Principlev1

When designing critical systems, ensure backup paths do not

When designing critical systems, ensure backup paths do not share failure modes with primary paths by using independent implementations, physical separation, or diverse technologies.

Why This Is a Principle

Derives from Every detection system faces a fundamental tradeoff between (tradeoff in detection systems) and Complex systems that work evolved from simple systems that (complex systems evolved from simple systems). The principle prescribes independence in redundancy design to avoid common-cause failures. It's actionable (use independent implementations) and general (applies across engineering, cognitive systems, and organizational design).

Source Lessons

L-0257

Redundant relationships provide resilience

Multiple paths between important nodes make a system more robust.

Connections

Derived From (2)

AxiomEvery detection system faces a fundamental tradeoff between AxiomComplex systems that work evolved from simple systems that

Back to Concepts