如何设计安全的机器控制系统 EN ISO 13849-1 指南 英文版.pdf

SP Howtodesignsafemachine controlsystems-aguidelineto cience your ENISO13849-1 JohanHedberg AndreasSoderberg SP Technical Research Institute of Sweden Jan Tegehall SP Electronics SP REPORT 2011:81
Howtodesignsafemachine control systems-a guideline to ENISO13849-1 JohanHedberg AndreasSoderberg JanTegehall
Abstract The aim of this report is to give guidanee when applying EN ISO 13849-1:2008 in projects both for panies developing subsystems and for panies that are developing plete machines. The report wilI give support in different areas in EN ISO 13849-1:2008 that are difficult to understand or parts that are described briefly. This report shall be considered as an plement to the standard EN ISO 13849-1:2008 that gives examples on how different requirements can be interpreted. Key words: ISO 13849-1 IEC 62061 IEC 61508 PL SIL safety function functional safety control system. SP Sveriges Tekniska Forskningsinstitut SP Technical Research Institute of Sweden SP Rapport 2011:81 ISBN 978-91-87017-14-8 ISSN 0284-5172 Boras 2011
6 Tableof Contents Abstract 5 Table of Contents 6 Summary 10 1 Introduetion 11 1.1 Abbreviations 11 1.2 The EU machinery directive and control systems 11 1.3 Reading guideline 13 1.4 References 13 2 Management 14 3 Risk assessment 22 4 Category and designated architectures 26 4.1 Designated architectures 26 4.1.1 Category B 27 4.1.1.1 Basic safety principles 28 4.1.2 Category 1 29 4.1.2.1 Well-tried safety principles 30 4.1.2.2 Well-tricd ponent 32 4.1.3 Category 2 35 4.1.3.1 Disadvantage with a category 2 solution 36 4.1.4 Category 3 36 4.1.5 Category 4 37 4.2 Important issues during the design phase 38 4.2.1 Example Category 2 force limitation system 8 5 Probability of dangerous failures 40 5.1 MTTFa 5.1.1 Basic definitions 40 5.1.2 Relation between MTTF and MTTFd 41 5.1.3 Estimation of MTTFd for electric/clectronic ponents 42 5.1.4 Estimation of MTTFd for electromechanical pncumatic or hydraulic ponents 43 5.1.5 Estimation of MTTFd for individual SRP/CS 44 5.1.5.1 Example of estimating the MTTFd for a SRP/CS 45 6 Diagnostic coverage (DCavg) 48 7 Common cause failure 51 8 Software 53 8.1 General requirements 53 8.2 Safety-related software specification 56 8.3 System-and module design 57 8.4 Coding 58 8.5 Module- and integration testing 59 9’8 Software validation 59 8.7 Software modifications 60 8.8 Parameterization 60
9 Achieved PL 62 9.1 Apply Figure 5 in bination with Annex K 62 9.2 ApplyTable7 63 9.3 Apply Table 11 64 10 Conclusions 66 Appendix A Safety requirements specification machinery 67 Appendix B Examples of diagnostic techniques 72