manualshive.com logo in svg

Pepperl+Fuchs KFD2-RSH-1.2D.FL2, Original Instructions Manual

Share
Download
Pepperl+Fuchs KFD2-RSH-1.2D.FL2 Original Instructions Manual Download Page 10

 2

018-

06

10

Functional Safety KFD2-RSH-1.2D.FL2, KFD2-RSH-1.2D.FL3

Planning

3.2

Assumptions

The following assumptions have been made during the FMEDA:

Failure rates are constant, wear is not considered.

Failure rate based on the Siemens standard SN29500.

The safety-related device is considered to be of type 

A

 device with a hardware fault 

tolerance of 

0

.

The device will be used under average industrial ambient conditions comparable to the 

classification "stationary mounted" according to MIL-HDBK-217F.
Alternatively, operating stress conditions typical of an industrial field environment similar to 

IEC/EN 60654-1 Class C with an average temperature over a long period of time of 40

º

may be assumed. For a higher average temperature of 60

º

C, the failure rates must be 

multiplied by a factor of 2.5 based on experience. A similar factor must be used if frequent 

temperature fluctuations are expected.The nominal voltage at the digital input is 24 V. 

Ensure that the nominal voltage do not exceed 26.4 V under all operating conditions.

The DO card must be able to supply a signal current of at least 100 mA.

Observe for the high demand mode the useful lifetime limitations of the output relays.

The relay contacts must be protected against overcurrent with a suitable current limitation. 

For this purpose, either the internal fuse or an external current limitation with the same limit 

values must be used.

SIL 3 application

The device shall claim less than 10 % of the total failure rate for a SIL 3 safety loop.

For a SIL 3 application operating in low demand mode the total PFD

avg

value of the 

SIF (

S

afety 

I

nstrumented 

F

unction) should be smaller than 10

-3

, hence the maximum 

allowable PFD

avg

value would then be 10

-4

.

For a SIL 3 application operating in high demand mode the total PFH value of the 

SIF should be smaller than 10

-7

 per hour, hence the maximum allowable PFH value would 

then be 10

-8

 per hour.

Since the safety loop has a hardware fault tolerance of 

0

 and it is a type

A

 device, the 

SFF must be > 90 % according to table 2 of IEC/EN 61508-2 for a SIL 3 (sub) system.

SILCL and PL application

The device was qualified for use in safety functions acc. to IEC/EN 62061 and 

EN/ISO 13849-1. The device fulfils the requirements for a SILCL of SIL 3 acc. to 

IEC/EN 62061 and due to the equivalency between these standards PL e acc. to 

EN/ISO 13849-1.

Summary of Contents for KFD2-RSH-1.2D.FL2

Page 1: ...ISO9001 PL e 3 Functional Safety Relay Module KFD2 RSH 1 2D FL2 KFD2 RSH 1 2D FL3 PROCESS AUTOMATION ORIGINAL INSTRUCTIONS...

Page 2: ...Products and Services of the Electrical Industry published by the Central Association of the Electrical Industry Zentralverband Elektrotechnik und Elektroindustrie ZVEI e V in its most recent version...

Page 3: ...Standards and Directives for Functional Safe 8 3 Planning 9 3 1 System Structure 9 3 2 Assumptions 10 3 3 Safety Function and Safe State 11 3 4 Characteristic Safety Values 12 3 5 Useful Lifetime 13 4...

Page 4: ...tion Maintenance and repair Troubleshooting Dismounting Disposal The documentation consists of the following parts Present document Instruction manual Manual Datasheet Additionally the following parts...

Page 5: ...ave read and understood the instruction manual and the further documentation Intended Use The device is only approved for appropriate and intended use Ignoring these instructions will void any warrant...

Page 6: ...essages are displayed in descending order as follows Informative Symbols Action This symbol indicates a paragraph with instructions You are prompted to perform an action or a sequence of actions Dange...

Page 7: ...se or an external current limitation KFD2 RSH 1 2D FL2 The device is a relay module that is suitable for safely switching applications of a load circuit The device isolates load circuits up to 60 V DC...

Page 8: ...Functional safety of electrical electronic programmable electronic safety related systems manufacturer Machinery Directive 2006 42 EC EN ISO 13849 part 1 edition 2015 Safety related parts of control s...

Page 9: ...usually the demand rate for this safety loop is assumed to be higher than once per year The relevant safety parameters to be verified are the PFH value Probability of dangerous Failure per Hour Fault...

Page 10: ...signal current of at least 100 mA Observe for the high demand mode the useful lifetime limitations of the output relays The relay contacts must be protected against overcurrent with a suitable current...

Page 11: ...06 11 3 3 Safety Function and Safe State Safety Function Whenever the input of the device is de energized the DTS output is not conducting Safe State In the safe state of the safety function the DTS o...

Page 12: ...nction Exceptions are common cause failures that disrupt all three relays While the diagnostic function is signaling the failure the probability of a dangerous undetected failure for the remaining two...

Page 13: ...ures are detected to a huge percentage during the installation and therefore the assumption of a constant failure rate during the useful lifetime is valid However according to IEC EN 61508 2 a useful...

Page 14: ...n To avoid contact welding we recommend using a serial fuse in the load circuit The device is delivered with a replaceable fuse Replace this fuse only with a fuse up to 5 AT Optionally use an unfused...

Page 15: ...FD2 RSH 1 2D FL3 Mounting and Installation 2018 06 15 4 3 1 Output Configuration Switch Line fault detection Internal fault detection S1 S2 Off Off disabled disabled On Off enabled disabled Off On not...

Page 16: ...ass the safety function Do not repair modify or manipulate the device Danger Danger to life from faulty or missing fuse protection of the relay contacts Faulty or missing fuse protection of the relay...

Page 17: ...cessary to ensure a complete diagnosis You have 2 options to achieve the diagnostic coverage see step 2 or 3 Internal Diagnosis Procedure 1 Enable the internal fault detection See chapter 4 3 1 2 Swit...

Page 18: ...define the type of proof test and the interval time period Conditions If the conditions are met you can also check the device in the application Proof Test Procedure 1 Enable the internal fault detec...

Page 19: ...is off 1 7 V 24 V DC between terminals 7 and 8 8 Wait at least 2 seconds LED OUT is on LED FLT is off 1 9 V 0 V DC between terminals 7 and 8 10 Wait at least 2 seconds LED OUT is off LED FLT is off 1...

Page 20: ...pole switching In the standard application the process control system is connected to terminals 7 and 8 The line fault transparency LFT of the safety relay must be compatible with the line fault detec...

Page 21: ...indication output of the device may be put in series to the input See figure Figure 5 2 Application with fault indication output in the signal loop of the dual pole switching If the fault indication o...

Page 22: ...cautions Secure the application against accidental restart 3 Do not repair a defective device A defective device must only be repaired by the manufacturer 4 Replace a defective device only by a device...

Page 23: ...FT Hardware Fault Tolerance MTBF Mean Time Between Failures MTTR Mean Time To Restoration PCS Process Control System PFDavg Average Probability of dangerous Failure on Demand PFH Average frequency of...

Page 24: ...rl fuchs com Worldwide Headquarters Pepperl Fuchs GmbH 68307 Mannheim Germany Tel 49 621 776 0 E mail info de pepperl fuchs com For the Pepperl Fuchs representative closest to you check www pepperl fu...

Reviews:

No comments

Brands by name

Popular brands

Load more brands