{"id":31839,"date":"2023-03-09T11:48:57","date_gmt":"2023-03-09T10:48:57","guid":{"rendered":"https:\/\/www.gt-engineering.it\/?post_type=pubblicazione&p=31839"},"modified":"2023-08-11T08:25:19","modified_gmt":"2023-08-11T07:25:19","slug":"chapter-5","status":"publish","type":"pubblicazione","link":"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/","title":{"rendered":"Chapter 5 – Design and Evaluation of Safety Functions"},"content":{"rendered":"\n\n \n \n \n
\n\n \n \n \n \r\n\r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n <\/picture>\r\n\r\n \r\n\r\n \r\n \r\n <\/div>\n \n
\n \n
\n

In Chapter 5<\/strong>, how to design and evaluate a safety function is presented in detail. The concept of Subsystems and Architectural Constraints is put into practice.<\/p>\n

More and more Safety Functions have software inside; therefore, it is important to understand the difference between Limited and Full Variability Languages<\/strong> and what the machine manufacturer has to do when using the former or the latter. Finally we shed some light on how to treat low demand mode of operation in machinery.<\/strong><\/p>\n

Each safety function is performed by either an SCS (IEC 62061) or an SRP\/CS (ISO 13849-1) and it consists of one or several subsystems<\/strong>. The concept of a Safety-related control System composed of a series of subsystems is coming from IEC 62061 and, in general, the Reliability theory. ISO 13849-1 is coming from the concept of categories applicable to the entire Safety-related control System. However, the new edition of the ISO standard adopts fully the concept of subsystems and it clarifies that the categories are applicable to subsystems only.<\/p>\n

Also on this aspect, ISO 13849-1 aligns with IEC 62061. The IEC standard indicates the Reliability of a safety function with a level of SIL, with no mention of architectures; the same is done now by the ISO standard. Therefore, with the new edition of ISO 13849-1, when specifying the Reliability level required by a safety function, the correct statement is, for example, PL d and not PL d, Category 3.<\/strong> The category is only applicable to sub-functions and it is a mean to calculate the PFHD of the subsystem<\/strong>. I could have a Safety-related control System whereby the input subsystem is a Category 1 and the output a Category 4.<\/p>\n

 <\/p>\n

Hereafter some excerpt from the chapter.<\/p>\n

5.2 Well-Tried Components<\/strong>
\nThe concept is defined in both ISO 13849-1 and IEC 62061. Those types of components are compulsory for Category 1 (ISO 13849-1) and in both Basic Subsystem Architecture A and B (IEC 62061).
\nIn all other Categories and Architectures, non-well-tried components can be used as well, provided they have Reliability data. Well-tried components are needed in those two cases since the Safety-related Control System has a single channel and no Diagnostic. Here is the definition.<\/p>\n

\n[ISO 13849-1] 3.1 Terms and definitions<\/em><\/strong>
\n3.1.50 Well-Tried Component.<\/strong> Component successfully used in safety-related applications.<\/em><\/p><\/blockquote>\n

[…]<\/p>\n

5.6.1 Limited and Full Variability Language<\/strong>
\nNowadays, more and more Safety functions make use of Programmable Logic Controllers. In other term, the \u201cLogic\u201d in an I\u2013L\u2013O architecture is implemented within a Safety PLCs or Safety Programmable Module.
\nA Safety PLC needs to be programmed by the user with the specific Safety Function logic. In other terms, the machinery manufacturer writes the Application Software. ISO 13849-1 calls it Safetyrelated application software (SRASW):<\/p>\n

\n[IEC 61508-4] 3.2 Equipment and devices<\/em><\/strong>
\n3.2.7 Application Software<\/strong> (application data or configuration data). Part of the software of a programmable <\/em>electronic system that specifies the functions that perform a task related to the EUC rather than the <\/em>functioning of, and services provided by the programmable device itself.<\/em><\/p><\/blockquote>\n

That is different from the System Software, which is written by the PLC manufacturer. ISO 13849-1 calls it Safety-related embedded software (SRESW):<\/p>\n

[IEC 61508-4] 3.2 Equipment and devices<\/em><\/strong>
\n3.2.6 System Software.<\/strong> Part of the software of a PE system that relates to the functioning of, and services <\/em>provided by, the programmable device itself, as opposed to the application software that specifies the functions <\/em>that perform a task related to the safety of the EUC.<\/em><\/p><\/blockquote>\n

[…]<\/p>\n

5.7.2 Subsystems in Both High and Low Demand Mode<\/strong>
\nElectromechanical components are provided with a B10D value that allows the calculation of an MTTFD or \u03bbD, based upon the number of operations. B10D values are calculated having a certain number of components under test and by switching on and off the components several times per hour; please refer to Chapter 1 for more details. That means B10D values should only be used when the component is part of a high demand mode subsystem. Moreover, considerations should be made when the number of operations is less than once per month.
\nIn high demand mode, the more a component is used, the less reliable the subsystem system will be, since the high demand mode standards take into consideration the component Fatigue: the more it is used, the higher the Fatigue.<\/p>\n

[…]<\/p>\n<\/div> <\/div>\n \n \n

<\/div>\n \n\n <\/div>\n <\/section>\n\n \n","protected":false},"excerpt":{"rendered":"

In Chapter 5, how to design and evaluate a safety function is presented in detail. The concept of Subsystems and Architectural Constraints is put into practice.<\/p>\n","protected":false},"author":2,"featured_media":41974,"parent":30599,"menu_order":5,"template":"","meta":{"_acf_changed":false,"footnotes":""},"class_list":["post-31839","pubblicazione","type-pubblicazione","status-publish","has-post-thumbnail","hentry"],"acf":[],"yoast_head":"\nChapter 5 - Design and Evaluation of Safety Functions - Gt-Engineering<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Chapter 5 - Design and Evaluation of Safety Functions - Gt-Engineering\" \/>\n<meta property=\"og:description\" content=\"In Chapter 5, how to design and evaluate a safety function is presented in detail. The concept of Subsystems and Architectural Constraints is put into practice.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/\" \/>\n<meta property=\"og:site_name\" content=\"Gt-Engineering\" \/>\n<meta property=\"article:modified_time\" content=\"2023-08-11T07:25:19+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/03\/Capture-44-300x100-1-150x100-1.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"150\" \/>\n\t<meta property=\"og:image:height\" content=\"100\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/\",\"url\":\"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/\",\"name\":\"Chapter 5 - Design and Evaluation of Safety Functions - Gt-Engineering\",\"isPartOf\":{\"@id\":\"https:\/\/www.gt-engineering.it\/en\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/03\/Capture-44-300x100-1-150x100-1.webp\",\"datePublished\":\"2023-03-09T10:48:57+00:00\",\"dateModified\":\"2023-08-11T07:25:19+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/#primaryimage\",\"url\":\"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/03\/Capture-44-300x100-1-150x100-1.webp\",\"contentUrl\":\"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/03\/Capture-44-300x100-1-150x100-1.webp\",\"width\":150,\"height\":100},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.gt-engineering.it\/en\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Pubblications\",\"item\":\"https:\/\/www.gt-engineering.it\/en\/pubblications\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Functional Safety of machinery\",\"item\":\"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"Chapter 5 – Design and Evaluation of Safety Functions\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.gt-engineering.it\/en\/#website\",\"url\":\"https:\/\/www.gt-engineering.it\/en\/\",\"name\":\"Gt-Engineering\",\"description\":\"bizonweb\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.gt-engineering.it\/en\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Chapter 5 - Design and Evaluation of Safety Functions - Gt-Engineering","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/","og_locale":"en_US","og_type":"article","og_title":"Chapter 5 - Design and Evaluation of Safety Functions - Gt-Engineering","og_description":"In Chapter 5, how to design and evaluate a safety function is presented in detail. The concept of Subsystems and Architectural Constraints is put into practice.","og_url":"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/","og_site_name":"Gt-Engineering","article_modified_time":"2023-08-11T07:25:19+00:00","og_image":[{"width":150,"height":100,"url":"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/03\/Capture-44-300x100-1-150x100-1.webp","type":"image\/webp"}],"twitter_card":"summary_large_image","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/","url":"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/","name":"Chapter 5 - Design and Evaluation of Safety Functions - Gt-Engineering","isPartOf":{"@id":"https:\/\/www.gt-engineering.it\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/#primaryimage"},"image":{"@id":"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/#primaryimage"},"thumbnailUrl":"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/03\/Capture-44-300x100-1-150x100-1.webp","datePublished":"2023-03-09T10:48:57+00:00","dateModified":"2023-08-11T07:25:19+00:00","breadcrumb":{"@id":"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/#primaryimage","url":"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/03\/Capture-44-300x100-1-150x100-1.webp","contentUrl":"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/03\/Capture-44-300x100-1-150x100-1.webp","width":150,"height":100},{"@type":"BreadcrumbList","@id":"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/chapter-5\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.gt-engineering.it\/en\/"},{"@type":"ListItem","position":2,"name":"Pubblications","item":"https:\/\/www.gt-engineering.it\/en\/pubblications\/"},{"@type":"ListItem","position":3,"name":"Functional Safety of machinery","item":"https:\/\/www.gt-engineering.it\/en\/pubblications\/functional-safety-of-machinery\/"},{"@type":"ListItem","position":4,"name":"Chapter 5 – Design and Evaluation of Safety Functions"}]},{"@type":"WebSite","@id":"https:\/\/www.gt-engineering.it\/en\/#website","url":"https:\/\/www.gt-engineering.it\/en\/","name":"Gt-Engineering","description":"bizonweb","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.gt-engineering.it\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"}]}},"_links":{"self":[{"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/pubblicazione\/31839","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/pubblicazione"}],"about":[{"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/types\/pubblicazione"}],"author":[{"embeddable":true,"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/users\/2"}],"version-history":[{"count":10,"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/pubblicazione\/31839\/revisions"}],"predecessor-version":[{"id":41977,"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/pubblicazione\/31839\/revisions\/41977"}],"up":[{"embeddable":true,"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/pubblicazione\/30599"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/media\/41974"}],"wp:attachment":[{"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/media?parent=31839"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}