FUNCTIONAL SAFETY CERTIFICATE



Similar documents
Effective Compliance. Selecting Solenoid Valves for Safety Systems. A White Paper From ASCO Valve, Inc. by David Park and George Wahlers

Failure Modes, Effects and Diagnostic Analysis

Hardware safety integrity Guideline

MXa SIL Guidance and Certification

Final Element Architecture Comparison

Basic Fundamentals Of Safety Instrumented Systems

IEC Functional Safety Assessment. ASCO Numatics Scherpenzeel, The Netherlands

Value Paper Author: Edgar C. Ramirez. Diverse redundancy used in SIS technology to achieve higher safety integrity

Selecting Sensors for Safety Instrumented Systems per IEC (ISA )

Safety manual for Fisherr ED,ES,ET,EZ, HP, or HPA Valves with 657 / 667 Actuator

SAFETY MANUAL SIL Switch Amplifier

SAFETY MANUAL SIL SMART Transmitter Power Supply

SIL in de praktijk (Functional Safety) Antwerpen Compliance of Actuators and Life Cycle Considerations. SAMSON AG Dr.

SAFETY MANUAL SIL RELAY MODULE

SIL manual. Structure. Structure

Version: 1.0 Latest Edition: Guideline

SAFETY LIFE-CYCLE HOW TO IMPLEMENT A

Safety Manual BT50(T) Safety relay / Expansion relay

A methodology For the achievement of Target SIL

Understanding Safety Integrity Levels (SIL) and its Effects for Field Instruments

Overview of IEC Design of electrical / electronic / programmable electronic safety-related systems

FMEDA and Proven-in-use Assessment. Pepperl+Fuchs GmbH Mannheim Germany

Mary Ann Lundteigen. Doctoral theses at NTNU, 2009:9 Mary Ann Lundteigen. Doctoral theses at NTNU, 2009:9

Fisher FIELDVUE Instrumentation Improving Safety Instrumented System Reliability

TÜV FS Engineer Certification Course Being able to demonstrate competency is now an IEC requirement:

TÜV Rheinland Functional Safety Program Functional Safety Engineer Certification

Machineontwerp volgens IEC 62061

Safety Requirements Specification Guideline

IEC Functional Safety Assessment. Project: K-TEK Corporation AT100, AT100S, AT200 Magnetostrictive Level Transmitter.

Certification Report of the STT25S Temperature Transmitter

SAFETY MANUAL SIL SWITCH AMPLIFIER

Safety Integrated. SIMATIC Safety Matrix. The Management Tool for all Phases of the Safety Lifecycle. Brochure September Answers for industry.

Valves and Solenoid Valves testet and certified byrheinhold & Mahla according to IEC 61508/61511

Embedded Systems Lecture 9: Reliability & Fault Tolerance. Björn Franke University of Edinburgh

Recognizing and understanding schematic symbols will enable you to comprehend a circuit s function.

Michael A. Mitchell, Cameron Flow Control, DYNATORQUE Product Manager

PABIAC Safety-related Control Systems Workshop

Why SIL3? Josse Brys TUV Engineer

Viewpoint on ISA TR Simplified Methods and Fault Tree Analysis Angela E. Summers, Ph.D., P.E., President

A PROCESS ENGINEERING VIEW OF SAFE AUTOMATION

Frequently Asked Questions

Safety Integrity Level (SIL) Assessment as key element within the plant design

Reducing Steps to Achieve Safety Certification

Guidelines. Safety Integrity Level - SIL - Valves and valve actuators. March Valves

T146 Electro Mechanical Engineering Technician MTCU Code Program Learning Outcomes

High Availability and Safety solutions for Critical Processes

IEC Overview Report

Bosch Packaging Academy Essential Training

Reliability Block Diagram RBD

Safety controls, alarms, and interlocks as IPLs

How to design safe machine control systems a guideline to EN ISO

SPECIAL PRINT. Innovative Control Technology. Control Valve Diagnostics in Safety-instrumented Systems. A Comparison of Architectures

General. Industry. Siemens AG, I IA CD, P.O. box 48 48, D Nuremberg. Postal address: Siemens AG I IA CD P.O. box D Nuremberg

DeltaV SIS for Burner Management Systems

VCE Systems Engineering: Administrative advice for School-based Assessment in 2015

Frequently Asked Questions

Reduce Risk with a State-of-the-Art Safety Instrumented System. Executive Overview Risk Reduction Is the Highest Priority...

Fisher 377 Trip Valve

1. Introduction. 2. Performance against service levels 1 THE HIGHLAND COUNCIL. Agenda Item. Resources Committee 26 th March 2003 RES/43/03

Logic solver application software and operator interface

Controlling Risks Risk Assessment

Take a modern approach to increase safety integrity while improving process availability. DeltaV SIS Process Safety System

Mobrey Magnetic Level Switches

IEC Functional Safety Assessment. United Electric Controls Watertown, MA USA

SIMPLIFIED VALVE CIRCUIT GUIDE

Technical Bulletin / Safety Alert

Electrical/Electronic Engineering Technologist DACUM Facilitated by Craig Edwards and Sandra Sukhan April 15 th and 20 th 2011

Cat Electronic Technician 2015A v1.0 Product Status Report 4/20/2016 2:49 PM

Internal Audit Checklist

Position Transducers with Restoring Spring 10, 25, 50, 75, 100 mm TR, TRS Series

I requisiti delle Norme IEC EN Ed 2: 2010 e IEC EN Ed. 2: 2016

Mitigating safety risk and maintaining operational reliability

THEME Competence Matrix - Electrical Engineering/Electronics with Partial competences/ Learning outcomes

You Must Know About the New RIA Automation Standard

FMEA FMEA basic concept Rigorous FMEA - State Explosion This talk introduces Failure Mode Effects Analysis, and the different ways it is applied. Thes

SAFETY LIFECYCLE WORKBOOK FOR THE PROCESS INDUSTRY SECTOR

Release: 1. AURT575393A Analyse and evaluate electrical and electronic faults in transmission/driveline systems

Duke University Health System

Automation, Software and Information Technology. Test report of the type approval safety-related automation devices

Page85. Lock-out Tag-out Plan

Nuclear Safety Council Instruction number IS- 23 on in-service inspection at nuclear power plants

SILs and Software. Introduction. The SIL concept. Problems with SIL. Unpicking the SIL concept

SECTION G2: CABLE PROCESSOR MODULE MAINTENANCE

Intelligent valve control and monitoring. DSP-PL Intelligent Subsea Positioner

Impact of Safety Standards to Processes and Methodologies. Dr. Herbert Eichfeld

HOW TO ORDER SAFETY PRODUCTS/SAFETY CONTROL SYSTEMS ELECTRICAL SAFETY CONTROLS

Lockout / Tagout Program

Unit LT01 Carry Out Routine Lift Truck Maintenance

White Paper. Chemical dosing and blending - the role of precision actuators

Alexandria Overview. Sept 4, 2015

AEGIS DATA CENTER SERVICES POWER AND COOLING ANALYSIS SERVICE SUMMARY

Ammonia Detection System Codes and Design Specifications

Methods of Determining Safety Integrity Level (SIL) Requirements - Pros and Cons

The SISTEMA Cookbook 4

Vetting Smart Instruments for the Nuclear Industry

Safety Integrity Levels

Transcription:

FUNCTIONAL SAFETY CERTIFICATE This is to certify that the hardware safety integrity of the Valvetop ESD Valve Controller manufactured by TopWorx Inc. 3300 Fern Valley Road Louisville Kentucky 40213 USA has been assessed by and found to meet the requirements of IEC 61508-2:2000 The certified data set herein may be used in the design of safety functions up to and including safety integrity level 3 (SIL3), subject to the stated conditions and scope in this certificate. Certification Manager: D R Stubbings Initial Certification: 25 March 2008 This certificate issued: 14 November 2011 Renewal date: 25 March 2013 This certificate may only be reproduced in its entirety without any change. Page 1 of 5

Product description and scope of certification The Valvetop ESD Controller is intended to be used with emergency shut-down (ESD) valves in order to improve their PFD and availability by virtue of increased diagnostic coverage, particularly when such valves are used in safety instrumented functions. The ESD Valve Controller enables the ESD process valve to be exercised by partially closing (typically to 80-85% of full stroke) and monitoring the time the valve takes to reach this position. This time is compared with the pre-calibrated time for the specific valve. Any differences (outside a tolerance band) can indicate a variety of conditions such as a damaged shaft, actuator spring fatigue, solenoid pilot exhaust blockage, solenoid spring failure, etc. In this way, partial stroke testing (PST) serves as an effective diagnostic without interrupting the process. Safety function(s) The safety function of the certified equipment is: The spool valve to remove pneumatic pressure when the pilot solenoid valve control signal (e.g., PLC DO) is removed Hardware safety integrity Control of dangerous failures during operation is achieved by: high diagnostic coverage fail-safe design Identification of certified equipment The certified equipment and it s safe use is defined in the manufacturer s documentation listed in Table 1 below. Table 1: Certified documents Document no. Pages Rev Date Document description ES-00928-1 1 of 6 03 01-FEB-08 Circuit diagram, upper board ES-00928-1 2 of 6 03 01-FEB-08 Circuit diagram, lower board ES-00928-1 3 of 6 03 01-FEB-08 PCB layout, upper board ES-00928-1 4 of 6 03 01-FEB-08 PCB layout, lower board ES-00928-1 5 of 6 03 01-FEB-08 Parts list, upper board ES-00928-1 6 of 6 03 01-FEB-08 Parts list, lower board S-AV1-0001 1 of 1 08 05-MAR-08 SMC Pilot assembly * S-A01-0027 1 of 1 22 14-JUN-07 DXP Master assembly * [1] S-AV1-0003 1 of 1 13 13-MAR-08 Cold temp valve assembly * ES-01309-1 - 02 17-Oct-11 ESD Master Nomenclature * ES-00936-1 - 03 - Install, Ops and Maintenance Manual ES-006891 1 of 1 12 16-Sept-11 Assembly, Lower Housing, DXP [1] * only the options shown on the ESD Master Nomenclature ES-01309-1 (R1) are valid [1] The DXP and DXR enclosure are a no part failure effect and do not contribute to the safe failure fraction or failure rate of the ESD valve controller. Page 2 of 5

Certified Data Set in support of use in safety functions The following failure modes and probabilities have been calculated for the certified equipment by a failure modes and effect analysis (FMEA). Table 2: Failure rate data Failure mode Failure rates Safe Failure Fraction (SFF) Fail to remove pneumatic pressure when the pilot valve control signal (e.g., PLC DO) is removed λ DU = 2.17 x 10-7 λ DD = 1.88 x 10-5 90% - <99% λ S = 4.90 x 10-6 The PFD ave for the ESD valve controller may be calculated from it s component failure rates, the dangerous failure rate of the ESD valve (and actuator) and the proof test interval (T). The following formula may be used: PFD ave = [(1.2 x 10-6 + l VALVE + l ACTUATOR ) x 2.738 x 10-6 ] x T 2 / 3 The following table gives proof test intervals for sample failure rates of ESD valves (+ actuator) that will achieve 50% of the permitted allowance of PFD ave for SIL3 safety functions. (Figures assume the Topworx ESD valve controller is used to diagnose residual failures of the ESD valve and actuator which are not diagnosed by any other means). Table 3: Proof test intervals for sample ESD valve + actuator failure rates l VALVE + l ACTUATOR (per hr) Proof test interval to meet 50% of SIL3 PFD 1 x 10-4 2,327 1 x 10-5 6,994 1 x 10-6 15,780 1 x 10-7 20,528 Notes on the certified data set: 1) The formula above to calculate PFD ave assumes the value of MTTR shown in Table 4 is used which is insignificant. 2) SFF of the certified equipment assumes the following application context: the safety function of the process ESD valve (via it s associated actuator) is to perform it s safety function on removal of pneumatic drive no further external diagnostics are used 3) Attention is drawn to the conditions for safe use in this certificate when using the certified data set in the design of safety functions. Page 3 of 5

Table 4: Base information table Product ID: ESD valve controller, according to product variants specified in Topworx ES-01059-1. Functional specification: The spool valve to remove pneumatic pressure when the pilot solenoid valve control signal (e.g., PLC DO) is removed Environment / stress criteria: Non-aggressive environments / normal quality specifications Environment limits: -40 o C to +60 C Lifetime limit: 10 years Maintenance requirements: Specified in manufacturer s user s manual Repair constraints: Specified in manufacturer s user s manual Hardware fault tolerance: 0 Highest SIL (systematic): SIL 3 Systematic fault tolerance measures: High diagnostic coverage and fail-safe design Validation records: Assessed in Sira Report R56A16648A Type A / Type B: Type A Proof test interval (T): See values in Table 3 Mean time to restoration (MTTR): <4 hours Conditions of Certification The manufacturer of the certified equipment shall observe the following conditions of certification: 1. The manufacturer is required to collect and analyze failure data from returned products on an on-going basis. shall be informed in the event of any trend that could affect reliability of the safety function(s). 2. Sira shall be notified in advance before any modifications to the certified equipment are carried out. Conditions of Safe Use The following conditions apply to the installation, operation and maintenance of the certified equipment. Failure to observe these may compromise the safety integrity of the certified equipment: 1. The probability of failure on demand (PFD) figure stated in this certificate is dependent on the Proof Test Interval (T) and Mean Time To Restoration (MTTR) figures shown in Table 4 not being exceeded; Page 4 of 5

2. When integrating the certified equipment into an overall safety system whose function is intended to mitigate or prevent the occurrence of a hazard, users should make use of the failure probability data quoted to determine the level of riskreduction required of the certified equipment within the overall safety integrity target for the entire function. 3. Strict adherence to all the requirements, ratings and conditions stated in the manufacturer s user documentation; 4. Installation, calibration and maintenance activities shall be carried out by competent personnel, observing all stated manufacturer s recommendations; 5. Only the manufacturer s recommended replacement parts shall be used; 6. The user shall ensure that appropriate actions are taken to maintain the required risk reduction in the event that the diagnostics reveal a potential failure. General Notes 1. This certificate is based upon a functional safety assessment of the certified equipment described in Sira Test & Certification confidential assessment report number R56A16648A. 2. If certified product or system is found not to comply, should be notified immediately at the address shown on this certificate. 3. This Certificate and the Sira Certification Mark are subject to the Regulations Applicable to the Holders of Sira Certificates and Supplementary Regulations Specific to Functional Safety Certification. 4. This document remains the property of Sira and shall be returned when requested by the company. Page 5 of 5

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information