Engineering:Kill switch

From HandWiki
Short description: Safety mechanism to quickly shut down a system
Kill switch
Not-Aus Betätiger.jpg
A kill switch without a cover
ClassificationMechanical component
IndustryAutomotive, boating, energy, engineering, entertainment
PoweredVaries, some mechanical

A kill switch, also known more formally as an emergency brake, emergency stop (E-stop), emergency off (EMO), or emergency power off (EPO), is a safety mechanism used to shut off machinery in an emergency, when it cannot be shut down in the usual manner. Unlike a normal shut-down switch or shut-down procedure, which shuts down all systems in order and turns off the machine without damage, a kill switch is designed and configured to abort the operation as quickly as possible (even if it damages the equipment) and to be operated simply and quickly (so that even a panicked operator with impaired executive functions or a bystander can activate it). Kill switches are usually designed to be noticeable, even to an untrained operator or a bystander.

Some kill switches feature a removable, protective barrier against accidental activation (e.g. a plastic cover that must be lifted or glass that must be broken), known as amollyguard. Kill switches are features of mechanisms whose normal operation or foreseeable misuse might cause injury or death; industrial designers include kill switches because damage to or the destruction of the machinery is less important than preventing workplace injuries and deaths.

A similar system, usually called a dead man's switch, is a device intended to stop a machine (or activate one) if the human operator becomes incapacitated or leaves the machine unattended, and is a form of fail-safe. They are commonly used in industrial applications (e.g., locomotives, tower cranes, freight elevators) and consumer applications (e.g., lawn mowers, tractors, personal watercraft, outboard motors, snow blowers, motorcycles and snowmobiles). The switch in these cases is held by the user, and turns off the machine if they let go. Some riding lawnmowers have a kill switch in the seat which stops the engine and blade if the operator's weight is no longer on the seat.

Vehicles

An emergency switch in Japan

On railways,[1] an emergency stop is a full application of the brakes in order to bring a train to a stop as quickly as possible.[2] This occurs either by a manual emergency stop activation, such as a button being pushed on the train to start the emergency stop, or on some trains automatically, when the train has passed a red signal or the driver has failed to respond to warnings to check that they are still alert, which is known as a dead man's switch. A similar mechanism is the watchdog timer.

In large ships, an emergency stop button pulls the countershaft for the fuel pumps to the stop position, cutting off the fuel supply and stopping the engines. With a controllable-pitch propellor, the stop button may declutch the engine from the propellor.

NASCAR requires all their stock cars to be equipped with a steering wheel-mounted kill switch, in case the accelerator pedal sticks and the driver needs to shut down the engine.

A related concept is the dead man's switch, where the operator must be holding a button or lever any time the vehicle is operating. A common example of this is the kill switches used by boaters and jetskiers wherein a cord connects the kill switch to the operator (usually by the operator's life jacket or clothing), and if the operator is thrown overboard in an accident, the cord will pull the switch and immediately shut down the vessel's engine. This prevents it from becoming a runaway vessel that could impose a danger to other vessels or swimmers at sea, and allows the operator to swim back to the vessel and re-board it without the risk of being injured by the boat's propellor. A similar device is featured on most lawnmowers: a lever on the handle either disables the ignition system and applies a brake to the flywheel (on a gasoline lawnmower), or cuts the power to the motor (on an electric lawnmower), as long as it is not held down.

Monster Truck Racing Association requires all of their monster trucks to be equipped with kill switches (either remote or in cab), in case the monster truck loses control and the driver needs to shut off the engine. Monster trucks' kill switches are tested before races. [citation needed]

Pioneer-era planes and World War I aircraft

Early aviators using rotary engine-powered aircraft from the beginnings of their use in 1908, up through the end of World War I in 1918 had what could be called a reversed functionality version of the "dead man's switch" for cutting the ignition voltage to the spark plugs on such a power-plant, to give a degree of in-flight speed control for a rotary engine. This was often called a "blip switch" or "coupe switch" (from the French term coupez, or "cut") and when not being pressed, allowed the high voltage from the engine's magnetos to operate the ignition with normal engine operation in flight — pressing the "blip switch" cut the flow of high voltage from the magnetos, stopping the combustion process in the cylinders. When such a "blip switch" was intermittently used on landing approach, this allowed a limited degree of engine speed control, as rotary engines generally did not have a conventional throttle in their carburettors to regulate engine speed, but only for governing the fuel-air ratio for start-up and full-speed operation.

Anti-theft

Kill switches are also used on land vehicles as an anti-theft system and as an emergency power off. Such devices are often placed in bait cars and configured so that observing police can trigger the switch remotely.[3] This same idea can make the stolen object, such as a smartphone, useless to both the thief and whoever buys it, yet allow the true owner to reactivate it when/if it is recovered.[4]

Smartphones

Main page: Engineering:Smartphone kill switch

In smartphones, a kill switch is a security feature that allows the phone's owner to remotely render the smartphone inoperable if it is lost or stolen. From 2015 this feature is legally required in California for smartphones.[5] There are also hardware kill switches on some phones, such as PinePhone, where the user can, by moving a hardware switch inside the phone, disable hardware like the camera, microphone, Wi-Fi or LTE.[6]

Software

See also Brick (electronics) – an electronic device that can no longer function

By analogy to physical kill switches, "kill switch" can be used to refer to a mechanism incorporated in software that can be activated by its manufacturer or licensor, for example if the product is withdrawn, or a maintenance fee has not been paid, or a device has been lost or stolen.[7][8] It can also refer to kill switches for the stopping of malware such as in the WannaCry ransomware attack.[9][10]

There is a debate about implementing kill switches in robots[11] and advanced artificial intelligence systems.[12]

In AI

Google started to work on a hardware kill switch for AI in 2016.[13]

Industrial machinery

The arrows indicate that the stop button must be turned to reset the switch before the equipment can be restarted.

On large industrial machines, an emergency stop button is typically located on the panel, and possibly in several other areas of the machine. Often, an emergency stop is made wireless using a remote control. This provides a rapid means to disconnect the energy source of the device to protect workers.[14] For fail-safe operation, the emergency stop button is a normally closed switch, which ensures that a broken wire will not prevent it from being activated, but may accidentally activate the emergency stop.

In the European Union, most types of machinery are required to be equipped with an emergency stop according to the Directive 2006/42/EC. Exceptions apply for machinery in which an emergency stop would not lessen the risk as well as for portable hand-held/hand-guided machinery.

Nuclear power plants

Main page: Physics:Scram

A kill switch in a nuclear reactor plant is called SCRAM. It is usually characterized as an acronym for "safety control rod axe man", though this is probably a backronym.

Machine tools

Emergency stop functions are frequently used on machine tools, including equipment like wood and metal sawing machines, grinding machines, drilling machines, milling machines and machining centres and lathes. The emergency stop safety function, and general requirements for emergency stop devices are set out in ISO 13850. [15] Machine specific (type-C) standards often include specific requirements for the emergency stop functions, but in the absence of a relevant type-C standard, the risk assessment should be used to determine whether or not an emergency stop function would be useful in avoiding or limiting harm. The ISO machinery safety standard types are defined in ISO 12100,[16] and this nomenclature is used by other standards development organizations, like ANSI in the USA, and CSA in Canada.[17][18]

Complementary protective measure

An emergency stop button with a custom-made plastic molly guard to prevent it from being pressed accidentally

A machinery's emergency stop control is considered a complementary protective measure[16] because it is intended to complement the primary safeguarding measures like fixed guards, movable interlocked guards or safeguarding devices. The primary safeguarding measures prevent injury automatically, either by enforcing distance between a hazard and a person, or by eliminating the hazard by stopping hazardous motion or switching off a source of hazardous energy.

By contrast, emergency stop requires a deliberate action on the part of a person who must first recognize that some hazardous condition is about to arise or is arising, and who then must activate the emergency stop function by pressing the emergency stop button or activating another emergency stop device such as a pull-cord switch.

Fuel stations and road vehicles

A kill switch is also used for gasoline pumps or any other device that pumps large amounts of explosive or flammable chemicals. There is commonly a single kill switch for all pumps at a pumping station.

Elevators and escalators

Elevators[19][20]often have a red two-way button on the control panel which is either marked "Emergency Stop" or "Run/Stop". Normally, the button is in the "up" or unpushed position, allowing the elevator to "run" in normal service. When the button is pushed, the elevator comes to an immediate stop. When the button is pulled back out, it resumes normal service, thus the reason for the use of the phrase "Run/Stop". Escalators will typically have a key-operated control that will turn the escalator off, or change its direction to up or down. Next to the key switch will be a red "Emergency Stop" button, which is used in the event of equipment failure, or where there is a potential for injury, such as when someone's shoe gets stuck in the "comb" at the top or bottom of the escalator and there is a risk of serious injury. The key switch is used to return the escalator to service after it has been stopped.[21][22]

Gym

Treadmills[23] often use a safety key with one end magnetically attached to the machine and the other end clipped to the user's waist. If the safety key is pulled out, such as in the event of a fall, the treadmill stops immediately. In other cases, some other treadmills have a more traditional kill switch, often mounted towards the rear of one of the hand railings.[24][25]

Amusement rides

The emergency stop on an amusement ride is similar to that on industrial equipment. Typically brakes on a ride are designed to be disengaged when power is applied; disconnecting power will cause all brakes to engage. Most amusement rides have a computer that can, similar to the rail example provided above, engage the emergency stop when such a ride is determined to be out of operating specification, or an accident involving a passenger or ride employee has happened.[26]

Military and other equipment

It is thought that some electronic chips used in equipment, particularly military, have a secret "kill" function that disables the equipment. It has been reported that French and Israeli electronic warfare units have used kill switches to disable opponents' military systems.[27] And systems have been infected with malware specifically designed to damage them.[28]

John Deere tractors have been criticised for it being impossible for owners to service or repair them; only John Deere has access to computer code required for this and to accept non-John-Deere replacement parts. Vital equipment from other manufacturers such as critical medical equipment has similar restrictions. Remote locking by the manufacturer may also be possible.[29] It was reported that during the 2022 Russian invasion of Ukraine Russian troops stole Ukrainian farm equipment, but that the dealers who owned the equipment locked it remotely.[30]

Spaceflight

Range safety systems can automatically destroy errant vehicles in-flight. Range-safety officers may also manually destroy vehicles; this method was used to destruct errant solid rocket boosters in the Space Shuttle Challenger disaster.

See also

  • Hardware Trojan – Malware embedded in hardware; harder to detect and fix than software vulnerabilities
  • Social:Internet kill switch – Single shut off mechanism for all Internet traffic
  • Security switch – Physical switch to disable unwanted access or operation by breaking signal or power,
  • Software:USBKill – Software to protect from unknown USB devices
  • Company:SawStop – American table saw manufacturer a fast kill switch for table saws triggered by electrical conductivity of user's finger.
  • Engineering:Battleshort – Emergency override of safety features to complete a mission, even if damage or injury will occur; the opposite of a kill switch

References

  1. Patrick McGeehan (December 20, 2017). "Law Requires Life-Saving Braking Device: Most Trains Still Lack Crucial Braking System". BizJournals.com (Pittsburgh). https://www.bizjournals.com/pittsburgh/news/2017/12/21/many-trains-still-lack-crucial-braking-system.html. 
  2. "Train engineer pulled emergency brake when he saw SUV". The Los Angeles Times. February 5, 2015. https://www.latimes.com/nation/la-na-new-york-train-crash-ntsb-20150205-story.html. 
  3. "A Kill Switch Can Steal a Car Thief's Previous Time". The New York Times. April 24, 1994. https://www.nytimes.com/1994/04/24/automobiles/driving-smart-a-kill-switch-can-steal-a-car-thief-s-precious-time.html. 
  4. "Smartphones Embracing 'Kill Switches' as Theft Defense". The New York Times. June 9, 2014. https://bits.blogs.nytimes.com/2014/06/19/antitheft-technology-led-to-a-dip-in-iphone-thefts-in-some-cities-police-say. 
  5. "The Smartphone Kill Switch Explained". The Washington Post. https://www.washingtonpost.com/news/the-switch/wp/2014/08/27/the-smartphone-kill-switch-explained. 
  6. T., Raffaele (2 September 2019). "Librem 5 vs. PinePhone: comparison of two Linux smartphones" (in en). https://tuxphones.com/purism-librem-5-vs-pine64-pinephone-linux-smartphone-comparison/. 
  7. Davies, Chris (19 Sep 2009). "Microsoft remote software "kill switch" confirmed". https://www.slashgear.com/microsoft-remote-software-kill-switch-confirmed-1656965/. 
  8. Williams, Martyn (24 Jun 2014). "10 things to know about the smartphone kill switch". http://www.pcworld.com/article/2367480/10-things-to-know-about-the-smartphone-kill-switch.html. 
  9. Chan, Sewell; Scott, Mark (14 May 2017). "Cyberattack's Impact Could Worsen in 'Second Wave' of Ransomware". The New York Times. https://www.nytimes.com/2017/05/14/world/europe/cyberattacks-hack-computers-monday.html. 
  10. "Warning: Blockbuster 'WannaCry' malware could just be getting started" (in en). NBC News. https://www.nbcnews.com/news/us-news/blockbuster-wannacry-malware-could-just-be-getting-started-experts-n759356. 
  11. Kottasova, Ivana (January 12, 2017). "Europe calls for mandatory 'kill switches' on robots". CNNMoney. https://money.cnn.com/2017/01/12/technology/robot-law-killer-switch-taxes. 
  12. Larson, Selena (January 26, 2017). "Killing the immortal: Why scientists are debating the life span of robots". CNNMoney. https://money.cnn.com/2017/01/26/technology/kill-switch-ai-ethics. 
  13. "Google developing kill switch for AI" (in en-GB). BBC News. 2016-06-08. https://www.bbc.com/news/technology-36472140. 
  14. Repas, Robert (June 22, 2010). "Designing with E-stop Switches". http://machinedesign.com/article/designing-with-e-stop-switches-0622. 
  15. "ISO 13850:2015 Safety of machinery — Emergency stop function — Principles for design". International Organization for Standardization. https://www.iso.org/standard/59970.html. 
  16. 16.0 16.1 "ISO 12100:2010 Safety of machinery — General principles for design — Risk assessment and risk reduction". International Organization for Standardization. https://www.iso.org/standard/51528.html. 
  17. "ANSI B11.0-2020 Safety Of Machinery". American National Standards Institute. https://webstore.ansi.org/Standards/AMT/ANSIB112020. 
  18. "Z432-16 (R2021) Safeguarding of machinery". Canadian Standards Organization. https://www.csagroup.org/store/product/Z432-16/. 
  19. Benjamin Mueller (October 3, 2015). "Deadly Elevator Fall Spurs Look at Brakes and Load". The New York Times. https://www.nytimes.com/2015/10/04/nyregion/deadly-elevator-fall-spurs-look-at-brakes-and-load.html. 
  20. C. J. Chivers (January 26, 2000). "Elevator Cable Failed at Empire State Building, City Finds". The New York Times. https://www.nytimes.com/2000/01/26/nyregion/elevator-cable-failed-at-empire-state-building-city-finds.html. 
  21. Michael Wilson (April 6, 2005). "3 Hungry Days for Deliveryman Stuck in Elevator". The New York Times. https://www.nytimes.com/2005/04/06/nyregion/3-hungry-days-for-deliveryman-stuck-in-elevator.html. "intercom .. emergency alarm button .. emergency stop switch" 
  22. Michael Decourcy Hinds (April 29, 1989). "Escalator Dangers Called Preventable". The New York Times. https://www.nytimes.com/1989/04/29/style/consumer-s-world-escalator-dangers-called-preventable.html. "emergency shut-off switches on escalators." 
  23. Parker-Pope, Tara (May 27, 2009). "The Dangers of Treadmills". The New York Times. http://well.blogs.nytimes.com/2009/05/27/the-danger-of-treadmills.  ("the cord yanks the key out of the console and the treadmill stops")
  24. ""treadmill" ((emergency stop) OR (kill switch))". https://www.google.com/search?q=%22treadmill%22+%28%28emergency+stop%29+OR+%28kill+switch. 
  25. "Emergency Stop Switch Treadmill T2100 with Bracket". GE Healthcare. https://services.gehealthcare.in/gehcstorefront/p/88380-00. "The emergency stop switch is a safety device used in emergency situations to stop the treadmill" 
  26. "Viral video of malfunctioning amusement park ride prompts question: How sare are rides in NC". WWAYTV3 (CBS). July 13, 2021. https://www.wwaytv3.com/viral-video-of-malfunctioning-amusement-park-ride-prompts-question-how-safe-are-rides-in-nc/. 
  27. Adee, Sally (2008-05-01). "The Hunt for the Kill Switch". IEEE Spectrum: Technology, Engineering, and Science News. https://spectrum.ieee.org/semiconductors/design/the-hunt-for-the-kill-switch/. 
  28. Markoff, John (September 26, 2010). "Stuxnet Worm Is Remarkable for Its Lack of Subtlety" (in en-US). The New York Times. ISSN 0362-4331. https://www.nytimes.com/2010/09/27/technology/27virus.html. 
  29. Naughton, John (June 4, 2022). "Why your ability to repair a tractor could also be a matter of life and death". The Guardian. https://www.theguardian.com/commentisfree/2022/jun/04/why-your-ability-to-repair-a-tractor-could-also-be-a-matter-of-life-and-death. 
  30. Fylyppov, Olexsandr; Lister, Tim (May 2, 2022). "Russians plunder $5M farm vehicles from Ukraine -- to find they've been remotely disabled". https://edition.cnn.com/2022/05/01/europe/russia-farm-vehicles-ukraine-disabled-melitopol-intl/index.html.