Functional Safety
A Straightforward Guide to Applying IEC 61508 and Related Standards
- 2nd Edition - July 27, 2004
- Latest edition
- Authors: David J. Smith, Kenneth G. L. Simpson
- Language: English
Electrical, electronic and programmable electronic systems, such as emergency shut down systems and railway signalling systems, increasingly carry out safety functions to guard… Read more
Purchase options
Electrical, electronic and programmable electronic systems, such as emergency shut down systems and railway signalling systems, increasingly carry out safety functions to guard workers and the public against injury or death and the environment against pollution. The international standard IEC 61508 has been developed as a generic standard that applies to all these systems irrespective of their application.
IEC 61508 is seen by many professionals as complex. This book overcomes that complexity by introducing the standard in the context of safety in general before moving on to provide practical advice about implementing it and obtaining certification. It also explains how IEC 61508 relates to second tier standards and related guidance, such as IEC 61511, 61513, UKOOA, ISA S84.01 and DIN standards, among others. Throughout the text, the authors illustrate their explanations with examples to which the answers are supplied in the appendix. Four case studies with further exercises set the information in context. Templates and checklists for drawing up your own implementation plan and information on self-certification are also provided.
As Functional Safety, the standard, is applicable to many industries, Functional Safety, the book, in its previous edition has proved to be an invaluable reference for professionals from a variety of industries, such as project/instrumentation/design/control engineers as well as safety professionals in oil and gas, chemical, rail, power generation, nuclear, aircraft, and automotive industries.
The new edition includes a new chapter on IEC 61511, the process sector standard, published since the first edition. The text has been updated throughout in light of the authors’ recent experience and two case studies have been added.
Dr. David J Smith, BSc, PhD, CEng, FIEE, HonFSaRS, FIQA, MIGasE, has been directly concerned with reliability, safety and software quality for 30 years. He has written a number of books on the subject as well as numerous papers. His PhD thesis was on the subject of reliability prediction accuracy and common cause failure. He chairs the IGasE panel which develops its guidelines on safety-related systems (now in its third edition). He has also made contributions to IEC 61508.
Kenneth G. L. Simpson, MPhil, FIEE, FInstMC, MIGasE, has been associated with safety-related systems design and also with their assessment for 25 years. He is a member of the IEC 61508 drafting committee and also of the I Gas E panel which writes the gas industry guidance. Following a career in aerospace, Ken has spent 20 years in the control system industry and is a Director of Silvertech International plc, a leading designer of safety and control systems. He has written a number of papers on the topic and gives frequent talks.
IEC 61508 is seen by many professionals as complex. This book overcomes that complexity by introducing the standard in the context of safety in general before moving on to provide practical advice about implementing it and obtaining certification. It also explains how IEC 61508 relates to second tier standards and related guidance, such as IEC 61511, 61513, UKOOA, ISA S84.01 and DIN standards, among others. Throughout the text, the authors illustrate their explanations with examples to which the answers are supplied in the appendix. Four case studies with further exercises set the information in context. Templates and checklists for drawing up your own implementation plan and information on self-certification are also provided.
As Functional Safety, the standard, is applicable to many industries, Functional Safety, the book, in its previous edition has proved to be an invaluable reference for professionals from a variety of industries, such as project/instrumentation/design/control engineers as well as safety professionals in oil and gas, chemical, rail, power generation, nuclear, aircraft, and automotive industries.
The new edition includes a new chapter on IEC 61511, the process sector standard, published since the first edition. The text has been updated throughout in light of the authors’ recent experience and two case studies have been added.
Dr. David J Smith, BSc, PhD, CEng, FIEE, HonFSaRS, FIQA, MIGasE, has been directly concerned with reliability, safety and software quality for 30 years. He has written a number of books on the subject as well as numerous papers. His PhD thesis was on the subject of reliability prediction accuracy and common cause failure. He chairs the IGasE panel which develops its guidelines on safety-related systems (now in its third edition). He has also made contributions to IEC 61508.
Kenneth G. L. Simpson, MPhil, FIEE, FInstMC, MIGasE, has been associated with safety-related systems design and also with their assessment for 25 years. He is a member of the IEC 61508 drafting committee and also of the I Gas E panel which writes the gas industry guidance. Following a career in aerospace, Ken has spent 20 years in the control system industry and is a Director of Silvertech International plc, a leading designer of safety and control systems. He has written a number of papers on the topic and gives frequent talks.
* A practical guide to achieving functional safety standards in safety-critical systems
* Makes a complex standard easy to follow and sets it in the context of risk and safety
* Provides support for those undertaking self-assessment, which can save money spent on large consultancy fees
* Makes a complex standard easy to follow and sets it in the context of risk and safety
* Provides support for those undertaking self-assessment, which can save money spent on large consultancy fees
Safety professionals; project / instrumentation / design / cost / control engineers in chemical, rail, power generation, nuclear, aircraft, and automotive industries.
A quick overview.
Acknowledgements.
PART A - THE CONCEPT OF SAFETY-INTEGRITY
The Meaning and Context of safety-integrity targets:
Risk and the need for safety targets.
Quantitative and qualitative safety targets.
The life-cycle approach.
Basic steps in the assessment process.
Costs.
The 7 Parts of IEC 61508.
PART B - THE BASIC REQUIREMENTS OF IEC 61508 AND 61511
Meeting IEC 61508 Part 1:
Functional safety management & competence.
Establishing SIL targets.
Applying ALARP.
Meeting IEC 61508 Part 2:
Organising and managing the design.
Requirements involving the specification.
Requirements for design and development.
Integration and test.
Operations and maintenance.
Proven in use.
Validation.
Modifications.
Acquired sub-systems.
“Proven in use”.
Presenting the results.
Demonstration Template.
Meeting IEC 61508 Part 3:
Organising and managing the software engineering.
Requirements involving the specification.
Requirements for design and development.
Integration and test.
Operations and maintenance.
Modifications.
Some technical comments.
“Proven in use”.
Presenting the results.
Demonstration Template.
Meeting IEC 61511:
Organising and managing the software life-cycle.
Requirements involving the specification.
Requirements for design and development.
Integration and test.
Validation.
Modifications.
Installation and commissioning.
Operations and maintenance.
Presenting the results.
PART C - THE QUANTITATIVE ASSESSMENT
Reliability modelling techniques (incl human error) :
Failure rate and unavailability.
Creating a reliability model.
Taking account of auto-test.
Human error/ human factors.
Failure rate and mode data:
Data accuracy.
Sources of data.
Data ranges and confidence levels.
Conclusions.
PART D - RELATED ISSUES
Some comments on Part 6 of IEC 61508:
Overview.
The quantitative Tables (Annex B).
The software safety-integrity Tables (Annex E).
Second tier and related guidance documents:
IEC 61511 (Process).
I Gas E SR/15.
UKOOA (Offshore).
ISA S84.01 (Instrumentation).
OLF-077 (Norwegian).
EN50126 (railways).
UK MOD (Defence).
MISRA guidelines (motor).
MISRA C Code guidelines.
IEC 61513 (Nuclear).
EEMUA Guidelines.
RTCA DO178 (civil air).
DIN Standards.
“Machinery” documents.
NPL Software guidelines.
SEMSPLC (programmable controllers).
Certification:
Demonstrating Conformance.
The Current Framework for Certification.
Self Certification.
Other Types of “Certification”.
Preparing for assessment.
Summary.
PART E - EXAMPLES IN THE FORM OF EXERCISES & EXAMPLES
Pressure control case study (exercise).
Burner control assessment (example).
SIL targeting - Some practical examples.
Hypothetical rail train braking case study (example).
Appendices:
Functional safety capability – Template procedure.
Assessment schedule (checklist).
Betaplus CCF model, checklists.
Assessing safe failure fraction and diagnostic coverage.
Answers to examples.
References.
High and low demand.
Some terms and jargon.
Index.
Acknowledgements.
PART A - THE CONCEPT OF SAFETY-INTEGRITY
The Meaning and Context of safety-integrity targets:
Risk and the need for safety targets.
Quantitative and qualitative safety targets.
The life-cycle approach.
Basic steps in the assessment process.
Costs.
The 7 Parts of IEC 61508.
PART B - THE BASIC REQUIREMENTS OF IEC 61508 AND 61511
Meeting IEC 61508 Part 1:
Functional safety management & competence.
Establishing SIL targets.
Applying ALARP.
Meeting IEC 61508 Part 2:
Organising and managing the design.
Requirements involving the specification.
Requirements for design and development.
Integration and test.
Operations and maintenance.
Proven in use.
Validation.
Modifications.
Acquired sub-systems.
“Proven in use”.
Presenting the results.
Demonstration Template.
Meeting IEC 61508 Part 3:
Organising and managing the software engineering.
Requirements involving the specification.
Requirements for design and development.
Integration and test.
Operations and maintenance.
Modifications.
Some technical comments.
“Proven in use”.
Presenting the results.
Demonstration Template.
Meeting IEC 61511:
Organising and managing the software life-cycle.
Requirements involving the specification.
Requirements for design and development.
Integration and test.
Validation.
Modifications.
Installation and commissioning.
Operations and maintenance.
Presenting the results.
PART C - THE QUANTITATIVE ASSESSMENT
Reliability modelling techniques (incl human error) :
Failure rate and unavailability.
Creating a reliability model.
Taking account of auto-test.
Human error/ human factors.
Failure rate and mode data:
Data accuracy.
Sources of data.
Data ranges and confidence levels.
Conclusions.
PART D - RELATED ISSUES
Some comments on Part 6 of IEC 61508:
Overview.
The quantitative Tables (Annex B).
The software safety-integrity Tables (Annex E).
Second tier and related guidance documents:
IEC 61511 (Process).
I Gas E SR/15.
UKOOA (Offshore).
ISA S84.01 (Instrumentation).
OLF-077 (Norwegian).
EN50126 (railways).
UK MOD (Defence).
MISRA guidelines (motor).
MISRA C Code guidelines.
IEC 61513 (Nuclear).
EEMUA Guidelines.
RTCA DO178 (civil air).
DIN Standards.
“Machinery” documents.
NPL Software guidelines.
SEMSPLC (programmable controllers).
Certification:
Demonstrating Conformance.
The Current Framework for Certification.
Self Certification.
Other Types of “Certification”.
Preparing for assessment.
Summary.
PART E - EXAMPLES IN THE FORM OF EXERCISES & EXAMPLES
Pressure control case study (exercise).
Burner control assessment (example).
SIL targeting - Some practical examples.
Hypothetical rail train braking case study (example).
Appendices:
Functional safety capability – Template procedure.
Assessment schedule (checklist).
Betaplus CCF model, checklists.
Assessing safe failure fraction and diagnostic coverage.
Answers to examples.
References.
High and low demand.
Some terms and jargon.
Index.
- Edition: 2
- Latest edition
- Published: July 27, 2004
- Language: English
DS
David J. Smith
Dr. David J. Smith is the Proprietor of Technis Consultancy. He has written numerous books on Reliability and Safety over the last 40 years. His FARADIP database has become widely used, and his other software packages are also used throughout the profession. His PhD thesis was on the subject of reliability prediction and common cause failure. He contributed to the first drafting of IEC 61508 and chairs the IGEM panel which produces SR/15 (the gas industry safety related guidance). David is past President of the Safety and Reliability Society.
Affiliations and expertise
Independent Consultant, Technis, Tonbridge, UKKS
Kenneth G. L. Simpson
Kenneth G. L. Simpson is Managing Director of Engineering Safety Consultants Ltd and has been associated with safety related systems design and also with their assessment for over 40 years. He is a member of both the IEC61508 and IEC61511 drafting committees and the IGEM (SR15) panel, which writes the gas industry guidance. Following a career in aerospace, Ken has spent over 35 years in the control and safety system industry, has written a number of papers on the topic and gives frequent lectures.
Affiliations and expertise
Independent Consultant, ESC, UKRead Functional Safety on ScienceDirect