Integrating Computer-Aided Design and Model-Based Systems Engineering for Early Zonal Hazard Analysis: Application to a Supersonic Aircraft Fuel System

Ayush Kamboj; Yicheng Sun

doi:10.20944/preprints202604.0226.v1

Submitted:

02 April 2026

Posted:

03 April 2026

You are already at the latest version

Abstract

The development of supersonic aircraft presents significant challenges in ensuring safety during early design stages, particularly for fuel tank systems exposed to extreme thermal and structural loads. Conventional document-based zonal safety analysis methods are limited in their capacity to identify hazards at the conceptual design phase. This study proposes an integrated framework combining computer-aided design (CAD) and model-based systems engineering (MBSE) to support early-stage zonal hazard analysis. The framework links spatial subsystem modelling with functional system architecture to enable iterative hazard identification and mitigation. Applied to the SA-24 Phoenix conceptual supersonic aircraft, the approach identifies critical risks, including fuel vaporization, over-pressurization, and structural fatigue, and evaluates mitigation strategies such as thermal insulation and redundant venting. Functional hazard analysis and fault tree analysis are used to assess failure scenarios and ensure compliance with EASA CS-25 requirements. Results indicate an estimated 40% reduction in risk priority number values for key thermal hazard pathways and a 25% reduction in conceptual design iteration time compared with conventional approaches. The findings demonstrate that CAD–MBSE integration offers a scalable and efficient methodology for early hazard identification, contributing to safer and more reliable supersonic aircraft design.

Keywords:

model-based systems engineering (MBSE)

;

3DEXPERIENCE

;

computer-aided design

;

fault tree analysis

;

functional hazard analysis

;

zonal safety analysis

;

EASA

;

SA-24

;

fuel systems

;

supersonic aircraft

Subject:

Engineering - Aerospace Engineering

1. Introduction

1.1. Background

Supersonic travel has long represented a significant milestone in aerospace engineering, offering substantial reductions in travel time across long-distance routes. Following the retirement of Concorde in 2003, renewed interest in commercial supersonic transport has been driven by advances in aerodynamics, materials, and propulsion technologies [1,2,3]. Modern supersonic aircraft concepts aim to address the limitations of earlier designs, including high fuel consumption, sonic boom impact, and operational inefficiency [1,2]. The SA-24 Phoenix, a conceptual supersonic airliner, reflects these advances by integrating low-boom aerodynamic shaping with advanced systems engineering approaches to achieve efficient high-speed performance.

A critical aspect of supersonic aircraft design is the safe and efficient operation of fuel tank systems. At high Mach numbers, these systems are exposed to elevated thermal loads, structural stresses, and complex subsystem interactions [3,4]. Conventional zonal safety analysis (ZSA) methods have been widely applied in subsonic aircraft; however, their application to supersonic configurations is constrained by increased system coupling and dynamic operational environments [5,6].

1.2. Challenges in Supersonic Aircraft Design

The design of supersonic aircraft introduces challenges not typically encountered in subsonic systems. High-speed flight conditions amplify thermal loads and aerodynamic stresses, increasing the likelihood of fuel vaporization, structural fatigue, and cascading system failures [3,7]. These effects are further compounded by strong interdependencies between aircraft subsystems, which make hazard identification more complex during early design stages.

Traditional ZSA approaches rely heavily on detailed design data and static documentation, limiting their effectiveness in conceptual design environments where system configurations are still evolving [4,6]. Consequently, hazards are often identified only at later stages of development, leading to increased redesign costs and heightened safety risk.

The integration of advanced digital engineering tools, such as computer-aided design (CAD) and model-based systems engineering (MBSE) offers a promising solution to these challenges. CAD enables detailed spatial modelling and thermal analysis, while MBSE facilitates dynamic modelling of system behavior and interactions [8,9,10]. Used in combination, these tools support early-stage hazard identification and iterative design optimization.

1.3. Research Objectives

This paper aims to achieve the following objectives:

Develop a robust framework for integrating CAD and MBSE to facilitate early-stage zonal hazard analysis.
Apply the framework to the fuel tank system of the SA-24 supersonic aircraft.
Identify potential hazards, including fuel leakage, over-pressurization, and ignition risks, and propose mitigation strategies.
Validate the proposed approach through comparative analysis with conventional ZSA methods.
This study contributes to the advancement of aerospace safety by establishing scalable methodologies for model-driven hazard analyses.

The hypothesis of the study was that integrating CAD with MBSE can improve early-stage zonal hazard identification compared with the use of conventional document-based ZSA. This hypothesis was evaluated through a case study on the SA-24 Phoenix supersonic aircraft using functional hazard analysis (FHA), fault tree analysis (FTA), and failure modes and effects analysis (FMEA).

1.4. Scope of the Study

This study focused on the conceptual design phase of the SA-24 supersonic aircraft, specifically its fuel tank subsystem. The study includes:

Development of CAD models for the spatial design of the fuel tank.
Functional and behavioral analysis using MBSE tools.
Iterative hazard identification and mitigation within defined aircraft zones.
Exclusion of post-production, certification, and in-service assessments.

The findings are intended to inform both academic and industrial stakeholders and contribute to the development of safer and more efficient supersonic aircraft.

1.5. Paper Structure

The rest of this paper is organized as follows: Section 2 presents existing methodologies, including ZSA and MBSE–CAD integration, highlighting gaps in current practices. Section 3 (methodology) details the model-driven framework developed for integrating CAD and MBSE tools. This is followed by case studies, where the proposed CAD–MBSE hazard analysis framework is applied to the SA-24 Phoenix fuel tank system. Section 5 presents the results of the proposed framework; findings are subsequently interpreted against the existing literature in the discussion, before key insights and directions for future research are drawn together in the conclusion section.

2. Literature Review

A supersonic aircraft represents the pinnacle of aerospace engineering, designed to exceed the speed of sound (Mach 1) while maintaining aerodynamic stability, fuel efficiency, and passenger comfort. However, the development of such aircraft has historically faced challenges in terms of balancing performance with safety, economic viability, and environmental impact. The Concorde and Tupolev Tu-144 were the first commercial supersonic aircraft, proving the feasibility of supersonic transport; however, some critical limitations were exposed, including high fuel consumption, limited range, and excessive noise pollution from sonic booms [1].

Recent advancements in materials, propulsion systems, and aerodynamic design have attracted interest in supersonic flight. NASA’s X-59 QueSST project, for example, addresses noise pollution concerns by focusing on low-boom supersonic travel and leveraging cutting-edge designs and technology to minimize sonic boom disturbances [2]. Similarly, Boom Supersonic’s Overture Aircraft aims to combine speed and sustainability through innovative aerodynamics and the adoption of sustainable aviation fuel (SAF) [11]. These modern approaches underscore the industry’s commitment to addressing the environmental and operational challenges of supersonic travel.

The SA-24 Phoenix, a conceptual supersonic transport aircraft, was designed to overcome these challenges by integrating advanced safety systems, such as ZSA, and employing state-of-the-art tools such as CAD and MBSE. With a passenger capacity of 50 and a cruising speed of Mach 1.8, SA-24 aims to demonstrate advanced approaches to supersonic safety, efficiency, and regulatory compliance.

2.1. Zonal Safety Analysis (ZSA)

The ZSA is a critical methodology for ensuring the safety of aircraft systems [5,12]. Unlike conventional system-specific safety analyses, the ZSA examines potential hazards within specific aircraft zones, focusing on how subsystem interactions and environmental factors contribute to safety risks [5]. For instance, fuel tanks placed near high-temperature zones or electrical systems pose inherent risks such as vapor ignition or leakage.

The ZSA methodology involves identifying hazards, assessing their likelihood and impact, and implementing mitigation measures [5,6]. The ZSA aligns closely with regulatory frameworks, such as EASA CS-25 and FAA Part 25, which emphasize the need for redundancy, fault tolerance, and safe design practices [13]. By integrating ZSA during the early stages of design, engineers can proactively address spatial safety concerns, ensuring compliance with airworthiness standards.

The ZSA is applied in aerospace engineering to assess fuel systems, environmental control systems (ECSs), and avionics. For example, Airbus employs ZSA to evaluate the placement of fuel lines relative to electrical wiring, thereby minimizing fire risks in the A320neo series [14]. Similarly, Boeing’s use of ZSA, combined with digital twin simulations, enables the prediction and mitigation of subsystem failures in the 787 Dreamliner [15]. However, conventional ZSA methodologies often rely on expert judgment and static diagrams, thereby limiting their scalability. Integrating the ZSA with tools, such as CAD and MBSE, can help address these challenges by enabling dynamic simulations and iterative hazard assessments.

2.2. Fundamentals of Model-Based Systems Engineering (MBSE)

MBSE facilitates the representation and simulation of the functional, behavioral, and structural aspects of systems through a model-driven approach [8,9]. By shifting away from document-based processes, MBSE enables engineers to dynamically simulate interactions between subsystems, thereby providing a holistic view of aircraft performance and safety. Tools, such as the Cameo Systems Modeler and Enterprise Architect, are instrumental in creating digital twins of complex systems, which can then be used to evaluate the performance under a variety of operational scenarios [10].

For SA-24 Phoenix, MBSE enables dynamic hazard analyses, such as simulating fuel vaporization scenarios caused by thermal expansion or failures in fuel system venting. Wang and Chen [16] reported that integrating MBSE with FHA and FTA improves the detection of cascading risks by 40%, a critical factor in high-speed aircraft operations. Moreover, the ability of MBSE to trace requirements to functional and structural models ensures compliance with regulatory standards, thereby enhancing the overall design process.

2.3. Conceptual CAD Modeling in Aircraft Design

CAD tools, such as computer-aided three-dimensional interactive application (CATIA) and 3DEXPERIENCE, allow engineers to design, visualize, and simulate the spatial configurations of aircraft systems [3,4]. For supersonic aircraft, such as the SA-24 Phoenix, CAD is indispensable for analyzing thermal loads, structural stresses, and spatial constraints, particularly in high-risk zones such as fuel tanks [4]. The capability to model complex geometries and simulate environmental conditions allows engineers to optimize designs for both performance and safety [7].

Brown et al. [17] found that CAD-driven simulations of fuel systems improved the thermal insulation design by 25%, thereby reducing the risk of vaporization under supersonic conditions. CAD enables interference checks between systems, ensuring that components, such as venting mechanisms, sensors, and pipelines, are optimally positioned to minimize risk. Beyond spatial modeling, CAD also supports material analysis, allowing engineers to select materials that can withstand the high temperatures and pressures associated with supersonic flight.

2.4. Integration of CAD and MBSE Models

The integration of CAD and MBSE represents a transformative approach to early-stage safety analysis in aerospace system design [18,19], combining spatial precision with functional insights. In the case of the SA-24 Phoenix, this integration enables engineers to simulate the spatial layout of a fuel tank system while simultaneously evaluating its functional performance [20] under various conditions. For example, Lee et al. [19] found that integrating CAD and MBSE reduced the design error by 35% in a supersonic aircraft project.

This integration also facilitates iterative analyses, allowing for real-time adjustments to the design. For instance, if a CAD model identifies thermal hotspots in a fuel tank, the MBSE can simulate the impact of these hotspots on system behavior, such as fuel vaporization and venting efficiency. By iterating between these tools, engineers can proactively optimize the design and address hazards. In addition, the combination of CAD and MBSE supports the creation of comprehensive safety reports, which can be used to streamline regulatory approval and enhance stakeholder communication.

2.5. Applications in Supersonic Aircraft Design

Supersonic aircraft require innovative safety and design methodologies due to their extreme operational environments. Historical examples, such as the Concorde, underscore the importance of robust safety frameworks, particularly in zones prone to cascading failures, such as fuel systems [21]. The lessons learned from the Concorde’s fuel tank issues, including incidents of structural compromise during high-speed operations, highlight the necessity for advanced tools for hazard identification.

Modern projects, such as NASA’s X-59 and Boom Supersonic Overture, illustrate how advanced digital tools, such as CAD and MBSE, enhance safety and efficiency. These projects integrate early-stage safety analyses into their workflows to ensure that hazards are identified and mitigated before physical prototypes are built. Miller et al. [22] reported that integrating these tools into ZSA processes improves the reliability of safety-critical systems in supersonic aircraft by 60%. The ability to model and simulate real-world conditions before manufacturing reduces costs and enhances design confidence, particularly in novel aircraft configurations.

2.6. Environmental Considerations

The environmental impact of supersonic aircraft is a major concern, particularly in terms of noise pollution and greenhouse gas emissions. Innovations in low-boom technology, such as those implemented in the NASA X-59 project, have addressed noise concerns by significantly reducing the intensity of sonic booms [23]. These advancements have paved the way for a broader public acceptance of supersonic transport.

The adoption of SAF is another critical step toward reducing the environmental footprint of supersonic flights. SAF offers a viable alternative to conventional jet fuels, reduces lifecycle greenhouse gas emissions, and aligns with global sustainability goals [11]. Integrating SAF into the SA-24 Phoenix design not only enhances environmental credentials, but also ensures compliance with evolving regulatory requirements.

2.7. Gaps in Current Zonal Hazard Analysis Techniques

Despite the significant progress in aerospace safety methodologies, notable gaps remain in the literature. Most studies focused on CAD and MBSE as standalone tools, neglecting their combined application in comprehensive safety analyses [8,18]. This fragmented approach often results in incomplete hazard assessments in complex aerospace systems [16], particularly in systems with complex interdependencies, such as supersonic fuel tanks. Further, the lack of standardized protocols for integrating these tools poses challenges to their widespread adoption.

This study aimed to address these gaps by proposing a unified framework tailored for supersonic aircraft, specifically focusing on the fuel tank system of SA-24 Phoenix. By leveraging the strengths of CAD and MBSE, the proposed framework seeks to help proactively identify hazards, optimize design efficiency, and enhance compliance with safety regulations.

2.7.1. Limitations of Conventional Zonal Safety Analysis

Conventional ZSA methodologies primarily focus on evaluating hazards associated with subsystem installations within predefined aircraft zones. However, these methods often rely on the manual interpretation of engineering drawings and system documentation, which may limit their ability to fully capture the complex interactions between aircraft subsystems.

The separation between spatial subsystem models and system architecture representations can make it difficult to identify hazards arising from the interaction between component placement and system behavior. As aircraft systems become more tightly integrated, these limitations highlight the need for modeling frameworks that combine geometric subsystem configurations with system architecture modeling.

2.7.2. Regulatory Evolution in Supersonic Aircraft Certification

Aircraft certification frameworks are continuously evolving to address emerging aircraft technologies and operational concepts. Conventional large-transport aircraft certification has historically been governed by regulations, such as the European Union Aviation Safety Agency Certification Specification CS-25, which defines airworthiness standards for transport category aircraft. However, renewed interest in commercial supersonic transport has prompted regulatory authorities to develop updated certification requirements that specifically address the design and operation of supersonic aircraft.

The forthcoming European Union Aviation Safety Agency Certification Specification CS-25 Amendment 27 is expected to introduce additional guidelines related to supersonic aircraft performance, environmental impact, and safety considerations. These developments reflect the increasing complexity of advanced aircraft architectures and the need for more integrated safety analysis during early design stages.

Early-stage hazard identification frameworks that combine CAD and MBSE have the potential to support these evolving certification processes by enabling engineers to identify subsystem interaction risks during conceptual design. Integrating spatial system models with functional system architectures can help improve traceability between design decisions and safety requirements, thereby facilitating more efficient safety validation during certification activities.

2.8. Concluding Remarks

Integrating CAD and MBSE can help significantly enhance ZSA processes in aerospace design. However, most existing studies have examined these tools independently rather than as an integrated framework for early hazard identification during conceptual aircraft design. This gap is particularly important for complex systems, such as supersonic aircraft fuel tanks, where spatial subsystem interactions can introduce cascading safety risks.

To address this limitation, this paper proposes an integrated CAD–MBSE modeling framework to conduct early-stage zonal hazard analysis and dynamic safety analysis during conceptual aircraft design. The framework was applied to the fuel tank system of the SA-24 Phoenix supersonic aircraft to demonstrate how spatial subsystem modeling and functional system architecture analysis can be combined to improve early hazard detection and mitigation. By demonstrating the feasibility of this methodology for supersonic aircraft, this study provides a scalable framework for designing safety-critical systems. The findings will contribute toward advancing the field of aerospace engineering by ensuring both safety and sustainability of future supersonic transport.

3. Methodology

3.1. Research Design

The methodology used in this study integrates CAD and MBSE into a unified framework for ZSA. This approach is specifically tailored for the SA-24 Phoenix supersonic aircraft, focusing on the safety and performance of its fuel tank system. By leveraging the precise spatial capabilities of CAD and the dynamic functional insights of MBSE, the methodology enables comprehensive hazard identification, design optimization, and compliance with regulatory requirements such as EASA CS-25 [13]. This structured framework emphasizes an iterative design and analysis, allowing for the seamless incorporation of safety considerations throughout the development process.

The CAD and MBSE tools employed in this study were used during the conceptual aircraft design phase to support early hazard identification, rather than to provide formal certification. In accordance with established aerospace safety assurance frameworks, such as RTCA DO-178C, the software used during the conceptual design typically operates at a lower assurance level, not as certified flight-critical software. Therefore, the modeling tools utilized in this research correspond conceptually to a Design Assurance Level C equivalent, which is appropriate for analytical tools used to support hazard identification and design exploration, rather than direct certification verification.

Table 1. Software assurance context for digital engineering tools.

Tool category	Software used	Software version	Function	Conceptual assurance context
Computer-aided design tool	Computer-aided three-dimensional interactive application (CATIA)	V5-6R2023	Geometric modeling and thermal analysis	Conceptual design analysis (Design Assurance Level C equivalent)
Model-based system engineering tool	Cameo systems modeler	2021x	Functional architecture modeling and system interaction analysis	Conceptual design analysis (Design Assurance Level C equivalent)
Digital engineering platform	3DEXPERIENCE platform	R2023x	Integration of Computer-Aided Design and system modeling environments	Conceptual design modeling support

All the CAD and MBSE analyses were conducted using the Dassault Systèmes and MBSE modeling tools available at Cranfield University. The modeling activities were conducted using CATIA V5-6R2023 within the 3DEXPERIENCE R2023x platform environment and Cameo Systems Modeler 2021x, representing the software configuration available through the Cranfield University Digital Engineering Laboratory. Modeling tools were used to support conceptual design analysis and hazard identification activities rather than certification-grade verification simulations.

3.2. Preliminary System Definition

The first step in this methodology involves defining the scope of the system, the operational parameters, and the constraints. This process begins with an extensive review of existing data on supersonic aircraft, such as the Concorde and Boom Supersonic Overture, to identify design principles and historical challenges. Regulatory standards, including EASA CS-25, were analyzed to establish safety benchmarks relevant to fuel tank systems. This ensures that the design adheres to industry norms, while addressing the unique challenges associated with supersonic flight.

The mapping of critical components, such as fuel pipelines, venting systems, and structural insulation, forms a core part of this phase. The interdependencies between the fuel tank and other subsystems, such as propulsion and environmental controls, were identified to ensure that these interactions did not introduce new risks. Performance metrics, including thermal resilience, structural integrity, and fuel efficiency, were also defined at this stage. These metrics guide the subsequent design and safety analysis processes to ensure the alignment of functional and safety objectives.

3.3. CAD Model Development

In the second phase, detailed CAD models of the fuel tank system were developed using the 3DEXPERIENCE platform. This phase focused on creating accurate geometric representations of the system and simulating its performance under real-world conditions. The design process incorporates spatial constraints within the aircraft fuselage and ensures the optimal placement of components for operational and maintenance efficiency.

Thermal simulations showed that the fuel temperature remained within acceptable conceptual operating limits during the analyzed supersonic cruise conditions. This analysis identifies potential vulnerabilities, such as material fatigue or thermal expansion, which can compromise the integrity of the system.

The thermal simulations conducted in this study represent a first-order conceptual thermal assessment intended to evaluate potential subsystem thermal interactions during early aircraft design. The thermal boundary conditions applied in the model were derived from representative aerodynamic heating estimates reported in literature for a supersonic transport aircraft operating in the Mach 1.5–1.8 flight regime.

Typical supersonic transport aircraft operating at Mach numbers between 1.5 and 1.8 may experience external structural temperatures in the range of approximately 100–150 °C, depending on flight altitude and aerodynamic configuration [3].

The applied skin temperature range of approximately 110–130°C therefore represents a simplified engineering approximation used to evaluate the influence of external structural heating on nearby fuel system components. These simulations were performed using CAD-based thermal modeling tools to support subsystem layout evaluation and hazard identification, rather than to provide high-fidelity aerodynamic heating predictions that would normally require a computational fluid dynamics (CFD) analysis.

The boundary conditions and modeling parameters used during the thermal simulation analysis are summarized in Appendix A.

Structural stress analyses complement these simulations by identifying and addressing weak points in the design. Spatial interference checks ensure that components, such as pipelines and sensors, are positioned to avoid mechanical conflicts, thereby enhancing the reliability and functionality of the system.

3.3.1. Multi-Fidelity Modeling Strategy

Aircraft design processes typically employ modeling approaches with progressively increasing fidelity as the design matures. During the conceptual design phase, low-fidelity parametric models are used to rapidly explore aircraft configuration options and identify potential interactions between subsystems. These models prioritize computational efficiency and design flexibility over high-precision numerical accuracy.

The CAD models developed in this study represent conceptual-level modeling fidelity appropriate for early hazard identification within the proposed CAD and MBSE frameworks. At this stage, the objective is to evaluate the spatial arrangements of the subsystems, identify potential hazard interactions between components, and support preliminary safety analysis activities.

As aircraft development progresses toward the preliminary and detailed design phases, modeling fidelity typically increases through the integration of higher-resolution simulations, such as structural finite element analysis, thermal simulations incorporating detailed material properties, and CFD analysis for aerodynamic and thermal validation. These higher-fidelity simulations enable a more accurate assessment of structural loads, aerodynamic heating effects, and system performance characteristics.

Therefore, the conceptual modeling framework presented in this research can serve as the initial stage within a broader multi-fidelity modeling workflow, where early design decisions informed by CAD and MBSE models are progressively refined using higher-fidelity analysis techniques.

Table 2. Multi-fidelity modeling progression for aircraft design.

Design phase	Modeling fidelity	Typical analysis methods	Purpose
Conceptual design	Low fidelity	Parametric computer-aided design models and preliminary hazard analysis	Rapid design exploration and hazard identification
Preliminary design	Medium fidelity	Thermal simulations and structural finite element analysis	Validation of subsystem interactions and structural feasibility
Detailed design	High fidelity	Computational fluid dynamics and advanced thermal modeling	Detailed aerodynamic and thermal performance evaluation
Certification stage	Very high fidelity	Integrated system simulation and experimental validation	Final verification and certification compliance

3.4. MBSE Workflow Implementation

The third phase employed MBSE to create dynamic functional models of the fuel tank system. These models helped simulate the behavior of the system under both nominal and adverse conditions, providing valuable insights into its operational reliability. Conceptual digital twin models have been developed to represent the functional behavior of the fuel tank system, enabling engineers to simulate scenarios such as over-pressurization or venting failures.

MBSE facilitates the integration of regulatory compliance into the design process. By directly linking functional models to safety requirements, the methodology ensures that every aspect of the design aligns with the EASA CS-25 standards.

Tools, such as the FHA and FTA, were employed to simulate failure scenarios and assess cascading risks. This systematic approach ensured that potential hazards were identified and quantified in terms of their impact and likelihood.

Detailed fault tree analysis, failure modes and effects analysis, and functional hazard analysis models are provided in .

3.4.1. System Architecture Modeling

The system architecture of the conceptual aircraft fuel system was represented using a system modeling language (SysML) within the MBSE environment. SysML models were used to describe the subsystem structure, functional behavior, and interfaces between the system components.

The architecture model captures the relationships between the major fuel system components, including fuel tanks, pumps, fuel transfer lines, and engine feed systems. Functional interactions between these components were represented through SysML block definition diagrams and internal block diagrams, enabling the analysis of the system behavior under various operational conditions.

These architectural models provide a structured representation of subsystem interactions that support the application of safety analysis techniques such as the FHA, FMEA, and FTA.

3.4.2. Hazard Modeling Integration

MBSE architecture models were used to support hazard identification activities by enabling the analysis of functional system behavior alongside subsystem interaction relationships. Hazard analysis techniques were applied within the MBSE framework to identify the potential failure propagation pathways and subsystem dependencies.

By linking functional system architecture models with the spatial subsystem configuration developed in a CAD environment, the modeling framework allows hazard interactions caused by subsystem placement or structural integration to be identified earlier in the design process.

This integrated modeling approach supports more comprehensive hazard identification than conventional document-based safety assessment workflows.

3.4.3. Conceptual Digital Twin Framework

Digital twin concepts are increasingly being applied in aerospace digital engineering environments to represent the structure and behavior of complex engineering systems. A digital twin can be generally defined as a virtual representation of a physical system that integrates system models, simulation capabilities, and, in advanced implementations, operational data to support engineering analysis and lifecycle management.

The maturity of digital twin implementations is commonly classified using reference frameworks, such as the DIN 91345 digital twin model, which describes progressive levels of digital system representation, ranging from static geometry models to fully integrated cyber-physical systems that interact with operational data streams.

The modeling framework developed in this study integrates CAD geometry models with the MBSE system architecture models to represent both spatial subsystem configuration and functional system interactions within a conceptual aircraft design environment. This integration enables simulation-supported hazard identification during early design stages, allowing potential subsystem interaction risks to be evaluated before a detailed aircraft design is completed.

Although the proposed modeling framework incorporates physics-based modeling assumptions, including thermal load estimation and subsystem interaction analysis, it does not incorporate real-time operational data from physical aircraft platforms. Consequently, the modeling environment should be interpreted as a conceptual digital twin framework rather than as a fully operational digital twin implementation.

Within the context of the DIN 91345 maturity classification, the modeling approach developed in this study demonstrated characteristics associated with intermediate digital twin maturity levels, where system architecture models and simulation capabilities were integrated to support the engineering analysis. However, the absence of operational sensor data and real-time system monitoring limits the framework to conceptual digital twin capabilities.

Future research can extend the proposed framework by integrating operational aircraft data streams, real-time system monitoring, and closed-loop simulations between physical aircraft systems and their digital representations. Such an integration would enable the development of fully operational digital twin environments capable of supporting predictive maintenance and real-time safety analyses of aircraft systems.

Table 3. Digital twin maturity classification.

Digital twin level	Description	Application in the current study
Level 1	Static digital representation of system geometry	Computer-aided design aircraft geometry models
Level 2	Digital model with functional system architecture	Model-based systems engineering system models
Level 3	Integrated system model with simulation capability	Hazard interaction analysis
Level 4	Physics-based simulation models	Thermal load modeling and subsystem analysis
Level 5	Simulation with validated engineering models	Integrated computer-aided design and model-based systems engineering hazard analysis framework
Level 6	Real-time digital twin with operational data integration	Not implemented in this study

3.5. Integration of CAD and MBSE

The integration of CAD models with MBSE architectures enables a unified representation of the spatial subsystem configuration and functional system behavior during early aircraft design stages. Conventional aircraft safety analysis methods typically rely on separate documentation-based workflows, where system architecture models and geometric subsystem layouts are analyzed independently. This separation can delay the identification of spatial hazard interactions between aircraft subsystems.

In this study, CAD geometry models and MBSE system architecture models were integrated to support early-stage hazard identification for the conceptual SA-24 Phoenix supersonic aircraft fuel system. The combined modeling environment enables engineers to analyze potential hazard interactions between subsystem components by linking spatial system configurations with functional behavior models.

The integration framework supports iterative interactions between geometric subsystem models and system architecture representations, allowing hazard identification activities to be performed during the conceptual design rather than after a detailed subsystem definition.

3.5.1. Hazard Analysis Integration Workflow

The hazard analysis workflow developed in this study integrates spatial subsystem modeling with functional system architecture analysis. The workflow begins with the development of a conceptual subsystem geometry within the CATIA modeling environment. These geometric models represent the spatial configurations of the fuel tanks, associated structural components, and nearby aircraft subsystems.

Once the subsystem geometry has been established, system architecture models are developed within the MBSE environment using SysML. These models represent the functional relationships between aircraft subsystems and enable the identification of potential failure propagation paths.

The integration of these modeling environments enables the application of hazard analysis methods, such as FHA, FMEA, and FTA, in conjunction with spatial subsystem configuration models.

Using this approach, potential hazard interactions caused by subsystem proximity, thermal effects, or structural integration can be identified earlier in the aircraft design process.

3.5.2. CAD–MBSE Hazard Feedback Loop

The integration between CAD and MBSE models was implemented through an iterative hazard analysis feedback loop. The CAD geometry models developed in CATIA provided spatial subsystem configurations, including the locations of the fuel tanks, pipelines, and surrounding aircraft systems. These spatial relationships were analyzed to identify potential hazard interactions, such as thermal exposure zones, pipeline proximity to high-temperature components, and fuel system pressurization risks.

When a potential hazard interaction was identified within the CAD environment, the corresponding subsystem relationships were mapped onto the MBSE system architecture model using SysML representations. Hazard events and mitigation strategies were incorporated into the MBSE model through FHA, FMEA, and FTA structures.

The resulting safety analysis outputs informed design modifications within the CAD model, such as the addition of redundant venting pathways, thermal insulation materials, or revised subsystem routing. This iterative feedback process ensured that the spatial subsystem configuration and FHA remained synchronized throughout the conceptual aircraft design phase.

Although the geometric data were exported from CATIA using the Standard for the Exchange of Product Data (STEP) format, full automation between the CAD and MBSE environments was not implemented. Consequently, certain data transfer and model synchronization steps require manual coordination between the CAD and MBSE system architecture models. These manual updates included mapping the spatial subsystem relationships identified in CAD to SysML hazard analysis elements within the MBSE environment. Although this introduces a minor workflow overhead, it ensures traceability between spatial geometry models and functional safety analysis models during conceptual aircraft design.

The resulting CAD–MBSE workflow forms a closed-loop hazard analysis process in which spatial design information informs the system safety analysis, and the safety analysis results guide subsequent design refinements.

3.5.3. CAD–MBSE Data Exchange and Interoperability

The effective integration between CAD models and MBSE architectures requires reliable data exchange mechanisms that allow spatial system models to interact with functional system representations. In the modeling workflow developed in this study, geometric models of the SA-24 Phoenix fuel tank system were generated using the CATIA environment within the 3DEXPERIENCE digital engineering platform.

The geometric data representing the subsystem placement and structural configuration were exported using the STEP (Standard for the Exchange of Product Data) format, which enabled interoperability between CAD environments and external modeling tools. These geometric representations were then referenced during the MBSE architecture modeling process to support hazard interaction analysis between subsystem components.

Table 4. Summary of the data exchange workflow used in the integration process.

Stage	Tool environment	Data format	Purpose
Conceptual geometry modeling	Computer-Aided Three-Dimensional Interactive Application (CATIA)	Native CAD model	Aircraft structural configuration
Geometry export	3DEXPERIENCE platform	Standard for the exchange of product data (STEP)	Interoperable geometric representation
System architecture modeling	Model-based system engineering tool (Cameo Systems Modeler)	System modeling language (SysML) models	Functional system behavior modeling
Hazard interaction analysis	Integrated CAD–MBSE environment	Combined geometry and system architecture	Identification of subsystem hazard interactions

Although this approach enables the effective integration of spatial and functional system models during conceptual aircraft design, several interoperability challenges remain. The transfer of geometric data through standardized exchange formats may result in minor losses in geometric fidelity, particularly when complex parametric model features are simplified during export. Additionally, maintaining synchronization between CAD geometry updates and MBSE architecture models may require manual coordination within current modeling environments.

Figure 1 illustrates the data flow between the spatial subsystem geometry and functional system architecture models used in the hazard analysis process.

Although the use of standardized exchange formats enables interoperability among modeling environments, several limitations remain. Exporting complex parametric geometries through STEP files may result in the partial simplification of geometric features, which can reduce the geometric fidelity when compared with the native CAD model. In addition, maintaining synchronization between CAD model updates and MBSE architecture models may require manual coordination in the current modeling environments.

Despite these limitations, the integration workflow provides an effective approach for combining spatial subsystem configurations with functional system architecture modeling during early hazard identification activities.

3.5.4. Iterative Design Convergence Criteria

The integration of CAD models with the MBSE architecture enables an iterative design workflow in which the subsystem geometry and system behavior models are progressively refined during the conceptual aircraft design.

During each modeling iteration, updates to the subsystem spatial configuration within the CAD environment were evaluated using hazard analysis techniques implemented within the MBSE architecture model. This helped assess the potential subsystem interaction hazards and identify safety-critical design conditions.

To ensure the stability of the modeling process, convergence criteria were defined to determine when the iterative design loop stabilized. The design iteration process was considered to converge when the calculated system risk metrics exhibited less than five percent variation across three consecutive design iterations and when the thermal safety margin associated with fuel tank operating temperatures remained stable within the analyzed flight conditions.

Table 5. Iterative design convergence criteria.

Metric	Convergence condition	Purpose
Hazard risk metrics	Less than 5% variation across three consecutive iterations	Ensures stability of hazard analysis results
Thermal safety margin	Stable temperature margins during thermal simulation	Confirms thermal safety stability
Subsystem interaction hazards	No new critical hazards identified	Indicates stable subsystem configuration

These convergence criteria ensure that the integrated modeling environment produces consistent hazard analysis outcomes and provides a stable basis for evaluating subsystem safety interactions during the conceptual aircraft design phase.

3.6. Zonal Safety Analysis (ZSA)

The ZSA was conducted using the integrated CAD–MBSE framework to systematically identify and mitigate hazards within the fuel tank zone. This analysis begins with the identification of potential risks such as fuel leakage, thermally induced vaporization, and over-pressurization. These risks were categorized by likelihood and severity, enabling prioritization in the mitigation process.

Tools, such as the FHA and FTA, were used to analyze the propagation of failure scenarios and their potential impact on the overall system. For instance, a fault tree may map the consequences of a venting system failure, illustrating how it could lead to fuel vapor ignition. Mitigation strategies, such as the introduction of redundant safety mechanisms or improved material selection, have been proposed and validated through simulations. This proactive approach ensures that hazards are not only addressed, but also prevented from escalating into critical failures.

3.7. Validation and Benchmarking

The final phase involved validating the integrated framework and benchmarking its performance against conventional methodologies. The proposed CAD–MBSE hazard analysis framework was validated using three complementary approaches. First, FHA, FMEA, and FTA were applied within the integrated modeling environment to evaluate the ability of the framework to identify subsystem interaction hazards during conceptual aircraft design. Second, comparative benchmarking was performed using published fuel system characteristics from historical and contemporary supersonic aircraft, including the Concorde, as well as from conceptual next-generation supersonic transport designs. Third, a sensitivity analysis of the key failure probability parameters was conducted to assess the robustness of the predicted hazard risk reduction metrics. These validation procedures helped collectively assess the capability of the proposed framework in supporting early-stage hazard identification and design mitigation during conceptual aircraft development. Case studies were conducted using the SA-24 Phoenix fuel-tank system to evaluate the effectiveness of the framework for hazard identification and mitigation. Comparative analyses using historical data highlight the advancements made through the integration of CAD and MBSE.

Metrics, such as the design efficiency, safety compliance, and risk reduction, helped quantify the impact of the framework. This validation phase ensured that the methodology is not only effective but also practical for applications in the aerospace industry.

This methodology integrated the CAD and MBSE into a unified framework for ZSA, thereby helping address the complexities of supersonic aircraft design. By combining spatial precision with functional analysis, this approach enables early hazard identification, optimizes design processes, and ensures compliance with industry regulations. As demonstrated in its application to SA-24 Phoenix, the framework provides a conceptual methodology for integrating spatial subsystem modeling with system architecture hazard analysis during early aircraft design.

4. Case Study: SA-24 Phoenix-Supersonic Aircraft

The SA-24 Phoenix, a conceptual supersonic transport aircraft, represents the forefront of innovation in aerospace engineering. This case study highlights the application of ZSA to the design and development of its fuel tank system, which is a critical subsystem essential for operational safety and efficiency. This methodology integrates CAD and MBSE to proactively identify and mitigate risks during the early design phases.

The SA-24 Phoenix operates at supersonic speeds and high altitudes, with its systems subjected to extreme conditions, such as significant thermal loads, dynamic pressures, and high aerodynamic forces. These conditions necessitate a robust fuel tank system that not only ensures operational efficiency but also adheres to stringent safety standards, such as EASA CS-25. The ZSA framework employed in this study focuses on addressing these challenges using a systematically integrated approach that enhances hazard detection and mitigation. Figure 2 and Figure 3 present different views of the SA-24 Phoenix aircraft.

4.1. Overview of the SA-24 Aircraft Fuel Tank System

The fuel tank system of the SA-24 Phoenix is a highly integrated subsystem designed to satisfy the demands of supersonic travel. Its architecture focuses on optimizing weight distribution, ensuring fuel efficiency, and maintaining stringent safety standards under challenging conditions.

The storage configuration incorporates integral tanks located in the wings and a fuselage strategically placed to maintain an optimal center of gravity (CG) throughout all the flight phases. The use of advanced materials, including titanium alloys and carbon composites, ensures that tanks can withstand rapid pressure and temperature fluctuations during supersonic operations. This combination of material innovation and structural optimization minimizes the risk of fuel system failure, while reducing the overall weight.

Subsystems integrated within the fuel tank system include:

1) Fuel transfer system: The dual-pump configuration provides redundancy to ensure continuous fuel flow to the engines, even in the event of a single-component failure. Cross-feed valves allow fuel redistribution between tanks to maintain the CG and support emergency operations.

2) Venting system: Multiple venting pathways prevent over-pressurization resulting from thermal expansion. The flame arrestors integrated into the venting design minimize the risk of ignition from external sparks or high temperatures.

3) Fuel quantity indication system (FQIS): Capacitance-based sensors monitor fuel levels with high precision and relay the data to cockpit displays. This real-time feedback enhances the situational awareness of the pilots, particularly during long-range supersonic flights.

Safety features, such as redundant mechanisms and advanced insulation, significantly enhance system resilience. Insulation materials, validated through thermal simulations, mitigate the risk of fuel vaporization caused by aerodynamic heating. These elements collectively ensure that the fuel system meets both operational and safety benchmarks.

4.1.1. Tank Configuration and Layout

Figure 4 shows a top–down view of the fuel tank placement and storage configuration of the SA-24 Phoenix aircraft. This configuration ensures an efficient weight distribution and optimizes its aerodynamic performance.

Forward tank: Located in the nose section, the forward tank helps balance the aircraft during takeoff and landing. It is critical to maintaining the CG under various fuel load scenarios. The forward tank is smaller than the wing tanks and is primarily used for trim adjustments.

Wing tanks: Wing tanks serve as primary storage units and are located within the structural wing cavities. Their placement near engines minimizes the length of fuel pipelines, reduces weight, and increases efficiency. The tanks were divided into sections with internal baffles to prevent fuel sloshing during dynamic flight conditions.

Aft tanks: Positioned at the rear fuselage, the aft tank plays a critical role in CG management during supersonic cruises. The fuel from this tank is first consumed to shift the CG forward, thereby reducing the aerodynamic drag.

Tank insulation: All the tanks were insulated with advanced materials to protect against the heat generated during supersonic flight. This insulation reduces the risk of vaporization and ensures fuel stability.

Design considerations: The arrangement of tanks prioritizes operational efficiency by reducing the impact of fuel weight on aerodynamic performance. The modular design of tanks simplifies maintenance and facilitates inspection of structural integrity.

Additional geometric configurations and detailed CAD representations of the fuel tank system are provided in Appendix C.

4.1.2. Fuel Transfer and Shut-Off Valve System Layout

Figure 5 illustrates the layout and key components of the SA-24 Phoenix fuel tank system, focusing on the transfer pumps and shut-off valves. Each component is strategically positioned to ensure safety, efficiency, and reliability under supersonic flight conditions.

Transfer pumps (outlined boxes): Transfer pumps are located within the fuel tanks in the wings, forward fuselages, and aft fuselages. These pumps ensure consistent fuel delivery to the engines and manage fuel redistribution between tanks to maintain the CG of the aircraft. Redundant pumps are placed in high-demand zones, such as the main wing tanks, to provide backup in the event of a single pump failure. This redundancy aligns with EASA CS-25 requirements for system reliability.

Shut-off valves (green circles): Shut-off valves are located at critical junctions in the fuel pipeline system. These valves are designed to isolate sections of the system in the event of fuel leaks or emergencies such as engine failure. The placement of shut-off valves ensures that fuel flow can be immediately halted in specific zones, thereby preventing hazardous scenarios such as over-pressurization or fuel pooling in damaged areas.

Flow path: The centralized pipeline connects all tanks to the engines, with the main control located in the mid-fuselage section. This layout ensures efficient fuel transfer and easy maintenance.

Functionality highlights: The system balances fuel distribution between the forward, wing, and aft tanks while maintaining CG stability. Shut-off valves provide additional safety by enabling rapid isolation of damaged or malfunctioning components.

When combined, these diagrams represent a comprehensive view of the SA-24 Phoenix fuel system, showing both the functional components (transfer pumps and valves) and spatial configuration (tank placement). Together, they demonstrate how a fuel system can be engineered for safety, redundancy, and performance in a high-stress supersonic flight environment.

4.2. Identification of Zonal Systems

The CAD model of the SA-24 aircraft (Figure 6) shows the structural design and integration of its fuel tank system, with green areas representing the fuel tanks. These images provide insights into the layout, distribution, and engineering considerations of the fuel systems within the aircraft. This design prioritizes efficient weight distribution, structural integrity, and operational safety to meet the challenges of supersonic flight.

CAD models serve as baselines for integrating MBSE workflows, enabling early hazard detection and mitigation during the design phase. By mapping the fuel tank system layout, these models provide a clear understanding of spatial configurations, subsystem interactions, and potential zonal hazards.

Figure 7. Top view of the structure and fuel tank system of the SA-24 aircraft.

Zonal safety analysis (ZSA): This view allows for identifying zones where multiple systems intersect, such as fuel pipelines near engine components, which pose potential ignition risks.

CAD and MBSE integration: The model can be linked to MBSE tools to simulate hazard scenarios such as over-pressurization or thermal stress in specific zones.

Centre of gravity (CG) management: The even distribution supports CG stability and reduces the risk of imbalance during flight.

Hazard identification: MBSE tools can overlay failure scenarios, such as leakage, from wing tanks, affecting aerodynamic performance or triggering cascading failures in adjacent systems.

Thermal management: This helps assess zones exposed to aerodynamic heating, such as forward and rear tanks, and highlights the insulation requirements.

Pressure regulation: CAD simulations can be used to validate venting system designs to mitigate over-pressurization risks.

Structural safety analysis: MBSE model can simulate the effects of dynamic loads and material fatigue on tank compartments, ensuring structural integrity under supersonic conditions.

Subsystem integration: The model demonstrates how fuel tanks are integrated with other systems, such as environmental control and propulsion, enabling a cross-domain hazard analysis.

Dynamic simulations: MBSE model can assess how fuel transfer from the tail tank impacts CG stability during different flight phases.

ZSA insights: The proximity of the tail tank to engine exhaust zones introduces fire hazards that can be mitigated by enhanced insulation and flame arrestors.

Figure 8. Side view of the structure and fuel tank system of the SA-24 aircraft.

Proactive hazard detection: The CAD models provide a detailed spatial framework that can be analyzed using ZSA methodologies. Potential hazards, such as fuel leakage, ignition risks, and over-pressurization, can be identified and addressed early in the design process.

MBSE integration: Linking the CAD models to MBSE workflows enables dynamic simulations of subsystem interactions. For example, fuel transfer simulations can validate the effectiveness of pumps and valves, whereas the FTA can identify cascading risks.

Regulatory compliance: The visualization of fuel tank placement and integration supports compliance with EASA CS-25 standards, particularly in areas such as venting system design, fire protection, and structural integrity.

Iterative design optimization: CAD models allow iterative refinements based on simulation results. For example, repositioning the venting pathways or enhancing the tank insulation can be directly implemented in a CAD environment.

4.2.1. Cross-System Interface Zonal Safety Analysis

An aircraft fuel system interacts with multiple adjacent subsystems, including propulsion components and ECS elements. These interactions can introduce potentially hazardous conditions related to thermal exposure, fire propagation, and subsystem proximity.

To evaluate these interactions, a ZSA interface matrix was developed to identify the potential hazards associated with subsystem integration within aircraft structures. The matrix considers the spatial relationships between the fuel system components and neighboring subsystems, focusing on areas where elevated thermal loads or ignition sources may be present.

The ECS may introduce elevated temperature conditions due to the air conditioning pack operation and bleed air routing. These thermal loads can affect the structural components of the fuel tank and the associated fuel transfer lines if the subsystem separation distances are insufficient.

Similarly, the propulsion system components located within the engine bay represent potential ignition sources in the event of fuel leakage. Therefore, fire propagation risks associated with fuel system components located near propulsion system structures must be considered during early subsystem layout design.

The integration of CAD subsystem geometry with MBSE system architecture models enables the analysis of subsystem interaction hazards during conceptual aircraft design.

Table 6. Cross-system zonal safety analysis matrix.

Subsystem interface	Hazard condition		Mitigation strategy
Fuel tank–environmental control system	Elevated ECS bleed air temperatures	Fuel tank structural heating	Thermal insulation and subsystem separation
Fuel lines–environmental control system ducting	Proximity to hot air ducts	Fuel line thermal degradation	Routing separation and thermal shielding
Fuel tank–engine bay structure	Potential fuel leakage near the propulsion system	Fire propagation risk	Structural fire barriers and leak detection
Fuel pump–engine bay	Mechanical component overheating	Fuel ignition hazard	Fire detection and suppression systems

4.3. Application of Zonal Safety Analysis (ZSA)

Dedicated certification standards for commercial supersonic aircraft are still evolving, including updates such as the EASA CS-25 Amendment 27. This study adopts the safety requirements of the existing CS-25 fuel system as a conceptual regulatory baseline for hazard identification. These requirements were applied in a modified analytical context to account for the thermal and operational characteristics associated with sustained supersonic flight conditions. This approach allows established airworthiness safety principles, such as ignition prevention, fuel system redundancy, and failure containment, to be applied during conceptual aircraft design, while acknowledging that detailed certification criteria for future supersonic transport aircraft may evolve.

The analysis focused on the integration of CAD and MBSE workflows to enhance the precision and efficiency of hazard detection.

4.3.1. Hazard Identification

Key hazards identified through the ZSA include:

Thermal risks: High aerodynamic heating during a supersonic cruise can increase fuel temperatures, leading to vaporization and pressure build-up.

Over-pressurization: Malfunctioning venting systems or blockages can result in excessive internal pressures, risking tank deformation or rupture.

Leakage: Structural fatigue, material degradation, or faulty seals can cause fuel leaks, thereby posing fire hazards.

Ignition Risks: Proximity to electrical systems and engines introduces the potential for vapor ignition.

4.3.2. Mitigation Strategies

To address these hazards, the following strategies were implemented:

Thermal management: Advanced insulation materials and heat shields were applied to minimize heat transfer to the fuel tanks. The simulations helped validate the effectiveness of these materials in maintaining stable fuel temperatures under operational conditions.

Pressure regulation: Dual venting pathways with redundant controls were designed to maintain the pressure equilibrium. Pressure sensors provide real-time feedback, enabling the early detection of anomalies.

Structural reinforcement: Reinforced composite materials and improved sealing techniques have been utilized to enhance the durability of tank compartments and minimize leakage risks.

Proactive monitoring: The FQIS and integrated sensors provide continuous monitoring of fuel levels, pressures, and temperatures, enabling timely corrective actions.

4.3.3. Validation Through CAD and MBSE

The CAD and MBSE tools were instrumental in validating the proposed safety measures:

CAD simulations: Thermal and structural analyses were performed to assess the resilience of the fuel tanks under extreme conditions.

MBSE models: Digital twins simulate failure scenarios and subsystem interactions, enabling the refinement of design elements.

Iterative feedback: Simulation results informed adjustments to the tank design, ensuring alignment with safety standards.

4.3.4. Human–Machine Interface Zonal Safety Analysis

The fuel system monitoring architecture of the aircraft includes several human–machine interface (HMI) components that allow the flight crew to monitor the fuel tank status and system operating conditions. These interfaces provide critical information regarding the fuel quantity, fuel transfer operations, and potential system anomalies.

The FQIS represents the primary interface through which flight crews monitor fuel system status. This system typically integrates fuel tank sensors, signal processing units, and cockpit display interfaces to provide real-time fuel quantity measurements.

Failures within the HMI may lead to incorrect or misleading information being presented to the flight crew. Potential failure conditions include incorrect sensor readings, display interface malfunctions, or delayed system status updates. Such failures can affect pilot decision-making during fuel management operations.

To evaluate these risks, a ZSA of the HMI components was conducted to identify potential failure modes associated with fuel system monitoring displays. The analysis focused on identifying the conditions under which incorrect fuel status information may be presented to flight crews and assessing potential mitigation strategies.

Table 7. Zonal safety analysis of the human–machine interface for fuel system monitoring.

Interface component	Failure mode	Potential hazard	Mitigation strategy
Fuel quantity indication system display	Incorrect fuel quantity indication	Pilot misinterpretation of fuel availability	Redundant fuel level sensors
Fuel monitoring display	Loss of display signal	Loss of situational awareness	Backup display systems
Fuel transfer status indicator	Incorrect system status indication	Incorrect fuel transfer operations	Redundant signal validation
Sensor interface module	Signal processing error	Incorrect cockpit display information	Safety Integrity Level 2 compliant interface design

5. Results

This section presents the results obtained by applying the ZSA integrated with CAD and MBSE to the fuel tank system of the SA-24 Phoenix aircraft. The findings were evaluated and analyzed to demonstrate their implications for the overall safety, operational performance, and regulatory compliance of the aircraft. Safety performance improvements were evaluated using FMEA, FHA, and FTA outputs generated during the modeling process.

5.1. Hazard Identification Results

The key hazards identified through the integrated modeling workflow included thermal exposure risks, fuel system pressurization hazards, and potential fuel leakage scenarios associated with subsystem interactions within the aircraft structure.

Thermal risk mitigation: The introduction of thermal insulation materials and heat shielding reduced the FMEA risk priority number (RPN) associated with thermally induced fuel vaporization hazards by approximately 40%, based on the hazard scoring results presented in Table 8. Thermal simulations using CAD indicated that the fuel temperature remained within acceptable conceptual operating limits during the analyzed supersonic cruise conditions.
Pressure regulation efficiency: Dual venting pathways supported by redundant pressure sensors effectively maintained the pressure equilibrium within the fuel tanks. This reduced the over-pressurization risk by 35%, ensuring the structural integrity of the tanks under extreme conditions.
Leakage prevention: Structural reinforcements, enhanced sealing techniques, and real-time monitoring systems reduced the probability of fuel leakage by 50%. This addresses a significant hazard that can lead to fire risks or environmental contamination.

Table 8. Relative reduction in FMEA risk priority number (RPN) values following CAD–MBSE hazard mitigation strategies.

Hazard	Baseline RPN (Table A5)	Estimated RPN after mitigation	Relative reduction
Fuel pipeline blockage	216	130	40%
Fuel pump electrical failure	180	117	35%
Fuel pipeline rupture/leakage	150	75	50%

The adoption of CAD and MBSE tools also improved the design and development process by enabling iterative refinement of the subsystem geometry and system behavior models. CAD-based simulations supported the optimization of component placement and thermal insulation design, while MBSE modeling enabled the evaluation of subsystem interactions and failure propagation scenarios. The integrated modeling workflow reduced the conceptual design iteration cycle from approximately twelve weeks to nine weeks, representing a 25% reduction in the design iteration time.

5.2. Quantitative Risk Reduction Analysis

The safety improvement percentages reported herein were derived from the FMEA, as presented in Table A5. The RPN for each hazard was calculated as the product of the severity (S), occurrence probability (O), and detection capability (D).

The baseline RPN values represent the risk levels identified using conventional ZSA during the conceptual design. The estimated occurrence and detection ratings were reduced following the implementation of mitigation strategies enabled by the integrated CAD–MBSE framework, such as redundant venting, improved thermal insulation, and enhanced fuel system monitoring.

The RPN represents a qualitative engineering risk prioritization metric rather than a continuous physical measurement scale. Consequently, the relative percentage reductions reported herein represent changes in the FMEA risk-ranking scores used to prioritize hazards during conceptual design rather than experimentally measured reductions in the failure probability of the physical system.

The resulting decrease in the RPN values was used to estimate the relative improvement in the system safety performance.

The relative improvement percentages were calculated from the reduction in the RPN values after applying the mitigation strategies identified through the CAD–MBSE hazard analysis process. These reductions reflect the improved detection capability, lower occurrence probability owing to design mitigation, and enhanced monitoring of the fuel system components. These improvements represent reductions in the FMEA risk scores derived from engineering hazard assessments rather than experimentally measured physical performance improvements.

5.3. Representative Hazard Identification Scenario

To illustrate how the integrated CAD–MBSE framework supports early hazard identification, a representative hazard scenario was analyzed within the SA-24 Phoenix fuel tank system architecture. During the CAD modeling phase, the spatial configuration of the wing fuel tanks revealed that a section of the fuel transfer pipeline was in close proximity to the ECS ducting carrying high-temperature bleed air. This spatial relationship creates the potential for the localized thermal exposure of fuel pipelines under sustained supersonic cruise conditions.

The identified thermal interaction was then represented within the MBSE architecture model using SysML hazard elements. Functional hazard, failure mode, and effect analyses were applied to evaluate the potential consequences of increased pipeline temperature, including fuel vaporization and pressure build-up within the associated fuel tank. Based on the results of this analysis, design mitigation measures were introduced, including additional thermal insulation and increased routing separation between the fuel pipeline and ECS ducting.

Following the implementation of these mitigation measures, the corresponding RPN associated with the thermal hazard pathway of the fuel system was reduced within the FMEA assessment. This example demonstrates how an integrated modeling workflow enables spatial subsystem interactions identified in CAD models to be systematically incorporated into FHA activities within the MBSE environment.

5.4. Key Performance Metrics

Table 9 presents a comparison of the key performance metrics before and after the integration of ZSA, CAD, and MBSE.

Table 9. Conceptual safety performance indicators derived from FMEA risk ranking analysis.

Metric	Conventional approach	Proposed framework	Improvement (%)
Thermal risk mitigation	65%	91%	40%
Over-pressurization risk reduction	60%	81%	35%
Fuel leakage prevention	50%	75%	50%
Design iteration time	12 weeks	9 weeks	25%

The integrated CAD–MBSE framework demonstrated improved traceability between the subsystem geometry and FHA activities during the conceptual aircraft design. Within the conceptual design case study, the combined CAD–MBSE workflow enabled earlier identification of spatial subsystem interaction risks and improved traceability between the subsystem geometry configuration and FHA models.

5.5. Architectural Context of Supersonic Aircraft Fuel Systems

To contextualize the conceptual fuel system configuration analyzed in this study, the SA-24 Phoenix architecture was benchmarked against representative supersonic aircraft fuel systems. These comparisons illustrate how subsystem complexity and operational characteristics of the conceptual design align with known supersonic aircraft configurations. The results obtained from the SA-24 Phoenix conceptual fuel system design were compared with published data on historical and emerging supersonic aircraft fuel system architectures. Benchmarking against previously developed supersonic aircraft systems provides an opportunity to evaluate whether the safety characteristics predicted by the proposed modeling framework fall within realistic operational ranges. Therefore, the comparison provides contextual insights into the relative architectural complexity of the SA-24 fuel system, while demonstrating that the proposed CAD–MBSE hazard analysis framework can be applied during earlier design phases than conventional safety analysis methods.

The Concorde supersonic transport aircraft represents a well-documented reference case for supersonic fuel system architecture. The Concorde adopted a complex fuel transfer system comprising multiple fuel tanks and pumps for both propulsion and CG control during supersonic cruise. In contrast, modern supersonic aircraft concepts, such as Boom Overture, are expected to employ digitally integrated fuel monitoring systems and simplified fuel transfer architectures enabled by modern avionics systems. Table 10 presents a comparison of representative supersonic aircraft fuel system architectures.

Table 10. Comparison of representative supersonic aircraft fuel system architectures.

Metric	Concorde	Boom overture (conceptual)	SA-24 Phoenix (this study)
Number of fuel tanks	13	~10	8
Fuel system function	Propulsion + trim control	Propulsion + center-of-gravity management	Propulsion fuel supply
Fuel transfer complexity	High	Moderate	Moderate
Fuel monitoring system	Hybrid analogue–digital	Fully digital	Digital sensor architecture
Hazard identification stage	Detailed design	Preliminary design	Conceptual design

This comparison indicates that the conceptual SA-24 fuel system architecture exhibits a level of structural and operational complexity that is consistent with other supersonic aircraft fuel systems. Notably, the proposed CAD–MBSE hazard identification framework enables safety analysis to be performed earlier in the aircraft design process compared with conventional safety assessment methods, which are typically conducted during later design phases.

5.6. Sensitivity Analysis of Hazard Risk Metrics

The hazard risk reduction results presented herein are based on the application of FHA, FMEA, and FTA within an integrated CAD and MBSE modeling framework. To evaluate the robustness of the results, a sensitivity analysis was performed to assess the influence of uncertainty on key input parameters. The sensitivity analysis considered variations of ±10% in the probability values associated with key component failure modes used in the FTA model. These variations were applied to representative subsystem components, including fuel pumps, fuel transfer valves, and fuel quantity sensing systems.

The resulting changes in the overall hazard probability were then analyzed to determine the stability of the predicted hazard risk reduction associated with the proposed modeling framework. The sensitivity bounds presented in Table 12 were calculated using the fuel pump failure pathway within the FTA model as a representative subsystem failure scenario.

Table 11. Sensitivity analysis results for the representative fuel pump failure pathway within the fault tree analysis model.

Parameter variation	Estimated system risk metric	Relative change
Baseline model	1.00	—
−10% failure probability inputs	0.92	−8%
+10% failure probability inputs	1.08	+8%

Table 12. Estimated confidence bounds for key fault tree paths.

Parameter variation	Estimated system risk metric	Relative change
Baseline model	1.00	—
−10% failure probability inputs	0.92	−8%
+10% failure probability inputs	1.08	+8%

A sensitivity analysis indicated that moderate variations in the component failure probability inputs produced proportionally lower variations in the overall system risk metric. This behavior reflects the structure of the representative fault tree pathway analyzed, in which multiple contributing events combine to influence the overall hazard probability.

5.7. Scalability Analysis

The integrated CAD–MBSE framework was applied to a conceptual aircraft fuel system as a representative subsystem case study. However, modern aircraft architecture comprises multiple interacting subsystems including propulsion, environmental control, avionics, and structural systems. Therefore, evaluating the scalability of the modeling framework is important to assess its applicability to full-aircraft system architectures.

The computational complexity of the framework primarily increases with the number of subsystem components and the number of interactions represented within the system architecture model. For subsystem-level analyses, such as the fuel system case study presented in this work, the number of system components and hazard interaction pathways remains relatively limited, enabling rapid modeling iterations.

When extended to a full-aircraft architecture, the number of subsystem interactions increases significantly, particularly when considering the interactions between propulsion systems, ECSs, electrical systems, and structural components. Despite this increase in model complexity, modern MBSE tools have been designed to manage large system architectures containing hundreds of components and interactions. The estimated processing times presented in Table 13 are extrapolated estimates based on the computational performance observed during the subsystem-level modeling of the fuel system architecture, with additional scaling applied to approximate the increased complexity associated with the multi-subsystem and full-aircraft system models. These estimates are intended to illustrate the expected order of magnitude of the modeling effort, rather than represent the measured processing times for a complete aircraft architecture model.

Table 13. Estimated computational scalability of the CAD–MBSE framework.

Analysis Scope	Approximate system components	Interaction links	Estimated model processing time
Fuel system subsystem	20–30 components	~40 interactions	<5 min per iteration
Multiple aircraft subsystems	80–120 components	~200 interactions	~10–15 min per iteration
Full aircraft architecture	200+ components	>400 interactions	~20–30 min per iteration

The scalability analysis suggests that the proposed modeling framework can be extended to full-aircraft system architectures, while maintaining manageable computational requirements. Although model complexity increases as additional subsystems are incorporated, integrating CAD geometry with MBSE architecture models remains computationally feasible for hazard identification activities at the conceptual design stage.

5.8. Generalizability of the Framework to Other Aircraft Subsystems

Although the proposed CAD–MBSE modeling framework was applied to the fuel tank system of the SA-24 Phoenix supersonic aircraft, the underlying modeling approach was not limited to fuel system architectures. The integration of spatial subsystem configuration models with system architecture representations enables hazard identification across a wide range of aircraft subsystems, where component proximity and functional interactions can introduce safety risks.

Examples of aircraft subsystems to which the proposed framework can be applied include ECS ducting located near fuel or hydraulic lines, electrical wiring installations within structural zones exposed to thermal loads, and propulsion subsystem interfaces with structural or fluid systems. In each case, the spatial subsystem configuration developed within the CAD environment can be linked to functional behavior models within the MBSE architecture to identify potential hazard interactions during conceptual aircraft design.

The general structure of the modeling workflow, comprising CAD subsystem geometry modeling, MBSE system architecture representation, and integrated hazard analysis using techniques, such as FHA, FMEA, and FTA, remains applicable regardless of the specific subsystem being analyzed. Consequently, this framework may support early hazard identification activities for a broad range of safety-critical aircraft systems beyond the fuel tank system examined in this case study.

5.9. Material Selection Implications

The selection of appropriate materials for fuel tank insulation and structural protection plays an important role in mitigating thermal hazards associated with supersonic aircraft operations. Aerodynamic heating during a sustained supersonic cruise can significantly increase the temperature of the structural components surrounding the fuel tank system.

To evaluate potential material solutions, several candidate materials were compared based on their thermal conductivity, temperature resistance, ablation resistance, and certification status in aerospace applications. Table 14 presents a comparison of thermal protection materials for the fuel system.

Table 14. Comparison of thermal protection materials for fuel system.

Material	Thermal conductivity (W/m·K)	Temperature resistance	Ablation resistance	Certification/application status
Aluminum alloy (Concorde structure reference)	~120–170	Up to ~130 °C	Low	Historically used in Concorde structural fuel tanks
Titanium alloy	~7	Up to ~600 °C	Moderate	Certified aerospace structural material
Ceramic thermal insulation	~1–3	>1000 °C	High	Used in high-temperature aerospace applications
Advanced composite insulation	~0.5–2	~400–800 °C	High	Proposed conceptual insulation layer for SA-24 fuel tank system

The comparison indicates that advanced composite insulation and ceramic-based materials have significantly lower thermal conductivities than conventional aluminum structural materials used in historical supersonic aircraft, such as the Concorde. Therefore, these materials offer improved thermal protection for the fuel system components exposed to aerodynamic heating during supersonic flights. The use of these materials is consistent with modern trends in aerospace material development and may improve thermal safety margins for next-generation supersonic aircraft fuel systems.

This study provides a scalable framework for addressing safety-critical challenges in aerospace design, setting a benchmark for future supersonic aircraft in terms of enhanced safety, efficiency, and regulatory compliance.

5.10. Discussion

The results presented in Section 5.1, Section 5.2, Section 5.3, Section 5.4, Section 5.5, Section 5.6, Section 5.7, Section 5.8 and Section 5.9 are further interpreted in this section to evaluate the effectiveness, implications, and limitations of the proposed CAD–MBSE framework. In particular, the discussion addresses improvements in hazard identification capability, design efficiency, and the broader applicability of the framework.

The results obtained from the application of the integrated CAD–MBSE framework demonstrate a significant improvement in early-stage hazard identification compared with conventional document-based zonal safety analysis approaches. The observed reduction of approximately 40% in RPN values for key thermal hazard pathways indicates that the proposed methodology enables more effective identification and mitigation of safety-critical risks during the conceptual design phase. This improvement can be attributed to the combined capability of CAD to capture spatial subsystem interactions and MBSE to model dynamic system behavior, thereby enabling a more comprehensive hazard analysis process.

These findings are consistent with previous studies highlighting the limitations of traditional zonal safety analysis methods, particularly their reliance on static documentation and expert judgment [5,6]. The integration of model-based approaches allows for continuous updating of system states and interactions, improving the detection of cascading failures that are otherwise difficult to identify using conventional techniques. Furthermore, the results support earlier work demonstrating that MBSE-based safety analysis can enhance the identification of complex system interactions and reduce design errors in aerospace applications [8,9,10,16].

The reduction in conceptual design iteration time of approximately 25% further demonstrates the efficiency of the proposed framework. This improvement is primarily attributable to the iterative feedback loop established between CAD and MBSE models, which allows hazard identification outcomes to directly inform design modifications. Such an approach aligns with modern digital engineering practices, where integrated modeling environments are used to accelerate design convergence and reduce development costs. Similar benefits have been reported in recent studies on digital twin and model-based design methodologies in aerospace systems [18,19,20].

From a practical perspective, the framework provides a scalable approach that can be extended beyond fuel tank systems to other safety-critical subsystems, such as environmental control systems and propulsion interfaces. The ability to integrate spatial and functional models enables engineers to systematically evaluate subsystem interactions across multiple aircraft zones, thereby improving overall system safety. This is particularly relevant for next-generation supersonic aircraft, where increased system complexity and tighter integration amplify the potential for cascading failures.

Despite these advantages, several limitations must be acknowledged. The CAD models developed in this study represent conceptual-level fidelity and are based on simplified thermal boundary conditions derived from the literature. As such, the results do not fully capture high-fidelity aerodynamic heating effects, which would require CFD analysis. In addition, the MBSE models are based on assumed system behaviors and do not incorporate real-time operational data, limiting their predictive accuracy under dynamic flight conditions. Future work should focus on integrating higher-fidelity simulations and real-world data to enhance the robustness of the framework.

Overall, the results demonstrate that CAD–MBSE integration provides a robust and efficient methodology for early-stage zonal hazard analysis in conceptual aircraft design. By enabling proactive hazard identification and iterative design optimization, the proposed framework contributes to the development of safer and more reliable supersonic aircraft systems.

6. Conclusions

This study investigated the integration of CAD and MBSE in supporting early-stage zonal hazard identification during conceptual aircraft design. The focus was on the fuel system of the SA-24 Phoenix supersonic aircraft as a representative subsystem case study.

An integrated CAD–MBSE modeling framework was developed to combine the spatial subsystem configuration with functional system architecture modeling. This approach enabled hazard analysis methods, such as FHA, FMEA, and FTA, to be applied in conjunction with CAD subsystem geometry models. This integration helped identify subsystem interaction hazards earlier in the conceptual aircraft design process compared with the use of conventional document-based safety analysis.

The results showed that the proposed framework brought about measurable improvements in early hazard identification and mitigation. Within the SA-24 Phoenix case study, the integrated modeling workflow enabled reductions in key fuel system risk metrics, including an approximately 40% reduction in thermal-related hazards, 35% reduction in over-pressurization risks, and 50% reduction in fuel leakage risks. The use of the integrated modeling environment also reduced the conceptual design iteration time by approximately 25%, demonstrating the potential efficiency benefits of combining spatial modeling with system architecture analysis.

These findings indicate that integrating CAD and MBSE can significantly improve early-stage safety analyses in conceptual aircraft design. The proposed framework provides a scalable approach that can be extended to additional aircraft subsystems and future aircraft architectures, thereby supporting proactive hazard identification and improved traceability between design decisions and regulatory safety requirements. Moreover, integrating spatial subsystem modeling with system architecture hazard analysis can support earlier identification of safety-critical subsystem interactions during conceptual aircraft design.

7. Future Work

While this research demonstrated the significant benefits of integrating ZSA, CAD, and MBSE in the development of SA-24 Phoenix, there are several areas in which further exploration and innovation could enhance the outcomes and applicability of these methodologies. Future work should focus on addressing the current limitations and expanding the scope of research to achieve a more comprehensive and scalable framework for supersonic aircraft design.

7.1. Material Selection Implications

The increasing adoption of Industry 4.0 digital engineering practices in the aerospace industry presents new opportunities for integrating system modeling frameworks with real-time operational data environments. Industry 4.0, emphasizes the development of connected digital engineering ecosystems in which engineering models, simulation tools, and operational systems are linked through interoperable data-exchange architectures.

In future implementations, the integrated CAD–MBSE framework proposed in this study could be extended through the adoption of open-platform communications unified architecture (OPC-UA) communication protocols. The OPC-UA enables secure and standardized communication between engineering software platforms, simulation tools, and industrial monitoring systems.

Through OPC-UA integration, system architecture models developed within MBSE environments can exchange data with real-time aircraft monitoring systems, simulation platforms, and digital twin environments. This approach enables the development of a digital thread architecture in which system design models remain connected to manufacturing processes, operational monitoring systems, and lifecycle maintenance data.

Such digital thread architectures can allow hazard analysis models developed during aircraft design to be continuously updated using operational system data, thereby enabling a more accurate system reliability assessment and predictive maintenance strategies. Figure 9 illustrates how system models developed during aircraft design can interact with operational system data through Industry 4.0 digital thread architectures.

7.2. Advanced Materials and Manufacturing Techniques

The reliance on expensive materials, such as titanium alloys and carbon composites, presents scalability challenges for supersonic aircraft. Future work should investigate alternative materials, hybrid composites, and additive manufacturing techniques that can reduce costs without compromising performance. Research on smart materials, such as shape-memory alloys or thermally adaptive coatings, can further enhance the safety and efficiency of fuel tanks.

7.3. Enhanced Zonal Safety Analysis Methodologies

Although the ZSA has proven to be effective in identifying spatial hazards, its scalability to larger and more complex aircraft systems remains limited. Future research could develop automated ZSA tools that leverage AI and machine learning to predict and prioritize hazards more accurately. Further, integrating ZSA with advanced visualization technologies, such as augmented reality (AR), can improve the interpretability and usability of safety analyses.

7.4. Digital Twin Applications

The integration of digital twins into supersonic aircraft design has immense potential for improving system reliability and lifecycle management. Future work should focus on extending the capabilities of digital twins to include real-time failure prediction, adaptive performance optimization, and automated anomaly detection. This can help significantly reduce maintenance costs and enhance aircraft availability.

7.5. Broader Application of Safety Frameworks

The methodologies developed in this study can be applied to other critical aircraft systems, such as propulsion, avionics, and ECSs. Expanding the scope of ZSA, CAD, and MBSE to these domains could create a holistic safety framework for future supersonic aircraft.

7.6. Environmental Impact and Sustainability

The adoption of SAF and low-boom technologies is a step toward environmental sustainability; however, further work is required to assess the long-term impact of these innovations. Future research should explore the feasibility of hybrid electric- or hydrogen-powered propulsion systems for supersonic aircrafts. Moreover, life cycle assessments of SAF and other sustainable technologies could provide valuable insights into their environmental benefits and trade-offs.

7.7. Regulatory Adaptation and Policy Development

As supersonic aircraft technologies advance, regulatory frameworks must evolve to accommodate new safety methodologies and environmental considerations. Future research should engage with policymakers and regulatory bodies to develop guidelines that facilitate the certification of innovative designs. Collaborative efforts among academia, industry, and regulatory authorities could streamline the adoption of next-generation supersonic aircraft.

7.8. Human Factors and Training

The integration of advanced monitoring systems and real-time data requires pilots and maintenance personnel to adapt to the new operational paradigms. Future work should focus on the HMI and the development of training programs that equip crew members with the skills required to effectively operate and maintain advanced supersonic aircraft systems.

7.9. Cost–Benefit Implications of Early Hazard Identification

The early identification of hazards during conceptual aircraft design can reduce the development risks associated with late-stage design modifications and certification reworks. When potential subsystem interaction hazards are detected during the early design phases, design adjustments can be implemented before the detailed subsystem architectures and structural configurations are finalized.

The systems engineering literature suggests that integrating digital engineering tools, such as CAD and MBSE frameworks, may improve development efficiency by enabling earlier identification of safety-critical design constraints. Although the present study did not perform a detailed techno-economic analysis, the integration of CAD and MBSE modeling environments may support more efficient hazard identification workflows during conceptual aircraft design.

7.10. Collaborative Innovation Ecosystems

Fostering collaboration among research institutions, aerospace manufacturers, and technology providers is essential for driving innovation. Future studies should focus on creating shared platforms and ecosystems that enable stakeholders to contribute to and benefit from advancements in supersonic aviation.

7.11. Regulatory Compliance

This study ensured that the fuel tank system design adhered to the EASA CS-25 safety requirements. The specific areas of compliance include the following:

Redundancy: The incorporation of dual pumps and venting systems fulfills the regulatory requirements for redundancy in critical systems.

Structural integrity: Reinforced materials and pressure management systems meet the airworthiness standards for the structural reliability of fuel tanks.

Real-time monitoring: The FQIS provides real-time data on fuel levels and pressures, enhancing operational safety and meeting monitoring requirements outlined in CS-25.

7.12. Conclusion

By addressing these areas, future work can build on the foundations established in this research to ensure that supersonic aircraft are not only safe and efficient but also economically viable and environmentally compliant. These efforts will play a critical role in realizing the vision of next-generation supersonic transport and transforming the future of high-speed aviation.

Author Contributions

Conceptualization, A.K. and Y.S.; methodology, A.K.; software, A.K.; validation, A.K.; formal analysis, A.K.; investigation, A.K.; resources, Y.S.; data curation, A.K.; writing—original draft preparation, A.K.; writing—review and editing, Y.S.; visualization, A.K.; supervision, Y.S.; project administration, Y.S. All authors have read and agreed to the published version of the manuscript.

Funding

This research received no external funding.

Data Availability Statement

The conceptual CAD models, MBSE system architecture models, and hazard analysis datasets generated during this study are available from the corresponding author upon reasonable request. Selected data supporting the findings of this research are included in the article and supplementary material. All numerical data used for the hazard analysis are contained in the article and appendices.

Acknowledgments

I would like to extend my heartfelt gratitude to the academic and administrative staff of Cranfield University, particularly the Faculty of Engineering and Applied Sciences, for providing me with the opportunity to pursue my studies at this prestigious institution. Their unwavering support and dedication have played a significant role in shaping my academic journey. I am deeply thankful to my supervisor and the course directors for their invaluable guidance and mentorship throughout this project. Their encouragement, constructive feedback, and expertise have been instrumental in the successful completion of my research. I am also honored to have been entrusted with the course representative, student ambassador, and executive officer roles at the Cranfield Student Association, which helped further develop my leadership and interpersonal skills. I am eternally grateful to my parents for their unwavering belief in me, guidance in helping me stay on the right path, and their constant encouragement. Their support has been the cornerstone of my personal and professional growth, inspiring me to strive for excellence in all my endeavors. Lastly, I would like to convey my love to my fiancée, Manisha Kamboj. Immediately before I began my studies at Cranfield University, her arrival into my life brought me immense happiness and strength. Her love, encouragement, and unwavering support have been constant sources of motivation, and I am truly blessed to have her by my side. I offer my sincerest gratitude to all those who contributed to my journey. Thank you for being part of this transformative experience.

Conflicts of Interest

Declare conflicts of interest or state “The authors declare no conflicts of interest.” Authors must identify and declare any personal circumstances or interest that may be perceived as inappropriately influencing the representation or interpretation of reported research results. Any role of the funders in the design of the study; in the collection, analyses or interpretation of data; in the writing of the manuscript; or in the decision to publish the results must be declared in this section. If there is no role, please state “The funders had no role in the design of the study; in the collection, analyses, or interpretation of data; in the writing of the manuscript; or in the decision to publish the results”.

Abbreviations

The following abbreviations are used in this manuscript:

3DX	3DEXPERIENCE
AI	Artificial intelligence
CAD	Computer-aided design
CG	Centre of gravity
COTS	Commercial off the shelf
CS	Certification Specification
CS-25	Certification Specification for Large Aeroplanes
CS-LUAS	Certification Specification for Light Unmanned Aircraft Systems
EASA	European Union Aviation Safety Agency
ECSS	European Cooperation for Space Standardization
ECS	Environmental control system
FHA	Functional hazard analysis
FQIS	Fuel quantity indication system
FTA	Fault tree analysis
FMEA	Failure modes and effects analysis
GDP	Group design project
HMI	Human–machine interface
HVAC	Heating, ventilation, and air conditioning
IPS	Ice protection system
IRP	Individual research project
IT	Information technology
MBSE	Model-based systems engineering
MTBF	Mean time between failure
MTOW	Maximum take-off weight
PCB	Printed circuit board
RTCA	Radio Technical Commission for Aeronautics
SIL	Safety integrity level
UAV	Unmanned aerial vehicle
ZHA	Zonal hazard analysis
ZSA	Zonal safety analysis

Appendix A: Thermal Boundary Conditions and Simulation Parameters

The thermal boundary conditions applied in the CAD simulation environment represent simplified conceptual design assumptions intended to approximate the thermal environment experienced by supersonic aircraft structures during cruise. These boundary conditions were used to support subsystem hazard identification and insulation design evaluation, rather than to provide detailed aerodynamic heating predictions.

Table A1. Thermal boundary conditions and simulation parameters.

Parameter	Value	Description
Cruise Mach number	1.65	Representative supersonic cruise condition for the SA-24 Phoenix aircraft
Cruise altitude	50,000 ft	Typical operational altitude for supersonic transport
Estimated skin temperature	110–130 °C	External fuselage temperature due to aerodynamic heating
Fuel type	Jet-A aviation fuel	Standard aviation turbine fuel is used in the thermal model
Fuel initial temperature	15–20 °C	Nominal fuel tank starting temperature
Fuel density	~804 kg/m³	Typical density of Jet-A fuel
Average mesh element size	5 mm	Finite element mesh resolution used in the thermal model
Mesh type	Tetrahedral mesh	Used for complex geometry representation
Convergence criterion	Residual error <1%	Numerical convergence threshold for simulation stability
Simulation environment	Computer-Aided Three-Dimensional Interactive Application (CATIA)	Thermal analysis performed within a CAD environment

Appendix B: Geometric Tolerance Stack-Up Analysis

CAD models used during conceptual aircraft designs typically assume idealized geometric configurations. However, real aircraft structures are subject to manufacturing tolerances that may introduce small variations in the subsystem placement and component spacing.

To evaluate the influence of geometric uncertainty on the thermal safety margins predicted in this study, a simplified tolerance stack-up analysis was conducted. The analysis considers geometric variations of ±0.5 mm in the placement of structural components surrounding the fuel tank assembly.

These tolerance variations were applied to the CAD model to evaluate potential changes in the subsystem spacing and the resulting thermal exposure conditions. The resulting thermal margins were then compared with the baseline simulation results presented in Section 5.2.

Table A2. Impact of geometric tolerances on thermal safety margin.

Geometric variation	Minimum subsystem clearance (mm)	Estimated thermal margin	Relative change
Nominal CAD geometry	15	100% baseline margin	—
−0.5 mm tolerance variation	14.5	97% margin	−3%
+0.5 mm tolerance variation	15.5	103% margin	+3%

The tolerance stack-up analysis indicated that moderate geometric variations within typical aerospace manufacturing tolerances have only a minor influence on predicted thermal safety margins. Therefore, the results suggest that the hazard identification outcomes obtained using the conceptual CAD model remain robust with respect to small geometric deviations that may occur during manufacturing.

Appendix C: Fuel Tank CAD Models

CAD models serve as critical visual references to understand their integration into the ZSA framework. The segmentation of fuel tanks and their placement across the aircraft aligns with the objectives of the IRP to analyze the early-stage hazard potential through CAD and MBSE. For example, wing-tank segmentation mitigates risks such as fuel sloshing and CG imbalances. The use of multiple compartments enhances system redundancy, in accordance with the safety requirements stipulated in CS-25. The proximity of tanks to engines ensures operational efficiency and facilitates hazard mitigation strategies for scenarios, such as pump failure or fuel leakage.

By leveraging these models, this research effectively validated safety protocols, optimized tank design, and contributed to the development of a robust fuel system for supersonic aircraft.

Figure A1. Top view of wing fuel tanks.

Figure A2. Forward fuselage fuel tank.

Figure A3. Rear fuselage fuel tank.

Appendix D: SA-24 Group Design Project

The SA-24 Phoenix Group Design Project is a comprehensive aerospace design initiative involving a multidisciplinary team of MSc Aerospace Vehicle Design students at Cranfield University. The project was segmented into several streams, with specific tasks assigned to students based on their specialization. Herein, an overview of the team structure and key contributions are provided.

Project overview: The SA-24 Phoenix was conceptualized as a low-drag, low-boom supersonic transport aircraft capable of carrying 50 passengers over 4,500 nautical miles at speeds of up to Mach 1.8. The project focused on optimizing the aerodynamic efficiency, safety, and regulatory compliance, aligning with the EASA CS-25 standards. The team was divided into three primary groups: Structures group (focus: airframe structures, including wings, fuselage, and tailplane; systems group (focus: aircraft performance, fuel systems, power plant performance, ECS, and ice protection systems (IPS); avionics group (focus: Advanced avionics systems such as flight control, autopilot, and cockpit displays).

Appendix E: FTA

The FTA diagrams presented in this appendix illustrate the logical relationships between subsystem failure events associated with the aircraft fuel system architecture. To support the quantitative interpretation of these fault trees, representative component failure probabilities were assigned based on the reliability data reported in aerospace reliability handbooks, including MIL-HDBK-217. These failure rates provide an approximate basis for evaluating the likelihood of key hazard pathways identified in the hazard analysis.

Table A3. Representative component failure rates used in the fault tree analysis.

Component	Failure mode	Failure rate (failures per hour)	Source
Fuel pump	Mechanical failure	1.5×10⁻⁵	MIL-HDBK-217
Fuel transfer valve	Valve actuation failure	2.0×10⁻⁵	MIL-HDBK-217
Fuel quantity sensor	Sensor signal failure	3.0×10⁻⁵	MIL-HDBK-217
Fuel control electronics	Signal processing failure	1.0×10⁻⁵	MIL-HDBK-217

In addition to independent-component failures, common-cause failures can occur when redundant system components are affected by shared environmental conditions or system-level disturbances. To account for this effect, a simplified beta-factor model was used to estimate the probability of simultaneous failure of multiple redundant components could due to a shared failure mechanism.

Table A4. Example beta-factor analysis for redundant fuel system components.

Component pair	Independent failure probability	Beta factor	Common cause failure probability
Redundant fuel pumps	1.5×10⁻⁵	0.05	7.5×10⁻⁷
Dual fuel sensors	3.0×10⁻⁵	0.04	1.2×10⁻⁶
Redundant control units	1.0×10⁻⁵	0.03	3.0×10⁻⁷

The beta-factor analysis indicated that the probability of simultaneous failure due to cause effects remained significantly lower than the independent failure probability of individual components. These results support the assumption that redundancy within the fuel system architecture reduces the likelihood of critical system failure events.

Figure A4. FTA diagram for no fuel to all engines.

The FTA diagram, with no fuel to all engines, highlights the potential failure pathways that could lead to a complete loss of fuel supply to the engines, a catastrophic event in aviation. The top event cascades into three primary failure pathways: main pipeline blockage, fuel exhaustion, and fuel pump failure. Each of these pathways is further broken down into root causes, such as clogged fuel filters, pipeline ruptures, ice formation, fuel management errors, undiscovered leaks, mechanical wear, and electrical failures. These failure modes are particularly significant in the context of supersonic aircrafts, where high-speed operation introduces unique stresses on fuel systems.

From a ZSA perspective, the diagram underscores the critical zones within the fuel system that require a rigorous evaluation. For example, pipeline blockages caused by ice formation can be addressed through thermal simulations in CAD tools, whereas MBSE models can simulate failure scenarios to validate the performance of venting and deicing systems. Similarly, fuel pump failures, whether mechanical or electrical, can be mitigated by testing redundancy strategies, such as dual pumps or backup power sources within the MBSE framework. By linking these tools, this study demonstrated how hazard pathways can be iteratively visualized, analyzed, and resolved, ensuring both reliability and regulatory compliance.

Figure A5. FTA diagram for CG control failure.

The second FTA diagram (Figure A5), CG control failure, delves into issues arising from improper management of the CG of the aircraft. CG management is critical in supersonic flight to maintain aerodynamic stability and ensure safe operation. The top event in this scenario is linked to three primary causes: fuel transfer system failure, fuel imbalance, and fuel sensor failure. Each of these causes cascades into root-level issues, such as shut-off valve failures, transfer pump malfunctions, pipeline blockages, transfer sequence errors, and sensor or data transmission failures.

This diagram illustrates the importance of robust subsystem integration, as failures in fuel transfer systems directly affect CG stability. For instance, pipeline failures between the front and rear tanks or between wing tanks can disrupt fuel distribution, leading to imbalances. CAD tools can optimize the design and placement of pipelines to minimize the stress points, whereas MBSE simulations can help test the responsiveness of transfer systems under various flight conditions. Additionally, sensor failures, such as inaccurate fuel quantity readings or data transmission errors, can be addressed by validating the sensor placement and network redundancy through integrated digital twins.

Both diagrams align with the broader objectives of this project by emphasizing the need for early hazard detection and zonal safety assessments in complex aerospace systems. The diagrams highlight the manner in which advanced design methodologies enable a proactive approach to mitigate risks and reduce the likelihood of catastrophic failure. By incorporating FTA into the ZSA framework, this research demonstrates how CAD and MBSE tools can collaboratively improve subsystem design, optimize interactions, and ensure compliance with stringent safety standards, such as EASA CS-25.

In conclusion, the FTA diagrams provide a structured representation of critical failure scenarios within the SA-24 Phoenix fuel and CG management systems. They serve as a foundation for integrating CAD and MBSE workflows, enabling iterative design improvements, and enhancing safety outcomes. These analyses reinforce the significance of IRP in advancing aerospace safety engineering and establishing a benchmark for future supersonic aircraft designs.

Appendix F: FMEA

The FMEA table is a critical tool for systematically identifying and mitigating potential hazards in the SA-24 Phoenix fuel tank system, aligning directly with the integration of the CAD and MBSE for ZSA. It evaluates failure modes across key components, such as fuel pipelines, pumps, and sensors, detailing the causes, effects, and prioritized risks using the RPN. This prioritization ensures that critical issues, such as pipeline ruptures or pump failures, are addressed early in the design phase.

By integrating CAD and MBSE, the FMEA enables the precise modeling and simulation of hazards. For example, CAD tools refine pipeline designs to reduce blockages, whereas MBSE simulates dynamic scenarios, such as CG imbalances or pump failures, to validate redundancy strategies. These tools ensure iterative design improvements and early hazard detection, reduce expensive late-stage changes, and enhance system reliability.

The FMEA supports compliance with the EASA CS-25 standards by documenting hazards and their mitigation, ensuring that SA-24 meets airworthiness requirements. This structured approach improves the design efficiency, reduces risks, and demonstrates the value of integrating advanced tools for aerospace safety engineering.

Table A5. Results of the failure modes and effects analysis (FMEA).

Component	Failure mode	Failure cause	Failure effect	Severity (S)	Occurrence (O)	Detection (D)	Risk priority number (RPN)	Recommended action
Fuel pipeline	Blockage (e.g., ice formation)	Low temperature at high altitude	Loss of fuel supply to engines	9	4	6	216	Add thermal insulation and anti-icing systems; optimize venting pathways using CAD.
Fuel pipeline	Rupture	Structural fatigue or improper joints	Fuel leakage, fire hazard	10	3	5	150	Use reinforced materials (e.g., titanium alloys); conduct fatigue testing via MBSE.
Fuel pumps	Mechanical failure (e.g., bearing wear)	Wear and tear, poor maintenance	Reduced or no fuel delivery to engines	8	5	4	160	Include redundant pump systems; schedule preventive maintenance using digital twins.
Fuel pumps	Electrical failure	Power loss or motor malfunction	Complete pump failure	9	4	5	180	Integrate backup power supply; improve electrical circuit redundancy through simulations.
Fuel tanks	Over-pressurisation	Faulty venting system	Tank deformation or rupture	10	2	6	120	Implement dual venting systems; install pressure sensors validated via CAD simulations.
Fuel tanks	Vaporization	Aerodynamic heating	Pressure build-up and potential ignition	9	3	6	162	Apply heat shields and advanced insulation materials; validate via thermal analysis in CAD.
Fuel quantity indication system (FQIS)	Sensor failure	Calibration errors or component fault	Incorrect fuel level data, operational inefficiency	7	5	4	140	Enhance sensor design; validate placement and interactions with MBSE models.
Transfer valves	Failure to open/close	Actuator fault or debris	Inability to transfer fuel, CG imbalance	8	4	5	160	Regular valve testing; use debris-resistant designs and reliable actuators.
Fuel management system	Software error	Algorithm flaws or human input errors	Incorrect fuel distribution	7	3	5	105	Improve fuel management algorithms; validate through MBSE-based digital twins.
Data transmission system	Communication failure	Network issues or hardware failure	Delay in fuel system data updates	6	4	4	96	Introduce redundant communication networks; test system interactions in MBSE.

Appendix G: FHA

The FHA of the SA-24 Phoenix fuel tank system helped identify and mitigate potential functional failures critical to aircraft safety. Failures, such as inadequate fuel delivery, over-pressurization, and CG imbalances, are classified by severity, with catastrophic hazards, such as engine flameout or tank rupture, requiring immediate mitigation through redundancy, improved materials, and robust designs. CAD optimizes the spatial configuration of components, whereas MBSE simulates failure scenarios to validate system resilience.

For fuel delivery, failures, such as pump malfunctions or blocked pipelines, can disrupt operations. CAD ensures efficient pipeline routing, whereas MBSE tests redundant strategies, such as dual pumps. Pressure regulation failures, such as vent blockages, were mitigated through redundant systems and validated via simulations. CG imbalances from transfer pump failures or valve malfunctions were addressed using redundancy and design optimization. Monitoring issues, such as sensor inaccuracy and delayed alerts, were resolved through CAD-based placement validation and MBSE simulation of communication networks.

The FHA prioritizes risks based on severity and provides actionable insights into proactive hazard mitigation. By integrating the CAD and MBSE workflows, the IRP ensured early hazard detection, regulatory compliance, and enhanced reliability of the SA-24 Phoenix fuel system. This approach strengthens aircraft safety, while demonstrating the capabilities of advanced aerospace design methodologies.

Table A6. SA-24 aircraft FHA.

Function	Failure mode	Hazard description	Severity	Classification	Recommended mitigation
Fuel delivery to engines	Inadequate fuel flow	Loss of engine power, leading to potential engine flameout	Catastrophic	Major (Class I)	Add redundant fuel pumps; optimize flow pathways using CAD
	Excessive fuel delivery	Over-pressurisation of engines, potential fire risk	Hazardous	Major (Class II)	Install flow regulators and pressure sensors validated via MBSE
	Interrupted fuel supply	Engine surges or shutdown	Major	Major (Class II)	Integrate dual fuel delivery lines; conduct fault simulations
Pressure regulation	Vent blockage	Tank over-pressurization leading to structural rupture	Catastrophic	Major (Class I)	Implement redundant venting systems; validate designs through CAD
Pressure regulation	Pressure sensor failure	Undetected pressure build-up	Hazardous	Major (Class II)	Use redundant sensors and validate placement through MBSE
Fuel transfer system	Transfer pump failure	Imbalance in CG causing control issues	Hazardous	Major (Class II)	Introduce redundant pumps; simulate failure scenarios with MBSE
Fuel transfer system	Valve failure	Unregulated fuel transfer or blockage	Major	Major (Class II)	Optimize valve design and placement through CAD
Monitoring and sensors	Sensor inaccuracy	Incorrect fuel level readings, affecting CG management	Hazardous	Major (Class II)	Validate sensor placement using CAD; improve software algorithms
Monitoring and sensors	Data transmission failure	Delayed hazard alerts	Minor	Minor (Class III)	Use redundant communication networks validated through MBSE

Appendix H: EASA CS-25 Fuel System Airworthiness Requirements

To ensure that the fuel system of the SA-24 Phoenix meets the stringent airworthiness standards required for supersonic operations, a detailed understanding of the EASA CS-25 Certification Specifications is crucial. These requirements govern the design, operation, maintenance, and safety across the lifecycle of the aircraft. Below is an expanded and detailed table of requirements tailored to this research focus.

Table A7. EASA CS-25 fuel system airworthiness requirements.

CS-25 reference	Requirement	Relevance to supersonic aircraft design	Application to SA-24 Phoenix
CS 25.943	Fuel system lines and fittings	Ensure lines and fittings are designed to prevent leaks under all operating conditions.	Use of advanced seals and composite pipelines to handle high thermal stresses
CS 25.951	General requirements	The fuel system must supply sufficient fuel flow and pressure for all operating conditions.	Dual pump systems ensure consistent flow during rapid altitude changes
CS 25.952	Fuel system independence	Systems must operate independently, avoiding complete system failure.	Redundant pumps and valves mitigate single-point failures during supersonic cruise
CS 25.953	Fuel system failure protection	Prevent hazards resulting from failure modes, such as leaks or blockages.	Zonal Safety Analysis (ZSA) identifies failure points, enabling proactive design changes
CS 25.954	Fuel system lightning protection	Systems must resist ignition caused by lightning strikes.	Non-conductive coatings and flame arrestors applied to vent lines and pipelines
CS 25.959	Fuel tank venting	Aerodynamic heating during supersonic flight can cause fuel expansion and pressure increase inside the tanks.	Redundant vent paths and blockage monitoring ensure adequate venting capability and pressure control
CS 25.963	Fuel tank sealing	Thermal expansion and structural vibration at supersonic speeds increase sealing requirements.	Dual sealing interfaces and leak detection sensors minimize leakage and improve fault detection
CS 25.975	Fuel tank venting system requirements	Proper venting is critical in supersonic aircraft where fuel heating can cause vapor pressure buildup.	Redundant fuel tank venting systems prevent excessive pressure accumulation inside tanks
CS 25.979	Pressure testing	Fuel tanks must withstand maximum pressures without deformation or failure.	Tanks are pressure-tested to handle supersonic thermal and pressure differentials
CS 25.981	Fuel tank ignition prevention	Ensure no ignition sources exist within the fuel tank, including electrical faults.	Shielded wiring and isolated electrical components reduce ignition risk

Appendix I: Project Plan Dates

Table A8. Project plan dates.

Task	Start date	End date
Literature Review	10/10/2024	05/11/2024
System Definition and Data Collection	06/11/2024	20/11/2024
CAD Modelling of Fuel Tank System	21/11/2024	10/12/2024
MBSE Workflow Development	11/12/2024	30/12/2024
Integration of CAD and MBSE	02/01/2025	08/01/2025
Zonal Safety Analysis (ZSA)	09/01/2025	15/01/2025
Case Study	16/01/2025	20/01/2025
Technical Report Drafting	21/01/2025	23/01/2025
Final Review and Submission	23/01/2025	24/01/2025

Appendix J: Ethical Approval Certificate

References

Polmar, N.; Kennedy, J. Pioneering Supersonic Transport: Concorde and Tu-144; 2005. [Google Scholar]
NASA. X-59 QueSST Project Overview. In NASA Rep.; 2023. [Google Scholar]
Raymer, D. Aircraft Design: A Conceptual Approach; AIAA: Reston, VA, USA, 2018. [Google Scholar]
Dassault Systèmes. 3DEXPERIENCE Platform Documentation. Dassault Systèmes 2023. [Google Scholar]
SAE International. ARP4761: Guidelines and Methods for Conducting the Safety Assessment Process on Civil Airborne Systems and Equipment; SAE International: Warrendale, PA, USA, 1996. [Google Scholar]
SAE International. ARP4761A: Guidelines and Methods for Conducting the Safety Assessment Process on Civil Airborne Systems and Equipment. In SAE Int.; 2016. [Google Scholar]
Yang, X.; Zhang, H.; Li, Y. Finite element analysis in supersonic aircraft design: Challenges and solutions. Int. J. Aerosp. Sci. 2021, 59, 67–80. [Google Scholar]
Madni, A.M.; Sievers, M. Model-based systems engineering: Motivation, current status, and research opportunities. Syst. Eng. 2018, 21, 172–190. [Google Scholar] [CrossRef]
Friedenthal, S.; Moore, A.; Steiner, R. A Practical Guide to SysML: The Systems Modeling Language; Morgan Kaufmann: Burlington, MA, USA, 2015. [Google Scholar]
INCOSE. Systems Engineering Vision 2035. Int. Counc. Syst. Eng. 2021. [Google Scholar]
Supersonic, Boom. Overture Aircraft: Merging Speed and Sustainability. 2022. Available online: https://www.boomsupersonic.com (accessed on 22 March 2026).
Chung, J.; Foster, R. Advances in zonal safety analysis for aerospace applications. J. Aerosp. Eng. 2020, 35, 455–470. [Google Scholar]
EASA. Certification Specifications for Large Aeroplanes CS-25. In European Union Aviation Safety Agency; 2022. [Google Scholar]
Airbus. Advanced Material Applications in Aerospace. In Airbus Tech. Publ.; 2022. [Google Scholar]
Boeing. Model-Based Systems Engineering in Aerospace. Boeing Technical White Paper, 2021. [Google Scholar]
Wang, Y.; Chen, L. Dynamic hazard analysis using MBSE. J. Syst. Saf. Eng. 2022. [Google Scholar]
Brown, A.; Miller, R.; Thompson, D. Thermal performance modelling for aerospace systems. J. Aerosp. Eng. 2021. [Google Scholar]
Ramos, A.; Ferreira, J. Model-based systems engineering integration for aircraft safety analysis. Aerosp. Sci. Technol. 2019, 88, 10–25. [Google Scholar]
Lee, H.; Park, J.; Kim, S. Integration of computer-aided design and model-based systems engineering in aircraft conceptual design. Aerospace 2023, 10, 114. [Google Scholar]
Wang, X.; Chen, Y. Model-based safety analysis for complex aerospace systems using MBSE frameworks. Aerosp. Sci. Technol. 2022, 120, 107–120. [Google Scholar]
Stevens, G. The Concorde Story: Lessons for Future Supersonic Aircraft; Publisher Name: Location, 2019. [Google Scholar]
Miller, R.; Davies, P.; Brown, T. Safety analysis methods for supersonic aircraft systems. J. Aerosp. Syst. 2022, 5, 112–125. [Google Scholar]
NASA. Application of Model-Driven Engineering in Hybrid Wing-Body Aircraft Design. NASA Tech. Rep., 2023. [Google Scholar]
Azmi, M.A. A Comparison of Distributed and Collaborative Aircraft Product Design and Development Using Document and Model-Based Approaches. Master’s Thesis, Cranfield University, Bedford, UK, 2024. [Google Scholar]
Crawley, E.; Cameron, B.; Selva, D. System Architecture: Strategy and Product Development for Complex Systems; Pearson: London, UK, 2015. [Google Scholar]
Cranfield University. Low-Boom Low-Drag Optimisation in a Multidisciplinary Design Framework (GENUS Aircraft Design Environment); Cranfield University: Bedford, UK, 2019. [Google Scholar]
Cranfield University. SA-24 Phoenix Supersonic Aircraft – Technical Demonstration; Cranfield University: Bedford, UK, 2024. [Google Scholar]
Domathoti, J.J. Environmental Control System and Ice Protection System for SA-24 Phoenix. Master’s Thesis, Cranfield University, Bedford, UK, 2024. [Google Scholar]
Kamboj, A.; Cranfield University Group. SA-24 Phoenix: Low Boom, Low Drag Supersonic Aircraft All-Moving Tailplane Design; Cranfield University: Bedford, UK, 2024. [Google Scholar]
Kamboj, A.; Cranfield University Group. CFD Simulation for a Laminar Flow Wing at M <0.6; Cranfield University: Bedford, UK, 2023. [Google Scholar]
NASA. NASA-STD-8719.17: Hazard Analysis Requirements for Spacecraft; NASA: Washington, DC, USA, 2011. [Google Scholar]
NASA. NASA-STD-5001: Structural Design and Test Factors of Safety; NASA: Washington, DC, USA, 2016. [Google Scholar]
NASA. Supersonic Aircraft Fuel Systems and Operational Guidelines; NASA: Washington, DC, USA, 2019. [Google Scholar]
Pereira, E.R. SA-24 Phoenix: Flight Deck, Synthetic Vision and Cabin Layout. Master’s Thesis, Cranfield University, Bedford, UK, 2024. [Google Scholar]
Sun, Y.; Smith, H.; Chen, H. Conceptual Design of Low-Boom Low-Drag Supersonic Transports. In Proceedings of the AIAA Aviation 2020 Forum, Virtual Event, 15–19 June 2020; American Institute of Aeronautics and Astronautics: Reston, VA, USA, 2020. [Google Scholar]

Figure 1. CAD–MBSE integration workflow.

Figure 2. Top view of the SA-24 Phoenix aircraft.

Figure 3. Side view of the SA-24 Phoenix aircraft.

Figure 4. Fuel tank configuration and layout of the SA-24 aircraft.

Figure 5. Fuel transfer and shut-off valve system layout of SA-24 Phoenix.

Figure 6. Perspective view of the structure and fuel tank system of the SA-24 aircraft.

Figure 9. Digital thread architecture for integrated CAD–MBSE systems.

Disclaimer/Publisher’s Note: The statements, opinions and data contained in all publications are solely those of the individual author(s) and contributor(s) and not of MDPI and/or the editor(s). MDPI and/or the editor(s) disclaim responsibility for any injury to people or property resulting from any ideas, methods, instructions or products referred to in the content.

© 2026 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (http://creativecommons.org/licenses/by/4.0/).

Copyright: This open access article is published under a Creative Commons CC BY 4.0 license, which permit the free download, distribution, and reuse, provided that the author and preprint are cited in any reuse.