Process Safety - Market Requirements. V.P.Raman Mott MacDonald Pvt. Ltd.

Similar documents
IEC61511 Standard Overview

Assessment of the Safety Integrity of Electrical Protection Systems in the Petrochemical Industry

InstrumentationTools.com

Safety Instrumented Systems

Failure Modes, Effects and Diagnostic Analysis

Safety Integrity Verification and Validation of a High Integrity Pressure Protection System to IEC 61511

Siemens Process Automation End-user Summit- 2011

Integrated but separate

SIL Safety Guide Series MS Single-Acting Spring-Return Hydraulic Linear Actuators

ADIPEC 2013 Technical Conference Manuscript

Technical Paper. Functional Safety Update IEC Edition 2 Standards Update

Safety Instrumented Systems Overview and Awareness. Workbook and Study Guide

Failure Modes, Effects and Diagnostic Analysis

New Developments in the IEC61511 Edition 2

Certification Report of the ST3000 Pressure Transmitter

Addressing Challenges in HIPPS Design and Implementation

INTERNATIONAL STANDARD

Certification Report of the ST 3000 Pressure Transmitter with HART 6

FUNCTIONAL SAFETY IN FIRE PROTECTION SYSTEM E-BOOK

2015 Functional Safety Training & Workshops

PPA Michaël GROSSI - FSCE PR electronics

100 & 120 Series Pressure and Temperature Switches Safety Manual

Safety in the process industry

Measurement of Safety Integrity of E/E/PES according to IEC61508

Changes in IEC Ed 2

Digital EPIC 2 Safety manual

Options for Developing a Compliant PLC-based BMS

Failure Modes, Effects and Diagnostic Analysis. Rosemount Inc. Chanhassen, Minnesota USA

AVOID CATASTROPHIC SITUATIONS: EXPERT FIRE AND GAS CONSULTANCY OPTIMIZES SAFETY

High Integrity Pressure Protection System

United Electric Controls One Series Safety Transmitter Safety Manual

IEC Functional Safety Assessment

Session Four Functional safety: the next edition of IEC Mirek Generowicz Engineering Manager, I&E Systems Pty Ltd

Functional Safety: the Next Edition of IEC 61511

AVOID CATASTROPHIC SITUATIONS: EXPERT FIRE AND GAS CONSULTANCY OPTIMIZES SAFETY

Fire and Gas Detection and Mitigation Systems

Functional Safety Application of IEC & IEC to asset protection

The SIL Concept in the process industry International standards IEC 61508/ 61511

White Paper. Integrated Safety for a Single BMS Evaluation Based on Siemens Simatic PCS7 System

Is your current safety system compliant to today's safety standard?

FUNCTIONAL SAFETY: A PRACTICAL APPROACH FOR END-USERS AND SYSTEM INTEGRATORS

User s Manual. YTA110, YTA310, YTA320, and YTA710 Temperature Transmitters. Manual Change No

67 th Canadian Chemical Engineering Conference EDMONTON, AB OCTOBER 22-25, 2017


Practical Methods for Process Safety Management

Topic MYTH FUNCTIONAL SAFETY IMPLIES HAVING A SIL RATED COMPONENT. Presented by : Arunkumar A

Failure Modes, Effects and Diagnostic Analysis

PRIMATECH WHITE PAPER CHANGES IN THE SECOND EDITION OF IEC 61511: A PROCESS SAFETY PERSPECTIVE

IEC an aid to COMAH and Safety Case Regulations compliance

Overfill Prevention Control Unit with Ground Verification & Vehicle Identification Options. TÜVRheinland

Failure Modes, Effects and Diagnostic Analysis

Where Process Safety meets Machine Safety

FUNCTIONAL SAFETY OF ELECTRICAL INSTALLATIONS IN INDUSTRIAL PLANTS BY OTTO WALCH

Safety Instrumented Fire & Gas Systems

The agri-motive safety performance integrity level Or how do you call it?

Australian Standard. Functional safety Safety instrumented systems for the process industry sector

Session Ten: The importance of a clear Safety Requirements Specification as part of the overall Safety Lifecycle

USER APPROVAL OF SAFETY INSTRUMENTED SYSTEM DEVICES

Functional Safety of Machinery Presented by Greg Richards Manufacturing in America 02/22-23/2017

Reliability and Safety Assessment in Offshore and Process Industries

Safety Instrumented Systems The Smart Approach

, CFSE, Senior Manager, ABB Taiwan;, 2011/9/2. Functional Safety. ABB Group September 5, 2011 Slide 1

INTERNATIONAL STANDARD

Functional Safety: What It Is, Why It s Important And How to Comply

Failure Modes, Effects and Diagnostic Analysis

Reliability of Safety-Critical Systems Chapter 1. Introduction

Failure Modes, Effects and Diagnostic Analysis

Failure Modes, Effects and Diagnostic Analysis. Rosemount Inc. Chanhassen, MN USA

INTERNATIONAL STANDARD

SAFETY MANAGER SC Ensure safety, simplify operations and reduce lifecycle costs

Failure Modes, Effects and Diagnostic Analysis

Functional safety according to IEC / IEC Important user information. Major changes in IEC nd Edition

2015 Honeywell Users Group Europe, Middle East and Africa

Failure Modes, Effects and Diagnostic Analysis

Strathayr, Rhu-Na-Haven Road, Aboyne, AB34 5JB, Aberdeenshire, U.K. Tel: +44 (0)

innova-ve entrepreneurial global 1

IEC Functional Safety Assessment

Process Safety Workshop. Avoiding Major Accident Hazards the Key to Profitable Operations

Failure Modes, Effects and Diagnostic Analysis. PR electronics A/S Rønde Denmark

Implementing Safety Instrumented Burner Management Systems: Challenges and Opportunities

Session Number: 3 SIL-Rated Fire (& Gas) Safety Functions Fact or Fiction?

New requirements for IEC best practice compliance

NEW CENELEC STANDARDS & CSM-RA NEW CENELEC STANDARDS & CSM-RA 2017

Value Paper Authors: Stuart Nunns CEng, BSc, FIET, FInstMC. Compliance to IEC means more than just Pfd!

LOPA. DR. AA Process Control and Safety Group

INTERNATIONAL STANDARD

Guidelines. Safety Integrity Level - SIL - Valves and valve actuators. February Valves

Proof Testing Level Instruments

Simply reliable: Process safety from Endress+Hauser

SIL DETERMINATION AND PROBLEMS WITH THE APPLICATION OF LOPA

DeltaV SIS TM. for Process Safety Systems Smart Safety Loops. Reliable Process.

2013 Honeywell Users EMEA Nice. Johan School. Concepts and Implementation of Process Risk Management using Safety Manager

Safety Transmitter / Logic Solver Hybrids. Standards Certification Education & Training Publishing Conferences & Exhibits

Failure Modes, Effects and Diagnostic Analysis

INTERNATIONAL STANDARD

FMEDA Report. Failure Modes, Effects and Diagnostic Analysis. KFD0-CS-Ex*.54* and KFD0-CS-Ex*.56* Project: X7300

This document is a preview generated by EVS

Failure Modes, Effects and Diagnostic Analysis

Process Safety. Allan Rentcome Director Engineering Process Safety Technologies. Insert Photo Here

Applying Buncefield Recommendations and IEC61508 and IEC Standards to Fuel Storage Sites

Transcription:

Process Safety - Market Requirements V.P.Raman Mott MacDonald Pvt. Ltd.

Objective of Process Safety Protect personnel Protect the environment Protect the plant equipment / production.

Multiple Layers of Protection (LOPA) Community Emergency Response Plant Emergency Response Physical Protection (Dykes) Physical Protection (Relief Devices) Safety Instrumented System Alarms, Operator Intervention Basic Process Control Process

Control System Incident Occurrence HSE statistics Operation & Maintenance, 15% Changes after Commissioning, 20% Installation & Commissioning, 6% Design & Implementation, 15% Specification Requirements, 44%

Hazard or Risk HAZARD Anything that can cause harm (e.g. over temperature of chemical process, overpressure of a pipeline). RISK How great the chance that someone will be harmed by the hazard.

Definition of a Hazard: Hazard or Risk A hazard is something (e.g. an object, a property of a substance, a phenomenon or an activity) that can cause adverse effects. For example: Water on a staircase is a hazard, because you could slip on it, fall and hurt yourself; Loud noise is a hazard because it can cause hearing loss; Breathing in asbestos dust is a hazard because it can cause cancer.

Definition of a Risk: Hazard or Risk A risk is the likelihood that a hazard will actually cause its adverse effects, together with a measure of the effect. Likelihoods can be expressed as: Probabilities (e.g. one in a thousand ); Frequencies (e.g. 1000 cases per year ) or; in a qualitative way (e.g. negligible, significant, etc.). The effect can be described in many different ways.

Concepts of Risk Risk is a measure of the probability and consequence of a specified hazardous event occurring. The tolerable risk is determined on a societal basis and involves consideration of societal and political factors. Once the tolerable risk has been set, and the required risk reduction determined, the safety integrity requirements for the safety-related systems can be allocated. Safety integrity applies solely to the E/E/PE safetyrelated systems, other technology safety related-systems and external risk reduction facilities

Tolerable Risk The purpose of determining the tolerable risk for a specific hazardous event is to state, what is deemed reasonable with respect to both its frequency (or probability) and the severity of the consequences. The degree of risk considered to be tolerable depends upon a number of factors: Degree of control one has over the circumstances; the voluntary or involuntary nature of the risk; the number of persons at risk in any one incident. What is a tolerable level of risk?

Is it a Tolerable Risk

Risk Reduction Leads to fatality Residual Risk Tolerable Risk Level Intermediate Risk Risk inherent in the process PFD < 0.1 PFD = 0.1 PFD = 0.1 PFD = 0.1 SRS Risk Gap Other Mech Alarms Process 10-5 /yr 10-4 /yr Hazard frequency 10-2 /yr 0.1 /yr

SIL Tables Safety integrity Low demand mode of operation level (Average probability of failure to perform its design function on demand) 4 10-5 to < 10-4 3 10-4 to < 10-3 2 10-3 to < 10-2 1 10-2 to < 10-1 Safety integrity level High demand or continuous mode of operation (Probability of a dangerous failure per hour) 4 10-9 to < 10-8 < 10-4 /yr 3 10-8 to < 10-7 < 10-3 /yr 2 10-7 to < 10-6 < 10-2 /yr 1 10-6 to < 10-5 < 10-1 /yr

SIL Table Failure on Demand SIL Safety Availability PFD RRF 3 99.9 99.99 % 0.001 0.0001 1,000 10,000 2 99.0 99.9 % 0.01 0.001 100 1,000 1 90 99% 0.1 0.01 10-100 PFD = Probability of Failure on Demand. RRF = Risk Reduction Factor (1/PFD)

Low / High Demand Control of Airbags Infrequent use; Probability of Failure on Demand; LOW DEMAND. Control of Brakes Continuous use; No brakes: immediate hazard; Failure Rate; HIGH DEMAND. 15

Safety Standards - Relationship Safety Instrumented System (SIS) Manufacturers & Suppliers of Devices IEC 61508 SIS Designers, Integrators and Users IEC 61511 SIS is an independent system composed of sensors, logic solvers & final control elements for the purpose of taking process to a safe state, when predetermined conditions are violated

Guidelines IEC 61508 & IEC 61511 Process Sector SIS Process Sector Hardware Process Sector Software Develop New Hardware Device Use Proven Hardware Device Use Developed Hardware Device Develop Embedded (System) Software Develop Application Software Use Fixed Software Programs Follow IEC 61508 Follow IEC 61511 Follow IEC 61511 Follow IEC 61508-3 Follow IEC 61508-3 Follow IEC 61511

Failure Classification Dangerous Failure [IEC61508-4: 3.6.7] A failure which has the potential to put the safety-related system in a hazardous or fail-to-function state. Safe Failure [IEC61508-4: 3.6.8] A failure which does not have the potential to put the safetyrelated system in a hazardous or fail-to-function state. Detected [IEC61508-4: 3.8.8] Hardware failure, detected by Diagnostic Tests, operator intervention (eg: physical inspection and manual tests) or through normal operation. Undetected [IEC61508-4: 3.8.9] Hardware failure, undetected by the diagnostic tests, operator intervention (eg: physical inspection and manual tests) or through normal operation. Only revealed by Proof Tests.

Type A and B Subsystems Type A Sub Systems Failure Modes are well defined AND failure behaviour is completely determined AND there is dependable failure data Type B Sub Systems Failure Modes are not well defined OR failure behaviour is not completely determined OR there is insufficient failure data 19

Hardware Design Constraints The Design Primary technique is monitoring the functionality of system. SIL 1 / 2 watchdog for CPU. SIL 3 - Memory and I/O checks. SIL 4. - Significantly more. Environmental stress All components should be designed to meet the intended environment, which will be encountered in both normal and abnormal conditions. Operation failures There should be protection against on line modification. All SILs, shall provide feedback to the operator and take into account any human factors. 20

Software Safety Integrity E/E/PES safety requirements specification Software safety requirements specification Validation Validation testing Validated software E/E/PES architecture Software architecture Integration testing (components, subsystems and programmable electronics) Software system design Integration testing (module) Module design Module testing Output Verification CODING 21

Software Development The Requirement Specification Software Specification shall include - capacity, response time, maintenance / operator requirements, self monitoring of software hardware etc Specification should be written in a clear and precise manner and traceable back to the safety specification. Software Design should aid modularity and reduce complexity and also provide clear expression of functionality System software to include - Diagnosing fault detections for hardware, Error detection for communication links & On-line testing of standard software modules. Use trusted and verified software modules (SIL 2 +). 22

Modifications Hardware & Software For all modifications and changes there should be: Revision Control. Record of the reason for the design change. Impact analysis. Re-testing of the changed and any other affected modules. 23

IEC 61508 What is IEC61508? Functional Safety of Electrical / Electronic / Programmable Electronic Safety-Related Systems is product oriented (hardware & software) standard created by IEC; Provides a unified and generic approach for all safety lifecycle activities; Facilitates the development of application sector standards. Important: If any part of the safety function contains an E/E/PE component, then IEC61508 applies to the whole safety function. Important: The main objective of IEC 61508 is to protect human life through analysis of functionality of products.

IEC 61508 Functional safety refers to the ability to avoid the risk of physical injury due to incorrect system operation in response to system inputs. Complex systems incorporate multiple hardware and software components or subsystems which require differing degrees of safety. The IEC 61508 standard allows for a range of safety criticality levels for independent assessment of subsystems and components. It is possible to classify subsystems and components into the following categories: Safety Critical: single fault can result in a dangerous failure. Safety Relevant: a single fault in combination with a second fault can result in a dangerous failure. Interference Free: faults can not cause a dangerous failure

What is Functional Safety? Part of the overall safety relating to the EUC which depends on the correct functioning of the E/E/PE safety-related systems and external risk reduction facilities. SRS Safety Related Sy s tem EUC Equipment Under Control Proc es s

Failure Modes With a safety system, the concern shouldn t so much be with how the system operates, but rather how the system fails. Fail closed means lost production Safety Systems can fail in two ways: Safe failures (nuisance trips) Dangerous failures (fail to function) Fail open means safety hazard

Simplified Safety Lifecycle Safety Requirement Specification (SRS) Analysis Phase Realization Phase Operational Phase Hazard & Risk Assessment Allocation of Safety Functions to Protection Layers Design & Development of SIS Operation & Maintenance Safety Requirement Specs. For SIS Installation, Commissioning & Validation Modification

Process Safety by Industry Power 10 % Pharm 3% Chemical 21% Other 4% Oil & Gas 44% Refining 18 %

Process Safety Market Dynamics SIS market grows at twice the rate of DCS & Control Systems. SIS has strong influence on DCS selection. Safety PLC s are introduced to improve Safety & Availability. Safety PLC involves Redundancy, Voting Logic (2 oo 3), TMR etc. Highly reliable systems are available to meet SIL3 requirements Latest safety systems offer improved integration with DCS.

Process Safety Market Dynamics Latest safety system works on Windows based IEC 61131-3 programming tools. Employs high levels of Diagnostics. Offers Enhanced Control Functionality, Flexibility and Scalability. Available with intelligent distributed safety I/O s. Flexibility in using advanced devices, like Foundation Fieldbus, Profibus etc. Integrates with wide variety of field devices like F&G sensors, FF devices etc.

Expectations from Vendors Product Management Availability of Trained Staff Marketing & Promotion Application Development Safety Lifecycle Services Customer Support - Assist Clients / Consultants in defining & executing Safety Systems. Interface with Industry Competence Centers Support in getting certified from recognized 3 rd parties. Availability of in-house SIL certified experts.

Expectations from Vendors Regional process safety experts to assist in: Training, Seminars, Familiarization etc Project Support Design Reviews. HAZOP & HAZAN studies LOPA, ALARP & Fault Tree Analysis SIL study and SIL level determination Trained Software specialists. Product Identification to meet client needs Define System Architecture (Fit for Purpose) Innovative tools for compliance Long term support for products

2024 © homedocbox.com Privacy Policy | Terms of Service | Feedback