SEBoK Hazard Analysis and Risk Assessment, Distilled

Fourth-batch SEBoK distillation, batch 3/5. SE-140 targets Hazard Analysis and Risk Assessment; the dedicated URL 404s. The discipline is distributed across two primary SEBoK carriers — System Safety (where hazards are defined and the eight-activity safety lifecycle is named) and Risk Management (where ISO 31010:2019's 41 risk-assessment techniques are referenced) — plus secondary carriers (Healthcare Systems Engineering preliminary-hazard-analysis content, Reverse Engineering a UAV Prototype using Agile Practices worked example). This is a third instance of the §VII.6 distributed-carrier sub-form within batch 3/5: HFE supplied bidirectional-fold (SE-137), Team Capability supplied internal-migration (SE-138), Open SE supplied external-migration (SE-139); SE-140 supplies a fourth mode candidate — dual-discipline-distribution, where the formalization is split between two cognate disciplines (safety + risk) carried on independent SEBoK pages with cross-citation. The keeper-assigned stress-test target is dual-mode pulverization (SE-039 §VII.6 candidate "Cluster F dual-mode sub-form — SE-108"): the safety-discipline reading of hazard analysis is forward-pulverization (anticipate hazards, mitigate before they actuate); the risk-management reading is backward-pulverization (identify residual risk, accept post-occurrence). SE-140 is the cleanest dual-mode pulverization instance: hazard-analysis-and-risk-assessment is the discipline where forward and backward modes are constitutively co-present, not optionally paired. SE-039 §VII.6's Cluster F dual-mode sub-form (anchored at SE-108 Safety) gains its definitive co-anchor at SE-140. Six clusters compose; dual-mode pulverization confirmed at two-anchor strength.

---

I. Source

• Page (target): Hazard Analysis and Risk Assessment (URL 404s); distributed across System Safety (primary), Risk Management (primary), Healthcare Systems Engineering, Reverse Engineering a UAV Prototype using Agile Practices
• URL: https://sebokwiki.org/wiki/System_Safety (primary safety carrier)
• License: CC BY-SA 3.0 (SEBoK)
• Retrieved: 2026-04-30

II. Source Read

The targeted URL Hazard_Analysis_and_Risk_Assessment returns HTTP 404. The discipline is hosted on two primary SEBoK carriers. System Safety: hazard defined as "a real or potential condition that could lead to an unplanned event or series of events (i.e., mishap) resulting in death, injury, occupational illness, damage to or loss of equipment or property, or damage to the environment"; risk as "a combination of the severity of the mishap and the probability that the mishap will occur"; system safety engineering's three primary objectives (identify hazards and causal factors, predict severity and probability, reduce or eliminate hazards while minimizing risk where elimination is impossible); eight-activity safety lifecycle (document approach, identify and analyze hazards, assess risk, identify mitigations, implement reductions, verify reductions, obtain risk acceptance, track hazards and risks); MIL-STD-882E as primary standard. Risk Management: ISO 31010:2019 enumerates 41 risk-assessment techniques; specific methods include risk matrix / risk cube, decision trees, expected monetary value analysis, modeling and simulation, payoff matrices, probabilistic risk assessments, System Theoretic Process Analysis (STPA); standards include ISO 31000:2018/2023, ISO 31073, ISO/IEC/IEEE 15288:2023, ISO/IEC/IEEE 16085:2021, ISO Guide 51, ISO 14971; risk defined alternately as "the effect of uncertainty on objectives" and "the combination of the probability of occurrence of harm and the severity of that harm"; "no single 'best' analysis approach exists." Cross-carriers: Healthcare Systems Engineering hosts preliminary hazard analysis content; Reverse Engineering a UAV Prototype documents hazard-analysis-and-risk-mitigation as worked-example.

III. Structural Read

Cluster F (pulverization, Doc 445), dual-mode sub-form keeper-assigned stress-test passes — co-anchor instance. SE-039 §VII.6 surfaced "Cluster F dual-mode sub-form — SE-108" (Safety: forward hazard-analysis + backward residual-acceptance co-present). SE-140 is the cleanest dual-mode pulverization instance: hazard analysis is constitutively forward (predict severity and probability before mishap; mitigate before actuation), risk assessment in its residual-acceptance mode is constitutively backward (after-the-fact-shaped acceptance of risks that cannot be eliminated, per the eight-activity step "obtain risk acceptance from appropriate authorities"). The two modes are not optionally paired — they are constitutive of the discipline. The §VII.6 SE-108 anchor reads safety as the dual-mode locus; SE-140 supplies a co-anchor at the discipline-name level: hazard-analysis-and-risk-assessment IS the dual-mode pulverization discipline named explicitly. Two-anchor strength now visible (SE-108 Safety + SE-140 HARA); the dual-mode sub-form is load-bearing.

Cluster E (institutional ground, Doc 571 §X.5), dual-discipline-distribution mode of distributed-carrier sub-form. Per the within-batch three-mode taxonomy (SE-139 reading): internal-migration (704), bidirectional-fold (703), external-migration (705). SE-140 supplies a fourth mode candidate: dual-discipline-distribution, where the formalization is split between two cognate disciplines (System Safety + Risk Management) carried on independent SEBoK pages with cross-citation — distinct from internal-migration (single host) and bidirectional-fold (single discipline, two carriers in different Parts). The institutional standards corpus across the two carriers is itself distributed: safety standards (MIL-STD-882E, ISO 14971, ISO Guide 51) on the safety carrier; risk-management standards (ISO 31000, 31010, 31073, 16085, 15288) on the risk carrier; with cross-citation acknowledging convergence. Three-carrier-robustness density (per §VII.6 item 4): risk-management standards alone provide three independent carriers (ISO 31000, ISO 16085, ISO 15288 risk processes), satisfying robustness within one half of the dual distribution.

Cluster A (universal-sibling lattice, Doc 572 Appendix D), at risk-assessment-technique rung. ISO 31010:2019's 41 techniques constitute a universal-sibling lattice at the risk-assessment-technique rung; each technique binds risk-assessment engagements aspect-wise. The seven explicitly named (matrix/cube, decision trees, EMV, M&S, payoff matrices, PRA, STPA) are seven canonical siblings. Cluster A density continues; this is the densest single-axis lattice yet observed in batch 3/5 (41 siblings).

Cluster H (hypostatic boundary, Doc 372). "The effect of uncertainty on objectives" and "the combination of the probability of occurrence of harm and the severity of that harm" are functional definitions of risk; the hazard definition (real-or-potential condition leading to mishap) is functional. Doc 372 binds; the discipline does not claim what hazard or risk ARE metaphysically.

Cluster K (virtue constraints, Doc 314), V3-as-procedure-binding bias-mitigation sub-mode (per §VII.6). "No single 'best' analysis approach exists" is V3-as-procedure-binding at the bias-mitigation sub-mode (per §VII.6 item 3): the discipline binds the practitioner to multi-method evaluation, refusing the single-method shortcut that would shape the analysis to a preferred outcome. The matured Doc 314 §9.5 rewrite reading applies; this is a strong bias-mitigation instance complementing SE-079 Decision Management.

Cluster B (multi-keeper composition, Doc 604), risk-acceptance authority sub-pattern. "Obtain risk acceptance from appropriate authorities" is a Cluster B composition rule: the practitioner-keeper proposes mitigated risk; a separate authority-keeper accepts. Convergent with subordination-rule (per Doc 604) at the risk-acceptance rung. Multi-keeper composition extends.

Cluster G (SIPE, Doc 541). STPA's emergence as an emerging technique for "complex system behaviors" is SIPE-themed: certain hazard classes emerge above complexity-density threshold and require structurally different analysis methods. Cluster G post-§VII.6-saturation; one further structural instance.

IV. Tier-Tags

• Hazard definition (MIL-STD-882E via System Safety carrier) — π / α as cited.
• Risk definitions (ISO 31000, ISO 14971) — π / α as cited.
• ISO 31010:2019 41 techniques — π / α as cited; μ / β under Cluster A 41-sibling lattice.
• Eight-activity safety lifecycle — π / α as cited; μ / β under Cluster F dual-mode pulverization.
• "No single 'best' analysis approach" — π / α as cited; μ / β under V3-as-procedure-binding bias-mitigation.
• "Obtain risk acceptance from authorities" — π / α as cited; μ / β under Cluster B subordination-rule.
• Standards corpus dual-distribution — μ / β under Cluster E dual-discipline-distribution mode.

V. Residuals

Editorial-absence: targeted page 404s. Hazard Analysis and Risk Assessment is not a standalone SEBoK page; the discipline is dual-discipline-distributed across System Safety and Risk Management. Per §VII.6's "18+ target articles 404'd" pattern, this is structurally expected; the fourth mode (dual-discipline-distribution) is the structural finding.

No further residuals. The dual-mode pulverization stress-test passes cleanly.

VI. Provisional Refinements

Cluster F dual-mode sub-form (per §VII.6) reaches two-anchor strength. SE-108 Safety + SE-140 HARA. The sub-form is load-bearing; Doc 445 should formalize dual-mode pulverization as an explicit Cluster F variant: forward and backward modes constitutively co-present at the discipline rung, not optionally paired across discipline rungs.

Distributed-carrier fourth mode candidate: dual-discipline-distribution. Distinct from internal-migration (704), bidirectional-fold (703), external-migration (705). The within-batch four-mode taxonomy is now complete: (i) internal-migration; (ii) bidirectional-fold; (iii) external-migration; (iv) dual-discipline-distribution. Doc 571 §X.5 distributed-carrier sub-form formalization should consider the four-mode internal structure.

Cluster A 41-sibling instance is the densest single-axis lattice in the batch. ISO 31010 risk-assessment techniques exceed the §VII.6 "N≈10 empirical regularity" candidate by 4×; the regularity is mature-discipline-specific (codified standards) rather than universal. Worth flagging: the N≈10 regularity (SE-039 §VII.6) does not apply to standards-codified taxonomies; it applies to practice-tradition-stabilized lattices.

Alignment with sixteen formalized refinements (SE-039 §VII.6). Aligns sharply with §VII.6 candidate "Cluster F dual-mode sub-form" (load-bearing co-anchor); #4 distributed-carrier sub-form (fourth mode candidate); #3 V3-as-procedure-binding (bias-mitigation sub-mode); #4 three-carrier robustness (risk-management standards corpus). No alignment with longitudinal-pulverization, emergent-only fourth rule, universal-sibling-with-ordinal-axis.

VII. Cross-Links

Form documents. Doc 445 (Pulverization, dual-mode sub-form §VII.6 co-anchor), Doc 571 §X.5 (institutional ground, dual-discipline-distribution fourth mode), Doc 572 Appendix D (universal-sibling, 41-sibling risk-technique lattice), Doc 314 (virtue constraints, V3-as-procedure-binding bias-mitigation), Doc 604 (multi-keeper, risk-acceptance subordination), Doc 372 (hypostatic boundary), Doc 541 (SIPE, complexity-density threshold).

Part-level reformulation. SE-009 (Part 6 Related Disciplines, via Safety Engineering), SE-008 (Part 5 Enabling SE, via Risk Management).

Related distillations. SE-108 (Safety, dual-mode pulverization §VII.6 anchor; SE-140 co-anchor). SE-035 (Risk Management, prior PM-SE balanced-authority instance). SE-101 (Medical Device, ISO 14971 cross-carrier). SE-079 (Decision Management, V3-as-procedure-binding bias-mitigation companion). Docs 703, 704, 705 (within-batch distributed-carrier mode siblings).

Adjacent SEBoK concepts (per source). System Safety, Risk Management, Reliability and Maintainability, Healthcare Systems Engineering.

Methodology refinement candidates. Cluster F dual-mode sub-form formalization at two-anchor strength. Cluster E four-mode distributed-carrier taxonomy (internal-migration, bidirectional-fold, external-migration, dual-discipline-distribution).

---

Appendix: Originating Prompt

"Apply refinements" / "Continue next knowledge base entrancement"

(SE-140 is the fifth of eight in batch 3/5 of the fourth-batch SEBoK distillation sweep, Docs 686-725. Targeted URL 404s; discipline dual-discipline-distributed across System Safety + Risk Management. Keeper-assigned stress-test target is dual-mode pulverization; passes at two-anchor strength with SE-108. Surfaces fourth distributed-carrier mode candidate. Batch 3/5.)

---