SAFETY MANUAL - Tuv-fs.com
SAFETY MANUAL - Tuv-fs.com SAFETY MANUAL - Tuv-fs.com
SAFETY MANUAL 8000 Series Certified family of products for use in a wide range of controls applications including safety, continuous process, supervisory control/data acquisition, and integrated control and safety. Communicatio ns Interface An intelligent communications module which interfaces between a TMR Controller and an Engineering Workstation, third party equipment or other TMR Controllers. TMR Processor A processor for use in safety-related applications of the 8000 series system. Handles application program execution, diagnostics and reporting functions. The TMR Processor uses three high performance RISC processors based on patented TMR architecture arranged in a lock-step configuration. TÜV Certification U Voting System Watchdog Independent third party certification against a defined range of International standards including DIN V VDE 0801, IEC 61508, IEC 801. Units of electronic module size (1-¾ inches). Redundant system (e.g. m out of n, 1-oo-2, 2-oo- 3 etc.) which requires at least m of the n channels to be in agreement before the system can take action. Watchdog circuitry provides dynamic and/or static monitoring of processor operation and is used to annunciate processor or processor related failures. Doc No P8094 Issue 14 September 2003 Page xvi
SAFETY MANUAL TABLE OF CONTENTS Paragraph Page 1. INTRODUCTION...........................................................................................20 1.1 PURPOSE OF SAFETY...........................................................................20 1.2 ASSOCIATED DOCUMENTS..................................................................21 1.3 TERMINOLOGY.......................................................................................21 1.3.1 Safety and Functional Safety .........................................................22 1.3.2 Safety Integrity and Risk Class Levels...........................................22 1.3.3 Process Safety Time (PST) ...........................................................23 1.4 THE 8000 SERIES OVERVIEW ..............................................................25 2. SAFETY PRINCIPLES..................................................................................27 2.1 INTRODUCTION .....................................................................................27 2.2 SAFETY MANAGEMENT ........................................................................27 2.2.1 Safety Lifecycle..............................................................................28 2.3 FUNCTIONAL SAFETY ASSESSMENT..................................................35 2.3.1 Competency...................................................................................36 3. SYSTEM RECOMMENDATIONS .................................................................37 3.1 INTRODUCTION .....................................................................................37 3.2 I/O ARCHITECTURES.............................................................................37 3.2.1 Safety-Related Configurations .......................................................38 3.2.2 High-Density I/O.............................................................................42 3.2.3 Analog Input Safety Accuracy........................................................44 3.2.4 Energise to Action Configurations..................................................44 3.2.5 EN 60204 Category 0 & 1 Configurations......................................45 3.2.6 NFPA 85 Requirements.................................................................45 3.2.7 NFPA 86 Requirements.................................................................46 3.2.8 EN54 Requirements ......................................................................47 3.3 SENSOR CONFIGURATIONS ................................................................49 3.4 ACTUATOR CONFIGURATIONS............................................................50 3.5 PFD CALCULATIONS .............................................................................50 3.6 PROCESSOR CONFIGURATION...........................................................51 3.6.1 Timing ............................................................................................51 3.6.2 Diagnostic Access .........................................................................52 3.6.3 Configuration File Verification........................................................53 3.7 HIGH DENSITY I/O MODULE CONFIGURATION..................................53 3.7.1 Module Characteristics ..................................................................53 3.7.2 Module Replacement Configuration ..............................................54 3.8 INPUT AND OUTPUT FORCING ............................................................55 3.9 MAINTENANCE OVERRIDES.................................................................56 3.10 PEER COMMUNICATIONS CONFIGURATION .....................................57 3.11 APPLICATION PROGRAM DEVELOPMENT .........................................57 3.11.1 IEC1131 Workbench Configuration ...............................................58 3.11.2 Language Selection .......................................................................59 3.11.3 Testing of New or Previously Untested Functions .........................60 3.11.4 Application Development ...............................................................62 3.11.5 Communications Interaction ..........................................................63 Doc No P8094 Issue 14 September 2003 Page xvii
- Page 1: 8000 SERIES TMR SYSTEM SAFETY MANUA
- Page 4 and 5: SAFETY MANUAL This page intentional
- Page 6 and 7: SAFETY MANUAL NOTICE The content of
- Page 8 and 9: SAFETY MANUAL RADIO FREQUENCY INTER
- Page 10 and 11: SAFETY MANUAL ABBREVIATIONS 1-oo-2
- Page 12 and 13: SAFETY MANUAL elements disagree. DR
- Page 14 and 15: SAFETY MANUAL similar to the simple
- Page 16 and 17: SAFETY MANUAL RS-232C, RS-422, RS-4
- Page 20 and 21: SAFETY MANUAL 3.11.6 Program Testin
- Page 22 and 23: SAFETY MANUAL 1. INTRODUCTION 1.1 P
- Page 24 and 25: SAFETY MANUAL 1.3.1 Safety and Func
- Page 26 and 27: SAFETY MANUAL The additional elemen
- Page 28 and 29: SAFETY MANUAL The TMR architecture
- Page 30 and 31: SAFETY MANUAL 2.2.1 Safety Lifecycl
- Page 32 and 33: SAFETY MANUAL Tools used within the
- Page 34 and 35: SAFETY MANUAL 2.2.1.9 Safety System
- Page 36 and 37: SAFETY MANUAL • Method of detecti
- Page 38 and 39: SAFETY MANUAL 2.3.1 Competency The
- Page 40 and 41: SAFETY MANUAL 3.2.1 Safety-Related
- Page 42 and 43: SAFETY MANUAL Pulse Generator 8444,
- Page 44 and 45: SAFETY MANUAL 3.2.2 High-Density I/
- Page 46 and 47: SAFETY MANUAL 3.2.3 Analog Input Sa
- Page 48 and 49: SAFETY MANUAL 3.2.7 NFPA 86 Require
- Page 50 and 51: SAFETY MANUAL shall be provided for
- Page 52 and 53: SAFETY MANUAL 3.4 ACTUATOR CONFIGUR
- Page 54 and 55: SAFETY MANUAL 3.6.1.2 Composite Sca
- Page 56 and 57: SAFETY MANUAL Power Fail Timeout (P
- Page 58 and 59: SAFETY MANUAL • Access to the wor
- Page 60 and 61: SAFETY MANUAL 3.11.1 IEC1131 Workbe
- Page 62 and 63: SAFETY MANUAL 3.11.3 Testing of New
- Page 64 and 65: SAFETY MANUAL 3.11.4 Application De
- Page 66 and 67: SAFETY MANUAL Where the interaction
<strong>SAFETY</strong> <strong>MANUAL</strong><br />
TABLE OF CONTENTS<br />
Paragraph<br />
Page<br />
1. INTRODUCTION...........................................................................................20<br />
1.1 PURPOSE OF <strong>SAFETY</strong>...........................................................................20<br />
1.2 ASSOCIATED DOCUMENTS..................................................................21<br />
1.3 TERMINOLOGY.......................................................................................21<br />
1.3.1 Safety and Functional Safety .........................................................22<br />
1.3.2 Safety Integrity and Risk Class Levels...........................................22<br />
1.3.3 Process Safety Time (PST) ...........................................................23<br />
1.4 THE 8000 SERIES OVERVIEW ..............................................................25<br />
2. <strong>SAFETY</strong> PRINCIPLES..................................................................................27<br />
2.1 INTRODUCTION .....................................................................................27<br />
2.2 <strong>SAFETY</strong> MANAGEMENT ........................................................................27<br />
2.2.1 Safety Lifecycle..............................................................................28<br />
2.3 FUNCTIONAL <strong>SAFETY</strong> ASSESSMENT..................................................35<br />
2.3.1 Competency...................................................................................36<br />
3. SYSTEM RECOMMENDATIONS .................................................................37<br />
3.1 INTRODUCTION .....................................................................................37<br />
3.2 I/O ARCHITECTURES.............................................................................37<br />
3.2.1 Safety-Related Configurations .......................................................38<br />
3.2.2 High-Density I/O.............................................................................42<br />
3.2.3 Analog Input Safety Accuracy........................................................44<br />
3.2.4 Energise to Action Configurations..................................................44<br />
3.2.5 EN 60204 Category 0 & 1 Configurations......................................45<br />
3.2.6 NFPA 85 Requirements.................................................................45<br />
3.2.7 NFPA 86 Requirements.................................................................46<br />
3.2.8 EN54 Requirements ......................................................................47<br />
3.3 SENSOR CONFIGURATIONS ................................................................49<br />
3.4 ACTUATOR CONFIGURATIONS............................................................50<br />
3.5 PFD CALCULATIONS .............................................................................50<br />
3.6 PROCESSOR CONFIGURATION...........................................................51<br />
3.6.1 Timing ............................................................................................51<br />
3.6.2 Diagnostic Access .........................................................................52<br />
3.6.3 Configuration File Verification........................................................53<br />
3.7 HIGH DENSITY I/O MODULE CONFIGURATION..................................53<br />
3.7.1 Module Characteristics ..................................................................53<br />
3.7.2 Module Replacement Configuration ..............................................54<br />
3.8 INPUT AND OUTPUT FORCING ............................................................55<br />
3.9 MAINTENANCE OVERRIDES.................................................................56<br />
3.10 PEER COMMUNICATIONS CONFIGURATION .....................................57<br />
3.11 APPLICATION PROGRAM DEVELOPMENT .........................................57<br />
3.11.1 IEC1131 Workbench Configuration ...............................................58<br />
3.11.2 Language Selection .......................................................................59<br />
3.11.3 Testing of New or Previously Untested Functions .........................60<br />
3.11.4 Application Development ...............................................................62<br />
3.11.5 Communications Interaction ..........................................................63<br />
Doc No P8094<br />
Issue 14 September 2003<br />
Page xvii