Pepperl+Fuchs HiC2821 Скачать руководство пользователя

Страница: 7 / 20

Safety Manual SIL KCD2-SR-(Ex)*(.LB)(.SP), HiC282*

Planning

014-

2.2

Assumptions

The following assumptions have been made during the FMEDA analysis:



Only one input and one output are part of the considered safety function

(only 2-channel version).



The device shall claim less than 10 % of the total failure budget for a SIL2

safety loop.



For a SIL2 application operating in Low Demand Mode the total PFD

avg

value

of the SIF (

afety

nstrumented

unction) should be smaller than 10

-2

, hence

the maximum allowable PFD

avg

value would then be 10

-3



For a SIL2 application operating in High Demand Mode of operation the total

PFH value of the SIF should be smaller than 10

-6

per hour, hence the

maximum allowable PFH value would then be 10

-7

per hour.



Failure rate based on the Siemens SN29500 data base.



Failure rates are constant, wear out mechanisms are not included.



External power supply failure rates are not included.



The safety-related device is considered to be of type

components with a

Hardware Fault Tolerance of



Since the loop has a Hardware Fault Tolerance of

and it is a type

component, the SFF must be > 60 % according to table 2 of IEC 61508-2 for a

SIL2 (sub)system.



It is assumed that the device will be used under average industrial ambient

conditions, which are comparable with the classification "stationary mounted"

in MIL-HDBK-217F. Alternatively, the following ambient conditions are

assumed:

• IEC 60654-1 Class C (sheltered location) with temperature limits in the

range of the manufacturer's specifications and an average temperature

of 40

C over a long period. A moisture level within the manufacturer's

specifications is assumed. For a higher average temperature of 60

the failure rates must be multiplied by a factor of 2.5 based on empirical

values. A similar multiplier must be used if frequent temperature

fluctuations are expected.



It is assumed that any safe failures that occur (e.g., output in safe condition)

will be corrected within eight hours (e.g., correction of a sensor fault).



While the device is being repaired, measures must be taken to maintain the

safety function (e.g., by using a replacement device).



The indication of a dangerous fault (via fault bus) is detected within 1 hour by

the programmable logic controller (PLC).

Содержание HiC2821

Страница 1: ...ISO9001 2 Switch Amplifier KCD2 SR Ex LB SP HiC282 PROCESS AUTOMATION SAFETY MANUAL SIL ...

Страница 2: ...ery for Products and Services of the Electrical Industry published by the Central Association of the Electrical Industry Zentralverband Elektrotechnik und Elektroindustrie ZVEI e V in its most recent version as well as the supplementary clause Expanded reservation of proprietorship Safety Manual SIL KCD2 SR Ex LB SP HiC282 ...

Страница 3: ... Low Demand Mode of Operation 6 2 1 2 High Demand or Continuous Mode of Operation 6 2 1 3 Safe Failure Fraction 6 2 2 Assumptions 7 2 3 Safety Function and Safe State 8 2 4 Characteristic Safety Values 9 3 Safety Recommendation 10 3 1 Interfaces 10 3 2 Configuration 10 3 3 Useful Life Time 10 3 4 Installation and Commissioning 12 4 Proof Test 13 4 1 Proof Test Procedure 13 5 Abbreviations 16 Safet...

Страница 4: ...s for which Pepperl Fuchs GmbH will not be liable The devices are developed manufactured and tested according to the relevant safety standards They must only be used for the applications described in the instructions and with specified environmental conditions and only in connection with approved external devices 1 2 Intended Use The devices are available as safe area version KCD2 SR LB SP where t...

Страница 5: ...3 Manufacturer Information Pepperl Fuchs GmbH Lilienthalstrasse 200 68307 Mannheim Germany Up to SIL2 1 4 Relevant Standards and Directives Device specific standards and directives Functional safety IEC 61508 part 1 2 edition 2000 Standard of functional safety of electrical electronic programmable electronic safety related systems product manufacturer Electromagnetic compatibility EN 61326 1 2006 ...

Страница 6: ... assumed to be higher than once per year The relevant safety parameters to be verified are the PFH value Probability of dangerous Failure per Hour Fault reaction time of the safety system the SFF value Safe Failure Fraction the HFT architecture Hardware Fault Tolerance architecture 2 1 3 Safe Failure Fraction The safe failure fraction describes the ratio of all safe failures and dangerous detected...

Страница 7: ...the loop has a Hardware Fault Tolerance of 0 and it is a type A component the SFF must be 60 according to table 2 of IEC 61508 2 for a SIL2 sub system It is assumed that the device will be used under average industrial ambient conditions which are comparable with the classification stationary mounted in MIL HDBK 217F Alternatively the following ambient conditions are assumed IEC 60654 1 Class C sh...

Страница 8: ...LB SP HiC2821 Output I normal mode normal mode S1 position I S1 position II inverted mode S1 position II S1 position I Assignment output II follow output I S2 position I S3 position I LB SC detection1 S2 position II S3 position II Line fault detection ON S3 position I S2 position I OFF2 S3 position II S2 position II 1 This mode may not be used if output II is used for safety relevant applications ...

Страница 9: ... assessment Device type A Mode of operation Low Demand Mode or High Demand Mode HFT 0 SIL 2 Safety function One relay output of one channel Two relay outputs of a one channel device in series s 189 FIT 216 FIT dd 18 FIT 48 FIT du 47 FIT 45 FIT no effect 89 FIT 90 FIT total safety function 254 FIT 309 FIT not part 58 FIT 58 FIT SFF 81 55 85 4 MTBF 1 365 years 311 years PFH 4 68 x 10 8 1 h 4 51 x 10...

Страница 10: ...exceeded Beyond this useful life time the result of the probabilistic calculation is meaningless as the probability of failure significantly increases with time The useful life time is highly dependent on the component itself and its operating conditions temperature in particular for example the electrolytic capacitors can be very sensitive to the working temperature This assumption of a constant ...

Страница 11: ...Contacts The useful life time is limited by the maximum number of switching cycles under load conditions The maximum number of switching cycles is depending on the electrical load and may be higher when reduced currents and voltages are applied You can see the relationship between the maximum switching power and the load conditions in the diagrams below Figure 3 1 Maximum switching power of HiC282...

Страница 12: ...ion and Commissioning During installation all aspects regarding the SIL level of the loop must be considered The safety function must be tested to ensure the expected outputs are given When replacing a device the loop must be shut down In all cases devices must be replaced by the same type ...

Страница 13: ...short circuit detection and by a resistor of 150 k lead breakage detection The input test needs to be done for each input channel individually The threshold must be between 1 4 mA and 1 9 mA the hysteresis must be between 170 µA and 250 µA For normal mode of operation the relay must be activated yellow LED on if the input current is above the threshold For inverse mode of operation the relay must ...

Страница 14: ...y for KCD2 SR Ex2 SP Zone 0 1 2 Div 1 2 Zone 2 Div 2 1 2 KCD2 SR Ex1 LB Multimeter mA RLB RSC 9 10 Multimeter mA 5 6 7 8 Multimeter mA 240 R 2 5 W 24 V DC Multimeter mA 240 R 2 5 W 24 V DC 24 V DC Power supply I supply Supply Multimeter mA Zone 0 1 2 Div 1 2 Zone 2 Div 2 5 6 1 2 7 8 KCD2 SR Ex2 Multimeter mA RLB RSC 3 4 Multimeter mA RLB RSC Multimeter mA 240 R 2 5 W 24 V DC Multimeter mA 240 R 2 ...

Страница 15: ...ltimeter mA Multimeter mA Multimeter mA RLB RSC Multimeter mA RLB RSC 240 R 2 5 W 24 V DC Multimeter mA 240 R 2 5 W 24 V DC Supply Supply 24 V DC Power supply I supply Supply Bus Tip Normally the easiest way to test H System modules is by using a stand alone HiCTB08 UNI SC SC Termination Board The tester then has no need to disconnect wires in the existing application so subsequent miswiring of th...

Страница 16: ...t have no effect on the safety function not part Probability of failure of components that are not in the safety path total safety function Safety function HFT Hardware Fault Tolerance MTBF Mean Time Between Failures MTTR Mean Time To Repair PFDavg Average Probability of Failure on Demand PFH Probability of dangerous Failure per Hour PTC Proof Test Coverage SFF Safe Failure Fraction SIF Safety Ins...

Страница 17: ...Safety Manual SIL KCD2 SR Ex LB SP HiC282 Notes 2014 09 17 Safety Manual SIL KCD2 SR Ex LB HiC282 ...

Страница 18: ...2014 09 18 Safety Manual SIL KCD2 SR Ex LB SP HiC282 Notes ...

Страница 19: ...Safety Manual SIL KCD2 SR Ex LB SP HiC282 Notes 2014 09 19 ...

Страница 20: ...erl fuchs com PROCESS AUTOMATION PROTECTING YOUR PROCESS Worldwide Headquarters Pepperl Fuchs GmbH 68307 Mannheim Germany Tel 49 621 776 0 E mail info de pepperl fuchs com For the Pepperl Fuchs representative closest to you check www pepperl fuchs com contact DOCT 1595H 09 2014 ...

Результаты поиска

Содержание HiC2821

Отзывы:

Похожие инструкции для HiC2821

Бренды по названию

Популярные бренды

Pepperl+Fuchs HiC2821, Руководство по безопасности

Результаты поиска

Содержание HiC2821

Отзывы:

Похожие инструкции для HiC2821

Бренды по названию

Популярные бренды