot Mirror
Airbus A380 Under Fire
jose parinas writes "The security of the Airbus A380 jetliner is questioned by a U.S. Engineer that faces arrest and bankruptcy in Austria. A year ago, Mangan told European aviation authorities that he believed there were problems with a computer chip on the Airbus A380, the biggest and costliest commercial airliner ever built."
This story will never get off the ground.
Take chip, look for problem, if exists fix and replace. It isn't like they would have to rebuild the whole plane.
The story about the plane losing pressure then flying on autopilot before crashing is interesting. Doesn't the plane know it has lost cabin pressure? If it's on autopilot why can't it reduce altitude so the people can regain consciousness? Hell, why can't it just declare an emergency and automatically land at the nearest airport after receiving an OK signal from the airport that it's safe to land.
We have all this technology but it's implemented by idiots.
The ratio of people to cake is too big
TTTech has offered to drop its legal action against Mangan, court records show, and pay him three months of severance, if he retracts his statements.
This doesn't sound like much after all he's been through.
Bradley Holt
Let's just hope at least slashdot does keep its hands out of the propaganda war already started between Boeing (US) and Airbus Industries (EU). It's a dirty economical struggle, its about jobs and profits in the US, or jobs and profits in Europe. And because of that, plus the military aspects of aircraft research and development, both companies are, and will always be heavily funded by the respective governments.
Keep that in mind before making mindless posts about A. vs. B. . Thanks for your time.
A World in a Grain of Sand / Heaven in a Wild Flower,
Infinity in the Palm of your Hand / And Eternity in an Hour.
He lived & committed the crime in Vienna, how would your US law provide any protection ?
Try reading stuff, it usually helps.
There are places where the networks are not touching,and there are places where they are-Boeing's Lori Gunter
Let us assume that a problem is found. But even if it is fixed, then how can we know for sure that other problemtic parts were used? If this chip was able to get through the engineering screening process, perhaps other faulty componentry was used as well. A fault here could, in theory, make need for a complete analysis of every single part used. And in a plane this size, that's a massive amount of time and effort.
Cyric Zndovzny at your service.
The story begins with a portrait that tries to paint this fellow sympathetically, and I normally would look on him sympathetically. He goes to the government and complains about problems he perceives, and he gets fired. The events transpire, and eventually a judge tells him to be quiet. By now this is out in the public - he is an American with a family in a foreign city and if he had a need to do something he did it. But then he violates the judges order and begins posting about this on a blog? It makes me think there's something more to the story, or as aviation consultant Weber says "There is something really unusual about this case in the sense that there is this hard standoff between Airbus and the individual, it doesn't make any sense to me." It doesn't make sense - him violating a judges order doesn't make sense, them filing criminal charges doesn't make sense. There seems to be something more at work here. I'll read more about this, but both parties are acting unusual to the point where I am really on neither side, whereas normally I suppose I would be on his side.
The article claims that a failure in the chip could open valves that would cause rapid decompression.
There is NO WAY a valve could open up far enough to cause that kind of decompression. It would take several minutes to equalise with the outside air.
The article also claims that such depressurization would cause uncomciousness 'within seconds'.
Well, at 45,000 feet, you have 15 seconds of useful conciousness. Most craft cruise at around 38,000', where you'd have a full minute of useful conciousness... PLENTLY of time, in both cases, for you to put on supplemental oxygen masks.
There may well be problems with that chip, but the article really hypes up the fear factor. Typical of today's journalism: just repeat what others say, dont even bother making your own analysis, and you can't be sued.
If you care enough to RTFA, you will see the following line
Yet his employer ignored his concerns, he alleges, because fixing the glitches would be costly, could take up to a year and would further delay the A380's launch.(a year behind already)
Really strange reporting. For starters, they don't even get basic facts right, e.g. they report Airbus was "owned by Dutch and British companies", when in fact it is owned by EADS (80% share, French/German) + BAE (20%, British). They also keep calling it a problem between Airbus and Mangan, when the actual events (as per their own article) seem to only involve Mangan and his former employer, TTTech. Airbus doesn't seem to have any involvment in this.
Read the article again. This chip didn't "get through." According to the whistle blower, the company forged his signature on documents approving the chip. If true that means they knew about the problem and tried to cover it up.
I worked for 3 pharma companies. I would never openly challenge a company like this about their product. I would find a new employer first and then I would try to leak out what was going on - and I would be extra careful that my new and old employers would not find out it was me. Why volunteer yourselfs to go in front of a firing squad? - It is not important that you made the point first, give a journalist a hint, he will give you a story. If they then call you then to testify, you do it, maybe without trying to look eager.
Reporting to autorities on your own employer - even if there was a serious wrongdoing - is certain to end your industry career.
I doubt that we will ever figure out - and I suspect that even if we did figure out we couldn't do much about it
I'm not positive this is his blog (it looks more like a static web page) but it does have a ton of information on the subject:
http://www.eaawatch.net/index.html
"Eve of Destruction", it's not just for old hippies anymore...
The FAA and European agencies are pretty close to each other on regulations...a good thing since we fly big commercial aircraft in each others airspace all the time. The rest of the Airbus fleet is type-certificated in the US, I can only assume they wish the same for the A380.
In this country, you're not going to put an "off the shelf" anything in a commercial aircraft unless it's gone through appropriate approval processes. You can't change the color of the fluid in the compass bowl without PMA approval.
Furthermore, if they want thier TCDS (Type Certificate Data Sheet), they will need to, among other things:
1) Fully ground test the operation of the depressurization valves
2) Ground pressurization test the aircraft
3) Test the pressurization systems in flight
[Reference: Title 14 Code of Federal Regulations Part 25, Subpart D, Paragraphs 841 and 843]
Bypassing the approval process for a component is a serious charge. However, given that a gigantic double-decker commercial aircraft has "new and novel" written all over it, something just doesn't quite compute here.
Smells like a propaganda war, but I'll keep my eye on it.
A goal is a dream with a deadline
My first reaction was the expected "Oh my god! This consciencious guy is getting royally screwed!" and I immediately felt for his situation and could only hope to be as honorable.
But after reading the article and the other Slashdot opinions, I too think there's a lot that needs to be revealed before we can form an opinion about this.
Ultimately, we should hope that all the facts are revealed in this case and quickly. If there's a problem, it should be fixed and let this thing move on. If there's not, then I hope the true motivations are revealed as well. But I don't want to see this problem disappear under secrecy and then read about some horrible terrorist attack that was actually a system malfunction in disguise.
Maybe he remembers the space shuttle Challenger disaster. Seven people died then, when an engineer followed company orders not to oppose the launch and to keep quiet.
Maybe Mangan, the former ITTech engineer, has a conscience and takes his ethical responsibilities as an engineer seriously. If he knows of a problem and knows the company has falsified test data, it is his duty to come forward. To remain quiet would make him partially responsible for the deaths of hundreds of people should a catastrophic failure occur in the Airbus pressure valves.
Also, how reliable are the systems that tell the forward landing gear to point sideways? (Remember the recent Airbus emergency landing?)
3 things about computers: they're alive, they're self-aware, and they hate your guts.
It doesn't seem all that silly to me..
8 2344 for more info.
> > Doesn't the plane know it has lost cabin pressure?
> No. It's a plane.
We could replace the word "know" with "detect", and lose the patronising response altogether.
> > If it's on autopilot why can't it reduce altitude so the people can regain consciousness?
> Because it's on autopilot. The captain set the autopilot's target altitude, turned it on,
> and then keeled over. The autopilot held the altitude as long as it could.
So change the way autopilot works, which is what the OP was getting at. Clearly, something can be improved here: The fact that a plane will happily fly until it runs out of fuel, when it could probably have detected that the chances of the pilots being concious were remote at best is a part of the plane that could be designed much better.
> > Hell, why can't it just declare an emergency and automatically land at the
> > nearest airport after receiving an OK signal from the airport that it's safe to land[?]
> And if it has to crash land, it can go for a nice long trip to the plane hospital, and
> maybe the plane doctor will give it a nice lollipop! Yeah, that sounds good.
Why the sarcastic answer on this one? Auto-landing is used all the time - see http://answers.google.com/answers/threadview?id=4
Now admittedly, the accident refered to in the article happened on a Leer Jet, so they are unlikely to have the same technology as a commercial liner, but I don't think the post was deserving of your somewhat harsh response.
I've gone up against a client (big multi-national oil company) who disagreed with me on what was required for a refinery safety system I was designing. I wanted a pretty elaborate and redundant system to take care of what I will admit was a remote contingency. However it is my job to consider remote contingencies, it was what they hired my company for. But they really balked at what I was proposing.
As much as engineers like black and white solutions, there is a lot of grey out there. In my case, I saw the deficiencies one way, they saw them another. The scenario couldn't be practically tested and the academic research on the topic was spotty and a lot of it was unpublished internal data. I ended up putting together reports with experts from two continents to convince this client that there was a problem they weren't seeing.
Standing up on something like this is a lonely place to be. Like the article, I live with the thought of what I do can kill people if I am wrong. Makes me real cautious. But people who I report to are often non-experts, and occasionally they believe things irrationally (to me anyway) and it takes a lot of convincing to get them to see the my side. And hey, I am wrong sometimes too. But to stand up to a company that is paying your paycheque and say that you will not sign off on a design because you believe there is a problem, all the while they are screaming at you that we are behind schedule and over budget, makes for a truly shitty day at work. You get all sorts of pressure to let things go "good enough". Takes a lot of backbone and confidence for a technologist to stand up to economic pressures. We tend not to care as much for the dollars as we do for safety. I admire whistleblowers for this.
Laugh while you can, monkey boy!
You're doing the morally right thing but you'll get the shaft every time...
Mangan said he was looking for a new job. He has contacted dozens of aerospace firms in the U.S. and Europe, but none have returned his calls. "Nobody wants to touch me," he said.
It's not really shocking that nobody wants to touch you after you've potentially cost your former employer, in the same field no less, millions of dollars. It's amazing to me though that the US has some of the best protection laws when it comes to this sort of thing.
I just wasted your mod points! HA!
I'll take that one further.
A Persons first duty is always to the public.
It doesn't matter who you are. If your a cook, and know the meat your using was mishandeled, you have an obligation to prevent human consumption. Doctors have an obligation to preserve life. A cop's first duty is to the public (before his fellow officers or commanders).
- Finding the problem is sporting.
- From there, you then have the programmer(s) test it and make sure that there are no more issues.
- Once that has passed, then you have the test group re-design a set of new tests and test them as well.
- Once there, an internal auditor goes over your work.
- From there, an Airbus auditor goes over said work.
- Then an EU FAA-equivilence auditor.
- Then an American FAA auditor.
Just that little bit of a fix, takes no less than 9 months (normally closer to 1.5 years). Delaying the A380 will cause serious issues right now. In fact, there are probably performance clauses penalties associated with this that would probably sink TTTech (hence the reason why they want to cheat).BTW, if you wish to argue with me over this (and some idiot will ), I currently do the coding of the test for the data AND APIs of an american unit that be in the cockpit of the A-380 (and other aircrafts). I have found out that getting this level C cert. has been very sporting.
I prefer the "u" in honour as it seems to be missing these days.
- say as little as needed to avoid getting entangled in details or...
- say as little as possible so Airbus is deceived into thinking the part is "simple."
Without more documents, it's not clear to me which interpretation is closer to the truth.In this document he asserts that the OS that runs on the chip was hacked together and that the software being delivered to Airbus was not put together according to the software engineering standards Airbus requires of its sub-contractors. He also says:
Perhaps someone here knows Jeff Young and can ask him if Mangan's charge is true vis-a-vis the product delivered to Honeywell.The fact that the company forged his signature on internal certifications should be enough to throw the burden of proof on the company.
It's not a fact. It's a claim made by Mangan that no doubt will come up during trial. If this can be proven, then it's a really bad mark against the the company.
You can never go home again... but I guess you can shop there.
Mangan's blog has significant details. It makes quite a bit of sense if this guy, has more integrity than your average person. He's a super smart guy apparently, and he's probably right, firing him was probably not a good idea. Who wouldn't be miffed, and want to restore their good name? For the Austrian company, I'm betting they don't have the time to improve the design, or fix it properly.
I've read the various articles in the LA Times and WSJ, and his blog, and my take is he is an engineer, and he's not going to let politics and bureaucrats cover this flawed design. Any whistleblower faces this - it's what sets them apart from the average person.
The articles are very interesting, he was testing the system and found flaws not only in the functionality but the system design (not redundant). Seems there's politics and big money involved.
I sat in on an ethics class, directed towards engineers, at Stanford once, forgot the name of the class, but the professor posed the question - if you, as an engineer on a major project (whether it be designing a new drug or a spaceship), and discovered an issue, what would you do? Now perhaps the dishonest person, rushing to finish the project and look good, would move on. The average person would write an e-mail perhaps, and then if nothing was done, perhaps at most quit their job. And if you're fired? Anyway, interesting class.
It sure sounds like Austria has a screwed up legal system.
Screwed up as it is I don't think the Austrian system is any worse than the US, German, French. British one.... The basic truth is that every body is equal under the law in a Democracy and everybody can get justice. All you have to do is put up the money for a N-year long legal battle and we all know who is more likely to win that one don't we? Ciitizen John Q. Public or Corporation X? My money is on the corporation. The end result in cases like this usually is that however wrong they may be the corporations always win. They do it by dragging things out in court until they have bankrupted you broken up your marrage and genarally ruined yoru life causing you to give up. One is just left hoping that Boeing and Airbus both have the sense to test these chips exhaustively before one of their aircraft makes them regret their lethargy when several hundred people die. Of course it usually never sinks in until to late that the PR damage done by one of their new superliners crashing will cost them more than what they are saving by ignoring the problem but one can always hope for a miracle, like... say... an aerospace industry CEO growing a consience? I know it's a slim chance but I have't quite given up on the human race yet.
Only to idiots, are orders laws.
-- Henning von Tresckow
This is a question of a $500 vs $50 part in a plane that costs a couple hundred million. I would be quite amazed that any company in the modern litigious world would forge a signature to get a part as critical to safety as this one passed when knowing that the part was sketchy.
Airbus didn't forge his signature, that would be the company who makes the $50 part.
In Soviet America the banks rob you!
we're not talking about Airbus forging someones signature so they don't have to spend a few extra bucks on a plane worth millions... we're talking about a manufacturer who forged someones signature so they wouldn't lose out on sales of their $50 part.
Help me take back Slashdot. When did 'News for Nerds' become 'FUD and Conspiracy Theories for Extremist Nutjobs'?
This does not look like a Boeing PR move. This looks like a honest-to-goodness engineer sticking to his ethics.
...
...
From the article:
"Unlike U.S. laws that shield whistle-blowers from corporate retaliation, Austrian laws offer no such protection. Last year an Austrian judge imposed an unusual gag order on Mangan, seeking to stop him from talking about the case.
Mangan posted details about the case anyway in his own Internet blog. The Austrian court fined him $185,000 for violating the injunction.
To help pay living expenses and legal fees, Mangan sold his house in Kansas. With only about $300 left in his bank account, Mangan missed a Sept. 8 deadline to pay his $185,000 fine and faces up to a year in jail. Next month he's likely to be called before a judge on his criminal case.
The family expected to be evicted this month from their apartment, but their church in Vienna took up a collection to pay their rent.
TTTech has offered to drop its legal action against Mangan, court records show, and pay him three months of severance, if he retracts his statements. But Mangan has refused.
Mangan said he was looking for a new job. He has contacted dozens of aerospace firms in the U.S. and Europe, but none have returned his calls. "Nobody wants to touch me," he said."
He's an American (as am I, just for the record) so people might think that he's a Boeing spy. If this guy can spread even a little doubt about the safety of the A380's safety, it could end up making hundreds of millions of dollars for Boeing. There is a lot of espionage in the Aerospace industry.
This isn't just a disagreement, someone is lying here, and with geopolitical stakes what they are, who knows...
autopr0n is like, down and stuff.
The pilot made *excessive* alternating rudder inputs. The main problem with the aircraft seems to have been that it wasn't programmed to stop him. Try trusting the NTSB reports instead of the conspiracy theories.
Not to mention that turning this into a pissing contest will force someone else to bring up the problems with the Boeing 737 rudder. You wouldn't want that, would you?
My Sig: SEGV
I can't see what would be different for the 380. the only point is whether the pressure control system was considered to be critical enough to be fully backed up.
This message is from Joe Mangan
www.eaawatch.net
www.joseph.mangan.name
www.joseph.mangan.com
The Commercial Aircraft Industry economic business model is seriously flawed, and is actively engaged in transferring financial risk from Corporations to threats to the lives of the passengers and crew without their informed consent.
This issue is not about AIRBUS vs BOEING, this is AIRBUS and Boeing, and FAA, and EASA, and the Aircraft system suppliers and their sub suppliers. This is about all of the elements of the system being under tremendous pressure to be overly aggressive in the use of untested, unproven, low cost technology containing high uncertainty. The use of technology of high uncertainty always results in projects taking far longer to complete and costing far more than originally planned. This is project risk, and risk is nearly always significantly underestimated in project planning of modern Aerospace Programs. In essence we have the worlds biggest game of ?Russian Roulette?. With Boeing and Airbus gambling that the other will
Pull the trigger on the chamber containing the live round, thus ending the game. I believe that what we are about to see if the combatants do not ?throttle back? is the ?story of the 3 Japanese fighting fish?, where the smart fish (China, India, Japan) allows the other 2 fish to fight to the death, leaving the survivor too weak to defend against the attach of the stronger smarter fish who wins unopposed.
I feel a great sympathy and compassion for those who failed the morality test, challenged with facing the agonizing decision over career and wealth, vs the cost to human lives of their choice. My Christian conscience would not allow me to look the other way, realizing that for my own comfort and security, I would have to knowingly rationalize my own selfish interest, and thereby place at risk the lives of innocent Men, Women, and Children.
I have waited an entire year (October 2004) in a tireless pursuit to work with AIRBUS, Nord Micro, TTTech, EASA, and FAA to correct these issues in private. These organizations refused to take any action. I was left with no other avenue than to pursue the issue in the public domain one year later. I had simply exhausted every opportunity available to me. I even visited the CEO of Nord Micro in his booth at the Paris Airshow, spending 40 minutes with him and his engineers in an attempt to convince them to act in the interest of public safety. Numerous failed attempts in good faith with TTTech are documented on my website. In each and every case, TTTech violated agreed to terms, and demanded in each case a retraction of my official statements to EASA and FAA, which has always been understood to be non-negotiable.
Are these people who failed the moral challenge evil? No, they must decide what is more important to them, the lives of people vs profit, comfort, and security for themselves. The laws currently favor those who choose profit over safety. Protections and safeguards, even in the United States are insufficient to motivate a whistleblower to put themselves and their families in ?harms way?. One only need to look at the Corporate Crime Spree of WORLDCOM, ENRON, TYCO, ADELPHIA, HEALTHSOUTH and others.
Conscience can only motivate a whistleblower to act first in the interest of others.
When confronted by Executive Management with data showing the program is significantly over schedule and over budget, direct pressure is applied to find a way to ?get back on schedule?. Just as with the WORLDCOM case of Ebbers, all that must be said, is that ?we have to make our numbers?, and th
The pilot had made a slow pass over the field, and when he tried to pull the plane up, the computer overrode his commands thinking he was trying to land, and that is why they crashed into the forest.
While there some conspiracy theories, as with many catastrophes, the generally accepted story differs very substantially from the above.
The aircraft was flown at maximum angle of attack (AOA) at about 30-35 ft above the runway during an air show, with passengers on board. The pilot disconnected the autothrottle system, as its "alpha-floor" system would have automatically increased the engine thrust, preventing him from slowing the aircraft as much as he wanted. The aircraft eventually ended up at about 30-35 ft above the runway, with the engines at idle, and at the maximum allowable AOA.
The co-pilot noted that the obstacles ahead were higher than the aircraft, alerted the pilot, who pushed the thrust levers (i.e. throttles) ahead, and pulled back on the controls. The flight control system did not allow the pilot to raise the aircraft's nose, as that would have required increasing the angle of attack, and the wing would have stalled. The only way out of the hole he dug was to get more thrust. The faster you go at a given AOA, the more lift the wing produces. The fact that lift is now greater than the weight means the flight path starts to curve upwards, and the nose rises, even at the same AOA. But, it takes about 7 seconds for a modern high-bypass ratio turbofan engine to accelerate from idle to full thrust (the regulations allow 8 seconds), and they hit the trees 5 seconds after he pushed the thrust levers forward.
The flight control system's AOA limiting function prevented a much more serious accident, as if the wing had stalled the aircraft would have went out of control. As it was, it hit the trees in controlled flight, and only three people died.
After that, an emergency pilot override was placed in AirBus jets.
There is no emergency override in the Airbus jets. The pilot can manually turn off enough flight control computers to put the flight controls in Direct Law, where there are no longer any artificial limits on what he can do, but this would not have prevented this accident. He would have crashed much earlier in the sequence if he had tried to do the same thing in Direct Law.
The Boeing 777 can takeoff and land automatically.
The Boeing 777 cannot takeoff automatically. It can land automatically, as can all the other modern large airliners, including Airbus A320, A330 and A340.
Kevin Horton
The test you saw was the emergency deployment when all hydraulic power has been lost and not normal deployment.
In the case of a complete hydraulics failure the crew can actuate a manual lever which unlocks the undercarrage and deploys it using only gravity to do so. This is what you saw.
Normally, the doors and the undercarrage itself are driven fully by the hydraulic system and the doors are never touched by the wheels or anything else.
Agrajag: "Oh no, not again!"
- Water in brake cylinder back end froze up. Cylinder lacked weep hole.
- Brake electronics had two identical systems running in parallel.
- If you pressed one of the brake system buttons for more than 10 msec, but less than 20 msec, one computer might see the keypress, the other might not. Never tested for.
- Brake system uber-boss hardware checks for differences between two computers.
- If it finds a difference, it turns off the secondary computer, WITHOUT SNOOPING AROUND to see if in fact it was the secondary computer that was getting off-track.
- Said turning off is not signaled to the pilots in any obvious way.
- Even if the pilot notices, by flipping to a obscure status-page, that the secondary braking system has been downed, pressing the RESET button doesnt actually reset much of anything.
- Airbus encourages pilots to use auto-braking mode, which supposedly gives a steady 0.3G's of decelleartion.
- If auto-braking doesnt seem to give 0.3G's, some TILT lights go on, but the braking system doesnt try using the suspect bad system, even after the other system is now known to be bad.
I could go on, but I think you see the basic drift here. Not a clue among the designers, testers, or managers.Similar totally foobared design blew up the $400M Ariane rocket. Similarly foobared design for the Airbus flight control computer: lessee-- Pilot is pulling very hard on the stick, should we do what he says or drill a big hole in the ground? Hmmmmmm.....
Full report URL's I can find if anybody is interested.
I would be quite amazed that any company in the modern litigious world would forge a signature to get a part as critical to safety as this one passed when knowing that the part was sketchy.
General Electric (GE Healthcare) does this all the time with medical devices. They've forged my signature on engineering approvals several times. And told me there's nothing I can do about it. Apparently, the FDA agrees with them. Of course, now they're busy trying to sniff out who reported them.
I don't know about the other GE divisions, but I'm suspicious of them by association.