#### Abstract

To satisfy the requirement for diverse risk preferences, we propose a generic risk priority number (GRPN) function that assigns a risk weight to each parameter such that they represent individual organization/department/process preferences for the parameters. This research applies GRPN function-based model to differentiate the types of risk, and primary data are generated through simulation. We also conduct sensitivity analysis on correlation and regression to compare it with the traditional RPN (TRPN). The proposed model outperforms the TRPN model and provides a practical, effective, and adaptive method for risk evaluation. In particular, the defined GRPN function offers a new method to prioritize failure modes in failure mode and effect analysis (FMEA). The different risk preferences considered in the healthcare example show that the modified FMEA model can take into account the various risk factors and prioritize failure modes more accurately. In addition, the model also can apply to a generic e-healthcare service environment with a hierarchical architecture.

#### 1. Introduction

With the trend of information overload, humans face more and more challenges in their activities and have to deal with them [1, 2]. Although most industries incorporate automation techniques into production processes to deal with the challenges, the risk of failure always exists in processes where humans are involved. Moreover, in many industries, such as the aerospace, automobile, and healthcare sectors, human safety is the primary concern; hence, risk management is a hot topic in such industries. Strategies used to manage risk include transferring the risk to another party, avoiding the risk, reducing the negative effect of the risk, and accepting some or all of the consequences of a particular risk.

Certain aspects of many risk management standards have been criticized because they do not achieve a measurable reduction in risk, even though confidence in the estimates and decisions based on the standards is raised. Risk management can be defined as the identification, assessment, and prioritization of risks followed by the coordinated and economical application of resources to minimize, monitor, and control the probability and/or impact of unfortunate events [3] or to maximize the realization of opportunities. Various industries (e.g., manufacturing and aviation) have long used this risk assessment process to evaluate system safety, and healthcare organizations are now using it to evaluate and improve the safety of patient care services. The risk management field is no different from any other area of management where standards proliferate. It is necessary to highlight some of the most important terms used in the field of risk management and provide examples of how they are defined in some of the well-known reference materials. The ISO Guide 73 : 2009 [4] defines the terms used in risk management. Its objective is “to encourage a mutual and consistent understanding of, and a coherent approach to, the description of activities relating to the management of risk, and the use of uniform risk management terminology in processes and frameworks dealing with the management of risk.” The first edition of the ISO/IEC Guide 73 was published by the ISO Technical Management Board (TMB) Working Group 2 on risk management terminology. The second edition was compiled by the ISO TMB Working Group on risk management in association with the development of ISO 31000 to reflect changes in risk management practices and feedback from users.

Studies of safety in the healthcare and other sociotechnological industries have demonstrated repeatedly that human error is the cause of many accidents in complex systems. In air traffic control, for example, it has been found that 80–90% of accidents are caused by human error rather than technical malfunctions [5]. The statistics for healthcare services are similar. For example, in [4], it was reported that 82% of anesthesia-related accidents were due to human error. The causes of human failure in the healthcare industry are the same as those in other industries, for example, distractions, mental fatigue, misdirected attention, and misinterpretation of information [6]. A 1999 report published by the American Hospitals Association estimated that at least 44,000, and perhaps as many as 98,000 Americans, die every year due to errors made in hospitals [7]. The figure is higher than the number of people who die annually in the United States as a result of motor vehicle accidents (43,458), breast cancer (42,297), or AIDS (16,516) [8]. If we evaluate the human tragedy in terms of financial costs, medical errors rank among the most urgent and widespread public problems. The Institute of Medicine (IOM) report [8] on the quality of healthcare in America (entitled* To Err is Human: Building a Safer Health System)* states that “ healthcare is a decade or more behind other high-risk industries in its attention to ensuring basic safety.” Thus, we must pay more attention to healthcare industry that depends on perfect human performance and endeavor to eliminate adverse events and medical errors in the industry [9, 10].

To provide safe healthcare services, the industry must use every possible means to reduce risks. Generally, human errors are unavoidable because they are caused by environmental factors rather than incompetence on the part of the individuals involved. It is necessary to enhance patient care practices and establish standard operating procedures (SOPs). In [8], the authors posit that human errors occur because good people have to work in bad systems that need to be made safer [11]. Improving service quality and risk management may improve patient safety.

Failure mode and effect analysis (FMEA) is a technique that identifies the potential failure modes of a product or a process, determines the effects of failures, and assesses the criticality of the effects on the functionality of the product or service. It provides a mechanism for reliability prediction and process design. According to BS 5760 Part 5 [12], “FMEA is a method of reliability analysis intended to identify failures, which have consequences affecting the functioning of a system within the limits of a given application, thus enabling priorities for action to be set.” It has been shown that FMEA is a useful tool for identifying potential failures in a tabular and structured manner. In an FMEA table, a list of critical items helps individuals identify potential failures and ensure the safety of the operating procedures.

However, the risk priority number (RPN) defined in FMEA cannot identify some failures. This shortcoming is due to the nonlinear structure of the RPN function in which the three parameters, that is, severity, occurrence, and detectability (SOD), are equally important. The RPN function has difficulty differentiating the type of risk (i.e., the failure mode). In an attempt to resolve the problem, we propose a generic RPN (GRPN) function that assigns a weight to each parameter so that the weights represent individual industry preferences for the parameters. The function is calculated with the logarithm of the weight and then transformed into a linear function to estimate the risk independently of the three parameters. The GRPN function-based FMEA model is capable of differentiating the type of risk, and it satisfies the requirement for diversified risk preferences. To validate the proposed adaptive risk identification model, we apply it to a case of testing Down syndrome and compare the results with those derived using the traditional RPN approach.

In addition, the global population is predicted to expand with both a shrinking number of economically active and a larger proportion of older people. The number of people with long-term conditions will increase the importance of perceived health. Due to the constant advances of mobile and wireless technologies, user-generated service is a development trend of mobile services [13]. Using the technologies to improve people’s health and the delivery of healthcare have not only brought about caregiver/care provider connectivity but have brought the healthcare into a new era of ubiquitous/pervasive healthcare [14–16]; there are several examples: stroke patient monitoring and guidance for promoting rehabilitation, location tracking, vital signs and well-being data acquisition and analysis, fall detection, behavior tracking, and sleep analysis. No matter what the examples are, a lot of sensing devices are involved in distributed environment that requires a collaborative decision analysis system or workflow-driven healthcare platform for collaborative applications [17]. To facilitate the ubiquitous service, an ontology-based evaluation model is proposed to ensure the service quality [18]; while an emerging area called intelligent environments provide an integrated approach for collaborative data management of ubiquitous services [19]. Those studies show that e-healthcare is an emerging research issue and thus we propose the application of adaptive risk identification model on e-healthcare.

The remainder of this paper is organized as follows. In Section 2, we review the literature on risk management and the FMEA model. In Section 3, we propose a modified FMEA model called GRPN that includes model formulation, validation, and simulation. In Section 4, we conduct sensitivity analysis to compare the model’s performance with that of RPN. In Section 5, we present a case study of healthcare risk analysis and show the adaptability of the proposed approach; in Section 6, we also apply the proposed model to e-healthcare environment; in Section 7, we conclude this paper with contributions and discussions.

#### 2. Related Work

##### 2.1. Failure Model and Effect Analysis (FMEA)

FMEA has been used in the aerospace and automobile industries for several decades. The aerospace industry used FMEA as a formal design methodology in the 1960s because of the need for a high level of reliability and safety. It is now used extensively to ensure the safety and reliability of products/processes in a wide range of industries, particularly the aerospace, automotive, and nuclear industries. In FMEA, the RPN is used to assess the level of risk based on three factors. The Potential Failure Mode and Effects Analysis Manual [20], section QS-9000, classifies the risk factors as follows: (1) severity (): a rating of the seriousness of the effects of a potential failure; (2) occurrence (): a rating of the likelihood that the failure will occur; (3) detectability (): a rating of the likelihood that the current detection methods or controls will detect a potential failure mode. The three factors are rated on a scale of 1 to 10 on the basis of degree, as shown in Table 1. The RPN, which is denoted as a traditional RPN (TRPN), is the product of severity, occurrence, and detectability, as expressed in

The TRPN provides the foundation for improvement; that is, the larger the TRPN, the greater the potential for improvement. Corrective action is taken by the relevant departments, beginning with the department that makes the largest contribution to the risk. After corrections are made, the TRPN should be recalculated to determine if the risks have been reduced and to check the effectiveness of the corrective actions taken by each contributor.

To begin with FMEA, a high-level process flowchart should be compiled and appropriate knowledge resource experts should be selected to form an FMEA project team. An FMEA knowledge expert should be nominated to train team members in the selected process. On completion of their training, the team should start to build an FMEA model for the process. From the high-level flowchart, the team should identify the process functions and determine the scope of the project.

There are five steps in the FMEA method:(1)select a procedure/subprocedure for study;(2)assemble a team;(3)make a diagram of the procedure/subprocedure;(4)identify the failure modes (risks):(a)brainstorm potential failure modes, ascertain why they might happen, and determine their effects in terms of the occurrence, severity, and detectability criteria;(b)compile a worksheet for risk analysis, and rank the risk for each failure point;(5)take corrective action:(a)redesign the process if the effects of errors are unacceptable;(b)analyze, test, implement, and monitor the new process.

##### 2.2. Application of FMEA in Different Industries

The FMEA tool was developed by the US military in the late 1940s to evaluate system and equipment failures. Since then, it has been widely used in various industries. For example, the aerospace industry began utilizing FMEA in the mid-1960s, and it was adopted by the healthcare industry in the late 1990s. FMEA helps healthcare organizations reduce potential risks and allows them to develop control strategies for high-risk processes. In hospitals, for example, improving service quality and risk management to ensure patient safety are becoming increasingly critical. The Joint Commission (TJC) standard LD.4.40 regards proactive risk assessment as an element of the performance of all accredited facilities. Since 2003, TJC has mandated all accredited organizations to analyze at least one high-risk process annually and identify ways that a breakdown or process failure could occur. Organizations are also required to prioritize potential process breakdowns, redesign the processes, and assess the effects of any changes that are made [21].

FMEA is exactly the type of technique or model that TJC recommends to fulfill all of the above requirements. Like any new strategy, refining an FMEA model takes some practice; however, once the model is established, it becomes an indispensable technique in any hospital’s risk assessment plan. In response to public concern about medical errors, the Joint Commission on Accreditation of Healthcare Organizations (JCAHO) promised to enhance patient safety. Since 1996, JCAHO has introduced several standards to improve patient safety; and it set October 2001 as the date that all healthcare facilities had to have some kind of risk assessment framework in place. The commission did not specify the process that had to be used; however, the FMEA model satisfies the requirement. Under the JCAHO directive, facilities must perform a proactive risk assessment of at least one high-risk process annually. The choice of process can be driven by internal patient safety needs or the JCAHO sentinel event alerts. Much of what needs to be done to improve safety in the healthcare sector has been accomplished already in other industries. In 2001, the JCAHO chose the FMEA as an appropriate safety improvement technique for healthcare services.

##### 2.3. Critique of the TRPN Model

Since more than 40 years, FMEA has been used successfully in various industries to predict how a work process may fail or how a device may be used incorrectly [22]. FMEA involves close examination of high-risk procedures or error-prone processes to identify improvements that would reduce the occurrence of unintended adverse events. The method provides a straightforward, proactive process of risk identification and quality improvement that is simple to learn and is applicable in all settings. FMEA has proven to be one of the most important proactive measures that can be adopted to prevent failures and errors from occurring in a system, design, process, or service so that they do not reach the customer. However, for various reasons, the TRPNs have attracted a considerable amount of criticism [23–28].

The shortcomings of the TRPN model are analyzed in depth [29]. Here, we review them briefly. Recall that the TRPN is the mathematical product of three factors (: the severity of the effect, : the probability of occurrence, and : the probability of detectability) related to a failure mode rated on a scale of 1 to 10 based on a number of linguistic terms. The first shortcoming is that the TRPN elements are not weighted equally in terms of risk. As a result, SOD scenarios in which their TRPNs are lower than other combinations could still be dangerous. For example, in a scenario with very high severity, a low rate of occurrence, and very high detectability, the TRPN is lower than in the scenario with a moderate severity level, moderate rate of occurrence, and low detectability where the TRPN , even though it should have a higher priority for corrective action. The second shortcoming is that the TRPN scale has some nonintuitive statistical properties. The initial and correct assumption that the scale starts at 1 and ends at 1000 often leads to incorrect assumptions about the midpoint of the scale. The 1000 TRPN numbers are generated from all possible combinations. However, most TRPN values are not unique, and some are recycled up to 24 times.

#### 3. Method

##### 3.1. Model Formulation

###### 3.1.1. Formulation of a Generic RPN (GRPN)

The traditional FMEA model assumes that the contributions of the risk factors (SOD) to the value of the TRPN are homogeneous. However, the importance of each indicator probably depends on the type of industry. Therefore, a modified RPN function is needed to provide a more generalized application and to rectify any bias in the TRPN indicators. For example, in aerospace, automotive, and medical applications, the impact of severity () on the failure effect should be greater than that of frequency (). When failures occur, regardless of the frequency, high priority should be given to taking corrective action. Because the above-mentioned industries involve the safety of people, the importance of is significantly greater than that of . By contrast, in commodity manufacturing, the priority is to reduce the frequency () of failures, so is more important than . To differentiate between the priorities of the three TRPN indicators (SOD), we denote their weights as , , and , respectively; the weight is an exponent of the indicator, such that . Then, the expression of the logarithm operation represents the RPN as a linear function of the parameters. We define the function as a generic RPN (GRPN) with two types of parameters, namely, risk factors and risk weights, as expressed in

###### 3.1.2. Using a GRPN-Based FMEA Model

The GRPN, which is a modified FMEA model, is a function of the risk factors (SOD) and the weights (, , ). Although the failure model is related to , , and , the three factors are independent; therefore, each of them can be described by a stochastic model. To apply the modified FMEA model based on the GRPN function, we consider the possible effects of the factors and the values of the weights.(i)Risk factors (SOD): to evaluate the feasibility of the modified FMEA, SOD can be simulated as a stochastic model, for example, with a uniform () distribution or a normal () distribution. The SOD factors form eight combinations: UUU, UUN, UNU, UNN, NUU, NUN, NNU, and NNN.(ii)Risk weights (, , ): the weight of each factor is given a value, that is, low (), medium (), or high (). The weights form six combinations: LMH, LHM, MLH, MHL, HLM, and HML. In fact, the weight combinations could vary in different organizations. The weights can be arbitrarily assigned only if the sum of the weights is equal to 1 (). For example, if the factor is more important than the factor , it will give a larger value of the weight than the value of the weight , and vice versa. On the basis of concern priority of the risk factors, we illustrate possible weight priority respective to the risk factors, as in Table 2. In this paper, for example, we give , , and . In addition, we consider a special weight (, , ), where (1/3), to be equivalent to TRPN-based FMEA model.

Both the factor distributions and the weights consist of 56 combinations. To determine the applicability of the proposed model, we assess the effect of the GRPN values in all combinations of the parameters. For all the 56 combinations, let denote the th distribution of the GRPN values, and let denote the acceptable level of the risk value (GRPN threshold) for the th combination. In addition, for comparison, TRPNs (TRPN1~TRPN8) are also simulated with the risk factors (SOD) in both uniform and normal distributions. The overall combination is shown in Table 3.

Risk analysis is based on an acceptable risk probability , which is assigned by organization, department, or process. Given , a threshold can be precalculated, where Prob () and the probability that the GRPN value is less than or equal to is equal to , as shown in Figure 1. Whenever the GRPN value >, priority should be given to take corrective action on the failure mode (FM). The threshold can be analyzed and suggested by a simulation approach with respective scenarios, as discussed in Section 3.3.

In this section, we give an example to show how the proposed model works. Having an FM, for example, we assign a risk factor () to (2,5,8), and the risk weight () is given (0.1, 0.3, 0.6). Corrective action should be taken on the FM whenever its GRPN value is greater than or equal to a given threshold . The weight combination (, , ) is illustrated in Table 4 to show whether we should act on the FM. To use the proposed model, we summarize the procedure in the following steps in which and denoted the GRPN values that are calculated in simulated and real environments, respectively. The most important thing is to decide the threshold by a simulation process with a given .(1)Use historical data of risk factors (, , ) to build a probability model of the factors.(2)Give and risk weights (, , ) according to organization policy.(3)Suggest threshold by analyzing with probability model from step (1), such that Prob () .(4)Create an FMEA worksheet (a comprehensive worksheet example will be given in Section 5.1), and compute on all FMs.(5)Act on FMs whose are greater than .(6)Repeat steps (2) to (5) until .

##### 3.2. Model Validation—Simulation Approach

###### 3.2.1. Simulation Models and Inputs

The normal distribution is that random variable is with the probability density function as defined in (3), where and are mean and standard deviation, respectively. The former determines central tendency, while the latter measures the degree of dispersion. The distribution can be expressed as (), where and . Consider

In addition, uniform distribution is that random variable is with the equal probability in the range of () as defined in (4), where the probability function value is independent of the variable . The distribution can be expressed as ():

The validation uses @RISK decision tool, Palisade Corporation [30]. On the basis of simulation settings, the simulation models by way of @RISK functions, RISKUNIFORM (1, 10) and RISKNORM (5.5, 1), are defined as follows, where C3, C4, K3, K4 are names of cells in a datasheet of Microsoft Excel, and RiskStatic is a function of @RISK tool.(i)Uniform functions: , , : RiskUniform (C4, C3, RiskStatic (9.76))(ii)Normal functions: : RiskNormal (K3, K4, RiskStatic (5.17)) : RiskNormal (K3, K4, RiskStatic (5.20)) : RiskNormal (K3, K4, RiskStatic (5.20))

We define a rounding function in @RISK model to guarantee integer value for all inputs of risk factor SOD. For example, a generated set of risk factors (, , ) = (1.65, 3.89, 9.26) is rounded to (2, 4, 9). To ensure that the generated values are in the range of [1, 10], we also define a filter in @RISK model. The values smaller than 0.5 or greater than 10.5 are discarded. After 10,000 iterations in the simulation, Table 5 summarizes the statistics of input function and their details.

To validate the proposed model, two stochastic distributions, uniform () and normal (), are simulated up to 10,000 iterations for three risk factors: severity, occurrence, and detectability. There are two parameters, lower bound (LB) and upper bound (UB), defined in the uniform distribution , while mean () and standard deviation () are given in the normal function . In this study, simulation settings are defined as and for uniform and normal distributions, respectively. The risk weights are assigned to , , and throughout the paper. The simulation settings are listed in Table 6.

##### 3.3. Simulation Results

###### 3.3.1. Details of Data Statistics

To easily review the simulation results, we summarize the descriptive statistics of RPN values (TRPN and GRPN) with (1) mean and standard deviation (SD) (mean SD), (2) skewness, and (3) kurtosis in Table 7, and the distribution sketch is shown in Figure 2.

We describe the central location of the distribution via mean value and the spread via SD. For the GRPN function, the mean values are in a range of 0.67 to 0.73, while the SDs are in a range from 0.05 to 0.18; they are shown as a stable result. For TRPN function, the mean values are around 166, and SDs varied from 56.38 to 153.37.

Skewness is used to measure the asymmetry of the distribution. The GRPN values are all negative in range from −0.37 to −0.88, while the TRPN values are all positive in range from 0.60 to 1.56. The negative values verify the critique that most TRPN values are not unique, and some are recycled up to 24 times [29]. Kurtosis is used to measure the extent of the distribution peak. For the GRPN function, the kurtosis is in a range from 3.02 to 3.75 and a range from 2.95 to 5.55 in the GRPN function. Applying the RPN-based FMEA model to manage risks, an acceptable risk probability must be defined, which depends on the risk preference of organization, department, or process. Given , a threshold can be precalculated where Prob , as shown in Figure 1. Whenever the GRPN value > , priority should be given to taking corrective action against the failure modes. In this paper, we assign as an example; then threshold values () with respective risk factors and the risk weights for each of combinations are suggested in Table 8. The threshold values for GRPN function are in the range from 0.80 to 0.89, while the threshold values for TRPN function vary from 245 to 378. Potential failure modes whose value are greater than the threshold in respective scenarios must be taken corrective actions. If several failure modes are more critical, we can assign for them with a smaller value. The smaller the acceptable risk probability (), the larger the possibility that the GRPN values that are contributed by the failure modes will be greater than the .

#### 4. Sensitivity Analysis

To evaluate the function’s stability, we perform sensitivity analysis on both correlation and regression. They are generated from the @RISK built-in function.

##### 4.1. Correlation Coefficient

To validate that the proposed GRPN-based model dominates the TRPN-based model, the GRPN function is equivalent to TRPN when the risk weight is assigned with (EEE). Moreover, we compare the correlation coefficients of the risk factors (SOD) with different distributions (uniform and normal) respective to function values, that is, GRPN with weight (EEE) and TRPN. For the risk factor in Figure 3, the values of both functions are almost the same, except the (UNN) distribution. They are 0.871 and 0.612 for EEE and TRPN, respectively. Regarding the risk factor , both the functions are similar because the lines between each function overlap. Again, both functions are almost the same for the risk factor except for the distribution (UUN). They are 0.348 and 0.203 for EEE and TRPN, respectively. According to the correlation coefficient, both the functions are highly correlated. This implies that the GRPN function is equivalent to TRPN function when the weight (EEE) is assigned.

(a) The risk factor |

(b) The risk factor |

(c) The risk factor |

##### 4.2. Regression Coefficient

Regression analysis is used to investigate the relationship between the risk factors (independent variables) and RPN function value (dependent variable, that is, GRPN/TRPN function value). The coefficient of determination is used in the context of statistical models. The primary objective is to predict future outcomes on the basis of other related information. It is the proportion of variability in a dataset that is accounted for the statistical model. It also provides a measure of how well the future outcomes are likely to be predicted by the model.

In Figure 4, we illustrate the values for all combinations. Regardless of the risk weight (LMH, LHM, MLH, MHL, HLM, HML, or EEE) assigned, the GRPN function has stable values about 0.9; they are in a range from 0.894 to 0.906. The results show that the proposed GRPN function outperforms TRPN function because the of the GRPN function is stable and greater than that of the TRPN function. An interesting finding is that the values of TRPN function are larger than that of GRPN function in three special cases of SOD distribution, that is, UNN, NUN, and NNU. The TRPN function is suitable for cases in which the majority of the three risk factors are in normal distribution, whereas the GRPN function is suitable for the others. In general, the proposed GRPN function offers a more adaptive approach, which can be applied in industries with various risk preferences.

#### 5. Case Study

##### 5.1. An Example of Down Syndrome Test

We use an example of Down syndrome test—a healthcare application—to explain the operation of the proposed GRPN model. It is to identify significant achievement and its adaptability compared with that of the TRPN model. In addition, we consider three scenarios to demonstrate the adaptability of the proposed model. The steps are as follows:

*Step 1. *Select a procedure for study, as shown in Figure 5.

*Step 2. *Assemble a team to monitor the failure mode.

*Step 3. *Compile an operational risk analysis flowchart. If the third stage (analysis of the sample) involves a high-risk procedure, it is also necessary to implement the following (sub)procedures: (3A) review the doctor’s advice; (3B) put the blood sample into the machine for testing; (3C) confirm that the machine is calibrated; (3D) run the test; (3E) generate the test results; (3F) print the results; and (3G) upload the results to the health information system (HIS). The results of the high-risk subprocedures (step 3F) and their failure modes are shown in Figure 6. The potential failure modes are damage to the computer, the test results are logged to the wrong patient’s file, the results are not uploaded to the HIS, and misinterpretation of the results.

*Step 4. *Identify the potential failure modes via a group discussion. In Figure 6, the misinterpretation of the results (step 3F4) is probably a failure mode (FM). *Step (4-1).* Identify the reasons for the failure, and determine its severity, occurrence, and detectability. For each failure mode, the root cause(s) of the failure should be determined. The failure “misinterpretation of the results” has four possible causes, namely, “too tired,” “too busy,” “insufficient light,” and “misunderstanding of the machine report.” *Step (4-2)*. Compile an FMEA worksheet (as shown in Table 9). *Step (4-3)*. Sort the failure modes by their GRPN values.

*Step 5. *Take corrective action if the GRPN value of a failure mode is higher than a given threshold.

##### 5.2. Comparison of the GRPN and RPN Test Procedures

To differentiate between GRPN-based FMEA model and the TRPN-based FMEA approach, we consider different values for the weights (, , ). Let denote weight “” (value 0.6), denote weight “” (value 0.3), and denote weight “” (value 0.1). In addition, we set the threshold value for traditional RPN functions at 166 (it is the average RPN value = SOD) [20] and calculate an equivalent threshold value (with SOD = 166) for the GRPN at 0.74. We also give an average value of the weights (equal weight), ; then the GRPN value is . With an equivalent value, the following scenarios demonstrate adaptability of the proposed GRPN approach. Irrespective of the approach applied, corrective action should be taken on the FMs whose values are greater than the given thresholds. We compare three scenarios of (, , ): (), (), and ().

###### 5.2.1. Scenario 1 (, , )

This scenario focuses on the factor . It is assumed that the preferences for the SOD weights are , , and , as shown in Table 10. The italic indicates the differentiation of risk identification from the GRPN function to the TRPN function. The values are , , , and , and the GRPN values are , , , and , for 3F4a, 3F4b, 3F4c, and 3F4d, respectively. By using the proposed GRPN model, we can identify the risk of failure mode (FM) 3F4a, but the FM is ignored (no corrective actions will be taken on the FM) by the traditional RPN approach. For FM 3F4b, the GRPN approach ignores the failure (without corrective actions); however, the traditional RPN approach identifies the FM.

###### 5.2.2. Scenario 2 (, , )

This scenario focuses on the factor . It is assumed that the preferences for the SOD weights are , , and , as shown in Table 11. The TRPN values are , , , and , and the GRPN values are , , , and , for 3F4a, 3F4b, 3F4c, and 3F4d, respectively. For FM 3F4d, the GRPN approach ignores the FM, but the traditional RPN approach identifies it.

###### 5.2.3. Scenario 3 (, , )

This scenario focuses on the factor . It is assumed that the preferences for the SOD weights are , , and , as shown in Table 12. The TRPN values are , , , and , and the GRPN values are , , , and , for 3F4a, 3F4b, 3F4c, and 3F4d, respectively. By using the proposed GRPN model, we can identify a risk in the FM 3F4c, but the traditional RPN approach ignores the risk. GRPN ignores the FM 3F4d; however, the traditional RPN approach can identify the FM.

#### 6. Application on E-Healthcare

With the development of information technology, in recent years, it will be an increased focus on healthcare that is user-centered in design in an attempt to meet demand. It also is one of the fastest growing areas of healthcare provision [31]. An integrated framework of e-healthcare service is proposed and it consists of both architecture design and network transmission design [32]. The e-healthcare equipment is used as a tool in the management of long-term conditions in the community to proactively monitor patients and respond promptly to indicators of acute exacerbations. For example, care receivers are trained to operate a device which measures physiological indices such as blood pressure, oxygen saturations and pulse, spirometry, temperature, ECG, and blood glucose readings each day in their home. All devices can be individually programmed to suit the lifestyle and day to day living habits of the person. Generally speaking, the caregivers/care providers take most of the decision-making responsibility and play an important role in healthcare environment which is human intensive task and intention-aware systems that outperform situation-aware systems can eliminate unnecessary humans involved [33]. With the constantly growing information in ubiquitous environment, for example, Internet of Things (IoT), quality and reliability of healthcare sensors has become the new strategic challenge for care providers that aim to capture the whole healthcare information. A data mining-based knowledge mapping approach is proposed to improve the process of acquiring knowledge for healthcare [34]. Even e-healthcare is a convenient approach for improving care access for the care receivers; one of three criteria to evaluate the effectiveness is quality of e-healthcare service [35]. An example of e-healthcare architecture is shown in Figure 7, in which three levels of services can be organized:(i)infrastructure level [14, 17, 32, 36–39]: endpoint device (vital sign sensor, POC detector), data transmission (Bluetooth, Zegbee, Wi-Fi, 3G+, Internet), middleware (Gateway, data exchange, HL7, LOINC, etc.), care system (call center, e-healthcare IS, HIS, etc.);(ii)system level [17, 32, 36]: user interface, data processing, data exchange, data repository.(iii)Data source level [32, 37, 40]: sensor data, HIS, disease IS, clinical interview.

Due to the complexity of e-healthcare service environment, we present a generic modeling of failure risk analysis for the environment, as shown in Figure 8. Define as the number of levels in e-healthcare service hierarchy, () as the number of service sets in -level and as -set in -level, and () as the number of service elements in the -set of -level. Then, we define as the -element of e-healthcare service, where () belongs to the service set .

*Definition 1. * is the risk of the entire e-healthcare service , where = and is a function of , because is the first/highest level of the and the only one service set in the first level.

*Definition 2. *, where , is the risk of the service set in the level . Moreover, the risk is derived from the service set in lower level . For example, the set = , each of service elements, , is recursively expanded to the respective service sets in next level and there are , .

*Definition 3. * is the value of GRPN function defined in (2). For each in , the value can be expressed as (5), where , , and are the weights given for the service element in the service set of the level . Consider

*Property 1 (risk analysis/identification for the entire service ). * , where is the acceptable level of the risk value (GRPN threshold) for the e-healthcare service, as defined in Section 3.1.2.

*Property 2 (risk analysis/identification for the service ). *, where () is the acceptable level of the risk value (GRPN threshold) for the e-healthcare service.

The acceptable level of risk value, , can be all the same or different according to the requirement of risk management policy. Based upon the properties 1 and 2, we can identify the potential risks of e-healthcare service. To illustrate the capability of the proposed adaptable risk identification model, we present a simple example to differentiate the risk of service elements with the hierarchical architecture of e-healthcare environment. Referring to Figure 7, if there are three elements in the infrastructure level: endpoint device (), data transmission (), and care system (); three elements in the system level: user interface (), data processing (), and data exchange (); one element in the data source level: sensor data (), each of elements can be further recursively divided into respective services (, ) in higher levels, in which potential risks are to be identified.

In this example, we only focus on seven elements of service in level 1; they are , and . Moreover, model adaptability is shown with parameter combination of both risk weight (, , ) and acceptable risk threshold (). Each of them is further separated into homogeneous (homo) and heterogeneous (hetero) cases between seven elements (). The case homo means values assigned to the parameter are all the same, while the case hetero means values assigned to the parameter are different. Accordingly, there are four scenarios of risk weight-threshold combination: homo-homo, home-hetero, hetero-home, and hetero-hetero; they are illustrated in Tables 13, 14, 15, and 16, respectively. From the results of four scenarios analysis, only two elements ( and ) get identical suggestion, without risk identification for and with risk identification for . The proposed adaptive approach is capable of differentiating the other five elements with regard to different risk preferences.

#### 7. Conclusion

FMEA has long been used to evaluate the safety and reliability of products and services in a number of industries. The traditional FMEA model uses the RPN number to prioritize failure modes. Since the three indices used to calculate the RPN are ordinal scale variables, the product of the three ordinal numbers cannot reflect the actual costs incurred by failures. As a result, the traditional model cannot provide precise information about failure risks, such as the probabilities of the severity, occurrence, and detectability factors. In addition, it is difficult to apply the traditional FMEA to various risk preferences. To overcome these limitations, we propose a generic RPN model called GRPN-based FMEA, which allows us to evaluate the risk factors and their relative weights in a linear manner rather than in a nonlinear relationship. The model uses the logarithm function to assess the severity, occurrence, and detectability factors. It also represents the risk value (GRPN) as a risk factor and a risk weight in a linear relationship, instead of the nonlinear approach used in the traditional RPN formulation. The result shows that the proposed model outperforms the TRPN model. The proposed model provides a practical, effective, and adaptive method for risk evaluation in FMEA. In particular, the defined GRPN offers a new way to prioritize failure modes in FMEA. The different risk preferences considered in the healthcare example show that the modified FMEA model can take account of the various risk factors and prioritize failure modes more accurately. Moreover, with the constantly increasing requirement of e-healthcare service, we also propose a generic modeling of failure risk analysis for the service. The model is capable of adaptively identifying the failure risks in a hierarchical service architecture.

This paper proposes a generic RPN (GRPN) function-based FMEA model for risk analysis that assigns a weight (risk weight) to each risk factor so that the weights represent individual organization/department/process preferences for the factors. To validate the proposed model, the risk factors are randomly generated with both uniform and normal distributions via a simulation process. We also conduct sensitivity analysis on correlation and regression to compare it to the traditional (TRPN-based) approach. To understand how the proposed model works, we use a healthcare example as a potential application of the proposed GRPN-based FMEA model. An illustrated example of Down syndrome test is given, and the computation of GRPNs is explained in detail.

We introduce two application modes based on experience and preference. The experience-based mode allows the user to choose a risk factor combination arbitrarily. This mode can be used in different organizations, departments, or processes, by estimating historical data of failure modes for each of the risk factors (SOD). Under the preference-based mode, we assume that the organization always defines a risk management policy to identify failure modes. Therefore, the weight combination is determined by the policy, for example, . After selecting the weight combination, we set the GRPN threshold to determine if the failure modes exist. However, this paper only discusses two of various stochastic models for the risk factor distribution, that is, uniform and normal. In fact, there are numerous distributions in real world. More realistically, future work can pay more attention to testing and validation for various distributions.

#### Conflict of Interests

The authors declare that there is no conflict of interests regarding the publication of this paper.

#### Acknowledgment

This paper is sponsored by the National Science Council of Taiwan (NSC 98-2410-H-227-004).