SAFETY MANUAL - Tuv-fs.com
SAFETY MANUAL - Tuv-fs.com SAFETY MANUAL - Tuv-fs.com
SAFETY MANUAL 1. INTRODUCTION 1.1 PURPOSE OF SAFETY SAFETY MANUAL The 8000 series TMR system has been designed and certified for use in safety related applications. To ensure that systems build upon these foundations, it is necessary to impose requirements on the way such systems are designed, built, tested, installed and commissioned, operated, maintained and de-commissioned. This Manual sets out the requirements to be met during the lifecycle stages of safety-related systems to ensure that the safety objectives of the safety system are achieved This Manual is intended primarily for system integrators. It is assumed that the reader has a thorough understanding of the intended application and can translate readily between the generic terms used within this Manual and the terminology specific to the integrator’s or project’s application area. The TMR system has been independently certified by the German certification authority Technischer Überwachungs-Verein (TÜV) to meet the requirements of IEC 61508 SIL 3, DIN V VDE 0801 Requirements Class 6 (AK6). The content of this Manual has been reviewed by TÜV and it represents the requirements that shall be fulfilled to achieve certifiable safety-related systems up to SIL 3 (AK6). Conditions and configurations that shall be adhered to if the system is to remain in compliance with the requirements of SIL 3 or AK6 certification are clearly marked. The information contained in this Manual is intended for use by engineers and system integrators and is not intended to be a substitute for expertise or experience in safety-related systems. Requirements for quality systems, documentation and competence are included within this document; these are requirements, and NOT replacements, for an operating company’s or integrator's quality systems, procedures and practices. The system integrator remains responsible for the generation of procedures and practices applicable to its business, and shall ensure that these are in accordance with the requirements defined herein. The application of such procedures and practices is also the responsibility of the system integrator, however, these shall be considered mandatory for systems for SIL 3 or AK5/6 applications. Doc No P8094 Issue 14 September 2003 Page 20 of 66
SAFETY MANUAL 1.2 ASSOCIATED DOCUMENTS The following documents are associated with the safety requirements applicable to the TMR system or provide supporting information via TUV web Site. Document DIN V VDE 0801, including Addendum A1 DIN V 19250 Title Principles for Computers in Safety Related Systems Fundamental Aspects to be considered for Measurement and Control Equipment "Maintenance Override" by TÜV Süddeutschland / TÜV Product Service GmbH and TÜV Rheinland IEC61508 Functional Safety of Programmable Electronic Systems IEC61511 Functional safety: Safety Instrumented Systems for the process industry sector EN54-2 NFPA 72 NFPA 85 Fire Detection and Fire Alarm Systems Fire Alarm Systems Boiler and Combustion Systems Hazards Code – 2001 Edition NFPA 86 Standard for Ovens and Furnaces – 1999 Edition An understanding of basic safety and functional safety principles and the content of these standards in particular are highly recommended. The principles of these standards should be thoroughly understood before generating procedures and practises to meet the requirements of this Safety Manual. 1.3 TERMINOLOGY The terms ‘certification’ and ‘certified’ are used widely within this Manual. Within the context of this Manual, these terms refer to the functional safety certification of the product to IEC 61508 SIL 3, DIN V VDE 0801 AK6 and DIN V 19250. The 8000 series as a product is certified to a wider range of standards that are outside the scope of this Safety Manual. This Manual contains rules and recommendations: Rules are mandatory and must be followed if the resulting system is to be a SIL 3 or AK6 compliant application. These are identified by terms such as ‘shall’. Recommendations are not mandatory, but if they are not followed, extra safety precautions must be taken in order to certify the system. Recommendations are identified by terms such as `it is strongly recommended’. Doc Number P8094 Issue 14 September 2003 Page 21 of 67
- Page 1: 8000 SERIES TMR SYSTEM SAFETY MANUA
- Page 4 and 5: SAFETY MANUAL This page intentional
- Page 6 and 7: SAFETY MANUAL NOTICE The content of
- Page 8 and 9: SAFETY MANUAL RADIO FREQUENCY INTER
- Page 10 and 11: SAFETY MANUAL ABBREVIATIONS 1-oo-2
- Page 12 and 13: SAFETY MANUAL elements disagree. DR
- Page 14 and 15: SAFETY MANUAL similar to the simple
- Page 16 and 17: SAFETY MANUAL RS-232C, RS-422, RS-4
- Page 18 and 19: SAFETY MANUAL 8000 Series Certified
- Page 20 and 21: SAFETY MANUAL 3.11.6 Program Testin
- Page 24 and 25: SAFETY MANUAL 1.3.1 Safety and Func
- Page 26 and 27: SAFETY MANUAL The additional elemen
- Page 28 and 29: SAFETY MANUAL The TMR architecture
- Page 30 and 31: SAFETY MANUAL 2.2.1 Safety Lifecycl
- Page 32 and 33: SAFETY MANUAL Tools used within the
- Page 34 and 35: SAFETY MANUAL 2.2.1.9 Safety System
- Page 36 and 37: SAFETY MANUAL • Method of detecti
- Page 38 and 39: SAFETY MANUAL 2.3.1 Competency The
- Page 40 and 41: SAFETY MANUAL 3.2.1 Safety-Related
- Page 42 and 43: SAFETY MANUAL Pulse Generator 8444,
- Page 44 and 45: SAFETY MANUAL 3.2.2 High-Density I/
- Page 46 and 47: SAFETY MANUAL 3.2.3 Analog Input Sa
- Page 48 and 49: SAFETY MANUAL 3.2.7 NFPA 86 Require
- Page 50 and 51: SAFETY MANUAL shall be provided for
- Page 52 and 53: SAFETY MANUAL 3.4 ACTUATOR CONFIGUR
- Page 54 and 55: SAFETY MANUAL 3.6.1.2 Composite Sca
- Page 56 and 57: SAFETY MANUAL Power Fail Timeout (P
- Page 58 and 59: SAFETY MANUAL • Access to the wor
- Page 60 and 61: SAFETY MANUAL 3.11.1 IEC1131 Workbe
- Page 62 and 63: SAFETY MANUAL 3.11.3 Testing of New
- Page 64 and 65: SAFETY MANUAL 3.11.4 Application De
- Page 66 and 67: SAFETY MANUAL Where the interaction
- Page 68 and 69: SAFETY MANUAL In addition to Normal
- Page 70 and 71: SAFETY MANUAL 1ºF/min Table 8 - Cl
<strong>SAFETY</strong> <strong>MANUAL</strong><br />
1.2 ASSOCIATED DOCUMENTS<br />
The following documents are associated with the safety requirements applicable to<br />
the TMR system or provide supporting information via TUV web Site.<br />
Document<br />
DIN V VDE<br />
0801,<br />
including<br />
Addendum<br />
A1<br />
DIN V 19250<br />
Title<br />
Principles for Computers in Safety Related<br />
Systems<br />
Fundamental Aspects to be considered for<br />
Measurement and Control Equipment<br />
"Maintenance Override" by TÜV<br />
Süddeutschland / TÜV Product Service<br />
GmbH and TÜV Rheinland<br />
IEC61508 Functional Safety of Programmable<br />
Electronic Systems<br />
IEC61511 Functional safety: Safety Instrumented<br />
Systems for the process industry sector<br />
EN54-2<br />
NFPA 72<br />
NFPA 85<br />
Fire Detection and Fire Alarm Systems<br />
Fire Alarm Systems<br />
Boiler and Combustion Systems Hazards<br />
Code – 2001 Edition<br />
NFPA 86 Standard for Ovens and Furnaces – 1999<br />
Edition<br />
An understanding of basic safety and functional safety principles and the content of<br />
these standards in particular are highly re<strong>com</strong>mended. The principles of these<br />
standards should be thoroughly understood before generating procedures and<br />
practises to meet the requirements of this Safety Manual.<br />
1.3 TERMINOLOGY<br />
The terms ‘certification’ and ‘certified’ are used widely within this Manual. Within<br />
the context of this Manual, these terms refer to the functional safety certification of<br />
the product to IEC 61508 SIL 3, DIN V VDE 0801 AK6 and DIN V 19250. The 8000<br />
series as a product is certified to a wider range of standards that are outside the<br />
scope of this Safety Manual.<br />
This Manual contains rules and re<strong>com</strong>mendations:<br />
Rules are mandatory and must be followed if the resulting system is to be a SIL 3<br />
or AK6 <strong>com</strong>pliant application. These are identified by terms such as ‘shall’.<br />
Re<strong>com</strong>mendations are not mandatory, but if they are not followed, extra safety<br />
precautions must be taken in order to certify the system. Re<strong>com</strong>mendations are<br />
identified by terms such as `it is strongly re<strong>com</strong>mended’.<br />
Doc Number P8094<br />
Issue 14 September 2003 Page 21 of 67
Change language