IEC 61508:2010
SIL
IEC 61508:2010
SIL
IEC 61508:2010
SIL
IEC 61508:2010
CASS SCHEME
Overall framework of the IEC 61508 series
Technical Requirements
Part 0 Functional safety and IEC 61508
1
Other Requirements
Part 5 Example of methods for the determination of safety integrity levels Part 4 Denitions & abbreviations
Concept
2 3 4 5
Overall planning Overall 6 operation and maintenance planning
CASS is a scheme for assessing the compliance of safety related systems with the requirements of IEC 61508 and associated standards. It provides a systematic approach to be used by certication bodies and others when assessing compliance at all stages from the specication of safety requirements through the design, development and manufacture of system components to integration, commissioning, operation and maintenance.
Accredited Certication for Safety Systems... to IEC 61508 and related standards
The CASS Scheme Ltd
Part 1 Development of the overall safety requirements (concept, scope, denition, hazard and risk analysis)
7.1 to 7.5
Feedback
UKAS
T5
IEC 61508
Part 1 Specication of the system safety requirements for the E/E/PE safety-related systems
7.10
EN45011
Certication Bodies
9 10
11
Governing Body
RULES
T1
Component Supplier
T2
Sub-system Supplier
T2a
Engineering Function/System Integrator
T4
End user/ Operator
T3
Part 3 Realisation phase for safety-related software Part 7 Overview of techniques and measures
Realisation
IEC 61508
Functional Safety Management
release the potential of E/E/PE technology to improve both safety and economic performance; enable technological developments to take place within an overall safety framework; provide a technically sound, system based approach, with sufcient exibility for the future; provide a risk-based approach for determining the required performance of safety-related systems; provide requirements based on common underlying principles to facilitate: - improved efciencies in the supply chain for suppliers of subsystems and components to various sectors - improvements in communication and requirements (i.e. to increase clarity of what needs to be specied), - the development of techniques and measures that could be used across all sectors, increasing available resources, - the development of conformity assessment services if required.
commissioning planning
12 13 14 16
Part 1 Operation, maintenance, repair, modication and retrot, decommissioning or disposal of E/E/PE safety-related systems
7.15 - 7.17
15
Denitions and abbreviations Abbreviation Full expression AC/DC Alternating current/direct current AIChE American institute of chemical engineers
Decommissioning or disposal
10
A basic requirement of the standards is that all aspects of the safety lifecycle activities demonstrate Functional Safety Management. As well as concerns for equipment, this includes management of personnel competency, covering the end-user, contractors, suppliers and sub-contractors.
(In the UK see also guidance from HSE Managing competence for safety-related systems.)
10.2
E/E/PE system safety validation planning
Realisation
10.1
Hardware safety requirements specication Software safety requirements Programmable electronic hardware Non-programmable hardware
10.3
ALARP ANSI ASIC BPCS CCF CPLD CCPS DC (E)EPLD E/E/PE E/E/PE (system) EEPROM EPROM EMC EUC FAT FPGA FPL FSA FTA FVL GAL H&RA HFT IEC IEV ISA ISO
10.4
One E/E/PE safety lifecycle for each E/E/PE safetyrelated system
10.5
Functional Safety
E/E/PE system installation, commissioning, operation & maintenance procedures To Box 14 in Overall Safety Lifecycle
10.6
C E RT I F I C AT I O N S E RV I C E
011
Approved Company
SIL
IEC 61508:2010
Note that a safety integrity level is a property of a safety function rather than of a system or any part of a system.
Safety integrity is considered to be composed of the following two elements: Hardware safety integrity; that part of safety integrity relating to random hardware
failures in a dangerous mode of failure. It may be necessary to use redundant architectures to achieve adequate hardware safety integrity.
IEC 61508:2010
SIL
2
SIL
3
SIL
4
While every effort has been made to ensure that the information contained within this document is accurate and up to date, MTL Instruments makes no warranty, representation or undertaking whether expressed or implied, nor does it assume legal liability, whether direct or indirect, or responsibility for the accuracy, completeness, or usefulness of any information.
A B
As Low As Reasonably Practicable American National Standards Institute Application Specic Integrated Circuit Basic process control system Common Cause Failure Complex Programmable Logic Device Center for chemical process safety Diagnostic Coverage (Electrically) Erasable Programmable Logic Device Electrical/Electronic/Programmable Electronic Electrical/Electronic/Programmable Electronic System Electrically Erasable Programmable ReadOnly Memory Erasable Programmable Read-Only Memory Electro-magnetic compatibility Equipment Under Control Factory acceptance testing Field Programmable Gate Array Fixed program language Functional safety assessment Fault tree analysis Full variability language Generic Array Logic Hazard & risk assessment
MooND MTBF MTTR MRT NP PAL PE PES PFD PFDavg PFH PLA
Full expression Limited variability language M out of N channel architecture (for example 1oo2 is 1 out of 2 architecture, where either of the two channels can perform the safety function) M out of N channel architecture with Diagnostics Mean Time Between Failures Mean Time To Repair Mean Repair Time Non-programmable Programmable Array Logic Programmable Electronic Programmable electronic system Probability of Dangerous Failure on Demand Average Probability of dangerous Failure on Demand Average frequency of dangerous failure [h-1] Programmable Logic Array Programmable logic controller Site acceptance test Systematic capability Safe failure fraction Safety instrumented function Safety integrity level Safety instrumented system Safety requirement specication Unless otherwise noted Failure rate of all safe failures Failure rate of all dangerous failures Failure rate of all dangerous detected failures Failure rate of all dangerous undetected failures Failure rate of all safe undetected failures Failure rate of all safe detected failures
PLC SAT SC SFF SIF SIL SIS SRS UON ls or lsafe ld or ldangerous Hardware Fault Tolerance ldd International Electrotechnical Commission ldu International Electrotechnical Vocabulary lsu Instrumentation, Systems & Automation Society lsd International Organization for Standardization
www.mtl-inst.com enquiry@mtl-inst.com
ZL-P-FSM-EN-1112
Australia
Tel: +61 1300 308 374 Fax: +61 1300 308 463
France
Tel: +33 (0)4 37 46 16 70 Fax: +33 (0)4 37 46 17 20
India
Tel: + 91 (0)44 24501660 Fax: + 91 (0)44 24501463
Japan
Tel: +81 (0)3 6430 3128 Fax: +81 (0)3 6430 3129
Singapore
Tel: +65 6 645 9888 Fax: +65 6 487 7997
Americas
Tel: +1 281 571 8065 Fax: +1 281 571 8069
China
Tel: +86 10 5980 0231 Fax: +86 10 8562 5725
Germany
Tel: +49 (0)2131 718930 Fax: +49 (0)2131 7189333
Italy
Tel: +39 (0)2 61802011 Fax: +39 (0)2 61294560
Netherlands
Tel: +31 (0) 76 7505360 Fax: +31 (0) 76 7505370
South Korea
Tel: +82 2 538 3481 Fax: +82 2 538 3505
UK
Tel: +44 (0)1582 723633 Fax: +44 (0)1582 422283