Recently, I took my kids to an indoor amusement park, where they really loved a particular ride. It was one with a fixed, rotating center and a bunch of arms protruding from it. The arms all whirled around at the speed where 99.9% of kids were not likely to vomit. A little pod was attached to the end of each arm, and inside the pod "cockpit" was a lever that allowed the pod to go up or down.
So generally speaking how does the ride work? The arms that go up and down are operated hydraulically. When you command the pod to go up, oil is pumped into a cylinder and allows the arm linkage to extend and increase altitude. When you command the pod to go down, oil is released from the cylinder to the storage reservoir and allows the arm linkage to contract and decrease altitude.
While I was watching my kids spin around at what would be a dangerous height and speed in any other circumstance, I began thinking about how we (including me) take for granted the concepts of engineered safety. The amusement ride is only one example of what happens to every other product we use or consume. Rest assured, someone has considered safety (hopefully) when designing the planes and trains you travel on , the car you drive, the super volume hairspray you use, and the amusement ride your kids ride for a dollar. And then (hopefully) the operating company has maintained, operated, and tested the ride equipment up to standards so that riding it is safer than eating the deep fried bacon-wrapped corndog on sale at the other side of the fair.
Designed for success...and for failure
While designing something that never fails is a lofty and admirable goal, it's not wholly realistic, and thus only part of the picture. In reality, good engineering considers both success and failure. Designing a product that works well is one half, and a engineering the same product to fail without disaster is the other. This is what engineers refer to as designing a system to the principle of "fail-safe." That means that it is designed in a way so that when a failure does occur, the device will tend to fail in a predictable manner to a "safe state." But before an engineer does anything else, she needs to consider, "what is the safe state?" In the case of the park ride, forcing the pods to the ground is better than forcing the pods to stay up in the air, because it's easier to remove passengers when they are at ground level, and also because passengers are less likely to be injured when they're at ground level.
Once that is understood, the designers of this system are likely to design it so that if something fails--such as, for example the pump quits or a part in the oil valve breaks--the cylinder oil will be released and the pods will automatically go to the lower position. There are also measures designed into the equipment that force the oil to enter and exit the cylinder at a maximum speed so the pods don't crash to the ground and injure the occupants!
Fail-safe and the engineer
As engineers we sometimes find designing equipment to be well-built is much easier than designing it to fail predictably. In fail-safe design, consider the worst-case scenario if a key part suddenly stopped functioning. If this outcome is intolerable, then safeguards must be engineered to mitigate or prevent that outcome.
Designing something to be fail-safe is a challenging thought process but an important one. Whether it is an amusement park ride, subsea safety valve, or jet engine, you can be sure that at some point something inside of it is going to break.