The safety critical systems handbook a straightforward guide to functional safety: IEC 61508 (2010 edition), IEC 61511 (2016 edition) & related guidance, including machinery and other industrial sectors
The Safety Critical Systems Handbook: A Straightforward Guide to Functional Safety: IEC 61508 (2010 Edition), IEC 61511 (2016 Edition) & Related Guidance, Fourth Edition, presents the latest on the electrical, electronic, and programmable electronic systems that provide safety functions that gua...
| Otros Autores: | , |
|---|---|
| Formato: | Libro electrónico |
| Idioma: | Inglés |
| Publicado: |
Amsterdam, [Netherlands] :
Butterworth-Heinemann
2016.
|
| Edición: | Fourth edition |
| Materias: | |
| Ver en Biblioteca Universitat Ramon Llull: | https://discovery.url.edu/permalink/34CSUC_URL/1im36ta/alma991009629883106719 |
Tabla de Contenidos:
- Front Cover
- The Safety Critical Systems Handbook
- The Safety Critical Systems Handbook
- Copyright
- Contents
- The relationship of the documents to IEC 61508
- A Quick Overview
- The 2010 Version of IEC 61508
- Architectural Constraints (Chapter 3)
- Security (Chapter 2)
- Safety Specifications (Chapter 3)
- Digital Communications (Chapter 3)
- ASICs and Integrated Circuits (Chapters 3 and 4)
- Safety Manual (Chapters 3 and 4)
- Synthesis of Elements (Chapter 3)
- Software Properties of Techniques (Chapter 4)
- Element (Appendix 8)
- The 2016 Version of IEC 61511
- Acknowledgments
- A - The Concept of Safety Integrity
- 1 - The Meaning and Context of Safety Integrity Targets
- 1.1 Risk and the Need for Safety Targets
- 1.2 Quantitative and Qualitative Safety Target
- 1.3 The Life-Cycle Approach
- Section 7.1 of Part 1
- Concept and scope [Part 1-7.2 and 7.3]
- Hazard and risk analysis [Part 1-7.4]
- Safety requirements and allocation [Part 1-7.5 and 7.6]
- Plan operations and maintenance [Part 1-7.7]
- Plan installation and commissioning [Part 1-7.9]
- Plan the validation [Part 1d7.8]
- The safety requirements specification [Part 1-7.10]
- Design and build the system [Part 1-7.11 and 7.12]
- Install and commission [Part 1-7.13]
- Validate that the safety-systems meet the requirements [Part 1-7.14]
- Operate, maintain, and repair [Part 1-7.15]
- Control modifications [Part 1-7.16]
- Disposal [Part 1-7.17]
- Verification [Part 1-7.18]
- Functional safety assessments [Part 1-8]
- 1.4 Steps in the Assessment Process
- Step 1. Establish Functional Safety Capability (i.e., Management)
- Step 2. Establish a Risk Target
- Step 3. Identify the Safety Related Function(s)
- Step 4. Establish SILs for the Safety-Related Elements
- Step 5. Quantitative Assessment of the Safety-Related System.
- Step 6. Qualitative Assessment Against the Target SILs
- Step 7. Establish ALARP
- 1.5 Costs
- 1.5.1 Costs of Applying the Standard
- 1.5.2 Savings from Implementing the Standard
- 1.5.3 Penalty Costs from Not Implementing the Standard
- 1.6 The Seven Parts of IEC 61508
- 1.7 HAZOP (Hazard and Operability Study)
- 1.7.1 Objectives of a HAZOP
- 1.7.2 HAZOP Study Team
- 1.7.3 Typical Information Used in the HAZOP
- 1.7.4 Typical HAZOP Worksheet Headings
- Design Intent
- Nodes
- Parameter/Guidewords
- Causes
- Consequence
- Safeguards
- Action Required
- 1.7.5 Risk Ranking
- 1.7.6 Quantifying Risk
- 2 - Meeting IEC 61508 Part 1
- 2.1 Establishing Integrity Targets
- 2.1.1 The Quantitative Approach
- (a) Maximum Tolerable Risk
- (b) Maximum tolerable failure rate
- Example
- On site
- Off site
- (c) Safety integrity levels (SILs)
- Simple example (low demand)
- Simple example (high demand)
- More complex example
- (d) Exercises
- 2.1.2 Layer of Protection Analysis
- 2.1.3 The Risk Graph Approach
- 2.1.4 Safety Functions
- 2.1.5 "Not Safety-Related"
- 2.1.6 SIL 4
- 2.1.7 Environment and Loss of Production
- 2.1.8 Malevolence and Misuse
- Paragraph 7.4.2.3 of Part 1 of the Standard
- 2.2 "As Low as Reasonably Practicable"
- 2.3 Functional Safety Management and Competence
- 2.3.1 Functional Safety Capability Assessment
- 2.3.2 Competency
- (a) IET/BCS "Competency guidelines for safety-related systems practitioners"
- (b) HSE document (2007) "Managing competence for safety-related systems"
- Annex D of "Guide to the application of IEC 61511"
- (d) Competency register
- 2.3.3 Independence of the Assessment
- 2.3.4 Hierarchy of Documents
- 2.3.5 Conformance Demonstration Template
- IEC 61508 Part 1
- 2.4 Societal Risk
- 2.4.1 Assess the Number of Potential Fatalities.
- 2.4.2 It Is Now Necessary to Address the Maximum Tolerable Risk
- 2.4.3 The Propagation to Fatality
- 2.4.4 Scenarios with Both Societal and Individual Implications
- 2.5 Example Involving Both Individual and Societal Risk
- 2.5.1 Individual Risk Argument
- 2.5.2 Societal Risk Argument
- 2.5.3 Conclusion
- 3 - Meeting IEC 61508 Part 2
- 3.1 Organizing and Managing the Life Cycle
- Sections 7.1 of the Standard: Table '1'
- 3.2 Requirements Involving the Specification
- Section 7.2 of the Standard: Table B1 (avoidance)
- (a) The safety requirements specification
- (b) Separation of functions
- 3.3 Requirements for Design and Development
- Section 7.4 of the Standard: Table B2 (avoidance)
- 3.3.1 Features of the Design
- Sections 7.4.1-7.4.11 excluding 7.4.4 and 7.4.5
- 3.3.2 Architectures (i.e., SFF)
- Section 7.4.4 Tables '2' and '3'
- 3.3.3 Random Hardware Failures
- Section 7.4.5
- 3.4 Integration and Test (Referred to as Verification)
- Section 7.5 and 7.9 of the Standard Table B3 (avoidance)
- 3.5 Operations and Maintenance
- Section 7.6 Table B4 (avoidance)
- 3.6 Validation (Meaning Overall Acceptance Test and the Close Out of Actions)
- Section 7.3 and 7.7: Table B5
- 3.7 Safety Manuals
- Section 7.4.9.3-7 and App D
- 3.8 Modifications
- Section 7.8
- 3.9 Acquired Subsystems
- 3.10 "Proven in Use" (Referred to as Route 2s in the Standard)
- 3.11 ASICs and CPU Chips
- (a) Digital ASICs and User Programmable ICs
- Section 7.4.6.7 and Annex F of the Standard
- (b) Digital ICs with On-Chip Redundancy (up to SIL 3)
- Annex E of the Standard
- 3.12 Conformance Demonstration Template
- IEC 61508 Part 2
- 4 - Meeting IEC 61508 Part 3
- 4.1 Organizing and Managing the Software Engineering
- 4.1.1 Section 7.1 and Annex G of the Standard Table "1"
- 4.2 Requirements Involving the Specification.
- 4.2.1 Section 7.2 of the Standard: Table A1
- 4.3 Requirements for Design and Development
- 4.3.1 Features of the Design and Architecture
- Section 7.4.3 of the Standard: Table A2
- 4.3.2 Detailed Design and Coding
- Paragraphs 7.4.5, 7.4.6, Tables A4, B1, B5, B7, B9
- 4.3.3 Programming Language and Support Tools
- Paragraph 7.4.4, Table A3
- 4.4 Integration and Test (Referred to as Verification)
- 4.4.1 Software Module Testing and Integration
- Paragraphs 7.4.7, 7.4.8, Tables A5, B2, B3, B6, B8
- 4.4.2 Overall Integration Testing
- Paragraph 7.5, Table A6
- 4.5 Validation (Meaning Overall Acceptance Test and Close Out of Actions)
- Paragraphs 7.3, 7.7, 7.9, Table A7
- 4.6 Safety Manuals
- (Annex D)
- 4.7 Modifications
- Paragraph 7.6, 7.8, Table A8 and B9
- 4.8 Alternative Techniques and Procedures
- 4.9 Data-Driven Systems
- 4.9.1 Limited Variability Configuration, Limited Application Configurability
- 4.9.2 Limited Variability Configuration, Full Application Configurability
- 4.9.3 Limited Variability Programming, Limited Application Configurability
- 4.9.4 Limited Variability Programming, Full Application Configurability
- 4.10 Some Technical Comments
- 4.10.1 Static Analysis
- 4.10.2 Use of "Formal" Methods
- 4.10.3 PLCs (Programmable Logic Controllers) and their Languages
- 4.10.4 Software Reuse
- 4.10.5 Software Metrics
- 4.11 Conformance Demonstration Template
- IEC 61508 Part 3
- 5 - Reliability Modeling Techniques
- 5.1 Failure Rate and Unavailability
- 5.2 Creating a Reliability Model
- 5.2.1 Block Diagram Analysis
- 5.2.1.1 Basic equations
- Allowing for revealed and unrevealed failures
- Allowing for "large" values of λT
- Effect of staggered proof test
- Allowing for imperfect proof tests
- Partial stroke testing
- 5.2.2 Common Cause Failure (CCF)
- (a) Categories of factors
- (b) Scoring.
- (c) Taking account of diagnostic coverage
- (d) Subdividing the checklists according to the effect of diagnostics
- (e) Establishing a model
- (f) Nonlinearity
- (g) Equipment type
- (h) Calibration
- 5.2.3 Fault Tree Analysis
- 5.3 Taking Account of Auto Test
- 5.4 Human Factors
- 5.4.1 Addressing Human Factors
- 5.4.2 Human Error Rates
- "HEART" method
- "TESEO" method
- 5.4.3 A Rigorous Approach
- 6 - Failure Rate and Mode Data
- 6.1 Data Accuracy
- 6.2 Sources of Data
- 6.2.1 Electronic Failure Rates
- 6.2.2 Other General Data Collections
- 6.2.3 Some Older Sources
- 6.2.4 Manufacturer's Data
- 6.2.5 Anecdotal Data
- 6.3 Data Ranges and Confidence Levels
- 6.4 Conclusions
- 7 - Demonstrating and Certifying Conformance
- 7.1 Demonstrating Conformance
- 7.2 The Current Framework for Certification
- 7.3 Self-Certification (Including Some Independent Assessment)
- 7.3.1 Showing Functional Safety Capability (FSM) as Part of the Quality Management System
- 7.3.2 Application of IEC 61508 to Projects/Products
- 7.3.3 Rigor of Assessment
- 7.3.4 Independence
- 7.4 Preparing for Assessment
- 7.5 Summary
- B - Specific Industry Sectors
- 8 - Second Tier Documents-Process, Oil and Gas Industries
- 8.1 IEC International Standard 61511: Functional Safety-Safety Instrumented Systems for the Process Industry Sector (Second Edition to be Published in 2016)
- 8.1.1 Organizing and Managing the Life Cycle
- 8.1.2 Requirements Involving the Specification
- 8.1.3 Requirements for Design and Development
- (a) Selection of components and subsystems
- (b) Architecture (i.e., safe failure fraction)
- (c) Predict the random hardware failures
- (d) Software (referred to as "program")
- (i) Requirements
- (ii) Software library modules
- (iii) Software design specification
- (iv) Code
- (v) Programming support tools.
- 8.1.4 Integration and Test (Referred to as Verification).
