The bit you skipped:

> He went down to his stateroom after his conversation with Schultz, and when he returned to the bridge he said, “All right, I just sent up the latest weather. Let us clear everything off the chart table with the exception of the charts.” Schultz opened the B.V.S. program. As it happened, according to the N.T.S.B. report, because of a software glitch, the map that appeared was the very same map that had come in with the previous download, six hours earlier. The raw data on which it was based was at least 12 hours old.

It sounds like it wouldn't actually have helped if the captain had the per-hour update, because this undetailed software glitch meant the device wasn't showing the updated maps anyway.

The apparent moral of that part of the story is that the B.V.S. charts are past useless and into actively harmful territory, since they may not just be old but instead actively incorrect.

Yes, I saw the same thing. Even when I've had people reviewing logs, I make the date prominent and train them to check it first. BVS's data is far more critical.

(I learned from a burnt hand: We engaged a non-technical but reliable user to check the daily backup log for errors and report any to us. One day we needed the backup and discovered it hadn't run at all for many weeks. Ouch. I asked the user; she said she indeed checked the logs daily and they were fine. She was right: She was seeing the log from the last backup, unchanged every day. My fault entirely, not hers: We should have anticipated the date problem, and we should have utilized someone technically literate enough to understand what they were reading - in this case, someone who would recognize an 'obvious' problem such as the numbers of files and bytes not changing. And we should have tested our backups more often, but that old lesson almost isn't worth mentioning.)

Also note that B.V.S did appear to have a 'Hourly Update' feature that did not appear to be subscribed to.

It's also important to realize that the captain was confident with the plan- except the storm in question was abnormal. That's an important fact to consider, as it throws the mariners heuristics off deciding how much more attention to pay.

Is that really a UI issue or misrepresented data?

If I see a timestamp on rapidly changing data I sure as hell would like to see if there's a delayed effective stamp (most stock market tickers indicate the "effective date" of their data or say clearly there's a XX min delay).

Reminded me of this aircraft accident where the time delay of radar satellite datalink weather information was critical. The time delay there is minutes not hours.

https://www.youtube.com/watch?v=83uvKWJS2os

An aviation accident case study pinpointed a similar issue with in-cockpit weather displays. In this case the delay was less than 10 minutes, but it was enough to be fatal: https://youtu.be/83uvKWJS2os

Is the audio available from the deck?

As to point #2: https://www.fleetmon.com/maritime-news/?category=incidents has a sobering list.

The shipwreck rate staggerred me when I ran across it a few years back.

It's the key reason I don't find commercial marine nuclear propulsion viable.

It still boggles my mind how three different GPS position formats can be used. And then not used correctly by search crews, which then missed location by 23nm.

https://i.imgur.com/nbwkCPY.png

Cost, most likely

Depends on the line. Most big names do.

The real story here is that the ship was past it's retirement age AND poorly maintained. Any of the series of small events that happened due to the maintenance issues like the scuttle popping open, or the oil sumps not being filled all the way up (these guys were really macho idiots, how expensive is a sump top off really!). The engineers at the NTSB determined that they hit the sweet spot of their engines not working because of the extreme weather and list and unfilled sumps and broken anemometer so they couldn't tell the weather like sailors have been relying on for years. Basically tech is useless if you don't maintain it or replace it or you treat human beings like disposable parts to run your depreciating hulks. The whole world shipping community is running ridiculously old and poorly maintained wrecks sailed by the worlds poorest people for the world's richest assholes. How's that for a class struggle?

well there is a big gulf between storm and hurricane. if they had encountered a normal squall it is doubtful they would have been in trouble but they ran straight into a CAT3 hurricane which if you have experienced on land you know its not even remotely sane to be out in it.

The difficulty of "authorized" was that a captain at sea should have full control to make safe navigational decisions without corporate, profit-minded authorization. Captain Mike's previous experience insinuated that a captain could override company orders but could expect to be quietly let go soon after.

captain: "Can i play it safe on the way back?"

boss: "Yes, authorized."

NTSB: "What do you mean authorized? It's not your decision. Did the captain ask you if he could go the safe way on the way out?"

>Question I would like to transit the Old Bahama Channel on our return northbound leg to Jacksonville, Florida. This route adds an additional 160 nm to the route for a total of 1,261 nm. We will need to make around 21 knots for our scheduled 10/05 10:45 arrival time at Jacksonville pilot station.

The article pointed out that couple years earlier the captain did exactly as you suggest and pulled away from the brink because of safety concerns. His company punished him immediately with a big demotion.

It seems clear that the culture in the industry is set up to weed out those who want to err on the side of safety, and reward those who err on the side of maintaining their shipping schedules.

Some don't recognize the situation is bad because of ignorance.

Some don't pull back because of cowardice.

The rest keep on going because of the sense of adventure. It makes you feel alive.

Agreed. Although, by changing the rout a couple of times they were pretty much following their instincts [alongside the weather reports].

Lump in throat - but can't stop until the end - reading.

Reading through Section 2.7 of that report was a treat, thank you! (https://www.ntsb.gov/investigations/AccidentReports/Reports/...)

Thank you for sharing. Sections 2.6 ("Captain's Decision-Making") and 2.7 are excellent case studies in leadership and authority -- especially the parts about "power distribution" and promoting a culture of open feedback.

The recommendations for the crew to "issue a direct command or to use a crew obligation statement — a statement in which the subordinate obligates the senior crewmember as part of the navigational team by using language such as 'we should' or 'our route'" is excellent. People who need to "manage up" at their jobs can start doing this today.

Learned something today, will research it. Thanks!

That seemed like irresponsible speculation on Vanity Fair's part to me.

The root cause was a captain who mistakenly reacted off of 12 hour old data and ignored another source of data that contradicted it. Pretty surprising given the lengths the article goes through to impress upon the reader how "safety conscious" he was.

There's a movie that reviews that situation in a navy (nuclear submarine) context, it's called 'Crimson Tide'.

"One of my takeaways from the article is that the captain's confidence and willingness to do the right thing had been shaken after he'd been burned the last time he'd refused unsafe orders."

This is just one serious problem in the maritime industry that I have first-hand knowledge of.

I loved sailing, but I don't do it any more because it's not the work that's dangerous, it's the other people.

That's a really interesting observation. I first saw Alien with my roommate soon after we had both graduated from Merchant Marine school and he laughingly made a similar comment: "typical sailor behavior."

And honestly, experienced Merchant officers have seen so much shit, it's hard to get them rattled.

Oh my, you weren't kidding:

On the last day of May in 2009, as night enveloped the airport in Rio de Janeiro, the 216 passengers waiting to board a flight to Paris could not have suspected that they would never see daylight again, or that many would sit strapped to their seats for another two years before being found dead in the darkness, 13,000 feet below the surface of the Atlantic Ocean. But that is what happened.

And I thought that name sounded familiar. William is the son of Wolfgang Langewiesche, author of one of the books that taught me how to fly: Stick and Rudder.

https://en.wikipedia.org/wiki/Stick_and_Rudder

A great article. I've read it a couple of times and this part always gets me:

"In the cockpit, the situation was off the scale of test flights. After Dubois arrived, the stall warning temporarily stopped, essentially because the angle of attack was so extreme that the system rejected the data as invalid. This led to a perverse reversal that lasted nearly to the impact: each time Bonin happened to lower the nose, rendering the angle of attack marginally less severe, the stall warning sounded again—a negative reinforcement that may have locked him into his pattern of pitching up, assuming he was hearing the stall warning at all."

They must have been so confused and frightened.

His description of the "emotional inertia" that sets in is most terrifying of all. It really gives a feeling for the fear that grips. Instead of saying "they were afraid" he shows it. Good writing indeed.

He has a whole book on maritime incidents (culled from long-form narrative pieces he did at The Atlantic) --- The Outlaw Sea.

Another conclusion is to never be in a business that tries to save pennies by not subscribing to life critical data.

Another important part are the flashy graphics. People always trust you more with flashy graphics against a list of coordinates

The stale data seemed to be partially a result of the software glitch. Therefore it's not clear at all that adding a "routing guidance" model on top of the same data would have been any better solution. The captain already established his own route given the same, largely wrong, data.

What they needed was hourly updates, which they had from the other service they subscribed to, which was ignored by the captain. Despite the staff being fully aware.

And the captain and staff should always be reading weather data from two sources anyway, for redundancy and accuracy.

These guys had plenty of information but over-relied on one which was 6-12hrs out-of-date at the worst time, which no indication it was old data.

These are solvable problems that have little to do with tiered pricing or a cheapness on part of the company. Both by the above redundancy and the weather company dating their data, and fixing software bugs for such critical software.

The report seems to suggest that his decision to drive where he did was baffling, even with the information he had available. All his officers were telling him to do otherwise, multiple times.

"...you should deeply understand the data(and importantly, it's limitations) you are using to make the decision."

Very apt also for the Air France 447 crash this author wrote about.

Or be able to go deep underwater when things get really nasty.

Whether by luck or not, that's actually not far off one of the better estimates I can find. The paper "Fatalities among the world's merchant seafarers (1990–1994)" [1] ends up with a rough estimate of 2200 fatalities per year worldwide for the early 1990s. This is based on relatively good data from 19 major maritime flags and major insurance underwriters, followed by more shaky extrapolation to the worldwide numbers. Of the 2200/yr, the authors attribute about half to maritime accidents, so the number due to actual sinkings and such is lower, around 1100/yr in their estimate. The other fatalities break down as: 1/4 of the total attributed to occupational accidents (falling off a ladder, etc.), and 1/4 to illness while at sea.

The paper does mention that other estimates have reached both considerably higher and considerably lower totals (they quote one author who estimated 13,000/yr in the 1980s!). It's hard to get good numbers because the worst safety records appear to be among flag-of-convenience nations who also have the worst reporting and insurance practices, so a large portion of total fatalities (probably) come from the places with the highest uncertainties. But even among rich nations they did still find it a comparatively dangerous occupation: it's safer to be a Danish-flagged seafarer than most other flags, but still >10x the fatality rate compared to having a job on land in Denmark.

[1] https://doi.org/10.1016/S0308-597X(98)00017-7

Why do you think the chance of dying on a sinking ship would be so incredibly high?

0.75 chance of dying is what you had on the Titanic!

Your number has no relation to reality at all.

https://en.m.wikipedia.org/wiki/List_of_shipwrecks_in_2017

How does the fatal accident rate for, e.g., professional drivers compare with the average worker? I imagine crewing a ship is more dangerous, but humans are famously bad at evaluating risk.

Its probably including fishing which has I would imagine a much higher rate than crews on a cruise liner.

There's a book that seems similar to what you've described, called Atomic Accidents. It's a compelling narration of many notable mishaps in nuclear power, weapons,and research. Needless to say, it won't scratch the software itch.

Comp.risks has a lot of raw source material, and its moderator, Peter G. Neumann, has published a few books.

Ex-Goggler Yonatan Zunger has had some really good recent essays at, variously, Medium, Twitter, the Boston Globe, and Google+ (for which he was chief architect, and despite its general lack of widespread success, I consider his contributions and lessons-learned experience quite positively).

And he's a fan of Perrow.

Bruce Schneier's work is somewhat more focussed on crypto and security, but covers much this ground, especially later works.

Shoshana Zuboff also addresses social impacts of computers and data systems in her work.

Check out stuff that Betrand Meyer, Eiffels dad, has written - he pretty much beat hell out of software mishaps to show how he'd tried to compensate for those issues in Eiffel. -- here's one of the best known -- https://archive.eiffel.com/doc/manuals/technology/contract/a...

Somehow related, "Command and Control" is an excellent read.

You might be thinking of "Command and Control" by Eric Schlosser.