Functional Safety: What It Is, Why It s Important And How to Comply

Similar documents

The agri-motive safety performance integrity level Or how do you call it?

FUNCTIONAL SAFETY OF ELECTRICAL INSTALLATIONS IN INDUSTRIAL PLANTS BY OTTO WALCH

SIL Safety Guide Series MS Single-Acting Spring-Return Hydraulic Linear Actuators

Measurement of Safety Integrity of E/E/PES according to IEC61508

Functional Safety of Machinery: EN ISO Stewart Robinson. Overview of the presentation. References. TÜV SÜD Product Service

Guidelines. Safety Integrity Level - SIL - Valves and valve actuators. February Valves

2015 Functional Safety Training & Workshops

PPA Michaël GROSSI - FSCE PR electronics

Safety Function: Single-beam Area Access Control (AAC)

SAFETY RELAY APPLICATION

Functional safety according to IEC / IEC Important user information. Major changes in IEC nd Edition

Functional Safety of Machinery Presented by Greg Richards Manufacturing in America 02/22-23/2017

Introduction to machine safety

Safety Speed Monitoring

Safety. Detection. Control. Safety Guide. Safety in the working environment

Safety Integrity Verification and Validation of a High Integrity Pressure Protection System to IEC 61511

Operating Guide Safe Torque Off

Achieving Functional Safety with Global Resources and Market Reach

Overfill Prevention Control Unit with Ground Verification & Vehicle Identification Options. TÜVRheinland

Process Safety - Market Requirements. V.P.Raman Mott MacDonald Pvt. Ltd.

Failure Modes, Effects and Diagnostic Analysis. PR electronics A/S Rønde Denmark

Is your current safety system compliant to today's safety standard?

Where Process Safety meets Machine Safety

Operating Guide Safe Torque Off

We reserve all rights in this document and in the information contained therein. Reproduction, use or disclosure to third parties without express

Digital EPIC 2 Safety manual

Introduction to machine safety

Functional Safety & Power Drive Systems

Assessment of the Safety Integrity of Electrical Protection Systems in the Petrochemical Industry

The SIL Concept in the process industry International standards IEC 61508/ 61511

Functional Safety: the Next Edition of IEC 61511

Automation, Software und Informationstechnologie

Safety in the process industry

Report to the Certificate

New Developments in the IEC61511 Edition 2

FUNCTIONAL SAFETY CERTIFICATE. BG Break Glass Unit

67 th Canadian Chemical Engineering Conference EDMONTON, AB OCTOBER 22-25, 2017

User s Manual. YTA110, YTA310, YTA320, and YTA710 Temperature Transmitters. Manual Change No

Failure Modes, Effects and Diagnostic Analysis

MACHINERY SAFEBOOK 5. Safety related control systems for machinery. Principles, standards and implementation. (Revision 5 of the Safebook series)

Failure Modes, Effects and Diagnostic Analysis

Session Ten Achieving Compliance in Hardware Fault Tolerance

Value Paper Authors: Stuart Nunns CEng, BSc, FIET, FInstMC. Compliance to IEC means more than just Pfd!

100 & 120 Series Pressure and Temperature Switches Safety Manual

BUSINESS PLAN CEN/TC 149 POWER-OPERATED WAREHOUSE EQUIPMENT EXECUTIVE SUMMARY

Session Four Functional safety: the next edition of IEC Mirek Generowicz Engineering Manager, I&E Systems Pty Ltd

USER APPROVAL OF SAFETY INSTRUMENTED SYSTEM DEVICES

INTERNATIONAL STANDARD

Changes in IEC Ed 2

Failure Modes, Effects and Diagnostic Analysis

SITRANS. Temperature transmitter Functional safety for SITRANS TW. Introduction. General safety instructions 2. Device-specific safety instructions

Safety Manual. XNXTM Universal Transmitter. Fault Diagnostic Time Interval Proof Test Proof Testing Procedure

FMEDA Report. Failure Modes, Effects and Diagnostic Analysis. KFD0-CS-Ex*.54* and KFD0-CS-Ex*.56* Project: X7300

Certification Report of the ST 3000 Pressure Transmitter with HART 6

INTERNATIONAL STANDARD

FUNCTIONAL SAFETY: A PRACTICAL APPROACH FOR END-USERS AND SYSTEM INTEGRATORS

Technical Paper. Functional Safety Update IEC Edition 2 Standards Update

IEC Functional Safety Assessment

Functional Safety of Machines and Systems Convenient Implementation of the European Machinery Directive

Addressing Challenges in HIPPS Design and Implementation

United Electric Controls One Series Safety Transmitter Safety Manual

New requirements for IEC best practice compliance

Functional Safety SIL Safety Integrity Level

English version. Management Centre: Avenue Marnix 17, B Brussels

FUNCTIONAL SAFETY CERTIFICATE

SAFETY MANUAL. Electrochemical Gas Detector GT3000 Series Includes Transmitter (GTX) with H 2 S or O 2 Sensor Module (GTS)

FUNCTIONAL SAFETY IN FIRE PROTECTION SYSTEM E-BOOK

BUSINESS PLAN CEN/TC 58 SAFETY AND CONTROL DEVICES FOR BURNERS AND APPLIANCES BURNING GASEOUS OR LIQUID FUELS EXECUTIVE SUMMARY

Mechanics issn Transport issue 1, 2009 Communications article 0342

Integrated but separate

ASIsafe Solution PROFIsafe

IEC61511 Standard Overview

Easy Implementation of the European Machinery Directive

Certification Report of the ST3000 Pressure Transmitter

IEC Functional Safety Assessment

INTERNATIONAL STANDARD

Safety Manual. XNX TM Universal Transmitter. Table of Contents SIL 2 Certificates Overview Safety Parameters

NEW CENELEC STANDARDS & CSM-RA NEW CENELEC STANDARDS & CSM-RA 2017

Options for Developing a Compliant PLC-based BMS

Technical Report Proven In Use SITRANS P500

SAFETY SERVICE RISK EVALUATION

INTERNATIONAL STANDARD

Safety and Security: Can they live together?

Applying Layer of Protection Analysis (LOPA) to Accelerator Safety Systems Design. Feng Tao

Failure Modes, Effects and Diagnostic Analysis. Rosemount Inc. Chanhassen, Minnesota USA

Introduction to the SafeAssure Kit for Industrial Functional Safety Applications

Failure Modes, Effects and Diagnostic Analysis

Annex to the Accreditation Certificate D-ZE according to DIN EN ISO/IEC 17065:2013

2015 Honeywell Users Group Europe, Middle East and Africa

Siemens Process Automation End-user Summit- 2011

Failure Modes, Effects and Diagnostic Analysis

SAFETY MANUAL. Multispectrum IR Flame Detector X3301

Functional Safety Manual June pointek CLS500/LC500

INTERNATIONAL STANDARD

SAFETY MANUAL. X2200 UV, X9800 IR, X5200 UVIR SIL 2 Certified Flame Detectors

Strathayr, Rhu-Na-Haven Road, Aboyne, AB34 5JB, Aberdeenshire, U.K. Tel: +44 (0)

ADIPEC 2013 Technical Conference Manuscript

Reliability and Safety Assessment in Offshore and Process Industries

ISO INTERNATIONAL STANDARD. Graphical symbols Safety colours and safety signs Part 2: Design principles for product safety labels

Transcription:

Functional Safety: What It Is, Why It s Important And How to Comply November 11, 2010 Copyright 1995-2010 Underwriters Laboratories Inc. All rights reserved. No portion of this material may be reprinted in any form without the express written permission of Underwriters Laboratories Inc. or as otherwise provided in writing.

Functional Safety Industry experts define: Functional safety What it is Why it s important How to comply with standards and regulations Sponsor: Underwriters Laboratories Moderator: Gary Mintchell, Automation World, Editor-in-chief Slide 2

Presenters Kevin Connelly Underwriters Laboratories Industry Manager, Power & Controls, Functional Safety Thomas Maier Underwriters Laboratories Principal Engineer, Functional Safety Slide 3

Webcast Agenda Overview of Functional Safety and Safety Assessments: Thomas Maier Functional Safety Demand Drivers: Kevin Connelly Common Functional Safety Standards: T. Maier Functional Safety Program and UL Listing Mark: K. Connelly Call-to-Action Live Question and Answer Session Slide 4

What is Functional Safety? Functional Safety is part of the overall safety of a system that depends on the correct execution of specific functions. Here is the exact definition according to IEC 61508: part of the overall safety relating to the EUC and the EUC control system which depends on the correct functioning of the E/E/PE safety-related systems, other technology safetyrelated systems and external risk reduction facilities Slide 5

Why is there something called Functional Safety? Functional safety as a property has always existed, of course. Functional Safety, by definition, is not specific to any one technology. But Functional Safety is not only a property, it has evolved into a technical term, and an engineering discipline. Standards were developed. Why? Functional Safety as a term and as an engineering discipline have emerged with the advent of complex programmable electronics. because of the particular challenges involved with this technology when it is to implement safety functions. Slide 6

Functional Safety as per IEC 61508 Challenges addressed by IEC 61508 System safety => Hazard and Risk Analysis System and product life-cycle => Functional Safety Management Hardware random failures => Redundancy, diversity, diagnostics, reliability Systematic failures => V-model => Methods and techniques for fault avoidance Slide 7

EUC E/E/PE System Subsystems Elements IEC 61508 mandates an overall safety approach, could also be referred to as a System safety approach or Holistic approach (accounts also for the whole life cycle of a system) The system is in IEC 61508 represented by the EUC, Equipment Under Control, plus the EUC Control System EUC Control System : causes the EUC to operate in the desired manner includes input devices and final elements The EUC control system is separate and distinct from the EUC Slide 8

EUC and EUC Control System The system in IEC 61508 terms: EUC Reasonably foreseeable misuse EUC Control System Slide 9

E/E/PE Safety-related System and Risk Reduction EUC (+ EUC control system) poses risk, E/E/PES contributes to reduce risk below a tolerable level IEC 61508-5, Figure A.1 Slide 10

E/E/PE Safety-related System and Risk Reduction EUC (+ EUC control system) poses risk, E/E/PES contributes to reduce risk below a tolerable level Target failure measure => SIL (SIL1 SIL4) IEC 61508-5, Figure A.1 Slide 11

EUC EUC Control System E/E/PE System E/E/PE Safety-related system EUC EUC E/E/PE Safety-related system EUC Control System Slide 12

E/E/PE System and Subsystems In most cases, the FS products certified by UL will be sub-systems of an E/E/PE safety-related system. IEC 61508-4, Figure 3 Slide 13

E/E/PE System and Subsystems In most cases, the FS products certified by UL will be sub-systems of an E/E/PE safety-related system. Subsystem (data communication) Subsystem (sensors) Subsystem (actuators) Subsystem (logic unit) IEC 61508-4, Figure 3 Slide 14

Demand Drivers for Functional Safety Why evaluate your product/system for functional safety? A functional safety assessment determines whether your products meet standards and performance requirements created to protect against potential risks, including injuries and even death. Compliance is driven by customer requirements, legislation, regulations, and insurance demands Slide 15

Demand Drivers for Functional Safety Customer Requirements Customers may demand functional safety evaluation before purchasing equipment Market Acceptance Having a functional safety certification maintains a product s competitiveness in the marketplace Legislation Legislative requirements, such as some European Directives, require a functional safety evaluation Slide 16

Demand Drivers for Functional Safety Regulations Some regulatory bodies, such as OSHA, require or encourage functional safety evaluation Trade Unions Some unions require or encourage functional safety certified products in the workplace Insurance companies Insurers may require a functional safety evaluation before equipment is installed in the workplace, or may provide discounted premiums for using products evaluated for functional safety Slide 17

Common Functional Safety Standards Standards play a key role in the Functional Safety evaluation and certification process. Important to specify a published standard and safety rating for testing and evaluation: Safety Integrated Level (SIL) for IEC and EN standards Performance Level (PL) for ISO standards Class for UL standards Next slides will explain some common functional safety standards Slide 18

Common Functional Safety Standards IEC 61508 Safety Related Systems (SIL) IEC 62061 Safety Related Systems specifically for machinery (SIL Claim Limit) IEC 61511 Safety Related Systems specifically for process sector equipment (SIL) IEC 61800-5-2 Safety Related Systems specifically for power drive systems (SIL Capability) IEC 61496 Functional Safety for electro-sensitive products (SIL) ISO/DIS 26262 Functional Safety of Road Vehicles (ASIL) ISO 13849 Safety Related Systems specifically for machinery (Performance Level) EN 954 Safety of Machinery (Category) UL 1998 Software and programmable devices (Class) UL 991 Solid state controls (Failure In Time) Slide 19

SIL vs. PL: IEC 62061 For safety-related control systems in machine applications, there exist two sector specific standards, IEC 62061 and ISO 13849-1: IEC 62061: SRECS Derived from IEC 61508, defines safety integrity in terms of SIL. Applies also to subsystems of a SRECS, ( SIL Claim Limits ) Only SIL (CL) 1 3. SIL 4 usually not relevant for automation SIL (CL) consists therefore of the following parameters: PFH (safety-related reliability) HFT (degree of redundancy) SFF (degree of diagnostic capabilities) CCF (like IEC 61508 s β-factor, measure of susceptibility for common cause failures) Slide 20

SIL vs. PL: ISO 13849-1 ISO 13849-1: SRP/CS Enhances predecessor EN 954-1 with IEC 61508 principles: Quantitative approach to risk reduction Addresses systematic failure avoidance Self contained. Refers to IEC 61508-3 only for PL e and Full Variability languages (FVL) and if there is no SW diversity Safety integrity defined in terms of Performance Levels (PL) For both complete SRP/CS or subsystems thereof Suggests a simplified approach PL consists of following parameters: MTTFD (reliability measure per channel) Category (as of EN 954-1, now a parameter) DC (diagnostic coverage) CCF (common cause failure, determined by point-score system) PFH can be determined on basis of above parameters Slide 21

SIL and PL: Compatible and Merging Together New ISO/TR 23849 (also published as IEC/TR 62061-1): Recognizes compatibility with respect to risk reduction SRP/CS can be integrated in SRECS and vice versa Differences in Functional Safety Management Standards to be merged. 3, 4, 5 years? Performance level (PL) PFH Davg [1/h] Safety Integrity Level (SIL) a 10-5 to < 10-4 no special safety requirements b 3 x10-6 to < 10-5 1 c 10-6 to < 3 x10-6 1 d 10-7 to < 10-6 2 e 10-8 to < 10-7 3 Slide 22

UL Functional Safety Program Announcing the new UL Functional Safety Mark Program Slide 23

UL Functional Safety Program UL Deliverables: Advisory Services Functional Safety Listing Mark Functional Safety Component Recognition Mark Informative test reports 3-year Functional Safety Certificate Type examination reports Slide 24

Functional Safety Certification Process Kick-off Meeting Pre-audit and Initial Assessment Certification Audit Review Current Functional Safety Management System Follow-up Surveillance Slide 25

Functional Safety Certification Process Slide 26

Functional Safety Certification Process Kick-off Meeting Most effective during the product design phase Collaborate to ensure that the features required by the specified standard are included in the initial design Understand the consequence of choices being made Discuss prototyping Discuss Functional Safety Management System requirements Slide 27

Functional Safety Certification Process Pre-audit and Initial Assessment Increase the probability of success of the certification audit UL engineers perform onsite GAP analysis Customer receives concept evaluation report with detailed action items Continue review of Functional Safety Management System Slide 28

Functional Safety Certification Process Certification Audit UL audits the system s compliance with the designated standard and functional safety rating Evaluation of documentation Functional Safety Management System verified Product is certified Slide 29

Functional Safety Certification Process Follow-up Surveillance (FUS) Quarterly surveillance to verify that the protective functions of the product match the UL report UL conducts an audit of the functional safety management system once every three years Slide 30

UL Advisory Services As part of the Functional Safety Certification program, UL offers Advisory Services to: Calculate or verify SIL, PL, class, etc. Develop validation plans Develop FMEA and FMEDA Analysis Draft Functional Safety Management and Integrated Test Plans Create a Safety Manual Develop Software FMEA and HAZOP Analysis Slide 31

Call-to-Action For more information, download the whitepaper: UL Functional Safety Mark Program found at www.ul.com/functionalsafety and located under Additional Resources at the bottom of page. Slide 32

Questions? Kevin Connelly Underwriters Laboratories Industry Manager, Power & Controls, Functional Safety Thomas Maier Underwriters Laboratories Principal Engineer, Functional Safety Slide 33

2024 © homedocbox.com Privacy Policy | Terms of Service | Feedback