SIL certification is a third-party evaluation, verification, and certification based on standards such as IEC 61508 (GB/T 20438), IEC 61511 (GB/T 21109), IEC 61513, IEC 13849-1, IEC 62061, IEC 61800-5-2, to evaluate and confirm the safety integrity level (SIL) or performance level (PL) of safety equipment. Functional safety certification mainly involves document management (FSM) evaluation for the development process of safety equipment, hardware reliability calculation and evaluation, software evaluation, environmental testing, EMC electromagnetic compatibility testing, and other contents.
IEC 61508:
Functional safety of electrical/electronic/programmable electronic safety related systems
The IEC61508 standard specifies basic safety requirements for both conventional system operation and fault prediction capabilities. These requirements cover general safety management systems, specific product designs, and process designs that meet safety requirements, with the goal of avoiding both systematic design failures and random hardware failures.
The main objectives of the IEC61508 standard are:
·Provide a systematic approach for safety supervision within the lifecycle of all components of safety related systems, including software and hardware;
·Provide methods for determining the safety functional requirements of safety related systems;
·Establish basic standards that can be directly applied to all industrial fields. At the same time, it can also guide standards in other fields, making the drafting of these standards consistent (such as basic concepts, technical terminology, requirements for specified safety functions, etc.);
·Encourage operators and maintenance departments to use computer-based technology;
·Establish a standardized architecture and system with unified and coordinated concepts.
IEC61511:
Functional safety requirements for safety instrumented systems in the process industry field
IEC61511 is a functional safety standard specifically designed for safety instrumented systems in the process industry field. It is a professional standard launched by the International Electrotechnical Commission after the basic functional safety standard IEC61508. The coordinated standard for IEC61511 in China is GB/T 21109. In the process industry, instrument safety systems are used to perform instrument safety functions, and the IEC61511 standard addresses the issue of what level of safety integrity and performance instruments should achieve.
For the confirmation of safety related device safety functions, SIL level is a globally recognized method for defining safety integrity. For the process control industry, the relevant international standards mainly include the IEC 61508 standard (the fundamental basis for designing and operating safety instrumented systems). The IEC 61511 standard mainly focuses on systems used in process control applications, and device designers follow the IEC 61511 standard and complete their designs according to the IEC 61508 standard.
ISO13849-1:
Safety of machinery - Safety parts related to control systems - Part 1: General principles for design
The new version of ISO13849-1 standard is about to take effect and be implemented by the end of 2011, which will be a new milestone in the field of mechanical functional safety. In the past, some evaluations of system failure probability have been added to the deterministic requirements of the system, enabling a comprehensive safety assessment from components to the system. At the same time, this standard also provides designers with more quantifiable design and implementation methods, such as adding parameters such as system safety level (PLr), system mean time between failures (MTTFd), system diagnostic detection range (DC), common cause fault prevention (CCF), etc., effectively solving the problem of the original EN954-1 standard not being able to quantitatively judge system safety.
The new version of ISO13849-1 standard provides more effective security assessment solutions for some new control methods. It can enhance the safety level of increasingly complex mechanical equipment in control systems, ensure production safety and efficiency, and combine new technologies and design experience to help enterprises improve overall efficiency, productivity, and flexibility, ensure continuous production, reduce unexpected downtime, and reduce development, operation, and maintenance costs. Implementing this standard as soon as possible can ensure that mechanical manufacturers can seize the market opportunity in fierce competition.
IEC62061:
Mechanical safety - Functional safety of electrical, electronic, and programmable electronic control systems related to safety
Both IEC/EN 62061 and EN ISO 13849-1:2008 standards include electrical control systems related to safety. By adopting these two standards, the same level of safety performance and safety integrity can be achieved. There are differences in the methods used for each standard, but they are all suitable for their respective readers. EN ISO 13849-1:2008 provides a limiting case in Table 1 of its explanatory section. When using complex programmable technology, the highest PL performance level should be defined as PLd.
The IEC/EN 62061 standard provides corresponding methods to enable the adoption of complex security functions that can be executed by previously non-traditional system structures. In order to provide a more direct and simpler path for implementing more traditional security functions using traditional system structures, the EN ISO 13849-1:2008 standard also provides corresponding methods. The important difference between these two standards is their applicability to different technical fields. The IEC/EN 62061 standard is limited to the field of electrical systems. The EN ISO 13849-1:2008 standard applies to starting, hydraulic, mechanical, and electrical systems. The main defined parameters are PFH, MTTF, DC, SFF, etc.
IEC61326-3-2:
Electrical equipment for measurement, control, and laboratory use - Requirements for electromagnetic compatibility (EMC): Safety related systems and for performing safety related functions (functional safety)
The IEC 61326-3-1 and IEC 61326-3-2 standards have been issued, which specify additional requirements for the immunity level of safety related equipment, including extremely low probability extreme situations that may occur in any location. Severe electromagnetic phenomena in the working state of experimental simulation equipment, such as transient pulses being transient states of analog digital circuits or digital signal transmission. In order to increase the reliability of the electromagnetic immunity of the Safety Integrity Level (SIL), more pulses should be applied or the test time should be extended compared to the basic standard when conducting electromagnetic phenomenon resistance performance tests, and the test level should be improved. For example, for equipment used for SIL3, the level of electrical fast transient test is 4kV, and the test duration should be 5 times the time specified in the basic standard.
ISO26262:
Road vehicle system design functional safety
The purpose of developing the ISO 26262 standard is to provide people with a better understanding of safety related functions and to explain them as clearly as possible. ISO 26262 is derived from the basic standard IEC61508 for the functional safety of electronic, electrical, and programmable devices. It is mainly positioned in specific electrical devices, electronic devices, programmable electronic devices, and other components specifically used in the automotive industry, aiming to improve the international standards for the functional safety of automotive electronic and electrical products. As soon as this standard was proposed, it received high attention from major automobile manufacturers and automotive component manufacturers, and actively promoted its implementation in product development.
Based on the IEC 61508 standard, the ISO 26262 standard defines the safety of electrical and electronic systems. A major challenge in automotive design is how to pre evaluate potential hazards and risks, and adopt appropriate methods to reduce these risks. To facilitate this process, ISO stipulates that a 'hazard and risk analysis' must be conducted at the beginning of development work.
The automotive industry uses high-performance electronic devices for vehicle safety control. The ISO 26262 functional safety standard, jointly developed and recognized by world-renowned automobile manufacturers, standardizes the design requirements of electronic components and software and hardware products for vehicles. With the promulgation and implementation of ISO 26262, it is possible to reduce the potential risks and hazards of accidents that may occur in vehicles in the future, thereby enhancing the adaptability and competitiveness of the domestic vehicle industry in the international future.
IEC61800-5-2:
Standard for adjustable speed electric equipment - Part 5-2: Functional safety requirements
IEC61800-5-2 defines the safety functions of integrated safety drives, which define a series of stop functions, namely:
·STO - Safe Torque Off;
·Safety Stop 1/SS1/Safety Stop 2/SS2
·Safety Operation Halt
IEC61800-5-2 also defines some monitoring functions, including acceleration safety limits; Step safety restrictions; Safety restrictions in the direction of movement; Speed safety limit; Moment/force safety limit; Location safety restrictions; Motor temperature safety limit.
The IEC61800-5-2 standard mainly proposes functional safety requirements for safety encoders, safety decoders, AC servo systems, servo drivers, servo motors, and other systems. For example, a motor controller that meets the functional safety technical requirements will support safety functions such as Safe Torque Stop (STO) and Safe Stop 1 (SS1) to prevent accidental starting. The product design must comply with the requirements of EN 61800-5-2 standard. The IEC61800-5-2 standard has been transformed into a national standard, with the standard number GB/T 12668.5.2. The corresponding standardization committee in China is the National Technical Committee for Standardization of Power Electronics, the Speed Control Electrical Transmission System Semiconductor Power Converter Subcommittee (TC60/SC1).
EN50156
IEC 61784-3:
Measurement and control digital data communication Part 3: Industrial network functional security regulations
This standard mainly defines the following content:
1. Implement the basic principles of IEC 61508 safety related data communication requirements, including provisions on potential error transmission, response measures, and data integrity impact
2. General content of various technology implementations
3. Independent description of functional security regulations for various communication regulations clusters
4. Several secure communication layers have been specified as part of the communication service regulations in the IEC61784-1 and IEC61158 series standards.
EN50126
Railway Applications: Reliability, Availability, Maintainability, and Safety (RAMS) Specifications and Instructions
This standard defines the RAMS (reliability, availability, maintainability, and safety) of a system, which includes reliability, availability, maintainability, and security. It also specifies the management and requirements for RAMS at each stage of the security lifecycle. RAMS, as an important feature of system service quality measurement, is obtained through design concepts and technical methods at each stage of the entire system security lifecycle.
EN50128
Railway Applications: Software for Railway Control and Protection Systems
The software of railway control and protection systems has been classified into Safety Integrity Levels (SIL), and corresponding standards have been formulated for different safety requirements. The overall software development, evaluation, and testing process is divided according to different levels, including software requirement specifications, testing specifications, software structure, software design and development, software inspection and testing, software and hardware integration, software confirmation and evaluation, quality assurance, life cycle Propose corresponding standards and requirements for the development of procedures, such as documents.
EN50129
Railway Applications: Safety Related Electronic Systems
For safety management, the concept of safety lifecycle proposed by IEC61508 is introduced, which means that the safety part of safety related systems should be designed according to this step during design, and a full process of safety assessment and verification is required. The purpose is to further reduce human errors related to safety and thereby reduce the risk of system failure.