What is system
safety?
What is
functional
safety?
What is safety
characteristics
and what are
the advantages
for the user?
The serious risk to life from does not make it any easier to The increasing direct and indirect
asphyxiating or poisonous assign liability. influence of DIN EN 61508 on
smoke in buildings has become The situation can be summarised building automation is increasing
well-known to the general public, as follows: the pressure on building automation
particularly since the fire at Smoke in buildings is a serious suppliers, operators and safety
Düsseldorf Airport (Germany) and life-threatening danger that officers to deal with the
with 17 fatalities. The causes are must be countered with suitable implementation of automated safety
rooted in a variety of human and technical and organisational functions that comply with the state
technological details, and this actions. of the art. This is described for
In projects such as the "Berlin Figure 5 shows the HIMatrix The application of this competence
Olympic Stadium" and the network and the application of and the available technology
"Pharmaceutical Plant" at distributed controller and I/O depends greatly on the sensitivity
Boehringer Ingelheim, Germany, modules with additional significant with which responsible authorities
the smoke and fire dampers are advantages arising from the HIMA and persons deal with this subject.
already controlled by HIMA safety technology. Virtually any desired For the first time safety can be
technology. network architectures are possible quantified independently on the
based on standard Ethernet in basis of the basic standard DIN
The advantages are obvious. The accordance with IEEE 802.3. The (IEC) EN 61508. This establishes a
high reliability is proven to increase use of standard Ethernet technology unified procedure for an objective
system availability and thus for the secure HIMA protocol assessment of safety.
operating safety. The high degree of enables data transmission over The technology is available and
integration that can be achieved copper, fibre optics or radio. now the responsible parties can act!
allows interfaces between the The HIMA safeethernet safety
systems to be minimised. The protocol links all HIMatrix modules
distribution of the controller on a safe controller level. Typical systems integrated in the
intelligence increases availability in smoke protection design are
emergencies. The primary goal is to Although many involved in building Smoke detection, alarming, smoke
process all programmable automation find this subject new damping, pressurised ventilation, lift
sequences over all systems and and strange, it is not really new. control, Venetian blinds/smoke
check for plausibility. This HIMA has been developing safety curtains, dynamic evacuation route
significantly increases the degree of technologies that are implemented controls, dynamic extinguishing …..
functional safety. The PLC in thousands of applications all over
technology allows on- and off-line the world for over 30 years. Typical applications are
simulations of the complex logic to HIMA as a manufacturer and e.g. High-rise buildings, industrial and
verify functional sequences. This TÜV as approval authority offer a commercial buildings, traffic
saves time and money during a variety of experience and tunnels, underground rail systems,
function check and during competence. airports, special constructions .........
commissioning on site.
This not only affects the system This means that effective action for
manufacturer but also others Safety controllers are characterised prevention of faults, detection of
responsible for safety such as by the high quality of their faults and management of faults
consultants, engineering components (hardware) and has been confirmed.
associations, building inspection intelligent methods for failure
authorities, insurers and of course analysis (software) in the overall Analysis of the fault probability and
the operator. system. This is the only way to the resulting quantification of safety
reach the high reliability and the that was possible for the first time
Functional Safety resulting low probability of failure of allows different levels of safety and
the controller. risk to be defined - SIL1 to SIL4.
From a technical point of view the All design and development stages (SIL = Safety Integrity Level)
automated protection function must are monitored by an independent A probability interval for a
operate reliably when required, i.e. consultant and a TÜV certificate is hazardous failure is assigned to an
the probability of hazardous failure issued to confirm that all the SIL. The statistical failure probability
of the safety system must be requirements of the standard have from SIL1 to SIL4 systems is
reduced to a tolerable minimum. been met. illustrated in Figure 4.
Therefore, the task is to allow as This certifies the functional safety
few undetected hazardous faults as of the product. The risk assessment and the
possible on the controller level - see This is "Part of the overall-safety resulting determination of the
fault type classification in Figure 3. that depends on the correct function required SIL is the result of a
If detected hazardous faults occur, of the safety-relevant, software- hazard assessment conducted by
the system is reset to the safe supported system”. an interdisciplinary team.
status.
Advantages for the user