Fault Containment Region

FCR

Section 06: System Safety & Functional Safety

Definition

A defined boundary within a system architecture beyond which the effects of a fault cannot propagate. A fault containment region is designed so that any fault originating within the region is either contained within that region (preventing it from affecting other regions) or is detected before it can propagate. Fault containment regions are established through hardware isolation, software partitioning, interface monitoring, and architectural boundaries. The concept is particularly important in integrated modular avionics (IMA), where multiple functions of different DALs share computing resources.

Where This Shows Up

Fault containment regions provide a structured way to reason about failure propagation in complex architectures. In IMA systems, robust partitioning creates fault containment regions that prevent a fault in one partition (e.g., a DAL C application) from affecting another partition (e.g., a DAL A application). The boundaries of fault containment regions must be demonstrated to be effective through analysis and testing.

Primary Sources

SAE ARP4754B — Development of Civil Aircraft and Systems

Addresses fault containment in the context of system architecture and development assurance.

RTCA DO-297 / EUROCAE ED-124 — Integrated Modular Avionics Development Guidance

Provides guidance on fault containment regions in IMA architectures.

Related Terms

Independence (Safety Architecture)SegregationSafety Architecture

Need help navigating certification?

Understanding the terminology is the first step. If you need expert guidance on DO-178C, DO-254, ARP4754B, or any aspect of FAA, EASA, or TCCA certification, our team is here to help.