Module 16: Engineering Rules of Thumb

Quick estimates for how things are built

Part A · what engineering actually is
The one-sentence definition that covers everything
Engineering is the application of science and mathematics to solve real problems under real constraints — where constraints include cost, time, weight, safety, regulation, and what can actually be manufactured.
Science asks "why?"
Physics explains why a bridge can hold weight. A physicist publishes a paper.
Engineering asks "how, cheaply, safely?"
An engineer builds a bridge that holds weight, within budget, before the deadline, that won't fall down.
The engineer's eternal trade-off
Fast, cheap, good — pick two. Every engineering decision is a negotiation between these three.
The project management triangle — you can only fully optimise two
FAST quick delivery CHEAP low cost GOOD high quality Fast + Cheap → not good Fast + Good → not cheap Cheap + Good → not fast Pick two. Every engineering project lives here.
Part B · the thumb rules every engineer uses
Safety factor Design load × 2–10 the most important rule

What it means

Build it stronger than the maximum expected load by a multiplier.

Typical factors

Buildings: ×2–3. Bridges: ×4. Aircraft: ×1.5 (weight-critical ultimate). Pressure vessels: ×4. Elevators: ×10.

Why not just ×1?

Materials vary, loads are uncertain, manufacturing isn't perfect, and failures are catastrophic.

An elevator cable rated for 1,000 kg is actually strong enough to hold 10,000 kg. This is why buildings don't collapse from one extra person, why bridges don't fail when a lorry hits a pothole, and why planes don't break apart in turbulence. The safety factor quietly saves millions of lives daily.

Safety factors across engineering domains
Aircraft (ultimate)
×1.5
Buildings
×2–3
Bridges
×4
Pressure vessels
×4
Lifting chains
×5
Elevators
×10
Higher = more consequence of failure and/or more uncertainty in loads. Aircraft keep the factor low because weight cost is so extreme.
The 80/20 rule (Pareto principle) 80% of problems come from 20% of causes prioritisation tool

In practice

80% of bugs come from 20% of the code. 80% of heat loss from 20% of the building envelope. 80% of failures from 20% of components.

Action

Find the 20% first. Fixing it gives 4× more return than spreading effort equally.

Also true:

The last 20% of performance improvement costs 80% of the effort. "Good enough" is often the right engineering answer.

Vilfredo Pareto noticed in 1896 that 80% of land in Italy was owned by 20% of the population — and the ratio kept appearing in unrelated systems. Engineers use it to decide what to fix first, what to optimise, and when to stop. A bridge optimised for the last 5% of strength costs twice as much for 5% gain.

Order-of-magnitude estimation (Fermi estimation) ±1 order of magnitude is "good enough" back-of-envelope

What it is

A quick estimate using round numbers that gets you within 10× of the real answer, done in your head in minutes.

Classic example

"How many piano tuners in Chicago?" Fermi: population ÷ pianos per family × tuning frequency ÷ hours per tuner ≈ 125. Actual: ~150.

Engineering use

Before spending a week calculating: "Is this even in the right ballpark?" If your estimate says it needs 10× more power than available, don't detail-design it.

Enrico Fermi famously estimated the yield of the first nuclear bomb test by dropping scraps of paper and watching how far they moved in the blast wave — getting within a factor of 2 of the measured result. Engineers use this constantly: the first answer should come in minutes, not days. Only if it looks promising do you do the full calculation.

Tolerance and fit nominal ± tolerance manufacturing reality

What it means

Nothing is made perfectly. A "10 mm" rod is actually 9.95–10.05 mm. The ±0.05 mm is the tolerance.

Clearance vs interference fit

Clearance: shaft is smaller than hole (moves freely — bearings). Interference: shaft is larger (press-fit — never comes apart). Transition: could be either.

Why it matters

A jet engine has thousands of parts with tolerances of ±0.005 mm. Stack tolerances wrong and parts don't fit, jam, or vibrate to destruction.

Tight tolerances cost money — exponentially. A part machined to ±1 mm costs €5. The same part to ±0.1 mm costs €50. To ±0.01 mm costs €500. The engineering discipline is: use the loosest tolerance that still works. Over-specifying tolerances is one of the most common and expensive rookie engineering mistakes.

Tolerance vs cost — exponential relationship
±1 mm
€5
Manual lathe, rough cut
±0.1 mm
€50
CNC mill, standard
±0.01 mm
€500
Precision grinding, temp control
±0.001 mm
€5,000+
Lapping, clean room, optical check
±0.0001 mm
€50,000+
Semiconductor fab, interferometry
Each 10× tighter tolerance ≈ 10× higher cost. The question is always: does the function actually require this precision?
The 10× cost rule of error correction fix it early, or pay 10× later project management

The rule

A design error caught at the drawing stage costs €1 to fix. At prototype: €10. In production: €100. After delivery: €1,000+.

Why

As a project progresses, more decisions have been built on top of the error. Fixing the foundation means rebuilding the house.

Applies to software too

A bug found in code review: 1 hour to fix. Found in testing: 1 day. Found in production: 1 week + reputation cost.

This is why engineering reviews, design audits, prototypes, and testing exist. The money spent catching errors early is always cheaper than correcting them later. The Boeing 737 MAX disasters were partly attributed to software changes late in the design process that weren't subjected to the same scrutiny as the original design.

Redundancy N+1 for reliability, N+2 for safety-critical failure tolerance

What it means

Have one more than you need. If you need 1 pump, install 2. If you need 2 engines, use 4.

Examples

Commercial aircraft: 2+ engines, 3+ hydraulic systems, 4+ flight computers. Nuclear plants: multiple coolant loops. Data centres: dual power, UPS, generators.

The maths

If each component fails with probability p, two independent components both fail with probability p². If p=0.01, two units: 0.0001 (100× safer).

A single-engine aircraft failing means a forced landing. A twin-engine commercial plane losing one engine continues to destination safely. This is why critical infrastructure is never designed to exactly minimum requirements — always with capacity to survive failures. RAID storage, dual power supplies, backup generators, emergency brakes — all redundancy.

Part C · back-of-envelope calculator
Quick engineering sanity checks — pick a scenario
Part D · the major engineering disciplines
Part E · the key concepts every engineer internalises

Feedback loop

Output affects input

A thermostat senses temperature (output) and adjusts the heater (input). Without feedback, systems overshoot or drift. Negative feedback = stability (thermostat). Positive feedback = runaway (microphone squeal, population explosion, compound interest).

Precision vs accuracy

Repeatable ≠ correct

Accurate = close to truth. Precise = consistent, even if consistently wrong. A scale that always reads 2 kg too heavy is precise but not accurate. A scale that gives random readings near the true value is accurate but not precise. You need both.

Failure mode analysis

"What can go wrong?"

FMEA (Failure Mode and Effects Analysis): list every possible failure, how likely it is, how bad the consequence is, and how detectable it is. Product of these three = risk priority number. Fix the high scores first.

The weakest link

System = its weakest part

Strengthening the strongest part of a system achieves nothing. A chain with one weak link fails at that link regardless of how strong the other links are. Always find and address the bottleneck first.

Diminishing returns

Each improvement costs more

Getting from 0% to 90% efficiency is often easier than 90% to 99%. The last 1% of fuel efficiency in a car might cost more to achieve than the first 30%. Decide in advance what "good enough" is.

First principles thinking

Build from fundamentals

Instead of "we've always done it this way," ask: what are the physical constraints? What does physics actually allow? Elon Musk famously used this to challenge rocket costs: what are the raw materials? Why does the assembled rocket cost 100× more? This mindset drives engineering breakthroughs.

Precision vs accuracy — four scenarios
Low accuracy Low precision Low accuracy High precision High accuracy Low precision High accuracy High precision ✓ want this
Part F · structural materials — numbers that matter
Tensile strength — how hard you have to pull before it breaks
MPa = megapascals = newtons per mm². A human hair: ~200 MPa. A car tyre bead: ~3,000 MPa.
Concrete (compression)
30 MPa
Timber (pine, along grain)
40 MPa
Aluminium alloy (6061)
276 MPa
Structural steel (S275)
275–430 MPa
High-strength steel
500–700 MPa
Titanium alloy (Ti-6Al-4V)
900 MPa
Carbon fibre composite
~3,500 MPa
Carbon fibre is ~8× stronger than structural steel in tension — but costs ~100× more and is brittle. Steel yields (bends) before breaking — a crucial safety warning. Carbon fibre snaps without warning.
Strength-to-weight ratio — the aerospace engineer's obsession
Specific strength = tensile strength ÷ density (kN·m/kg). The higher, the better for weight-critical applications.
Structural steel
~63 kN·m/kg
Titanium alloy
~200 kN·m/kg
Aluminium 7075
~214 kN·m/kg
Carbon fibre (CFRP)
~2,000 kN·m/kg
Carbon fibre is ~32× stronger per kilogram than steel. This is why it dominates aircraft, F1 cars, and bicycles — despite the cost.

Why concrete needs steel

Strong in compression, weak in tension

Concrete can handle 30 MPa of compression (squeezing) but only 3 MPa in tension (pulling). Steel handles both. Reinforced concrete combines the best of both: concrete resists squeezing, steel rebar resists pulling. A reinforced concrete beam is ~10× stronger than plain concrete in bending.

Why I-beams are shaped that way

Material where stress is highest

In a beam under load, the top and bottom surfaces carry the most stress. The centre (neutral axis) carries almost none. An I-beam concentrates material at the flanges (top and bottom) and minimises the web (middle). Same strength as a solid rectangular beam but using ~40% less material.

Why arches don't need mortar

Compression converts weight to sideways thrust

A true arch converts vertical gravity loads into diagonal compression in the arch stones, which then push outward against the abutments. Every stone is in compression — and stone handles compression superbly. Roman arches built 2,000 years ago still stand because they're never in tension. The keystone doesn't "hold up" the arch; it closes a compression structure.

The hollow tube principle

More stiffness with less material

A hollow tube resists bending and torsion far better than a solid rod of the same weight. This is why bicycle frames, aircraft fuselages, and bird bones are hollow. Bending stiffness scales with the cube of the wall radius — so doubling the radius with thin walls quadruples stiffness at the same weight.

Part G · reliability — interactive explorer
Series vs parallel reliability — adjust the sliders
Series: all must work. Parallel: only one needs to work. Real systems mix both.
Part H · famous engineering failures and what they taught

Tacoma Narrows Bridge (1940)

Resonance ignored

The bridge oscillated at its natural frequency in a 64 km/h wind and collapsed after 4 hours. Lesson: all structures have resonant frequencies. Match external forces to them and they amplify to destruction. Changed bridge design permanently — aerodynamic testing became mandatory.

Challenger Space Shuttle (1986)

Known failure mode, ignored

O-ring seals known to fail at low temperatures. Ambient launch temperature: ~2°C; O-ring joint estimated at −2°C overnight. Engineers objected; management overrode. 73 seconds after launch: disaster. Lesson: safety culture matters as much as engineering. Known risks must be escalated, not suppressed.

Millennium Bridge, London (2000)

Positive feedback oscillation

Opened June 2000; wobbled so severely it closed within 2 days. Pedestrians involuntarily walked in sync with the bridge's natural lateral frequency, amplifying the oscillation. Lesson: human interaction with structures creates unexpected feedback loops. Cost £5M to fix with dampers.

Mars Climate Orbiter (1999)

Unit conversion error

One team used imperial units (pound-force seconds), another metric (newton-seconds) for thruster data. The $328M spacecraft entered the atmosphere and burned up. Lesson: unit consistency is safety-critical. Always check units explicitly at system interfaces.

Deepwater Horizon (2010)

Multiple defences failed simultaneously

A blowout preventer — the last line of defence against a well blowout — failed to seal. Investigation found both design defects and deferred maintenance. Lesson: redundant safety systems only work if each is independently maintained and tested. 11 lives lost; largest marine oil spill in US history.

Fukushima Daiichi (2011)

Design basis exceeded

The plant was designed for a tsunami of up to ~5.7 m. The 2011 tsunami reached ~15 m, flooding the backup generators. Without cooling power, three reactors melted down. Lesson: "design basis" events are not the worst possible events. Low-probability, high-consequence scenarios ("black swans") require separate analysis.

Engineering failure root causes — historical analysis across industries
Failure causes Human & organisational error ~35% — schedule pressure, poor communication, overrides Design flaw ~25% — inadequate analysis, unknown physics, edge cases Material failure ~15% — fatigue, corrosion, manufacturing defects Inadequate maintenance ~13% — deferred inspections, wear ignored External / design basis exceeded
The dominant cause is human and organisational — not physics. This is why engineering safety culture, review processes, and whistle-blower protection matter as much as calculations.
Part I · Fermi estimation — practise the skill
The method: break any big number into knowable pieces
Step 1: Identify what you know.   Step 2: Break the unknown into knowable pieces.   Step 3: Estimate each piece with round numbers.   Step 4: Multiply.   Step 5: Sanity-check the order of magnitude.
Part J · test yourself

1. A floor is designed to hold 500 kg/m² with a safety factor of 3. What is the maximum safe load, and why isn't the safety factor just 1?

The floor is structurally designed to hold 500 × 3 = 1,500 kg/m². The "safe load" rating (500 kg/m²) is the published limit users work to. The structure is actually 3× stronger. The factor isn't 1 because: materials vary batch-to-batch, calculation models aren't perfect, loads are dynamic not static (people jumping vs standing), materials degrade over time, and a structural failure is catastrophic. A factor of 3 means the floor could have a significant calculation error, a bad concrete batch, AND extra-dynamic loading — and still survive.

2. Estimate (back-of-envelope): how much steel is in a typical 10-storey office building?

Rough estimate: ~500–1,000 tonnes. A 10-storey building might cover 1,000 m² per floor = 10,000 m² total floor area. Typical steel intensity for a steel-framed office building: ~50–100 kg per m² of floor area. So: 10,000 m² × 75 kg/m² = 750,000 kg = 750 tonnes. This is the Fermi approach — use a density rule-of-thumb, apply it to the known area, and get an order-of-magnitude answer. Actual buildings vary from 40–150 kg/m² depending on height, span, and design — so "~500–1,000 tonnes" is a solid back-of-envelope estimate.

3. Why does a plane with 4 engines not need to be 4× as powerful as a plane with 2 engines to carry the same load?

Because the extra engines are partly redundancy, not capacity. A 4-engine plane (like a Boeing 747) doesn't need more thrust than a 2-engine plane carrying the same weight — both need thrust equal to drag to maintain cruise. The 4-engine design was historically driven by reliability: with 1950s–1970s engine technology, losing one engine was a realistic risk. 4 engines meant you could lose one and still have 75% thrust. Modern high-bypass turbofans are so reliable that twin-engine designs (like the Boeing 777 or Airbus A350) have made 4-engine aircraft nearly obsolete on most long-haul routes. ETOPS regulations govern how far a twin-engine plane can fly from a diversion airport.

4. A part is specified as "25.00 ± 0.05 mm." What does this mean, and what happens if you tighten the tolerance to ±0.005 mm?

The part must be between 24.95 and 25.05 mm — a 0.1 mm acceptable range. Any part outside this range is rejected. Tightening to ±0.005 mm means the acceptable range shrinks to 0.01 mm — ten times tighter. This requires: a more precise machine (CNC instead of manual), slower machining speed (more passes), temperature-controlled environment (steel expands ~11 µm per metre per °C — at room temperature, a 25 mm part changes by 0.3 µm per °C), and more frequent measurement and rejection. Cost increases roughly 5–10× per order-of-magnitude tighter tolerance. The engineering question is always: does the function actually need this precision, or is it being over-specified?

5. A system has three components in series, each with 99% reliability (1% failure rate). What is the system reliability?

97.03%. For components in series, the system works only if ALL components work. System reliability = 0.99 × 0.99 × 0.99 = 0.970299 ≈ 97%. This is the critical insight: chaining reliable components in series always reduces overall reliability. A system with 100 components each at 99% reliability has overall reliability of 0.99¹⁰⁰ = 36.6% — barely a coin flip. This is why complex systems (aircraft, power plants) use redundancy (parallel components) rather than just making each component more reliable. Parallel redundancy: if one fails, the other takes over. System failure requires BOTH to fail = 0.01 × 0.01 = 0.01% — 100× more reliable.

6. Why is an I-beam more efficient than a solid rectangular beam of the same weight?

In a beam under a vertical load, the bending stress is highest at the top and bottom surfaces, and zero at the neutral axis (the horizontal centreline). A solid rectangular beam wastes material near the centre where it contributes little. An I-beam concentrates material in the two flanges (top and bottom plates), where stress is highest, and uses only a thin web in the middle to keep them apart and resist shear forces. The result: an I-beam can achieve the same bending resistance with ~40–60% less material than an equivalent solid rectangle. This is why I-beams dominate steel-framed buildings, bridges, and any structure where weight and cost matter.

7. Fermi estimation: approximately how many rivets are in a commercial aircraft like a Boeing 737?

Rough estimate: ~300,000–500,000 rivets. Method: a 737 fuselage is roughly 35 m long and 4 m in circumference ≈ 440 m² of outer skin. Rivets in aircraft aluminium skin are spaced roughly 25–40 mm apart. At 30 mm spacing on a grid, that's ~1,100 rivets per m² × 440 m² ≈ 480,000. Add internal structure (frames, stringers, floor beams) and the number can reach 600,000. Boeing publicly quotes approximately 300,000–500,000 fasteners per 737, including screws and bolts alongside rivets. An A380 superjumbo uses over 3 million fasteners. This explains why aircraft assembly is so labour-intensive: many of these are installed manually, with each joint inspected individually.