SlideShare une entreprise Scribd logo
1  sur  8
Télécharger pour lire hors ligne
A White Paper From ASCO Valve,Inc.
Effective Compliance
with IEC 61508 When
Selecting Solenoid Valves
for Safety Systems
by David Park and George Wahlers
Introduction
Regulatory modifications in 2010 have raised important issues in design and use of indus-
trial safety systems. Certain changes in IEC 61508, now being widely implemented, mean
that designers and users who desire full compliance must give new consideration to
topics such as SIL levels and the transition from 1H to 2H methodologies.
In particular, these issues can impact users’ selection of solenoid valves and prepack-
aged redundant control systems (RCS) for implementation in a safety instrumented
system (SIS). Such selections may also be affected by how experienced valve suppliers
are at dealing with complex new compliance methodologies.
These issues are especially applicable to the oil, gas, chemical, and power industries —
in applications such as safety shutdown systems, boilers, furnaces, high-integrity protec-
tion systems (HIPS), and more. They’re of concern to safety engineers and reliability
engineers, as well as to process engineers, engineering executives, and plant managers.
This report will address these issues in developing a compliant SIS using valves and
RCSs. Making the right choices in safety system planning and in valve supplier selection
can affect design time, costs, and effort — as well as the safety of the plant itself.
Safety in process
Every industrial plant must be concerned with risks to its safety, and to the mitigation of
those risks. Safety of process components continues to be of critical importance in light
of periodic industrial disasters such as Buncefield, Deepwater Horizon, and the
November 2013 oil pipeline explosion in Qingdao, China.
Such events naturally draw media attention, and often increase regulatory pressures on
all operations. In plants that actually suffer these or even lesser safety incidents, conse-
quences can include the trouble and costs of process downtime — as well as the para-
2
mount considerations of harm to employees, the community, and the environment. Thus
planners at all industrial process operations must avoid complacency on safety issues.
Certified solenoid valves properly used in SISs are important elements of any corporate
risk mitigation strategy.
Evolving standards
IEC 61508, titled “Functional Safety of Electrical/Electronic/Programmable Electronic
Safety-Related Systems,” is the accepted international standard that guides selection of
components for industrial safety systems. Its latest revision, explained below, was issued
in 2010.
However, certain provisions of this standard — especially Route 2H, — are only now
becoming widely implemented. In fact, engineering groups at numerous process manu-
facturers are currently wrestling with complexities arising from these issues as they
evolve fresh approaches to adjust to the new standard.
Note that the technicalities may be daunting, as this report itself demonstrates. An
extensive selection of specialized concepts and terms are introduced here (plus their
accompanying initialisms, from SIS, SIL, and SIF to PFDavg, FMEDA, and FIT). All of
these are used in determining correct compliance. Their number and scope give some
indication of the difficulties facing professionals who may not be well versed in this
area of safety practice.
Thus many designers and safety engineers tackling these changes find it helpful to con-
sult a knowledgeable solenoid valve supplier. They report that their supplier’s experts can
help deliver welcome savings in schedules and cost. This allows engineers to devote
more attention to other critical parts of the project.
Evaluating solenoid valve redundancy and SIL
The safety engineer faces numerous challenges in designing an efficient SIS for a given
plant process. He or she must decide what technology should be selected, what level of
risk reduction must be achieved, what architecture is appropriate for the given control
system components, and what testing is required to reach the system’s desired safety
integrity level (SIL). System development includes how frequently diagnostic test are
performed both manually and automatically and is important because frequent testing
may mean system downtime.
3
In particular, when selecting crucial technology such as solenoid valves, the engineer
must begin by considering three factors:
1. Architectural constraints dictate the required level of redundancy needed to achieve a
desired SIL level for a given safety instrumented function (SIF). This redundancy is
referred to as the hardware fault tolerance (HFT).
2. A solenoid valve’s average probability of failure on demand (PFDavg) determines the
device’s contribution to the SIF’s overall PFDavg when used with other devices, not its
SIL-capability as a stand-alone device.
3. Does the device possess IEC 61508 certification? Certification indicates that its manu-
facturer’s design, manufacturing, and quality procedures satisfy this IEC standard’s
requirements for the device’s listed SIL capability.
Once the SIF is designed, SIL verification calculations determine if it will provide the
desired risk reduction. For example, the safety engineer may use the following simplified
formula on a single-channel, one out of one (1oo1) SIF with proof test coverage to deter-
mine if the PFDavg meets the desired SIL level:
Consideration of certification is the next step. Devices such as solenoid valves are cate-
gorized as type A devices — “non-complex” mechanisms that possess discrete elements
according to IEC 61508 (2010).
Certification begins with a failure mode effect and diagnostics analysis (FMEDA). This
analysis determines the failures in time (FIT) rates “λ” for different types of failures: safe
detected, safe undetected, dangerous detected, and dangerous undetected. Once these
rates are established, the safe failure fraction (SFF) and PFDavg can be calculated:
4
PFDAVG–1oo1 =
CPT * λDU
* TI
+ (λDD
* MTTR) +
(1 – CPT * λDU
* LT
PFDAVG–1oo1 = Average Probability of Failure on Demand
λDU
= Dangerous Undetected failure rate
λDD
= Dangerous Detected failure rate
TI = Proof Test Interval
MTTR = Mean Time To Restore
CPT = Manual Proof Test Coverage = λDD
/ (λDD
+ λDU
)
LT = Lifetime of the system
2 2
5
IEC 61508 allows two routes to determine a solenoid valve’s SIL capability. The traditional
Route 1H uses FIT rates to calculate a safe failure fraction (SFF) for the given valve. The
SFF can then be used to determine the HFT, which in turn can establish the level of
redundancies required in using this valve, and can show what SIL level the safety func-
tion utilizing this valve would attain.
As part of an effort to reduce ambiguity in failure type definitions, for its 2010 release IEC
61508 altered the SFF formula used in Route 1H. Briefly, “no effect” failures are no longer
a component of safe failures.
This change usually produces a lower SFF in the formula above. If the SFF values drop
below certain thresholds as shown in the table below, a higher HFT than before is
required to achieve desired SIL levels. For example, a valve with an SFF of 75% would be
SIL 3 capable with an HFT of 1. But if the SFF dropped below 60%, the valve would only
be SIL 2 capable with that same HFT of 1.
SFF =
λSD
+ λSU
+ λDD
Failure rate types
λSD
= Safe Detected failure rate
λSU
= Safe Undetected failure rate
λDD
= Dangerous Detected failure rate
λDU
= Dangerous Undetected failure rate
λSD
+ λSU
+ λDD
+ λDU
Type A Subsystem
Safe Failure
Fraction (SFF)
Hardware FaultTolerance (HFT)
0 1 2
< 60% SIL 1 SIL 2 SIL 3
60% to < 90% SIL 2 SIL 3 SIL 4
90% to < 90% SIL 3 SIL 4 SIL 4
≥ 99% SIL 3 SIL 4 SIL 4
Note: An HFT of N means that N+1 faults could
cause a loss of the safety function.
6
Evaluating Routes 1H and 2H
Another major change in the 2010 release of IEC 61508 was the introduction of Route 2H.
This began the process whereby some certifying agencies are phasing out Route 1H
approaches for evaluation of final elements (solenoid valves, actuators, ball valves, etc.).
As with Route 1H, failure rates (λ) are first determined via lab testing or FMEDA calcula-
tion. But instead of SFF and HFT, Route 2H uses the failure rates to determine PFDavg and
HFT for SIL capability.
And perhaps most importantly, Route 2H affirms the failure rates with historical informa-
tion — actual customer field return data on component reliability. In fact, Route 2H can
only be applied if there is sufficient field data to support the failure rates used in the
PFDavg calculations and that a valve is proven in use. If so, this data can be used to
determine SIL levels.
How is that historical data obtained? It’s most often available when dealing with a supplier
who has received validation from leading independent global safety certification sources,
such as Exida or TÜV. Failure rates for numerous ASCO parts and components are sup-
ported by data collected by Exida arising from literally billions of hours of operation.
The paramount advantage of using Route 2H: its higher confidence level. This refers to
the statistical probability that the actual failure rate — λactual — will fall between the
limits λ5% and λ95% (which are at the higher and lower edges of a bell curve, respec-
tively). While Route 1H usually exhibits only 70% confidence, Route 2H typically achieves
90% — promising a 90% certainty that the predicted failures will occur as expected. This
higher confidence is possible due to the support of calculated failure rates by actual field
return data, and the ability to take more uncertainties into account.
Note that Route 1H will still be used for electronic or other complex devices, program-
mable systems, and other devices incorporating diagnostics. Route 2H is applied to
simple or mechanical products such as valves and other final elements.
Nevertheless, industry-wide acceptance of the Route 2H method has been growing
steadily since it was first implemented. Agencies such as exida use the Route 2H
approach for both new and renewed certifications. Some customers have been under-
standably hesitant to adopt it because of existing investments in their systems using
Route 1H. Fortunately, changing from the 1H to the 2H approach makes little or no differ-
ence in certification. We recommend that users become familiar with Route 2H and
understand its significance.
7
Evaluating suppliers
For the safest system design, selecting the right solenoid valve supplier may be as impor-
tant as any of the technical choices discussed above.
Solenoid valves are too critical to be purchased as mere commodities; avoid vendors
who emphasize the lowest price alone. Look instead for a supplier that’s deeply involved
in safety issues, understands what’s involved in setting up a safety system, and has com-
prehensive resources to provide technical support.
Safety certification of valve components can involve considerable complexities for the
supplier. Gravitate toward suppliers who have taken the trouble to obtain such certifica-
tion — and who are validated by independent sources. ASCO possesses the world’s
widest variety of SIL-certified pilot valve solutions. Many of these products have certifi-
cations from both Exida and TÜV international agencies.
Ask the right questions. When you’re evaluating products for an SIS, does a given suppli-
er furnish your required level of local/international service/support? Does it provide a
comprehensive selection, so you can find precisely the products you need?
Conclusion
Safety is a critical requirement for most if not all industrial plants. It’s vital that users keep
up with new developments in regulation and technology within this fast-changing field.
This is particularly true of the ability to make informed decisions on issues such as com-
pliance with IEC 61508, consideration of SIL levels, transition from 1H to 2H, and selecting
solenoid valves.
An experienced solenoid valve supplier that’s knowledgeable about these issues can
serve as a valuable resource for advice and information. Users who stay informed can
ensure compliance and improve savings and process safety.
Takeaways
• IEC 61508 has new methods to determine SIL-capability for valves used
in safety systems.
• Designers and users must consider valve redundancy, SIL levels, and
transition from 1H to 2H certification methodologies
• A valve supplier concerned with and experienced in compliance topics
can remove much of the burden of these issues in safety system design
• Making correct choices can affect design time, costs, and effort, as
well as overall plant safety
1331036
Global Contacts www.ascovalve.com
Regional Headquarters
Global Headquarters
Manufacturing & Key Offices
Other Worldwide Locations
Australia (61) 2-9-451-7077
Brazil (55) 11-4208-1700
Canada (1) 519-758-2700
China (86) 21-3395-0000
Czech Republic (420) 235-090-061
Dubai -UAE (971) 4-811-8200
France (33) 1-47-14-32-00
Germany (49) 7237-9960
India (91) 44-39197300
Italy (39) 02-356931
Japan (81) 798-65-6361
Mexico (52) 55-5809-5640
Netherlands (31) 33-277-7911
Singapore (65) 6556-1100
South Korea (82) 2-3483-1570
Spain (34) 942-87-6100
Turkey (90) 216-577-3107
United Kingdom (44) 1695-713600
ASCO Headquarters (U.S.A.)
Tel: 800-972-ASCO (2726) or
+1 973-966-2000
info-valve@asco.com
The ASCO logo is a trademark of Automatic Switch Co.
The Emerson logo is a trademark and service mark of Emerson Electric Co.
All other trademarks are the properties of their respective owners.
© 2014 ASCO Valve, Inc. All rights reserved.
Printed in the U.S.A.
4

Contenu connexe

En vedette

Autoevaluación 12
Autoevaluación 12Autoevaluación 12
Autoevaluación 12Naira97
 
Kq thu nghiem lam sang
Kq thu nghiem lam sangKq thu nghiem lam sang
Kq thu nghiem lam sanganhdung259
 
Intervento di Luciano Pugnaletto, Milano 10 dicembre 2015
Intervento di Luciano Pugnaletto, Milano 10 dicembre 2015Intervento di Luciano Pugnaletto, Milano 10 dicembre 2015
Intervento di Luciano Pugnaletto, Milano 10 dicembre 2015infoprogetto
 
Landscape project proposal
Landscape project proposalLandscape project proposal
Landscape project proposalFlenny Wong
 
Aktion mensch, German NGO
Aktion mensch, German NGOAktion mensch, German NGO
Aktion mensch, German NGOGizem Ay
 
56077081 ensayo-sobre-internet
56077081 ensayo-sobre-internet56077081 ensayo-sobre-internet
56077081 ensayo-sobre-internetcarlosdiapos
 
Conflict in Colombia
Conflict in ColombiaConflict in Colombia
Conflict in Colombiaavakennard
 

En vedette (11)

Autoevaluación 12
Autoevaluación 12Autoevaluación 12
Autoevaluación 12
 
Musik1/11
Musik1/11Musik1/11
Musik1/11
 
Boletimtorneio 013
Boletimtorneio  013Boletimtorneio  013
Boletimtorneio 013
 
Kq thu nghiem lam sang
Kq thu nghiem lam sangKq thu nghiem lam sang
Kq thu nghiem lam sang
 
Intervento di Luciano Pugnaletto, Milano 10 dicembre 2015
Intervento di Luciano Pugnaletto, Milano 10 dicembre 2015Intervento di Luciano Pugnaletto, Milano 10 dicembre 2015
Intervento di Luciano Pugnaletto, Milano 10 dicembre 2015
 
Landscape project proposal
Landscape project proposalLandscape project proposal
Landscape project proposal
 
Aktion mensch, German NGO
Aktion mensch, German NGOAktion mensch, German NGO
Aktion mensch, German NGO
 
Compliance Training
Compliance TrainingCompliance Training
Compliance Training
 
56077081 ensayo-sobre-internet
56077081 ensayo-sobre-internet56077081 ensayo-sobre-internet
56077081 ensayo-sobre-internet
 
Conflict in Colombia
Conflict in ColombiaConflict in Colombia
Conflict in Colombia
 
Social Media
Social MediaSocial Media
Social Media
 

Plus de Mead O'Brien, Inc.

Intrusive vs. Non-Intrusive Electric Actuators: Which option is right for you...
Intrusive vs. Non-Intrusive Electric Actuators: Which option is right for you...Intrusive vs. Non-Intrusive Electric Actuators: Which option is right for you...
Intrusive vs. Non-Intrusive Electric Actuators: Which option is right for you...Mead O'Brien, Inc.
 
Industrial Boiler and Burner Limit Control Switches
Industrial Boiler and Burner Limit Control SwitchesIndustrial Boiler and Burner Limit Control Switches
Industrial Boiler and Burner Limit Control SwitchesMead O'Brien, Inc.
 
Metso Neles Flow Control Solutions: Valves, Actuation, and Automation
Metso Neles Flow Control Solutions: Valves, Actuation, and AutomationMetso Neles Flow Control Solutions: Valves, Actuation, and Automation
Metso Neles Flow Control Solutions: Valves, Actuation, and AutomationMead O'Brien, Inc.
 
How Your Steam Trap Selection Affects Your Bottom Line Profits: Inverted Buck...
How Your Steam Trap Selection Affects Your Bottom Line Profits: Inverted Buck...How Your Steam Trap Selection Affects Your Bottom Line Profits: Inverted Buck...
How Your Steam Trap Selection Affects Your Bottom Line Profits: Inverted Buck...Mead O'Brien, Inc.
 
Steam Trapping and Steam Tracing Equipment
Steam Trapping and Steam Tracing EquipmentSteam Trapping and Steam Tracing Equipment
Steam Trapping and Steam Tracing EquipmentMead O'Brien, Inc.
 
Limitorque WG Series Installation, Operation, and Maintenance
Limitorque WG Series Installation, Operation, and MaintenanceLimitorque WG Series Installation, Operation, and Maintenance
Limitorque WG Series Installation, Operation, and MaintenanceMead O'Brien, Inc.
 
Metso Neles T5 Series Top Entry Rotary Ball Valves
Metso Neles T5 Series Top Entry Rotary Ball ValvesMetso Neles T5 Series Top Entry Rotary Ball Valves
Metso Neles T5 Series Top Entry Rotary Ball ValvesMead O'Brien, Inc.
 
Foxboro IMT23 Transmitter Operation, Configuration, and Calibration
Foxboro IMT23 Transmitter Operation, Configuration, and CalibrationFoxboro IMT23 Transmitter Operation, Configuration, and Calibration
Foxboro IMT23 Transmitter Operation, Configuration, and CalibrationMead O'Brien, Inc.
 
Water Cooled Portable Air Conditioners
Water Cooled Portable Air ConditionersWater Cooled Portable Air Conditioners
Water Cooled Portable Air ConditionersMead O'Brien, Inc.
 
Limitorque QX Electronic Actuator User Instructions
Limitorque QX Electronic Actuator User InstructionsLimitorque QX Electronic Actuator User Instructions
Limitorque QX Electronic Actuator User InstructionsMead O'Brien, Inc.
 
Steam Conservation Guidelines for Condensate Drainage
Steam Conservation Guidelines for Condensate DrainageSteam Conservation Guidelines for Condensate Drainage
Steam Conservation Guidelines for Condensate DrainageMead O'Brien, Inc.
 
Neles NDX Intelligent Valve Positioner
Neles NDX Intelligent Valve PositionerNeles NDX Intelligent Valve Positioner
Neles NDX Intelligent Valve PositionerMead O'Brien, Inc.
 
Data Supplement for Kunkle Safety and Relief Products
Data Supplement for Kunkle Safety and Relief ProductsData Supplement for Kunkle Safety and Relief Products
Data Supplement for Kunkle Safety and Relief ProductsMead O'Brien, Inc.
 
Neles Triple Eccentric Disc Valve, Metal Seated with Flow Balancing Trim
Neles Triple Eccentric Disc Valve, Metal Seated with Flow Balancing TrimNeles Triple Eccentric Disc Valve, Metal Seated with Flow Balancing Trim
Neles Triple Eccentric Disc Valve, Metal Seated with Flow Balancing TrimMead O'Brien, Inc.
 
BIST (Built-in-Self-Test) Features for Electronic Valve Actuators
BIST (Built-in-Self-Test) Features for Electronic Valve ActuatorsBIST (Built-in-Self-Test) Features for Electronic Valve Actuators
BIST (Built-in-Self-Test) Features for Electronic Valve ActuatorsMead O'Brien, Inc.
 
Understanding & Solving Heat Transfer Equipment Stall
Understanding & Solving Heat Transfer Equipment StallUnderstanding & Solving Heat Transfer Equipment Stall
Understanding & Solving Heat Transfer Equipment StallMead O'Brien, Inc.
 
Automation in Industry: The People Make the Difference!
Automation in Industry: The People Make the Difference! Automation in Industry: The People Make the Difference!
Automation in Industry: The People Make the Difference! Mead O'Brien, Inc.
 

Plus de Mead O'Brien, Inc. (20)

Intrusive vs. Non-Intrusive Electric Actuators: Which option is right for you...
Intrusive vs. Non-Intrusive Electric Actuators: Which option is right for you...Intrusive vs. Non-Intrusive Electric Actuators: Which option is right for you...
Intrusive vs. Non-Intrusive Electric Actuators: Which option is right for you...
 
Industrial Boiler and Burner Limit Control Switches
Industrial Boiler and Burner Limit Control SwitchesIndustrial Boiler and Burner Limit Control Switches
Industrial Boiler and Burner Limit Control Switches
 
Metso Neles Flow Control Solutions: Valves, Actuation, and Automation
Metso Neles Flow Control Solutions: Valves, Actuation, and AutomationMetso Neles Flow Control Solutions: Valves, Actuation, and Automation
Metso Neles Flow Control Solutions: Valves, Actuation, and Automation
 
Ashcroft Corrosion Guide
Ashcroft Corrosion GuideAshcroft Corrosion Guide
Ashcroft Corrosion Guide
 
How Your Steam Trap Selection Affects Your Bottom Line Profits: Inverted Buck...
How Your Steam Trap Selection Affects Your Bottom Line Profits: Inverted Buck...How Your Steam Trap Selection Affects Your Bottom Line Profits: Inverted Buck...
How Your Steam Trap Selection Affects Your Bottom Line Profits: Inverted Buck...
 
Steam Trapping and Steam Tracing Equipment
Steam Trapping and Steam Tracing EquipmentSteam Trapping and Steam Tracing Equipment
Steam Trapping and Steam Tracing Equipment
 
Limitorque WG Series Installation, Operation, and Maintenance
Limitorque WG Series Installation, Operation, and MaintenanceLimitorque WG Series Installation, Operation, and Maintenance
Limitorque WG Series Installation, Operation, and Maintenance
 
Metso Neles T5 Series Top Entry Rotary Ball Valves
Metso Neles T5 Series Top Entry Rotary Ball ValvesMetso Neles T5 Series Top Entry Rotary Ball Valves
Metso Neles T5 Series Top Entry Rotary Ball Valves
 
Foxboro IMT23 Transmitter Operation, Configuration, and Calibration
Foxboro IMT23 Transmitter Operation, Configuration, and CalibrationFoxboro IMT23 Transmitter Operation, Configuration, and Calibration
Foxboro IMT23 Transmitter Operation, Configuration, and Calibration
 
Water Cooled Portable Air Conditioners
Water Cooled Portable Air ConditionersWater Cooled Portable Air Conditioners
Water Cooled Portable Air Conditioners
 
VERIS Accelabar Flow Meter
VERIS Accelabar Flow MeterVERIS Accelabar Flow Meter
VERIS Accelabar Flow Meter
 
Limitorque QX Electronic Actuator User Instructions
Limitorque QX Electronic Actuator User InstructionsLimitorque QX Electronic Actuator User Instructions
Limitorque QX Electronic Actuator User Instructions
 
Steam Conservation Guidelines for Condensate Drainage
Steam Conservation Guidelines for Condensate DrainageSteam Conservation Guidelines for Condensate Drainage
Steam Conservation Guidelines for Condensate Drainage
 
Neles NDX Intelligent Valve Positioner
Neles NDX Intelligent Valve PositionerNeles NDX Intelligent Valve Positioner
Neles NDX Intelligent Valve Positioner
 
Data Supplement for Kunkle Safety and Relief Products
Data Supplement for Kunkle Safety and Relief ProductsData Supplement for Kunkle Safety and Relief Products
Data Supplement for Kunkle Safety and Relief Products
 
Hot Water for Industry
Hot Water for IndustryHot Water for Industry
Hot Water for Industry
 
Neles Triple Eccentric Disc Valve, Metal Seated with Flow Balancing Trim
Neles Triple Eccentric Disc Valve, Metal Seated with Flow Balancing TrimNeles Triple Eccentric Disc Valve, Metal Seated with Flow Balancing Trim
Neles Triple Eccentric Disc Valve, Metal Seated with Flow Balancing Trim
 
BIST (Built-in-Self-Test) Features for Electronic Valve Actuators
BIST (Built-in-Self-Test) Features for Electronic Valve ActuatorsBIST (Built-in-Self-Test) Features for Electronic Valve Actuators
BIST (Built-in-Self-Test) Features for Electronic Valve Actuators
 
Understanding & Solving Heat Transfer Equipment Stall
Understanding & Solving Heat Transfer Equipment StallUnderstanding & Solving Heat Transfer Equipment Stall
Understanding & Solving Heat Transfer Equipment Stall
 
Automation in Industry: The People Make the Difference!
Automation in Industry: The People Make the Difference! Automation in Industry: The People Make the Difference!
Automation in Industry: The People Make the Difference!
 

Dernier

Engineering Mechanics Chapter 5 Equilibrium of a Rigid Body
Engineering Mechanics  Chapter 5  Equilibrium of a Rigid BodyEngineering Mechanics  Chapter 5  Equilibrium of a Rigid Body
Engineering Mechanics Chapter 5 Equilibrium of a Rigid BodyAhmadHajasad2
 
Landsman converter for power factor improvement
Landsman converter for power factor improvementLandsman converter for power factor improvement
Landsman converter for power factor improvementVijayMuni2
 
Graphics Primitives and CG Display Devices
Graphics Primitives and CG Display DevicesGraphics Primitives and CG Display Devices
Graphics Primitives and CG Display DevicesDIPIKA83
 
Guardians and Glitches: Navigating the Duality of Gen AI in AppSec
Guardians and Glitches: Navigating the Duality of Gen AI in AppSecGuardians and Glitches: Navigating the Duality of Gen AI in AppSec
Guardians and Glitches: Navigating the Duality of Gen AI in AppSecTrupti Shiralkar, CISSP
 
cloud computing notes for anna university syllabus
cloud computing notes for anna university syllabuscloud computing notes for anna university syllabus
cloud computing notes for anna university syllabusViolet Violet
 
Renewable Energy & Entrepreneurship Workshop_21Feb2024.pdf
Renewable Energy & Entrepreneurship Workshop_21Feb2024.pdfRenewable Energy & Entrepreneurship Workshop_21Feb2024.pdf
Renewable Energy & Entrepreneurship Workshop_21Feb2024.pdfodunowoeminence2019
 
Gender Bias in Engineer, Honors 203 Project
Gender Bias in Engineer, Honors 203 ProjectGender Bias in Engineer, Honors 203 Project
Gender Bias in Engineer, Honors 203 Projectreemakb03
 
Dev.bg DevOps March 2024 Monitoring & Logging
Dev.bg DevOps March 2024 Monitoring & LoggingDev.bg DevOps March 2024 Monitoring & Logging
Dev.bg DevOps March 2024 Monitoring & LoggingMarian Marinov
 
Transforming Process Safety Management: Challenges, Benefits, and Transition ...
Transforming Process Safety Management: Challenges, Benefits, and Transition ...Transforming Process Safety Management: Challenges, Benefits, and Transition ...
Transforming Process Safety Management: Challenges, Benefits, and Transition ...soginsider
 
GENERAL CONDITIONS FOR CONTRACTS OF CIVIL ENGINEERING WORKS
GENERAL CONDITIONS  FOR  CONTRACTS OF CIVIL ENGINEERING WORKS GENERAL CONDITIONS  FOR  CONTRACTS OF CIVIL ENGINEERING WORKS
GENERAL CONDITIONS FOR CONTRACTS OF CIVIL ENGINEERING WORKS Bahzad5
 
Modelling Guide for Timber Structures - FPInnovations
Modelling Guide for Timber Structures - FPInnovationsModelling Guide for Timber Structures - FPInnovations
Modelling Guide for Timber Structures - FPInnovationsYusuf Yıldız
 
Nodal seismic construction requirements.pptx
Nodal seismic construction requirements.pptxNodal seismic construction requirements.pptx
Nodal seismic construction requirements.pptxwendy cai
 
Popular-NO1 Kala Jadu Expert Specialist In Germany Kala Jadu Expert Specialis...
Popular-NO1 Kala Jadu Expert Specialist In Germany Kala Jadu Expert Specialis...Popular-NO1 Kala Jadu Expert Specialist In Germany Kala Jadu Expert Specialis...
Popular-NO1 Kala Jadu Expert Specialist In Germany Kala Jadu Expert Specialis...Amil baba
 
Basic Principle of Electrochemical Sensor
Basic Principle of  Electrochemical SensorBasic Principle of  Electrochemical Sensor
Basic Principle of Electrochemical SensorTanvir Moin
 
دليل تجارب الاسفلت المختبرية - Asphalt Experiments Guide Laboratory
دليل تجارب الاسفلت المختبرية - Asphalt Experiments Guide Laboratoryدليل تجارب الاسفلت المختبرية - Asphalt Experiments Guide Laboratory
دليل تجارب الاسفلت المختبرية - Asphalt Experiments Guide LaboratoryBahzad5
 
How to Write a Good Scientific Paper.pdf
How to Write a Good Scientific Paper.pdfHow to Write a Good Scientific Paper.pdf
How to Write a Good Scientific Paper.pdfRedhwan Qasem Shaddad
 
Test of Significance of Large Samples for Mean = µ.pptx
Test of Significance of Large Samples for Mean = µ.pptxTest of Significance of Large Samples for Mean = µ.pptx
Test of Significance of Large Samples for Mean = µ.pptxHome
 

Dernier (20)

Engineering Mechanics Chapter 5 Equilibrium of a Rigid Body
Engineering Mechanics  Chapter 5  Equilibrium of a Rigid BodyEngineering Mechanics  Chapter 5  Equilibrium of a Rigid Body
Engineering Mechanics Chapter 5 Equilibrium of a Rigid Body
 
Landsman converter for power factor improvement
Landsman converter for power factor improvementLandsman converter for power factor improvement
Landsman converter for power factor improvement
 
Graphics Primitives and CG Display Devices
Graphics Primitives and CG Display DevicesGraphics Primitives and CG Display Devices
Graphics Primitives and CG Display Devices
 
Guardians and Glitches: Navigating the Duality of Gen AI in AppSec
Guardians and Glitches: Navigating the Duality of Gen AI in AppSecGuardians and Glitches: Navigating the Duality of Gen AI in AppSec
Guardians and Glitches: Navigating the Duality of Gen AI in AppSec
 
cloud computing notes for anna university syllabus
cloud computing notes for anna university syllabuscloud computing notes for anna university syllabus
cloud computing notes for anna university syllabus
 
Renewable Energy & Entrepreneurship Workshop_21Feb2024.pdf
Renewable Energy & Entrepreneurship Workshop_21Feb2024.pdfRenewable Energy & Entrepreneurship Workshop_21Feb2024.pdf
Renewable Energy & Entrepreneurship Workshop_21Feb2024.pdf
 
Présentation IIRB 2024 Marine Cordonnier.pdf
Présentation IIRB 2024 Marine Cordonnier.pdfPrésentation IIRB 2024 Marine Cordonnier.pdf
Présentation IIRB 2024 Marine Cordonnier.pdf
 
Gender Bias in Engineer, Honors 203 Project
Gender Bias in Engineer, Honors 203 ProjectGender Bias in Engineer, Honors 203 Project
Gender Bias in Engineer, Honors 203 Project
 
Dev.bg DevOps March 2024 Monitoring & Logging
Dev.bg DevOps March 2024 Monitoring & LoggingDev.bg DevOps March 2024 Monitoring & Logging
Dev.bg DevOps March 2024 Monitoring & Logging
 
Transforming Process Safety Management: Challenges, Benefits, and Transition ...
Transforming Process Safety Management: Challenges, Benefits, and Transition ...Transforming Process Safety Management: Challenges, Benefits, and Transition ...
Transforming Process Safety Management: Challenges, Benefits, and Transition ...
 
GENERAL CONDITIONS FOR CONTRACTS OF CIVIL ENGINEERING WORKS
GENERAL CONDITIONS  FOR  CONTRACTS OF CIVIL ENGINEERING WORKS GENERAL CONDITIONS  FOR  CONTRACTS OF CIVIL ENGINEERING WORKS
GENERAL CONDITIONS FOR CONTRACTS OF CIVIL ENGINEERING WORKS
 
計劃趕得上變化
計劃趕得上變化計劃趕得上變化
計劃趕得上變化
 
Modelling Guide for Timber Structures - FPInnovations
Modelling Guide for Timber Structures - FPInnovationsModelling Guide for Timber Structures - FPInnovations
Modelling Guide for Timber Structures - FPInnovations
 
Nodal seismic construction requirements.pptx
Nodal seismic construction requirements.pptxNodal seismic construction requirements.pptx
Nodal seismic construction requirements.pptx
 
Popular-NO1 Kala Jadu Expert Specialist In Germany Kala Jadu Expert Specialis...
Popular-NO1 Kala Jadu Expert Specialist In Germany Kala Jadu Expert Specialis...Popular-NO1 Kala Jadu Expert Specialist In Germany Kala Jadu Expert Specialis...
Popular-NO1 Kala Jadu Expert Specialist In Germany Kala Jadu Expert Specialis...
 
Basic Principle of Electrochemical Sensor
Basic Principle of  Electrochemical SensorBasic Principle of  Electrochemical Sensor
Basic Principle of Electrochemical Sensor
 
دليل تجارب الاسفلت المختبرية - Asphalt Experiments Guide Laboratory
دليل تجارب الاسفلت المختبرية - Asphalt Experiments Guide Laboratoryدليل تجارب الاسفلت المختبرية - Asphalt Experiments Guide Laboratory
دليل تجارب الاسفلت المختبرية - Asphalt Experiments Guide Laboratory
 
How to Write a Good Scientific Paper.pdf
How to Write a Good Scientific Paper.pdfHow to Write a Good Scientific Paper.pdf
How to Write a Good Scientific Paper.pdf
 
Test of Significance of Large Samples for Mean = µ.pptx
Test of Significance of Large Samples for Mean = µ.pptxTest of Significance of Large Samples for Mean = µ.pptx
Test of Significance of Large Samples for Mean = µ.pptx
 
Lecture 2 .pptx
Lecture 2                            .pptxLecture 2                            .pptx
Lecture 2 .pptx
 

Effective Compliance with IEC 61508 When Selecting Solenoid Valves for Safety Systems

  • 1. A White Paper From ASCO Valve,Inc. Effective Compliance with IEC 61508 When Selecting Solenoid Valves for Safety Systems by David Park and George Wahlers
  • 2. Introduction Regulatory modifications in 2010 have raised important issues in design and use of indus- trial safety systems. Certain changes in IEC 61508, now being widely implemented, mean that designers and users who desire full compliance must give new consideration to topics such as SIL levels and the transition from 1H to 2H methodologies. In particular, these issues can impact users’ selection of solenoid valves and prepack- aged redundant control systems (RCS) for implementation in a safety instrumented system (SIS). Such selections may also be affected by how experienced valve suppliers are at dealing with complex new compliance methodologies. These issues are especially applicable to the oil, gas, chemical, and power industries — in applications such as safety shutdown systems, boilers, furnaces, high-integrity protec- tion systems (HIPS), and more. They’re of concern to safety engineers and reliability engineers, as well as to process engineers, engineering executives, and plant managers. This report will address these issues in developing a compliant SIS using valves and RCSs. Making the right choices in safety system planning and in valve supplier selection can affect design time, costs, and effort — as well as the safety of the plant itself. Safety in process Every industrial plant must be concerned with risks to its safety, and to the mitigation of those risks. Safety of process components continues to be of critical importance in light of periodic industrial disasters such as Buncefield, Deepwater Horizon, and the November 2013 oil pipeline explosion in Qingdao, China. Such events naturally draw media attention, and often increase regulatory pressures on all operations. In plants that actually suffer these or even lesser safety incidents, conse- quences can include the trouble and costs of process downtime — as well as the para- 2
  • 3. mount considerations of harm to employees, the community, and the environment. Thus planners at all industrial process operations must avoid complacency on safety issues. Certified solenoid valves properly used in SISs are important elements of any corporate risk mitigation strategy. Evolving standards IEC 61508, titled “Functional Safety of Electrical/Electronic/Programmable Electronic Safety-Related Systems,” is the accepted international standard that guides selection of components for industrial safety systems. Its latest revision, explained below, was issued in 2010. However, certain provisions of this standard — especially Route 2H, — are only now becoming widely implemented. In fact, engineering groups at numerous process manu- facturers are currently wrestling with complexities arising from these issues as they evolve fresh approaches to adjust to the new standard. Note that the technicalities may be daunting, as this report itself demonstrates. An extensive selection of specialized concepts and terms are introduced here (plus their accompanying initialisms, from SIS, SIL, and SIF to PFDavg, FMEDA, and FIT). All of these are used in determining correct compliance. Their number and scope give some indication of the difficulties facing professionals who may not be well versed in this area of safety practice. Thus many designers and safety engineers tackling these changes find it helpful to con- sult a knowledgeable solenoid valve supplier. They report that their supplier’s experts can help deliver welcome savings in schedules and cost. This allows engineers to devote more attention to other critical parts of the project. Evaluating solenoid valve redundancy and SIL The safety engineer faces numerous challenges in designing an efficient SIS for a given plant process. He or she must decide what technology should be selected, what level of risk reduction must be achieved, what architecture is appropriate for the given control system components, and what testing is required to reach the system’s desired safety integrity level (SIL). System development includes how frequently diagnostic test are performed both manually and automatically and is important because frequent testing may mean system downtime. 3
  • 4. In particular, when selecting crucial technology such as solenoid valves, the engineer must begin by considering three factors: 1. Architectural constraints dictate the required level of redundancy needed to achieve a desired SIL level for a given safety instrumented function (SIF). This redundancy is referred to as the hardware fault tolerance (HFT). 2. A solenoid valve’s average probability of failure on demand (PFDavg) determines the device’s contribution to the SIF’s overall PFDavg when used with other devices, not its SIL-capability as a stand-alone device. 3. Does the device possess IEC 61508 certification? Certification indicates that its manu- facturer’s design, manufacturing, and quality procedures satisfy this IEC standard’s requirements for the device’s listed SIL capability. Once the SIF is designed, SIL verification calculations determine if it will provide the desired risk reduction. For example, the safety engineer may use the following simplified formula on a single-channel, one out of one (1oo1) SIF with proof test coverage to deter- mine if the PFDavg meets the desired SIL level: Consideration of certification is the next step. Devices such as solenoid valves are cate- gorized as type A devices — “non-complex” mechanisms that possess discrete elements according to IEC 61508 (2010). Certification begins with a failure mode effect and diagnostics analysis (FMEDA). This analysis determines the failures in time (FIT) rates “λ” for different types of failures: safe detected, safe undetected, dangerous detected, and dangerous undetected. Once these rates are established, the safe failure fraction (SFF) and PFDavg can be calculated: 4 PFDAVG–1oo1 = CPT * λDU * TI + (λDD * MTTR) + (1 – CPT * λDU * LT PFDAVG–1oo1 = Average Probability of Failure on Demand λDU = Dangerous Undetected failure rate λDD = Dangerous Detected failure rate TI = Proof Test Interval MTTR = Mean Time To Restore CPT = Manual Proof Test Coverage = λDD / (λDD + λDU ) LT = Lifetime of the system 2 2
  • 5. 5 IEC 61508 allows two routes to determine a solenoid valve’s SIL capability. The traditional Route 1H uses FIT rates to calculate a safe failure fraction (SFF) for the given valve. The SFF can then be used to determine the HFT, which in turn can establish the level of redundancies required in using this valve, and can show what SIL level the safety func- tion utilizing this valve would attain. As part of an effort to reduce ambiguity in failure type definitions, for its 2010 release IEC 61508 altered the SFF formula used in Route 1H. Briefly, “no effect” failures are no longer a component of safe failures. This change usually produces a lower SFF in the formula above. If the SFF values drop below certain thresholds as shown in the table below, a higher HFT than before is required to achieve desired SIL levels. For example, a valve with an SFF of 75% would be SIL 3 capable with an HFT of 1. But if the SFF dropped below 60%, the valve would only be SIL 2 capable with that same HFT of 1. SFF = λSD + λSU + λDD Failure rate types λSD = Safe Detected failure rate λSU = Safe Undetected failure rate λDD = Dangerous Detected failure rate λDU = Dangerous Undetected failure rate λSD + λSU + λDD + λDU Type A Subsystem Safe Failure Fraction (SFF) Hardware FaultTolerance (HFT) 0 1 2 < 60% SIL 1 SIL 2 SIL 3 60% to < 90% SIL 2 SIL 3 SIL 4 90% to < 90% SIL 3 SIL 4 SIL 4 ≥ 99% SIL 3 SIL 4 SIL 4 Note: An HFT of N means that N+1 faults could cause a loss of the safety function.
  • 6. 6 Evaluating Routes 1H and 2H Another major change in the 2010 release of IEC 61508 was the introduction of Route 2H. This began the process whereby some certifying agencies are phasing out Route 1H approaches for evaluation of final elements (solenoid valves, actuators, ball valves, etc.). As with Route 1H, failure rates (λ) are first determined via lab testing or FMEDA calcula- tion. But instead of SFF and HFT, Route 2H uses the failure rates to determine PFDavg and HFT for SIL capability. And perhaps most importantly, Route 2H affirms the failure rates with historical informa- tion — actual customer field return data on component reliability. In fact, Route 2H can only be applied if there is sufficient field data to support the failure rates used in the PFDavg calculations and that a valve is proven in use. If so, this data can be used to determine SIL levels. How is that historical data obtained? It’s most often available when dealing with a supplier who has received validation from leading independent global safety certification sources, such as Exida or TÜV. Failure rates for numerous ASCO parts and components are sup- ported by data collected by Exida arising from literally billions of hours of operation. The paramount advantage of using Route 2H: its higher confidence level. This refers to the statistical probability that the actual failure rate — λactual — will fall between the limits λ5% and λ95% (which are at the higher and lower edges of a bell curve, respec- tively). While Route 1H usually exhibits only 70% confidence, Route 2H typically achieves 90% — promising a 90% certainty that the predicted failures will occur as expected. This higher confidence is possible due to the support of calculated failure rates by actual field return data, and the ability to take more uncertainties into account. Note that Route 1H will still be used for electronic or other complex devices, program- mable systems, and other devices incorporating diagnostics. Route 2H is applied to simple or mechanical products such as valves and other final elements. Nevertheless, industry-wide acceptance of the Route 2H method has been growing steadily since it was first implemented. Agencies such as exida use the Route 2H approach for both new and renewed certifications. Some customers have been under- standably hesitant to adopt it because of existing investments in their systems using Route 1H. Fortunately, changing from the 1H to the 2H approach makes little or no differ- ence in certification. We recommend that users become familiar with Route 2H and understand its significance.
  • 7. 7 Evaluating suppliers For the safest system design, selecting the right solenoid valve supplier may be as impor- tant as any of the technical choices discussed above. Solenoid valves are too critical to be purchased as mere commodities; avoid vendors who emphasize the lowest price alone. Look instead for a supplier that’s deeply involved in safety issues, understands what’s involved in setting up a safety system, and has com- prehensive resources to provide technical support. Safety certification of valve components can involve considerable complexities for the supplier. Gravitate toward suppliers who have taken the trouble to obtain such certifica- tion — and who are validated by independent sources. ASCO possesses the world’s widest variety of SIL-certified pilot valve solutions. Many of these products have certifi- cations from both Exida and TÜV international agencies. Ask the right questions. When you’re evaluating products for an SIS, does a given suppli- er furnish your required level of local/international service/support? Does it provide a comprehensive selection, so you can find precisely the products you need? Conclusion Safety is a critical requirement for most if not all industrial plants. It’s vital that users keep up with new developments in regulation and technology within this fast-changing field. This is particularly true of the ability to make informed decisions on issues such as com- pliance with IEC 61508, consideration of SIL levels, transition from 1H to 2H, and selecting solenoid valves. An experienced solenoid valve supplier that’s knowledgeable about these issues can serve as a valuable resource for advice and information. Users who stay informed can ensure compliance and improve savings and process safety. Takeaways • IEC 61508 has new methods to determine SIL-capability for valves used in safety systems. • Designers and users must consider valve redundancy, SIL levels, and transition from 1H to 2H certification methodologies • A valve supplier concerned with and experienced in compliance topics can remove much of the burden of these issues in safety system design • Making correct choices can affect design time, costs, and effort, as well as overall plant safety
  • 8. 1331036 Global Contacts www.ascovalve.com Regional Headquarters Global Headquarters Manufacturing & Key Offices Other Worldwide Locations Australia (61) 2-9-451-7077 Brazil (55) 11-4208-1700 Canada (1) 519-758-2700 China (86) 21-3395-0000 Czech Republic (420) 235-090-061 Dubai -UAE (971) 4-811-8200 France (33) 1-47-14-32-00 Germany (49) 7237-9960 India (91) 44-39197300 Italy (39) 02-356931 Japan (81) 798-65-6361 Mexico (52) 55-5809-5640 Netherlands (31) 33-277-7911 Singapore (65) 6556-1100 South Korea (82) 2-3483-1570 Spain (34) 942-87-6100 Turkey (90) 216-577-3107 United Kingdom (44) 1695-713600 ASCO Headquarters (U.S.A.) Tel: 800-972-ASCO (2726) or +1 973-966-2000 info-valve@asco.com The ASCO logo is a trademark of Automatic Switch Co. The Emerson logo is a trademark and service mark of Emerson Electric Co. All other trademarks are the properties of their respective owners. © 2014 ASCO Valve, Inc. All rights reserved. Printed in the U.S.A. 4