《BS-EN-61508-2-2002.pdf》由会员分享,可在线阅读,更多相关《BS-EN-61508-2-2002.pdf(78页珍藏版)》请在三一文库上搜索。
1、BRITISH STANDARD BS EN 61508-2:2002 Incorporating Amendment No.1 to BS IEC 61508-2:2000 (renumbers the BS IEC as BS EN 61508-2:2002) Functional safety of electrical/electronic/ programmable electronic safety-related systems Part 2: Requirements for electrical/electronic/programmable electronic safet
2、y-related systems The European Standard EN 61508-2:2001 has the status of a British Standard ICS 25.040.40; 29.020 ? Licensed Copy: sheffieldun sheffieldun, na, Thu Nov 09 09:06:42 GMT+00:00 2006, Uncontrolled Copy, (c) BSI BS EN 61508-2:2002 This British Standard, having been prepared under the dir
3、ection of the Electrotechnical Sector Committee, was published under the authority of the Standards Committee and comes into effect on 15 July 2000 BSI 15 March 2002 ISBN 0 580 36136 5 National foreword This British Standard is the official English language version of EN 61508-2:2001. It is identica
4、l with IEC 61508-2:2000. The UK participation in its preparation was entrusted to Technical Committee GEL/65, Measurement and control, to Subcommittee GEL/65/1, System considerations, which has the responsibility to: A list of organizations represented on this committee can be obtained on request to
5、 its secretary. Cross-references The British Standards which implement international or European publications referred to in this document may be found in the BSI Standards Catalogue under the section entitled “International Standards Correspondence Index”, or by using the “Find” facility of the BSI
6、 Standards Electronic Catalogue. A British Standard does not purport to include all the necessary provisions of a contract. Users of British Standards are responsible for their correct application. Compliance with a British Standard does not of itself confer immunity from legal obligations. aid enqu
7、irers to understand the text; present to the responsible international/European committee any enquiries on the interpretation, or proposals for change, and keep the UK interests informed; monitor related international and European developments and promulgate them in the UK. Summary of pages This doc
8、ument comprises a front cover, an inside front cover, the EN title page, pages 2 to 74, an inside back cover and a back cover. The BSI copyright date displayed in this document indicates when the document was last issued. Amendments issued since publication Amd. No. DateComments 1378015 March 2002Im
9、plementation of the European Standard Licensed Copy: sheffieldun sheffieldun, na, Thu Nov 09 09:06:42 GMT+00:00 2006, Uncontrolled Copy, (c) BSI EUROPEAN STANDARDEN 61508-2 NORME EUROPENNE EUROPISCHE NORMDecember 2001 CENELEC European Committee for Electrotechnical Standardization Comit Europen de N
10、ormalisation Electrotechnique Europisches Komitee fr Elektrotechnische Normung Central Secretariat: rue de Stassart 35, B - 1050 Brussels 2001 CENELEC -All rights of exploitation in any form and by any means reserved worldwide for CENELEC members. Ref. No. EN 61508-2:2001 E ICS 25.040.40 English ver
11、sion Functional safety of electrical/electronic/programmable electronic safety-related systems Part 2: Requirements for electrical/electronic/programmable electronic safety-related systems (IEC 61508-2:2000) Scurit fonctionnelle des systmes lectriques/lectroniques/lectroniques programmables relatifs
12、 la scurit Partie 2: Prescriptions pour les systmes lectriques/lectroniques/lectroniques programmables relatifs la scurit (CEI 61508-2:2000) Funktionale Sicherheit sicherheitsbezogener elektrischer/ elektronischer/programmierbarer elektronischer Systeme Teil 2: Anforderungen an sicherheitsbezogene e
13、lektrische/ elektronische/programmierbare elektronische Systeme (IEC 61508-2:2000) This European Standard was approved by CENELEC on 2001-07-03. CENELEC members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this European Standard the status o
14、f a national standard without any alteration. Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to the Central Secretariat or to any CENELEC member. This European Standard exists in three official versions (English, French, German). A v
15、ersion in any other language made by translation under the responsibility of a CENELEC member into its own language and notified to the Central Secretariat has the same status as the official versions. CENELEC members are the national electrotechnical committees of Austria, Belgium, Czech Republic,
16、Denmark, Finland, France, Germany, Greece, Iceland, Ireland, Italy, Luxembourg, Malta, Netherlands, Norway, Portugal, Spain, Sweden, Switzerland and United Kingdom. Licensed Copy: sheffieldun sheffieldun, na, Thu Nov 09 09:06:42 GMT+00:00 2006, Uncontrolled Copy, (c) BSI EN 60518-:20021- - 2 Forewor
17、d The text of the International Standard IEC 61508-2:2000, prepared by SC 65A, System aspects, of IEC TC 65, Industrial-process measurement and control, was submitted to the Unique Acceptance Procedure and was approved by CENELEC as EN 61508-2 on 2001-07-03 without any modification. The following da
18、tes were fixed: latest date by which the EN has to be implemented at national level by publication of an identical national standard or by endorsement(dop) 2002-08-01 latest date by which the national standards conflicting with the EN have to be withdrawn(dow) 2004-08-01 Annexes designated “normativ
19、e“ are part of the body of the standard. In this standard, annexes A, B, C and ZA are normative. Annex ZA has been added by CENELEC. IEC 61508 is a basic safety publication covering the functional safety of electrical, electronic and programmable electronic safety-related systems. The scope states:
20、“This International Standard covers those aspects to be considered when electrical/electronic/ programmable electronic systems (E/E/PESs) are used to carry out safety functions. A major objective of this standard is to facilitate the development of application sector international standards by the t
21、echnical committees responsible for the application sector. This will allow all the relevant factors associated with the application, to be fully taken into account and thereby meet the specific needs of the application sector. A dual objective of this standard is to enable the development of electr
22、ical/electronic/programmable electronic (E/E/PE) safety-related systems where application sector international standards may not exist“. The CENELEC Report R0BT-004, ratified by 103 BT (March 2000) accepts that some IEC standards, which today are either published or under development, are sector imp
23、lementations of IEC 61508. For example: ? IEC 61511, Functional safety - Safety instrumented systems for the process industry sector; ? IEC 62061, Safety of machinery Functional safety of electrical, electronic and programmable electronic control systems; ? IEC 61513, Nuclear power plants Instrument
24、ation and control for systems important to safety General requirements for systems. The railways sector has also developed a set of European Standards (EN 50126; EN 50128 and prEN 50129). NOTE EN 50126 and EN 50128 were based on earlier drafts of IEC 61508. prEN 50129 is based on the principles of t
25、he latest version of IEC 61508. This list does not preclude other sector implementations of IEC 61508 which could be currently under development or published within IEC or CENELEC. _ 1002:280516 NE Page 2 EN 615082:2001 Licensed Copy: sheffieldun sheffieldun, na, Thu Nov 09 09:06:42 GMT+00:00 2006,
26、Uncontrolled Copy, (c) BSI - - 3EN 60518-:20021 Endorsement notice The text of the International Standard IEC 61508-2:2000 was approved by CENELEC as a European Standard without any modification. In the official version, for Bibliography, the following note has to be added for the standard indicated
27、: IEC 61000-4 NOTE Harmonized in the EN 61000-4 series (not modified). IEC 60870-5-1NOTE Harmonized as EN 60870-5-1:1993 (not modified). _ 1002:280516 NE Page 3 EN 615082:2001 Licensed Copy: sheffieldun sheffieldun, na, Thu Nov 09 09:06:42 GMT+00:00 2006, Uncontrolled Copy, (c) BSI 60518-2 CEI:0200
28、3 CONTENTS Page INTRODUCTION 6 Clause 1Scope 8 2Normative references. 11 3Definitions and abbreviations . 12 4Conformance to this standard 12 5Documentation. 12 6Management of functional safety 12 7E/E/PES safety lifecycle requirements . 12 7.1General. 12 7.2E/E/PES safety requirements specification
29、 16 7.3E/E/PES safety validation planning . 18 7.4E/E/PES design and development. 19 7.5E/E/PES integration 36 7.6E/E/PES operation and maintenance procedures 37 7.7E/E/PES safety validation . 39 7.8E/E/PES modification 40 7.9E/E/PES verification 40 8Functional safety assessment 42 Annex A (normativ
30、e) Techniques and measures for E/E/PE safety-related systems: control of failures during operation 43 A.1Geenral. 34 A.2Hardware safety integrity. 44 A.3Systematic safety integrtiy. 35 Annxe B (ronmtaiv)e Tcenhiuqse anm dsaeruse fro E/E/PE sfatey-reltaes dystmes: avoidnaco ef systematic failures dur
31、ing the different phases of the lifecycle 59 Annex C (normative) Diagnostic coverage and safe failure fraction 69 C.1Calculation of diagnostic coverage and safe failure fraction of a subsystem 69 C.2Determination of diagnostic coverage factors 70 Bibilorgpahy. 72 Page 4 EN 615082:2001 61508-2 IEC:20
32、00 3 TNOCTNES Pega NITRODCUTION 4 lCsuae 1Scope 8 2Nromative references. 11 3Definitions and babreviaitnos . 21 4Conformnace to this stnaadrd 21 5Documnetation. 21 6Mnaagement of functional safety 21 7E/E/EPS safety lifecycle reuqiremtnes . 21 7.1Geenral. 21 7.2E/E/EPS safety reuqiremtnes specificat
33、io.n. 61 7.3E/E/EPS safety vaildation planning . 81 7.4E/E/EPS edsiga ndn edvelopment. 91 7.5E/E/EPS integration 63 7.6E/E/EPS operatioa ndn mainteannce orpcedures 37 7.7E/E/EPS safety vaildation . 93 7.8E/E/EPS modification 04 7.9E/E/EPS verification 04 8Functioanl safety assessmnet 24 Annxe A (ron
34、mtaiv)e Tcenhiuqse anm dsaeruse fro E/E/PE sfatey-reltaes dystmes: control of failures durign poeration . 34 A.1Geenral. 34 A.2Hardware safety integrity. 44 A.3Systematic safety integrtiy. 35 Annxe B (ronmtaiv)e Tcenhiuqse anm dsaeruse fro E/E/PE sfatey-reltaes dystmes: avoidnaco ef systematic failu
35、res during the idfferent pahses of teh ilfecycle 95 Annex C (nromative) Digaonstic coverage nad safe faliure fraction 96 C.1Calculation of digaonstic covergae and safe faliuer fraction of a subsystem 96 C.2Determintaino of dingaotsic cvoergae fatcors 07 Bibliography. 72 4 egaP 1002:280516 NE nnAex Z
36、A (nroma)evit roNmevita refercnese ot tniertannoial bupcilatoisn wit htrieh corresdnopiuE gnroepap nublicatsnoi . 37 61508-2 IEC:2000 3 TNOCTNES Pega NITRODCUTION 4 lCsuae 1Scope 8 2Nromative references. 11 3Definitions and babreviaitnos . 21 4Conformnace to this stnaadrd 21 5Documnetation. 21 6Mnaa
37、gement of functional safety 21 7E/E/EPS safety lifecycle reuqiremtnes . 21 7.1Geenral. 21 7.2E/E/EPS safety reuqiremtnes specificatio.n. 61 7.3E/E/EPS safety vaildation planning . 81 7.4E/E/EPS edsiga ndn edvelopment. 91 7.5E/E/EPS integration 63 7.6E/E/EPS operatioa ndn mainteannce orpcedures 37 7.
38、7E/E/EPS safety vaildation . 93 7.8E/E/EPS modification 04 7.9E/E/EPS verification 04 8Functioanl safety assessmnet 24 Annxe A (ronmtaiv)e Tcenhiuqse anm dsaeruse fro E/E/PE sfatey-reltaes dystmes: control of failures durign poeration . 34 A.1General. 43 A.2Hardware safety integrity. 44 A.3Systemati
39、c safety integrity. 53 Annxe B (ronmtaiv)e Tcenhiuqse anm dsaeruse fro E/E/PE sfatey-reltaes dystmes: avoidnaco ef systematic failures during the idfferent pahses of teh ilfecycle 95 Annex C (nromative) Digaonstic coverage nad safe faliure fraction 96 C.1Calculation of digaonstic covergae and safe f
40、aliuer fraction of a subsystem 96 C.2Determintaino of dingaotsic cvoergae fatcors 07 Bibilorgpahy. 27 4 egaP 1002:280516 NE 60518-2 CEI:0200 3 CONTENTS Page INTRODUCTION 4 Clause 1Scope 8 2Normative references. 11 3Definitions and abbreviations . 12 4Conformance to this standard 12 5Documentation. 1
41、2 6Management of functional safety 12 7E/E/PES safety lifecycle requirements . 12 7.1General. 12 7.2E/E/PES safety requirements specification 16 7.3E/E/PES safety validation planning . 18 7.4E/E/PES design and development. 19 7.5E/E/PES integration 36 7.6E/E/PES operation and maintenance procedures
42、37 7.7E/E/PES safety validation . 39 7.8E/E/PES modification 40 7.9E/E/PES verification 40 8Functional safety assessment 42 Annex A (normative) Techniques and measures for E/E/PE safety-related systems: control of failures during operation . 43 A.1General. 43 A.2Hardware safety integrity. 44 A.3Syst
43、ematic safety integrity. 53 Annex B (normative) Techniques and measures for E/E/PE safety-related systems: avoidance of systematic failures during the different phases of the lifecycle 59 Annex C (normative) Diagnostic coverage and safe failure fraction 69 C.1Calculation of diagnostic coverage and s
44、afe failure fraction of a subsystem 69 C.2Determination of diagnostic coverage factors 70 Bibilorgpahy. 27 Page 4 EN 615082:2001 Annex ZA (normative) Normative references to international publications with their corresponding European publications . 73 Annex ZA (normative) Normative references to in
45、ternational publications with their corresponding European publications . 73 Licensed Copy: sheffieldun sheffieldun, na, Thu Nov 09 09:06:42 GMT+00:00 2006, Uncontrolled Copy, (c) BSI 60518-2 CEI:0200 5 Page Figure 1 Overall framework of IEC 61508 10 Figure 2 E/E/PES safety lifecycle (in realisation
46、 phase). 13 Figure 3 Relationship and scope for IEC 61508-2 and IEC 61508-3. 14 Figure 4 Relationship between the hardware and software architectures of programmable electronics 20 Figure 5 Example limitation on hardware safety integrity for a single-channel safety function 25 Figure 6 Example limit
47、ation on hardware safety integrity for a multiple-channel safety function 27 Table 1 Overview Realisation phase of the E/E/PES safety lifecycle. 15 Table 2 Hardware safety integrity: architectural constraints on type A safety-related subsystems 24 Table 3 Hardware safety integrity: architectural con
48、straints on type B safety-related subsystems 24 Table A.1 Faults or failures to be detected during operation or to be analysed in the derivation of safe failure fraction. 45 Table A.2 Electrical subsystems 46 Table A.3 Electronic subsystems. 47 Table A.4 Processing units 47 Table A.5 Invariable memo
49、ry ranges . 48 Table A.6 Variable memory ranges 48 Table A.7 I/O units and interface (external communication) . 49 Table A.8 Data paths (internal communication) . 49 Table A.9 Power supply. 50 Table A.10 Program sequence (watch-dog) . 50 Table A.11 Ventilation and heating system (if necessary) 51 Table A.12 Clock. 51 Table A.13 Communication and mass-storage. 52 Table A.14 Se