Safety in the Matrix. Siemens AG All rights reserved.

Size: px

Start display at page:

Cornelia Cross
5 years ago
Views:

1 Safety in the Matrix Siemens innovative approach to functional safety helps meet the requirements of the oil and gas industry by maximizing safety while also ensuring high availability and reduced costs

2 Functional safety as a layer of protection Plant and Emergency Response Emergency response layer Mitigate Containment, Dike, Vessel Passive protection layer Fire and Gas System Active protection layer Incident Prevent Emergency Shutdown System Emergency Shutdown Safety layer SIS Operator Intervention Process alarm Operator Intervention Process control layer BPCS Normal Process control layer Process Value behavior

3 How do we ensure safety integrity for the SIS? Failure causes Plant lifecycle Competence Analysis + Specifications Functional safety management + Design & implementation Installation & startup Technical requirements Operation & maintenance Robust design Robust processes Changes after start-up

4 The lifecycle approach according to functional safety standard IEC 61511

5 Focussing on software The lifecycle approach for the application program

6 IEC61511 encourages the following best practice for application software The selected design method and application language (LVL or FPL) should possess features that facilitate Abstraction, modularity and other features which control complexity; Expression of functionality, information flow; sequencing requirements; operation within defined time constraints; freedom from indeterminate behavior; assurance that internal data items are not erroneously duplicated, all used data types are defined and appropriate action occurs when data is out of range or bad; design assumptions and their dependencies. Comprehension by developers and others Verification and validation, including coverage of the application software code, functional coverage of the integrated application, the interface with the SIS and its application specific hardware configuration. Application software modification. Such features include modularity, traceability and documentation. IEC Clause

Traditional Approach to implementing SIS

7 Traditional Approach to implementing SIS logic Requires some interpretation of cause and effect into LD, FB or CFC Not immediately intuitive - even if logically structured and well commented Custom engineering required (overrides, bypasses, operator graphics, reports)

8 Alternative Safety Matrix approach Little or no interpretation required Verification and validation is less onerous Relatively easy to understand for all stakeholders Mechanisms for overrides, bypasses, operator graphics, reports are already included

compiling, downloading and online monitoring of the Safety Matrix with in STEP 7 environment Safety Matrix Viewer

9 Safety Matrix Components Safety Matrix Editor For creating and editing the Safety Matrix logic on an external workstation outside a STEP 7 or PCS 7 environment Safety Matrix Engineering Tool For creating, configuring, compiling, downloading and online monitoring of the Safety Matrix with in STEP 7 environment Safety Matrix Viewer For operator control and visualization of the Safety Matrix within PCS7 OS environment with different operator control levels

10 Design & engineering performance Integrated safety lifecycle tools

11 Design & engineering performance Integrated safety lifecycle tools The realization phase The SIMATIC Safety Matrix as engineering tool Configuration of the safety functions using the Cause & Effects Method Automatic TÜV-certified creation of the Safety Logic from the Cause & Effect Matrix Easy configuration without special programming knowledge Online monitoring mode for verification and validation Reduces systematic errors Simplifies engineering, verification and validation Saves time, improves safety

Design & engineering performance Integrated safety lifecycle tools Operation & maintenance, modification Online view of the signal status, Cause & Effects Automatic integration in PCS 7 First up

12 Design & engineering performance Integrated safety lifecycle tools Operation & maintenance, modification Online view of the signal status, Cause & Effects Automatic integration in PCS 7 First up alarm display and storage Supports operator bypass, reset, override and parameter changes Sequence of event recording Automatic report of operation functions Automatic version tracking Automatic documentation of changes Reduces systematic errors Simplifies engineering, verification and validation Improves operator efficiency Saves time, improves safety