background image

SAFETY MANUAL SIL KFD0-RSH-1.4S.PS2

Planning

22

5538

 201

1-

04

7

2.2

Assumptions

The following assumptions have been made during the FMEDA analysis:

Failure rates are constant, wear out mechanisms are not included.

The stress levels are average for an industrial environment and can be 

compared to the Ground Fixed Classification of MIL-HNBK-217F. 

Alternatively, the assumed environment is similar to:

• IEC 60654-1 Class C (sheltered location) with temperature limits within 

the manufacturer's rating and an average temperature over a long period 

of time of 40 

º

C. Humidity levels are assumed within manufacturer's 

rating. For a higher average temperature of 60 

º

C, the failure rates should 

be multiplied with an experience based factor of 2.5. A similar multiplier 

should be used if frequent temperature fluctuation must be assumed.

Failure rate based on the Siemens SN29500 data base.

It was assumed that the appearance of a safe error (e. g. output in safe state) 

would be repaired within 8 hours.

During the absence of the device for repairing, measures have to be taken to 

ensure the safety function (for example: substitution by an equivalent device).

For high currents and high ambient temperature the de-rating given in the data 

sheet needs to be considered.

The input of the device must be connected to a safety PLC which has 

minimum the SIL needed in the loop.

The device shall claim less than 10 % of the total failure budget for a 

SIL3 safety loop.

For a SIL3 application operating in Low Demand Mode the total PFD

avg

 value 

of the SIF (

S

afety 

I

nstrumented 

F

unction) should be smaller than 10

-3

, hence 

the maximum allowable PFD

avg

 value would then be 10

-4

.

For a SIL3 application operating in High Demand Mode of operation the total 

PFH value of the SIF should be smaller than 10

-7

 per hour, hence the 

maximum allowable PFH value would then be 10

-8

 per hour.

Since the circuit has a Hardware Fault Tolerance of 

0

 and it is a type 

A

 

component, the SFF must be > 90 % according to table 2 of IEC 61508-2 for 

SIL3 (sub)system.

Содержание KFD0-RSH-1.4S.PS2

Страница 1: ...ISO9001 3 RELAY MODULE KFD0 RSH 1 4S PS2 PROCESS AUTOMATION SAFETY MANUAL SIL ...

Страница 2: ...livery for Products and Services of the Electrical Industry published by the Central Association of the Electrical Industry Zentralverband Elektrotechnik und Elektroindustrie ZVEI e V in its most recent version as well as the supplementary clause Expanded reservation of proprietorship SAFETY MANUAL SIL KFD0 RSH 1 4S PS2 ...

Страница 3: ...nd Directives 5 2 Planning 6 2 1 System Structure 6 2 1 1 Low Demand Mode 6 2 1 2 High Demand Mode 6 2 2 Assumptions 7 2 3 Safety Function and Safe State 8 2 4 Characteristic Safety Values 9 3 Safety Recommendation 10 3 1 Interfaces 10 3 2 Configuration 10 3 3 Useful Life Time 10 3 4 Installation and Commissioning 11 4 Proof Test 12 4 1 Proof Test Procedure 12 5 Abbreviations 16 ...

Страница 4: ...ause damage to property environment or persons for which Pepperl Fuchs GmbH will not be liable The devices are developed manufactured and tested according to the relevant safety standards They must only be used for the applications described in the instructions and with specified environmental conditions and only in connection with approved external devices 1 2 Intended Use This signal conditioner...

Страница 5: ...evice specific standards and directives Functional safety IEC 61508 part 1 7 edition 2000 Standard of functional safety of electrical electronic programmable electronic safety related systems product manufacturer Electromagnetic compatibility EN 61326 1 2006 NE 21 2006 System specific standards and directives Functional safety IEC 61511 part 1 3 edition 2003 Standard of functional safety safety in...

Страница 6: ...Demand and Tproof proof test interval that has a direct impact on the PFDavg the SFF value Safe Failure Fraction the HFT architecture Hardware Fault Tolerance architecture 2 1 2 High Demand Mode If there is only one loop which combines the standard operation and safety related operation then usually the demand rate for this loop is assumed to be higher than once per year The relevant safety parame...

Страница 7: ...appearance of a safe error e g output in safe state would be repaired within 8 hours During the absence of the device for repairing measures have to be taken to ensure the safety function for example substitution by an equivalent device For high currents and high ambient temperature the de rating given in the data sheet needs to be considered The input of the device must be connected to a safety P...

Страница 8: ...he DTS output being open not conducting Reaction Time The reaction time is 20 ms ETS Safety Function The safety function of the device is defined Whenever the input of the device is energized the ETS output is conducting Safe State For the ETS safety function the safe state is defined as the ETS output being closed conducting Reaction Time The reaction time is 20 ms DPS The dual pole switching app...

Страница 9: ...mand Mode Safety function 2 ETS 4 DTS HFT 0 0 SIL 3 3 λsd λsu 139 7 FIT 144 77 FIT λdd 0 FIT 0 FIT λdu 7 1 FIT 1 83 FIT λtotal safety function 146 6 FIT 146 6 FIT SFF 95 2 98 7 MTBF 3 639 years 560 years PFH 7 1 x 10 9 1 h 1 83 x 10 9 1 h PFDavg for T1 1 year 3 1 x 10 5 8 01 x 10 6 Tproof max 3 years 12 years Reaction time 20 ms 1 Pepperl Fuchs documentation number 2 The device can be used in two ...

Страница 10: ...at the useful life time of components is not exceeded Beyond this useful life time the result of the probabilistic calculation is meaningless as the probability of failure significantly increases with time The useful life time is highly dependent on the component itself and its operating conditions temperature in particular for example the electrolytic capacitors can be very sensitive to the worki...

Страница 11: ...ice The effective life time can be higher Maximum Switching Power of Output Contacts The useful life time is limited by the maximum switching cycles under load conditions You can see the relationship between the maximum switching power and the load conditions in the diagram below Figure 3 1 3 4 Installation and Commissioning Installation has to consider all aspects regarding the SIL level of the l...

Страница 12: ...ge of 24 V DC Procedure For the proof test five tests have to be done as shown in the following table and pictures Test No Input or Test Input Output mA 1 Vtest input 24 V DC between terminals 10 11 DTS output terminals 5 6 OL overload ETS output terminals 2 3 shows 0 Ω Red LED TST1 is flashing 2 Vtest input 24 V DC between terminals 11 12 DTS output terminals 5 6 OL overload ETS output terminals ...

Страница 13: ...of Test 225538 2011 04 13 Figure 4 1 Proof test set up for KFD0 RSH 1 4S PS2 test 1 Figure 4 2 Proof test set up for KFD0 RSH 1 4S PS2 test 2 4 5 6 2 3 10 12 11 24 V Multimeter Ω Multimeter Ω 10 12 11 24 V 4 5 6 2 3 Multimeter Ω Multimeter Ω ...

Страница 14: ...H 1 4S PS2 Proof Test Figure 4 3 Proof test set up for KFD0 RSH 1 4S PS2 test 3 Figure 4 4 Proof test set up for KFD0 RSH 1 4S PS2 test 4 4 5 6 2 3 24 V 24 V Multimeter Ω Multimeter Ω 10 12 11 4 5 6 2 3 0 V 0 V Multimeter Ω Multimeter Ω 10 12 11 ...

Страница 15: ...KFD0 RSH 1 4S PS2 Proof Test 225538 2011 04 15 Figure 4 5 Proof test set up for KFD0 RSH 1 4S PS2 test 5 Only if all tests are successfully done the proof test is successfull 7 4 5 6 2 3 8 24 V Multimeter Ω Multimeter Ω ...

Страница 16: ...FDavg Average Probability of Failure on Demand PFH Probability of dangerous Failure per Hour PTC Proof Test Coverage SFF Safe Failure Fraction SIF Safety Instrumented Function SIL Safety Integrity Level SIS Safety Instrumented System Tproof Proof Test Interval DPS Dual Pole Switching DTS De energized To Safe State ESD Emergency Shut Down ETS Energized To Safe State ...

Страница 17: ...SAFETY MANUAL SIL KFD0 RSH 1 4S PS2 Notes 225538 2011 04 17 ...

Страница 18: ...hs com Worldwide Headquarters Pepperl Fuchs GmbH 68307 Mannheim Germany Tel 49 621 776 0 E mail info de pepperl fuchs com For the Pepperl Fuchs representative closest to you check www pepperl fuchs com pfcontact PROCESS AUTOMATION PROTECTING YOUR PROCESS 225538 TDOCT 2052CENG 04 2011 ...

Отзывы: