Comments by "Tony Wilson" (@tonywilson4713) on "Boeing's Fatal Flaw (full documentary) | FRONTLINE" video.

  1.  @arth0heen  I'm Australian but went to college in America. I'd correct that to the top 1% of America don't face consequences for there actions and never have. Certainly there's a massive slab of America that has to deal with the consequences of the decisions of the top 1% every day. Consider the people of Flint Michigan and dozens of other places left equally destitute.
    92
  2. Check the reports Boeing are reported to be agreeing to a massive payment and Mark Forkner is expected to be facing charges.
    35
  3.  @adnaneajroudi7856  What???
    24
  4.  @twothreefour234  You forgot #3 Too big to let fail.
    12
  5.  @ToreDL87  Sadly that is all we ever seem to see or hear about these things. A while back Mark Blyth the professor form Brown commented that the banks did things like industrialized money laundering that would send you and me to jail for a 1000 years while they just lost that years bonuses and carried on. 🤷‍♂️🤷‍♀️ The keep say-ng our world is called neo-liberalism I'd call it a modern take on feudalism, where the lords can do whatever they like as us peasants pay for it.
    10
  6. @David Kim Most strange the, here in Australia this video is ow "turned off" and the comments unavailable. But yeah the issue with corruption of tertiary education by big money is a ticking bomb. The worst affected area by far is economics, but its not alone. Pharmaceutical research also has some very serious questions.
    5
  7.  @faggianogeuiseppi5135  My favorite on that subject at the moment is John Yoo. He was the lawyer who wrote the famous "Yes you can torture people so long as you call it enhanced interrogation" memo during the Bush WH that lead to things like Abu Grhaib and other atrocities. He's now a chaired & tenured professor TEACHING LAW at UC Berkley.
    4
  8. Its 22 Sept. 2021 and there are reports he is expected to face charges. Boeing is reported to have agreed to a massive payment (fine) for defrauding the American people.
    4
  9.  A Rodriguez  That's been the great failings of so many issues with major criminal corporate failures. Big fines that share holders end up paying or paying for while the people who are actually responsible walk away with their bonuses. How many times do we need to see that repeated???
    3
  10.  @jamstagerable  No argument on that. You can take almost any issue from any country at the moment and there's similar issues in dozens of other places. About the only real differences are in how obvious some countries make those issues known. America's issues with the far right intermingled with anti-vaxxers and other conspiracies are just out there for all the world to see. We have the same issues here in OZ. Mostly they have been quiet compared to America but this last week they sort of exploded in our face. Boeing's Max-8 and the failure of regulators who are too easy goes right in line with our building industry, our mining industry and our gas industry where we have had too many close calls. 🤷‍♂🤷‍♀️
    2
  11.  @roguewave1060  Agreed the CEO's got away with heaps but Forkner's not just any mutt from middle management. You clearly have no understanding of the significance what his role was.
    2
  12.  @TheEvertw  Sorry, but you clearly don't understand the FMEA processes. I wanted to avoid any lengthy discussions but your reply needs it. FYI - On top of the degree in aerospace qualifications I have formal qualifications in functional safety, 30+ years of experience and a pilots license with an aerobatic endorsement. So on top of my engineering I have formal training in handling and recovering aircraft from unusual attitudes. On top of that one of my frat brothers is a senior instructor on 737s with a major airline who was tasked as part of a team to go to Boeing and help get the plane recertified. Your assumption is wrong from the start. Even before they made the system more aggressive it had issues that were found in the flight simulator in 2012. See that part of the video around 18:20. I'll grant you have a point, EVERY form of analysis (not just FMEA, but HAZOP, CFD, FEA,....) have their limits. Even when you go into a lab with the most accurate equipment conceivable there's no such thing as perfect. Second to that is the reviews that need to be done regarding action items. HAZOPS/FMEAs always bring up action items. If they don't that's as much of a concern as if they do. What so many people misread in HAZOPS and FMEAs is that the analysis is only the first step in an iterative process. You analyze, you act, you review and if necessary go back and start again. If the action items that are identified are not handled and reviewed then things get missed. You are almost on point regarding the software change that contributed. What you miss is that ANY CHANGE to a safety related system including software parameters requires reviewing and redoing/rechecking the specifications, FMEAs and anything else deemed relevant. This is a process required for ANY complex system. I have seen what can happen when a control room operator makes a change just to see what it does. Here's a basic run down of part of safety engineering. FIRST and FOREMEOST all functional safety is based around 3 fundamental concepts. 1: Any component WILL eventually fail if left in the field or in service long enough. 2: Any failure that can be reasonably assumed to potentially occur will eventually happen without maintenance and or replacement. In that definition maintenance also includes calibration (and re-calibration). 3: Fail safe which basically means that a fault of the safety function puts the system into a safe state. The absolute opposite of fail safe is fail dangerous, but you can get circumstances that are not exactly either. The problem with aircraft is they have only 1 fundamental safe state, which is secured on the ground with no fuel, no power and no people on board. Anytime an aircraft is in the sky its not in a safe state, but there are states more dangerous than others and states safer than others. Its also highly dependent on the aircraft type. I did my basics in Cessna C152s where stalls are fairly benign. I did my retracts and constant speed prop. in Mooney M20s where a stall is very serious issue. I did my basic aerobatics in R2160s and its stall is in between. The other fundamental to understand regarding safety functions is the MooN concept which stands for "M out of N." Its a reference to how many sensors out of those available are required to trigger the safety function. The common variations we see in industry are 1oo1, 1oo2 and 2oo3. A 2 out of 3 system requires 2 out of the 3 sensors to report a value that triggers the safety function. MCAS for this part of its functionality was a 1oo1 system. It had one sensor and if that 1 sensor said the AOA was too high MCAS forced the nose down. 1oo1 systems are pretty common but not generally for CRITICAL safety functions. They are almost exclusively used in fail safe functions which makes then totally unsuited to aircraft critical safety functions. Most engineers don't like dealing with safety engineers because we start with that first fundamental which is their design will eventually fail. Its a psychological barrier not an engineering one. Nobody likes being told that their design will fail. I've been in meetings where engineers have literally melted down at that, but if you don't go through the process you risk not uncovering flaws. For a system like MCAS (and most safety related systems) you start with the sensors because that's where your software/computer gets its real world information. There are fundamentally 2 types of sensor the type that is either on or off (which we call digital) and the type that sends (or transmits) a signal representing a value (what we call analog). Yes there are all sorts of ways they can connect to the computers including redundant wiring and include diagnostic functions including fault detection. I build and design systems with these functions. At the fundamental level ALL analog sensors have 4 basic failure modes that apply to any industry and any application. 1: Fail Low - when the fault sends the signal to its lowest value. 2: Fail High - when the fault sends the signal to its highest value. 3: Fail Steady - when the fault freezes the signal at a value. 4: Fail Erratic - when the fault makes the signal randomly behave. FORGET all the arguments over which component does what. This is the basic starting point. For a system like MCAS you want to concentrate on what makes it trigger and what doesn't. So for the anti-stall ONLY I would modify the above with basic replies: 1: Fail Low to minimum AOA sensor value -> No action required MCAS anti-stall will not trigger. 2: Fail High or Fail steady above the MCAS trigger point -> MCAS will continue to push the nose down until the flight terminates. 3: Fail Steady below the trigger point -> No action required as MCAS anti-stall will not trigger. 4: Fail Erratic -> MCAS might Trigger, then de-activate then re-trigger as the signal oscillates. That's about as basic as anyone could ever put this and it immediately provides 2 Action Items, the first of which guarantees a fatal crash because its a 1oo1 system that does not have the diagnostics to detect the fault and automatically ignore the sensor and as we now know is exactly what happened. This is so basic to safety engineering its the sort of stuff you do on day 1. The fact every other anti-stall system including the one Boeing uses on other aircraft uses at least 2 sensors and in some cases is linked to the rest of the aircraft sensor suite to check the validity of the information this system SHOULD NEVER HAVE BEEN CERTIFIED OR ALLOWED ON ANY AIRCRAFT. Way back in college long before I did any industrial control systems we had an alum do a guest lecture. He was one of the lead aerodynamicists for the X-29 forward swept wing demonstrator. All that plane really wanted to do was rip its wings off and to prevent that it used computers. It was one of the first planes ever to use this kind of pilot augmented software to this almost extreme level. EVERYTHING was at least triple redundant. It actually had a massive effect on industrial safety with the advent of what are called TMR (triple mode redundant) systems like the Triconex safety platform. As someone who came from an aerospace background who does work that has its foundation in the aerospace industry I'm stunned it was an aerospace company like Boeing that did this. I expect mining companies and manufacturers to behave like this. Even the oil & gas people who have a terrible track record now generally do better than this. Boeing lost their way and I don't know if keeping people who contributed to that will help them find their way again.
    2
  13.  @bIametheniIe  Absolutely true. And if their share price struggles the Pentagon will just bail them out with some ridiculous project or they will be given yet another NASA job to milk like a bloated cow. Prof Mark Blyth (who's pretty damn smart) said recently we need to separate which of our corporations actually can make money from those that are just good at tax management and financial games. I think its pretty obvious where he'd put Boeing and the tragedy is they used to build great stuff now they're a joke.
    1
  14.  @CYMotorsport  Yeah all valid comments now please tell everyone how many rich people are on death row and how many poor people are on death row? Or how about the 3 guys Trump sent to the injection table AFTER losing the election compared to the 4 murderers he pardoned a few days later who worked for Blackwater and gad killed 17 people in the Nisor Square massacre. Sorry buckwheat but the American Justice system is broken. In fact most of the justice systems around the world are broken to some extent its just that some are more broken that others.
    1
  15.  @MsWobbly1  Clearly you have never worked in software development SO PLEASE DO NOT say anything that stupid or idiotic ever again about something you DO NOT UNDERSTAND. I work in industrial software including safety related systems. 1) It was NOT a logic error. It was a sensor failure that should have been foreseeable. 2) In engineering we have systems. methods and techniques for evaluating errors that look how the hardware and software will react to errors. Among these are: FMEA - Failure Mode Effect Analysis HAZOP - Hazard and Operability CHAZOP - Control Hazard I know about these things because I do it for a living. Boeing did NOT DO the things it should have done by good practice. Boeing cut corners and over 300 people died.
    1
  16. ​ @mgoblue0970  Its NOT just America its now a pandemic that's 1000s of times worse than COVID ever was. I'm Australian and we have the same disease infecting our nation. Go watch the news and commentary from anywhere and you'll see it. The only differences from one country to the next are: - How bad the infection is? and - What they are doing about it? Sadly in most cases the answers are BAD and NOTHING.
    1
  17.  @maramba32  Actually its: As long as you have ENOUGH money. You wont be charged. Remember buying politicians and controlling the judiciary isn't as cheap as it used to be and the fact you can't claim it as a business expense on your tax return is just un-American.
    1
  18. I did aerospace engineering but work in industrial control systems including safety related subsystems. You're NOT wrong, but not quite right either. People who hide pertinent information FOR ANYTHING that results in the deaths of others need to face CRIMINAL CHARGES. Murder charges versus manslaughter or other charges would be dependent on what they knew and what they hid. One of the key things we do as part of standard engineering processes are called HAZOPs (Hazard & Operability Studies). The purpose is to identify hazards and work out mitigation strategies. Once you work out a strategy (or solution) the next step is called FMEA (Failure Mode Effects Analysis). Its where we assess the components in a system or subsystem and consider the known types of failure and assess what the effects are. That comment by the Boeing Engineer that asked what happens if the AOA Sensor fails is exactly what should have been the start of an FMEA. That question should have been assigned to a person or team and there should be a readily traceable set of paperwork. For a critical safety functions or systems. Option 1 You're designing as per standards or guidelines using certified components, which is always my preferred option. Certified components become certified from FMEAs and testing. Using certified components comes with added costs but also come with all the safety information. Option 2 You are taking responsibility for everything including FMEAs, certification and anything else. Option 3 Ignore the Question. 🤷‍♂️🤷‍♀️ If you consider the comment by one of the Boeing engineers (at 30:30) ASKING about "what would happen if the AOA sensor failed" that tells me NO ONE DID an FMEA on that system. Because if they had there would be a paper trail and by now someone would have found it. I can't imagine any circumstance where experienced engineers WOULD NOT have realised this system would eventually crash a plane. Its part of basic safety ideology that any failure you can reasonably describe will eventually happen. You assume the failure WILL EVENTUALLY HAPPEN and then assess what then happens. I actually wrote to Ralph Nader (who lost a relative in one of these accidents) and explained my background and qualifications. I told him what his people needed to look for in terms of design paper work and reports. THEY NEVER GOT BACK TO ME. I do hope they got the right people with the right advice.
    1
  19.  @TheEvertw  We agree on one thing - it was absurd. Sorry but I wont waste much time on someone who wont listen to experience training and qualifications. Even the most basic analysis says the MCAS was going to crash planes. It was a 1oo1 system that was NOT fail safe and its obvious one of its basic failure modes was going to drive the plane into the ground. That leaves very few answers. - They never did an FMEA at all; or - They did a very poor FMEA; or - They did and proper FMEA and then DELIBERATELY IGNORED it. Those first 2 options are negligence, the 3rd is WILLFUL negligence and legally very different.
    1