Reliability and risk assessment of systems of protection and blocking with fast restoration Текст научной статьи по специальности «Математика»

RELIABILITY AND RISK ASSESSMENT OF SYSTEMS OF PROTECTION AND BLOCKING WITH FAST RESTORATION

Yakov Genis

Borough of Manhattan Community College City University of New York, USA

ygenis@bmcc.cuny.edu

Abstract

There is examined a system with fast restoration which should be operational beginning from some moments of time. If beginning from these moments of time the system is defective during the time more than the assigned random time interval it is considered failed. Such system includes the models of systems with the protection and blocking and systems with the discrete periodic functions. The estimations of indices of failure-free performance and maintainability of these systems and the estimation of indices of risk and losses, connected with the failure (accident) of the system with protection are obtained. This material was presented in the Mathematical Methods in Reliability 2007 Conference in Glasgow, UK.

1. Introduction and Motivation

August 2003. The largest in the history of the USA a de-energizing of eastern regions of the USA and Canada for several days has left extensive territories and huge quantity of the population without the electric energy. Losses from this blackout were incredible. What did cause this catastrophic failure? The system of protection and blockings decided that power supply became too high and not to harm power plants they were cut off. In just three minutes the system of protection and blockings produced a cascade avalanche-like cut-off of 21 power plants.

September 2003. The "power outage that affected all of Italy—except the island of Sardinia—for 9 hours and part of Switzerland near Geneva for 3 hours on 28 September 2003. It was the largest blackout in the series of blackouts in 2003, affecting a total of 56 million people" (http://en.wikipedia.org/wiki/2003_Italy_blackoui).

May 2005. The blackout in Moscow and in the adjacent regions of Russia.

November 2006. "Two high voltage power lines in Germany failed. This triggered a cascade of cuts as automatic safety devices cut millions of customers in order to prevent a total blackout of the continent. Parts of Germany, Belgium, France (including parts of Paris), Spain, and Italy were affected. High speed railways were also impacted. Power was restored within two hours. Later reports said that Austria and Croatia were also affected" (http://en.wikinews.org/wiki/Europe_suffers_widespread_power_cuts).

These events show the importance of the reliable and correct functioning of systems with protection and blockings. The same events tightly connect the concepts of reliability and engineering risk (risk, appearing as a result of human activity), under which follow to Henley and Kumamoto [10] we understand consequences (on resources, on environment, victims and so on) arising as results of unreliable work (failures) of technical systems and/or intentional terrorists activity.

There are examined systems, for which it is required, that the system would be serviceable only beginning from specific moments of time. If, beginning from specific moments of time, the system is malfunction during the time

not less than n, P{n < x} = H(x), the system is considered failed. Such systems include the models of systems with discretely periodical functions and the models of systems with the protection and blockings.

The system with discrete periodic function is considered failed, if it is faulty during the time not less than n after a demand for the function's service arrival. At other moments of time the system can be faulty, but this does not affect the reliability of the system with discrete periodic function.

The system with protection and blockings (SPB) contains a certain object, which periodically falls into a before accident situation (BAS), and a unit of protection and blockings (UPB) that should prevent an accident. Such an object can be, for example, a system of power plants together with power lines and end users. Power stations can fail; short circuits or breaks are possible on power lines and at end users. Many of such events represent a BAS which signals should be sent to UPB. Then during a "short" interval of time UPB should make a reconfiguration of system in purpose to disconnect or the failed plant, or/and failed power lines and the end user, and to redistribute the power supply that was delivered by the failed plant (if any) between other plants and/or power lines. Otherwise there can be an accident, for example not authorized redistribution of power supply which indeed can lead to cascade switching-off of plants.

For given above examples with de-energizing the BAS events could be failures of some power plants (a deficiency of electric power), or some short circuits on the power lines (as it was in the USA), or a short circuit on transformer substations (as it was in Russia), or a result of an external intentional terrorist activity directed toward the destruction of systems of electric power's production and delivery. Power plants are united into the power grid. Some power plants can temporarily stop the electric energy generation. But the electric energy generation by remained power plants is sufficient to ensure the needs of all basic users.

UPB receiving a BAS signal should prevent the accident. For our examples it means that during the assigned time interval, which is less thenn, some actions must be executed in order or to block the failed power plants, temporarily excluding them from the power grid, or to block some sections of the power transmission line, where the short circuit or the break occurred, or to block users who had a short circuit that led to the big power consumption and to reconfigure the layout of the power delivery. UPB being also a technical system itself is subjected to failures and is continuously monitoring so that failures arising in it are eliminating.

A failure of SPB (the accident) occurs when BAS signal arrives at the failed UPB who therefore cannot prevent accident. In this case the UPB failure leads to the SPB failure (accident). But the event "UPB failed but had time to be restored before arrival of the BAS signal" will not affect on the SPB reliability. So, not every UPB failure leads to the SPB failure. There can be "dangerous" and "safe" failures of UPB that should be considered in the criterion of the SPB failure (accident).

In this article we will use terms, relating to the systems with protection and blockings. For evaluating the reliability of SPB we will use ideas of the reliability assessment of systems with fast restoration presented in our article [1].

2. Model Description

In the general case UPB is a space-distributed repairable system, and contains n elements and k repair units (RU). UPB come to the models of section 2 of [1]. Each element of system can be only in the operational or the failed state. Each operational element can be located in the loaded or unloaded regime. Let Fi(x) and f±(x) are

accordingly the distribution function (DF) and the distribution density (DD) of the time of failure-free operation of the i-th element in the system, i = 1,n, and mi is the mean value of this time, mi < .

We will examine only the systems of the 1st and the 3d types [1], working in the steady-state operation. The systems of the 2nd type [1], that don't have the steady-state operation section of work, are not examined within the framework of this article. But taking into account [1] and the ideas given below in the sections 4 and 5 it is also possible to carry out the estimation of the reliability of the systems of the 2nd type.

The failed elements are restored. Different interruptions of restoration are permitted, but DF of summary recovery time of the i-th element by the j-th RU is equal to Gij(x), independent of the number and the duration of the interruptions Genis [3]. Class D of restoration disciplines [1] includes, in particular, the discipline FIFO d1 with the straight order of maintenance, where the priority for the restoration have the elements, failed the first, discipline LIFO d2 with the reverse order of maintenance, where the priority for the restoration have the elements, failed the last, discipline with time sharing d3, where all failed elements are restored with the same speed, and discipline d4, where the priority for the restoration have the elements with the shortest residual recovery time. The indices of reliability of the same systems for various restoration disciplines are essentially different. Therefore the reliability assessment for various restoration disciplines allows choosing the most effective discipline.

It is set the criterion of SPB failure that can include and a condition of time reservation.

UPB works in conditions of fast restoration (FR). Practically it means that the average time of restoration of a system's element is essentially less than the average time between any two failures of elements in the system [3].

The problem consists in estimating of SPB indices of non-failure operation and maintainability in conditions of fast restoration of UPB.

3. Mathematical Formulation of Problem

Behavior of UPB is described by the alternating process, in which the intervals where all elements are operational are changed by intervals, when in UPB there are any failures of elements, which possibly are not leading to the failure or the malfunction of UPB [1]. Let us call the last intervals as intervals of the malfunction (IM). Let us call the interval of malfunction, which begun in the interval (z, z+dz), as IM z.

The state of the elements of system at the moment z is assigned by the vector v(z) = (Vj(z),..., vn (z)}, where each component can take the values of (0, 1,..., n}. Number 0 corresponds to failed elements; numbers from 1 to n correspond to operational elements. Vector v( z) helps to estimate the reliability of concrete systems.

Let E is the set of the states of the system, (V (z)} = E = E+ u E_, where E+ is the area of the operational, and E_ is the area of the defective states of the system. The system is considered as defective at the moment z if V(z) e E_ and failed if its malfunction lasts time not smaller thenn,P(n < x} = H(x) [1].

Let b is a certain state vector of elements of the system directly before IM, and bN is the state vector of the elements of the system on the same IM immediately after the m oment of passing the state vector of system from the region E+ into the area E_ . Let n is the way leading from b e E+ into the state bN e E_ on the IM. Then n is

the sequence of the state vectors of elements, beginning from the vector b , which directly precede the beginning of the IM, and ending with the vector bN, which corresponds to the first onset of malfunction of the system on this IM; the passage from one state vector to the following occurs only due to that, that exactly one element of system fails or ends to be restored [1].

The path length is equal to the number of state vectors, being contained on this path, not counting the initial state b . Let us call the way monotonic if on it there are no restorations of elements. Let us call the monotonic way minimal for b if its length l(b) is equal to the minimum of path lengths, leading from b into E_ [1].

All introduced notations help to understand the obtained results and are used to prove them.

Let us determine the concept of fast restoration. Let G(x) = min Gj(x), G*(x) = max Gj(x), where the minimum and the maximum are taken according to the numbers j of RU, accessible to i-th element, and on i = 1, n (here G(x) and G*(x) are DF of the correspondingly greatest and shortest recovery time of elements); s is the minimum number of elements, failure of which can cause the malfunction of the system; r ( ) = 1 - r ( ) for whichever DF r ( );

mR) = j| xj-1 G(x)dx, mR = mR\ mR,(n) = J J G *(x + u) dx dH(u); % and X are the maximum and the minimum failure rates of elements in the operational system [1].

Let us say, that in the system is satisfied the condition of FR if X > 0 and

a= [Xs mR) / (mR)s-1] ^0 (3.1)

and in this case for all DF (x), i = 1, n, there exist limited DDs.

In practice it is necessary to evaluate the reliability of a concrete system with fixed DF Fk (x) and Gn (x).

Therefore it is possible to count without the damage for the generality, that DF Fk (x) are fixed, and DF Gn (x) are

the element of a certain infinite sequence in the diagram of series. More precise we will assume, that are satisfied the following conditions introduced by A.D. Solovyev in [7]:

1) DF Fk(x), k = 1, n, are fixed and have a limited and continuous in zero DD;

2) DF GtJ (x) have the form

Gj (x) = Gj0)( x/£),

where Gj0)( x) are fixed, and

0; (3.2)

in this case G(x) = G(0)(x/£), G*(x) = G*0)(x/£);

3) There is a finite moment a(s), where

a(j) = jJ xj-1 G (0)( x )dx, a = a(1).

0

Let us note that the conditions (3.1) and (3.2) are equivalent under assumptions 1) - 3). Actually, under assumption

A

1) the value A is limited and under assumptions 2) and 3) when % ^ 0

(mR) /(mR )s-1) = % (a(s) / as-1) ^ 0.

Conversely, if we assume % = (mR) /(mR )s-1) / (a(s) /as- ), than from condition (3.1) and 3) it follows % ^ 0.

Under the condition of fast restoration almost always the failure of system occurs along the monotonic path [1], if only the probability of this failure is not zero. However, the sufficient condition of that, that the probability of the failure of system on the monotonic path is different from zero, is the condition

a*(n) = {Jg*(x + u)dxdH(u) > 0 (3.3)

0 0

Next index unites the conditions for fast restoration (3.1) and (3.3)

A s

( = [A mR) / As-1[mR.(n]s-1] ^ 0, A> 0 (3.4)

The condition

(2 = AmR ^ 0 (3.5)

ensures the convergence of DF of time to the first failure for the system of the 1st and 3d type to the exponential function, and for the 2nd type to exp{- [ jB(u)du }, that is shown in [1].

In practically important cases mR) < C (mR)s, where C - some constant. In these cases at small s (s «2 ^ 4), closely related among themselves G (x) and G * (x), that is reached due to unification of procedure of restoration, and a small time reserve (mR « mR(n)) condition (3.4) is possible to replace by condition (3.1) or condition (3.5).

In section 8 [1] it is shown, that under the conditions of FR the estimation of the indices of the reliability of complex system can be brought to the estimations of the indices of reliability of its series-connected in the sense of the reliability schemes of the form p out of m , calculated under the assumption, that these schemes operate autonomously. The scheme p out of m has m of elements. Its malfunction occurs with the failure of not less than p elements out of m , p < m, and its failure begins then, when the malfunction of the scheme lasts not less than n,P{n < x} = H(x). Therefore within the framework of this article we will count that UPB is the scheme p out of m .

In our estimations we will count, that all RU are identical and therefore Gjj (x) = Gi (x). Let

mRj )

(n / a) = j J J x1 1 Gi (x + u / a)dxdH(u), mRi (n) = m{R¡ (n), mR\u) = j j x1 1 Gi (x + u)dx, çt (u) = m{R¡ (u),

0 0

mRt = mR)(0), mRi = mR'. Let in the steady-state operation section of work with d e D and k RU Pp(d,k) is the

- 45 -

estimation of the failure rate of the scheme p out of m with k RU and the restoration discipline d e D taking into account only monotonic ways of failure, t (d, k) is the random system recovery time after failure, TR (d,k) is the average value of this time, KA (d, k) is the availability function of the system.

4. Estimation of the indices of failure-free performance

LetT (t) is the interval from the moment t to the first failure of system after moment t. The details of the determination of time to the first failure of the system T(t) and time between (j -1)-th and j-th failures of the system Tj(t), j > 2, are given in [1].

Let F*(x) and m* are the distribution function of time between the adjacent BAS signals and mean time between them, moreover F*( x) is an absolutely continuous distribution function with the limited distribution density. In the steady-state operating conditions of the system the DF of residual time before the appearance of a BAS signal is

E(x) = J F*(x)dx/m*.

The object, which sends BAS signals, is considered as one of the elements of the system containing (n +1) elements. We will investigate two cases:

1) the condition for the fast restoration is satisfied also relatively to the time between the appearances of the BAS signals (time between the adjacent BAS signals is considered as the object operating time between failures; the restoration of UPB leads to the restoration of SPB);

2) this condition is not satisfied, but in UPB the restoration is fast (restoration of UPB leads to the restoration of SPB);

In both cases is valid theorem 5.3 and estimation (5.8) from [1], and in steady-state operation DF Ti(t), i > 1, converge to exponential. It remains to estimate the parameter of these distributions.

In the first case the SPB model come to the model of section 2 of [1], but containing (n+1) elements. In this model is fixed the element, failing the last before the failure of the system (if the time reserve is absent and jj = 0) or before the beginning of the malfunction of the system (when n ^ 0). This element is object. On IM this element is not restored, and the time reserve of system is equal to n. In this case all estimations (6.2) and (6.4) - (6.7) from

/• oo

[1] are carried out, if in them in all expressions, besides dH(u), to replace "u" by "v+u" and I ...dH(u) by

J 0

ftO /»o --ftO ftO

J J ...F*(v)dvdH(u)/m* or J J ..dvdH(u)/m*. There " v" represents the residual time to the arrival of BAS signal and " u " is the time reserve, during which must be executed actions on averting the accident. Replacement

/•o /»o /• o

I ...dH(u) by I I ...dvdH(u)/ m* is carried out on the basis of the condition for fast restoration that is satisfied also relatively to the time between the appearances of BAS signals, when F*(v)dv/m* « dv/m*.

In the same case with n = 1 (structural reserve in UPB it is absent) because of the fast restoration and relative to the

A

time between the appearances of the BAS signals (AmR2 /mR) ^ 0, DF ri(t), i > 1, converge to exponential and with k = 1 in accordance with the criterion of the failure of the system

J31(d, 1) « —J" J"Gi(u + v)dvdH(u)« ^^ (4.1)

m1m* Jo Jo m1m*

Result (4.1) was obtained by Turbin with co-authors [5] for ?j = 0, d = dj under more stronger assumptions. In particular, there was required the absolute continuity of d.f. G1( x).

In the second case the system with protection and blockings is reduced to the model of section 2 [1], in which in accordance with the criterion of the failure of the system this failure begins when malfunction of UPB lasts not less than the time (j + n), P{n < x} = H(x), and in the steady-state operating conditions of the system P{y < x} = E(x). Therefore and in this case with the presence of structural reserve in SPB are carried out all previous estimations for the indices of failure-free performance, if in them in all expressions, besides dH(u), to

replace "u" by "v+u" and J ...dH(u) by J J ...F*(v)dvdH(u)/m*.

Thus it is proven

Theorem 4.1. For examined cases of systems with protection and blockings there are carried out the estimations P (d, k), undertaken for the scheme p from n, if in these estimations in all expressions, besides dH(u), to replace

"u" by "v+u"

and I ...dH(u) by I I F*(v)dvdH(u)/ m*. In the case if the fast restoration is satisfied also relatively to the time between the appearances of signals of before accident situations it is allowed to substitute

£ ..dH(u) by £ £ ...dvdH(u)/

m

* •

Corollary 4.1. If UPB represents n > 1 parallel-connected in the sense of the reliability elements used in the loaded regime and k = 1 than for the system with protection and blockings under the conditions for fast restoration that are satisfied also relatively to the time between the appearances of BAS signals

Pn (d1s1) ^ Tf f f xn—2 G (x + v + u)dxdvdH (u) =

m1...mnm* Jo Jo Jo ;

n

= T mff (n) /(mi ...mnm*n) ; (4.2)

j=i

pn(d2,1) « (n —1)! TT inœ inœG(v + u)nmRkdvdH(u) =

n

=(n —1)! T mRj(n)n mRk /(m1..mnm*) ; (43)

j=1 k^j

ß (d 3,1)« -ÍÜ-ÍÍL ¿ U G ( ^ W Í — | dvdH (u) = mv..mnm* T~1j0 Jo j ^ n ){ n >

i œ f n ™ "N

n ! Pi T^ P7T , U

Il njG(y + -)dv dH(u); (4.4)

m!...mnm*0 ^ j=1 0 n )

ßn (d4,1) « ¿ f f G(v + u)n % (v + u)dvdH(u)

j0 j0

j=1 j

=-i| n iGj(y + u)dy dH(u). (4 5)

ml...mnm*l ^ ;=1 J0 )

For the proof of Corollary 4.1 the probabilities of system failures along all minimal monotonic paths are summarized. At that for estimation of indices of failure-free performance for various disciplines of restoration the results of Corollary 6.1 of [1] were used.

All necessary proofs in the article are given in the Appendix.

For the system with the discrete periodic function the probability QD (d, k) of the failure of system to the requirement on the fulfillment of the function is determined from the formula

Qd(d,k) « m.*P(d,k). (4.6)

5. Indices of maintainability and availability function

It is examined a system, described in paragraph 2, with the condition n = h = const. This condition is typical. Let us define recovery time of SPB as time, passed from the moment of the failure of the system to the moment of the restoration of SPB capacity for work. For evaluating the indices of the maintainability and availability function we will need the concept of x-failure of SPB [1]. Let us say, what the system x-failed, if its failure lasts not less than the time x. Through J3x(d, r) we will designate the intensity of SPB x-failures. Let us recall, that in the SPB model the BAS signals enter the last before the UPB failure.

Since with n = h = const H(u) = 0 with u<h and H(u) = 1 with u > h than taking into account theorem 4.1 we will obtain

Corollary 5.1. For the system with protection and blockings and the time reserve, equal to the constant, n = h = const, the estimation Jx (d, r) is obtained

• or from the estimations Jp(d, r) for the scheme p out of m from [1], if in them in all expressions, besides

dH(u), to replace the arguments "u" by "h+x+v", and replace I ...dH(u) by I ...F*(v)dv/m*; in the case of

00

the fast restoration and relatively to the time between the appearances of the signals of before accident

pro pro

situations it is allowed to substitute J ...dH(u) by J ...dv;

• or from the estimations Pp (d, r) of section 4 of this work, if in them in all expressions, besides dH(u), to replace the arguments "u" by "h+x" and to remove the external integral on dH(u).

Corollary 5.2. If UPB is a system n out of n with the loaded reserve (parallel in the sense of reliability connection of elements), k = 1 and the condition of fast restoration is satisfied and relatively to the time between the appearances of BAS signals, than

for d = d1

for d = d2

for d = d3

P(r"(di,1) * X} - £<\h + X)/£<\h),

j=1

i=1

(5.1)

TR(d1,1) «¿<+1)(h)/f(n +1)£mRn}(h)^

i=1 V j=1

(5.2)

KA(d1,1) - 1 -££m<nn+1)(h)/fn(n + 1)m*Ylm}

i=1 V j=1 )

(5.3)

P{T (d2,1} > X}:

£ mRj( h + X )/

. j=1

m

Rj

£ mRi(h)/

m

Ri

i=1

(5.4)

Tr (d2,1) ;

£ mR2)(h )/mR]

j=1

2£ mRl (h )/

m

Ri

(5.5)

Ka(d2,1) - 1 - (n -1)! £mR2)(h)nmRl/ 2m*ft

j=1 i* j

m

V k=1 )

(5.6)

P{r"(d3,1) > x} -n

. 1 mR( h+X ]/ mRi [ n ),

(5.7)

Tr(d3,1) - JO^ri

i=1

f h + x V f h

mRi I ■I / mRi I n

dx,

(5.8)

KA (d3,1) - 1 - n! J7fl

i=1

for d = d4

P{z"(d4,1) > x} - fjmRl(h + x)/mRi(h), (5.10)

i=1

Tr(d4,1) - J^ri[mffi(h + x)/mm(h)] dx, (5.11)

i=1

Ka (d4,1) - 1 -fn [(h + x)/(m*mi)] dx. (5.12)

i=1

For the proof of Corollary 5.2 were used estimations of indices of maintainability and availability function for various disciplines of restoration that are given in Corollary 6.2 of [1].

For k=1 and n=1 (UPB consists of one element) and with any discipline d e D

P{t (d, 1) > x} - mR (h + x) /mR (h),

Tr(d,1) -mR2)(h)/(2mR(h),

KA (d,1) - 1 - mR2)(h)/(2mm*).

In much the same way it is possible to obtain the estimations of the indices of maintainability and availability function also for other types of UPB.

Let us note that it is possible to remove the requirement of absolute continuity of d.f . F*(x). Thus, the period

between two adjacent entries of BAS signals (or of requirements for the fulfillment of a function in the system with the discretely carried out functions) can be constant. In this case it is possible to obtain the same estimations of the indices of reliability, using an apparatus, connected with the rare events in the regenerating process [6].

m

Ri

h + x

n

/(mm, )

dx;

(5.9)

6. Estimation of risk and losses

It is natural to ask the question how to estimate the risk and losses connected with the failure of the system of protection and blockings? One of the possible approaches is the following.

When SPB fails the local systems of protection and blockings as a rule soften the losses from the accident. Let there are possible N different ways of the development of the accident when SPB fails. The probability of the i-th way of the development of the accident is pi, ^pi = 1 on i = 1, N, and the losses on this way are Li. Then risk and losses from the SPB failure [9] can be estimated as

N

Ri = £PL . (6.1)

i=1

In practice [9] the value Li is substituted by the loss function or the function of the usefulness U (Li ) (when some losses are disregarded, and some losses are exaggerated), and the probabilities pi are substituted by the subjective probabilities f (pi) (when some small probabilities are disregarded). In this case risk and losses from the SPB failure can be estimated as

N

R2 =s f (Pi U(L ) (6.2)

=1

With this approach the estimation of risk and losses can be conducted only for the concrete system in the stages of its design and operation.

Appendix

The following three lemmas will make it possible to simplify calculation formulas.

Let Mj} is the set of all permutations from the collection of the numbers J = (j1,...,jl) and i('} = (/!,...,it) is a certain permutation from the set MJJ).

Lemma A.1. For i > 1 and any fixed x > 0 and u > 0 the next inequality is correct

1 __1 _

Z j•••{ n(+ u)dyj...dy, = n(y + u)dy. (A.1)

i"WJ') x<y1<...<yi k=j k=1 x

Proof of lemma A.1. When ' = 1 (A.1) is obviously. Let (A.1) is true for ' = w . Then we will show that (A.1) is true for ' = w +1.

w+1 __w _

Z {•••{ n(y^ +u)dy1...dyw+1 = Z jnG(+u)dz1.dzw *

i(w+r)eMjw+r) x<yj<...<yw+1 k=1 i(w)omJw) x<ZJ<...<zw k=1

"1

j Gi„i( y + u)dy + J Giw+1( y + u)dy +... + J Giw+1( y + u)dy

x Zi zw

Lemma A.1 is proved.

w+1 œ_

nj Gk (y + u)dy

k=1 v

Lemma A.2. For any integers k > 1 and h = const

ro

J<T1}(h + x)dx = mRk\h)/k . (A.2)

0

Proof of lemma A.2. After using the replacement of variable and a change in the order of integration, we will obtain:

ro ro ro ro ro

J mRk ~1}(h + x )dx = (k - 1)J J uk - 2 Gi (u + h + x )dudx = (k -1) JJ(u - x)k-2 Gi (u + h)dudx =

0 0 0 0 x

ro u ro 0

= (k -1) J Gi (u + h) J (u - x)k-2dxdu = J Gi (u + h)J dx (u - x)k-1du =

0 0 0 u

ro

= J uk-1 Gi (u + h )du = mRk }(h) / k

0

and lemma A.2 is proved.

ro

Lemma A.3. For any integers N > 1, any u <ro , 0 < a <ro and any functions f (x) such, that I f (x )dx < ro,

0

next identity is carried out

N ro/.\ N ro n ro

E Jf ( ^ I dyn J fj(v)dv = an J fj(y)dy . (A.3)

i=1 0 V ' j =1, u+y j=1 u

j *i

Proof of lemma A.3. Since

EJf f^ZZ | dyUJ fj (v)dv = aEJ f (y)dynJ f (vd,

i=1 0 ( a ' j=1, y i=1 u j=1, y

j*i ~ a j*i

then for the proof of (A.3) it is sufficient to show, that

N ro n ro N ro

EJ f (y )dy n J fj (v )dv = n J fk (y )dy . (A4)

j=1, y k=1

j *i

Since

œ \r œ

nj /k ( y )dy = - (nj fk ( v )dv = - J dy (nj / ( v )dv )

k=1 u k=1 y u k=1 y

œ

œ

œ

N œ N

- 2 J f (v )i:=; dy nj fj ( v)dv = 2 J f (y )dy nj fj ( v)dv,

J=1. y i=1 u j=1.

i*i i*i

And lemma (A.3) is proved.

Proof of corollary 4.1. For the scheme n out of n all monotonic ways leave from b = 1, where all n of elements are operational, and they fall into b3 = 0, where all n of elements failed [1]. The length of the monotonic way leading from b = 1 into V = 0 equals (n + 1). The BAS signal on the monotonic way always enters the last.

With d = d1 let us fix the first failed element, which will be restored by the single RU. With the fixed first element and with the fixed last element (object) remained (n - 1) elements will give (n - 1)! ways, leading from b = 1 into V = 0 . Therefore taking into account (6.2) from [1] and theorem 4.1 it follows

pn (d1,1) « (n -1)! Z fn-i Gj (xn + V + u)dx2...dxndvdH («) =

mv..mjn* ,=1J0 Jo 0<x2<J<xn

_ (n -1)!

m1...mnm* j=1

2j0 j0 j0 Gi (vn + v + u)dxn J0 dXn-1..J0 dV2dvdH (u)

_ (n -1)

/»œ /»œ /»œ

2 j j j xn-2Gj(x + v + u)dxdvdH(u). (A.5)

m1...mnm* ;=1

Passing in (A.5) from the internal double integral to the iterated and after making the change of variables (x + v) y, dv = dy, 0<x<(x + v) = y, we will obtain

ß (d1, 1) « (n 1) J0œ J0œ Gi (y + u)J0y x" 2dxdydH(u) : m1...mnm* j=1J0 J0 J0

1 _n . i*œ /»œ ,—

-2nJ J yn-1Gj (y + u)dydH(u)

m m n J0 J 0

m1...mnm*n~ J0 J0 and statement (4.2) is proven.

With d = d2 let us fix the last failed element of UPB which precedes the BAS signal. Those remaining (n - 1)

elements of UPB will give (n - 1)! ways leading from b = 1 into V = 0 with the last fixed element. Therefore taking into account (6.2) from [1] and theorems 4.1 it follows

(n — 1)! ^^ p p — — — —

Pn (d2 > i^) ~-- Z In In I ... I Gj1( x2 )Gj2 (x3 — X2 )...Gjn—1 (xn — xn—1 )Gn (v + u)dx2. ..dXndvdH (u) =

m1...mnm• j. J° 0<x,<J<x.

(n -1)!

m1...mnm* j =10 0 0

n

£ jjjGj1(X2)dX2 jGj2(X3 - X2)dX3.. J Gj„-1(Xn - Xn-1)dxnG]n (V + U)dvdH(u).

After taking into consideration, that x1 = 0, making the change of variables xj - xj-1 = y , dxj = ^, and changing limits of integration from xj-1 < xj < ro to 0 < y < ro, j = 2, n, we will obtain, that

ßn(d2,1) - (n 1)! £ jjGj(v + u)nmRidvdH(u) = (n 1)! (^

m1...mnm* ;=1J0J0 ¡*} mv.mnm* ;=1 ¡*;

mRi .

Statement (4.3) is proven.

With d = d3, let us fix the last failed element of UPB (i-th element), which precedes the BAS signal. Therefore taking into account (6.7) from [1] and theorem 4.1 we will obtain

/ 1 \ I n ro ro

Pn(d3,1)- J^E E JJJ ...J G^ + — )...G;i( y^+n+Lyfyvd*

m1 .. .J„m* i=1 j( n-1) j 0 J0 0J< y1<.. J< yn-1 n n

*Gi (v+u)dvdH (u). (A.6)

n

Since integral expression, standing under the sign of sums in (A.6), is converged and it is equal to the probability

of failure of SPB on one of the monotonic ways, leading from b = 1 into V = 0 than according [8] it is possible to interchange the positions of summing up and integration. Therefore

ß,«y) - £j; j; £ j ...j G,„(y1+^...G^+vsv-d,

m m m ^^ J0 J0 ( n-1)M ( n-1) n n

m1...mnm* ~J0 J0 ,-cn-1?:M(n-1), "L n n

*Gi (v+u)dvdH (u). (A.7) n

After using to the internal iterated integral in (A.7) lemma A.1, then after making the change of variables [ y + (v + u)/ n] = y', and then using lemma A.3, we will obtain

/ 1\|n roro n ro

Pn (d3,1) - EJJGi (—)nJGj (y + — )dydvdH (u) =

m1.. .mnm* i =10 0 n j=10 n

j *i

_ (n -1)! ^ }}- ,v + u '

£jjGj(-)H j Gi(y)dydvdH(u)

m1...mnm* j=10 0 n i*j v+u

n

(n -1)!

mv..mnm*0

SJ Gi (—)n J Gj (y)dy

i=1 r, n >=1 ,,+ ,,

i=1 0

j=1 v+u j*i

dvdH (u ) =

n !

œ l n œ

m1...mnm* 0 I j=1

Jl njGj(y + _)dy dH(u)

and we obtained (4.4).

Let us pass to discipline d4. By definition of discipline d4 A(d4,1,n,u) = A(d1,l,n,u). Furthermore, exactly so, as was proven lemma 1 in [4], it is possible to show, that with the condition for fast restoration and k > 1 A(d4,k,n,u) = A(d1,l,n,u), and we obtain statement 4) of corollary 6.1 from [1]. Hence with d = d4, l = n, k = 1 let us fix the last failed element of UPB and taking into account (6.5) from [1] and theorem 4.1 we will obtain

1 n œ œ ___

ßn (d4,1) *-SJ0 J0 S J —J Gjn-1(y1 + v + u)...GH(yn-1 + v + u)dyv..dyn-1

m1...mnm* J0 /n-»em;n-1)

^ j "em; ' 0<yj<...<yn_

'' Gjn (v + u) dvdH(u) .

After using to the internal iterated integral lemma A.1, then after making the change of variables [y + (v + u)] = y', and then using lemma A.3, we will obtain

Pn(d4,1)--i Gj(v + u)nf Gi(y + v + u)dydvdH(u) =

ml...mnm* j^o Jo ^j Jo

1

m1...mnm* —

n

SjjGj(v + u)n J Gi(y)dydvdH(u)

j v+u

1

œ ! n œ

m1...mnm* 0 I j=1

JlnJGj(y + u)dy dH(u)

and we obtained (4.5). Corollary 4.1 is proven.

Proof of corollary 5.2. Let us take an advantage of corollary 6.2 of [1] and the second recommendation of corollary 5.1.

With r = 1, d = dj, and n = h = const from (4.2)

1 n œ __1 n

ßn(d1,1) --£n jyn-1Gj(y + h)dy =-£mR>(h):

m1...mnm*n~~1 J0 m1...mnm*n~~1

and

i n œ __i n

ßn (d1,1)--£ nj yn-1Gj (y + h + x)dy =-£ mR\h + x)

m1...mnm*n ~f J0 m1...mnm*n j=1

Hence from (6.9) [1] it follows (5.1). On the lemma A.2

m.%\h + x)dx = mR+1)(h)/(n +1)

and in accordance with (6.10) and (6.11) from [1] we obtain (5.2) and (5.3). With r = 1, d = d2, and jj = h = const from (4.3) we will obtain

P(d2,1) - (n-1)! Em*(h)nmRl,

mv..mnm* j=1 *

ßxn(d2,1) - {n 1)! ££mRj(h + X)n

m1...mnm* ;=1 ¡*;

mRi

We obtained (5.4). On lemma A.2

mRj (h + x )dx = mR }(h ) / 2.

And we obtained (5.5) and (5.6).

With r = 1, d = d3, and jj = h = const from (4.4) we will obtain

n! T^ (h

ßn(d3,1) --—n

mRjI

m1...mnm* jf \

n ! f h + x'

pxn(d3, 1) --:-nmRj I - I .

m1...mnm* n J

Hence taking into account corollary 6.2 from [1] we will obtain (5.7), (5.8) and (5.9).

œ

œ

With r = 1, d = d4, and rj = h = const from (4.4) we will obtain

ßn ( d4,1)

m1.. mnm* ;=1

H mRj( h),

ßxn ( d4,1):

m1.. mnm* ;=1

H mRj (h + x ),

which proves (5.10), (5.11), and (5.12).

Corollary 5.2 is proven.

Acknowledgements

The author expresses the deep gratitude to Prof. V. Rykov for the observations that were made in the period of writing the article.

REFERENCES

1. Genis, Y. On Reliability of Renewal Systems with Fast Repair. Journal of International Group on Reliability, Reliability: Theory & Applications, No. 3 (Vol. 1), pp. 31 - 47 (2006).

2. Genis, Y. 2-Sided estimates for the reliability of a renewable system under a non-stationary operational regime. Soviet Journal of Computer and Systems Sciences, 27(6), 168-170 (1989).

3. Genis, Y. Indexes of suitability for repair and the coefficient of readiness of standby systems for various renewal disciplines. Soviet Journal of Computer and Systems Sciences, 26(3), 164-168 (1988).

4. Kozlov, V.V. and A.D. Solovyev. "Optimum maintenance of repairable systems. 1" (in Russian). Izv. ANSSSR, Technicheskaya kibernetika. No 3. 79 - 84 (1978).

5. Zbyrko, A.M., Kuznetsov V.N. and Turbin A.F. " On the semi-markovian model for the analysis of the reliability of system with the restorable protection." (in Russian). Avtomatika i telemehanika, 175 - 185 (1980).

6. Genis, Y. G. Stochastic-system behavior described by semi-renewal process. Automation and Remote Control, 40(5), 668-681. (1979).

7. Solovyev, A.D. "Redundancy with fast restoration" (in Russian). Izv. AN SSSR, Technicheskaya kibernetika. No 1. 56 - 71 (1970)

8. Fihtengolts, G.M. " Course of differential and integral calculus." (in Russian). v. 2. p. 559. "Nauka". (1970)

9. Malinetskiy, G.G. and Kurgiumov, S.P. "NONLINEAR DYNAMICS AND THE PROBLEMS OF THE FORECAST." (in Russian). VestnikRossiyskoyAkademii Nayk. t. 71, № 3, 210-232, (2001).

10. Henley, E. and Kumamoto, H. Reliability Engineering and Risk Assessment. Prentice-Hall, Inc., Englewood Cliffs. (1981).