1、 NOTICE OF COPYRIGHT This is a copyright document and may not be copied or distributed in any form or manner without the permission of ISA. This copy of the document was made for the sole use of the person to whom ISA provided it and is subject to the restrictions stated in ISAs license to that pers
2、on. It may not be provided to any other person in print, electronic, or any other form. Violations of ISAs copyright will be prosecuted to the fullest extent of the law and may result in substantial civil and criminal penalties. TECHNICAL REPORT ISA-TR18.2.1-2018 Alarm Philosophy Approved 26 Februar
3、y 2018 ISA-TR18.2.1-2018, Alarm Philosophy ISBN: 978-1-945541-89-6 Copyright 2018 by the International Society of Automation. All rights reserved. Printed in the United States of America. No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form or by an
4、y means (electronic, mechanical, photocopying, recording, or otherwise), without the prior written permission of the publisher. ISA 67 T.W. Alexander Drive P.O. Box 12277 Research Triangle Park, North Carolina 27709 E-mail: standardsisa.org 3 ISA-TR18.2.1-2018 Preface This preface, as well as all fo
5、otnotes and annexes, is included for information purpo ses only and is not part of ISA-TR18.2.1-2018. This technical report has been prepared as part of the service of ISA, the International Society of Automation, toward a goal of helping in the understanding and use of the ANSI/ISA-18.2-2016, Manag
6、ement of Alarm Systems for the Process Industries. To be of real value, this document should not be static but should be subject to periodic review. Toward this end, the Society welcomes all comments and criticisms and asks that they be addressed to the Secretary, Standards and Practices Board; ISA,
7、 67 T.W. Alexander Drive; P.O. Box 12277; Research Triangle Park, NC 277099; Telephone (919) 549-8411; Fax (919) 549-8288; E-mail: standardsisa.org. This ISA Standards and Practices Department is aware of the growing need for attention to the metric system of units in general, and the International
8、System of Units (SI) in particular, in the preparation of instrumentation standards, recommended practices, and technical reports. The Department is further aware of the benefits of USA users of ISA standards of incorporating suitable references to the SI (and the metric system) in their business an
9、d professional dealings with other countries. Toward this end, the Department will endeavor to introduce SI and acceptable metric units in all new and revised standards to the greatest extent possible. The Metric Practice Guide, which has been published by the Institute of Electrical and Electronics
10、 Engineers (IEEE) as ANSI/IEEE Std. 268-1992, and future revisions, will be the reference guide for definitions, symbols, abbreviations, and conversion factors. It is the policy of ISA to encourage and welcome the participation of all concerned individuals and interests in the development of ISA sta
11、ndards. Participation in the ISA standards -making process by an individual in no way constitutes endorsement by the employer of that individual, of ISA, or of any of the standards, recommended practices, and technical reports that ISA develops. This technical report is structured to follow the ISA
12、Style Guide. CAUTION ISA ADHERES TO THE POLICY OF THE AMERICAN NATIONAL STANDARDS INSTITUTE WITH REGARD TO PATENTS. IF ISA IS INFORMED OF AN EXISTING PATENT THAT IS REQUIRED FOR USE OF THE DOCUMENT, IT WILL REQUIRE THE OWNER OF THE PATENT TO EITHER GRANT A ROYALTY-FREE LICENSE FOR USE OF THE PATENT
13、BY USERS COMPLYING WITH THE DOCUMENT OR A LICENSE ON REASONABLE TERMS AND CONDITIONS THAT ARE FREE FROM UNFAIR DISCRIMINATION. EVEN IF ISA IS UNAWARE OF ANY PATENT COVERING THIS DOCUMENT, THE USER IS CAUTIONED THAT IMPLEMENTATION OF THE DOCUMENT MAY REQUIRE USE OF TECHNIQUES, PROCESSES, OR MATERIALS
14、 COVERED BY PATENT RIGHTS. ISA TAKES NO POSITION ON THE EXISTENCE OR VALIDITY OF ANY PATENT RIGHTS THAT MAY BE INVOLVED IN IMPLEMENTING THE DOCUMENT. ISA IS NOT RESPONSIBLE FOR IDENTIFYING ALL PATENTS THAT MAY REQUIRE A LICENSE BEFORE IMPLEMENTATION OF THE DOCUMENT OR FOR INVESTIGATING THE VALIDITY
15、OR SCOPE OF ANY PATENTS BROUGHT TO ITS ATTENTION. THE USER SHOULD CAREFULLY INVESTIGATE RELEVANT PATENTS BEFORE USING THE DOCUMENT FOR THE USERS INTENDED APPLICATION. HOWEVER, ISA ASKS THAT ANYONE REVIEWING THIS DOCUMENT WHO IS AWARE OF ANY PATENTS THAT MAY IMPACT IMPLEMENTATION OF THE DOCUMENT NOTI
16、FY THE ISA STANDARDS AND PRACTICES DEPARTMENT OF THE PATENT AND ITS OWNER. ISA-TR18.2.1-2018 4 ADDITIONALLY, THE USE OF THIS DOCUMENT MAY INVOLVE HAZARDOUS MATERIALS, OPERATIONS, OR EQUIPMENT. THE DOCUMENT CANNOT ANTICIPATE ALL POSSIBLE APPLICATIONS OR ADDRESS ALL POSSIBLE SAFETY ISSUES ASSOCIATED W
17、ITH USE IN HAZARDOUS CONDITIONS. THE USER OF THIS DOCUMENT MUST EXERCISE SOUND PROFESSIONAL JUDGMENT CONCERNING ITS USE AND APPLICABILITY UNDER THE USERS PARTICULAR CIRCUMSTANCES. THE USER MUST ALSO CONSIDER THE APPLICABILITY OF ANY GOVERNMENTAL REGULATORY LIMITATIONS AND ESTABLISHED SAFETY AND HEAL
18、TH PRACTICES BEFORE IMPLEMENTING THIS DOCUMENT. THE USER OF THIS DOCUMENT SHOULD BE AWARE THAT THIS DOCUMENT MAY BE IMPACTED BY ELECTRONIC SECURITY ISSUES. THE COMMITTEE HAS NOT YET ADDRESSED THE POTENTIAL ISSUES IN THIS VERSION. ISA (www.isa.org) is a nonprofit professional association that sets th
19、e standard for those who apply engineering and technology to improve the management, safety, and cybersecurity of modern automation and control systems used across industry and critical infrastructure. Founded in 1945, ISA develops widely used global standards; certifies industry professionals; prov
20、ides education and training; publishes books and technical articles; hosts conferences and exhibits; and provides networking and career development programs for its 40,000 members and 400,000 customers around the world. ISA owns A, a leading online publisher of automation-related content, and is the
21、 founding sponsor of The Automation Federation (www.automationfederation.org), an association of nonprofit organizations serving as “The Voice of Automation.” Through a wholly owned subsidiary, ISA bridges the gap between standards and their implementation with the ISA Security Compliance Institute
22、(www.isasecure.org) and the ISA Wireless Compliance Institute (www.isa100wci.org). The following ISA18 members served as active contributors to this technical report, which was developed by ISA18 Working Group 1. NAME AFFILIATION K. Brown, ISA18 WG1 Co-Chair Enbridge Inc. D. Visnich, ISA18 WG1 Co-Ch
23、air Burns b) manufacture or implement third-party alarm system software; c) design or install alarm systems; d) operate and/or maintain alarm systems; e) audit or assess alarm system performance. This technical report includes alarm system dataflow from ISA-18.2 for completeness in Figure 1. NOTE Ot
24、her packaged systems (i.e., fire and gas systems) can be included in the control system. Figure 1 Alarm system dataflow ISA-TR18.2.1-2018 12 This technical report includes guidance for the topics listed in the table in the A larm Philosophy clause of ISA-18.2. This table, repeated here for completen
25、ess in Figure 2 Required and recommended alarm philosophy content, defines the topics that should be addressed in an alarm philosophy document. ALARM PHILOSOPHY CONTENTS REQUIRED RECOMMENDED TR SUBCLAUSE Purpose of alarm system Yes 4.1 Definitions Yes 3 References Yes 2 Roles and responsibilities fo
26、r alarm management Yes 4.6 Alarm design principles Yes 7 Alarm setpoint determination Yes 6.4 Prioritization method Yes 6.2 Alarm class definition Yes 4.5.6.3 Highly managed alarms (or site equivalent) Yes 6.3.2 Rationalization Yes 6 Alarm documentation Yes 4.8 Alarm design guidance Yes 7.1 Specific
27、 alarm design considerations Yes 7 HMI design principles Yes 7.2 Approved enhanced and advanced alarming techniques Yes 7.3 Implementation guidance Yes 8.0 Alarm response procedure Yes 7.1.16 Training Yes 8.3 Alarm shelving Yes 8.5 Alarm system maintenance Yes 8.6 Testing of alarms Yes 8.4 Alarm sys
28、tem performance monitoring Yes 10 Alarm history preservation Yes 10.2 Management of change Yes 9.0 Alarm management audit Yes 11 Related site procedures Yes 4.7 Figure 2 Required and recommended alarm philosophy content This technical report (TR) is not intended to be used as an organizations alarm
29、philosophy. Instead it provides details on the requirements. The objective of this TR is to be the starting point for the development of an alarm philosophy document. NOTE The contents of this technical report are informative. ANSI/ISA-18.2-2016 contains the mandatory (normative) requirements. 13 IS
30、A-TR18.2.1-2018 2 Normative references 2.1 References The reference section of alarm philosophies should include those references that are relevant to it, such as ISA-18.2. The following referenced documents are useful for the application of this TR. For dated references, only the edition cited appl
31、ies. For undated references, the latest edition of the referenced document (including any amendments) applies. ANSI/ISA-18.2-2016, Management of Alarm Systems for the Process Industries (March 2016), also known as ISA-18.2 ISA-84.00.01-2004 Part 1 (IEC 61511 Mod), Functional Safety: Safety Instrumen
32、ted Systems for the Process Industry Sector Part 1: Framework, Definitions, System, Hardware and Software Requirements 3 Terms and definitions 3.1 Terms and definitions reference For the purposes of this technical report, all terms defined in ISA-18.2 Subclause 3.1 are used with their identical mean
33、ing. For ease of reference, they are repeated in this clause. 3.2 Terms and definitions 3.2.1 absolute alarm alarm generated when the setpoint is exceeded (e.g., high-high, low, low-low) 3.2.2 acknowledge operator action that confirms recognition of an alarm 3.2.3 advanced alarming collection of tec
34、hniques that can help manage annunciations during specific situations EXAMPLE: state-based alarming 3.2.4 alarm audible and/or visible means of indicating to the operator an equipment malfunction, process deviation, or abnormal condition requiring a response 3.2.5 alarm attribute setting for an alar
35、m within the process control system EXAMPLE: alarm priority ISA-TR18.2.1-2018 14 3.2.6 alarm class group of alarms with a common set of alarm management requirements (e.g., testing, training, monitoring, and auditing requirements) 3.2.7 alarm deadband change in signal from the alarm setpoint necessa
36、ry for the alarm to return to normal 3.2.8 alarm flood condition during which the alarm rate is greater than the operator can effectively manage (e.g., more than 10 alarms per 10 minutes) 3.2.9 alarm log short-term repository for alarm records 3.2.10 alarm management alarm system management collecti
37、on of processes and practices for determining, documenting, designing, operating, monitoring, and maintaining alarm systems 3.2.11 alarm message text string displayed with the alarm indication that provides additional information to the operator (e.g., operator action) 3.2.12 alarm off-delay debounc
38、e time an alarm remains active after the process measurement has returned within the alarm setpoint 3.2.13 alarm on-delay time before an alarm becomes active after the process measurement has exceeded the alarm setpoint 3.2.14 alarm philosophy document that establishes the basic definitions, princip
39、les, and processes to design, implement, and maintain an alarm system 3.2.15 alarm priority relative importance assigned to an alarm within the alarm system to indicate the urgency of response (e.g., seriousness of consequences and allowable response time) 15 ISA-TR18.2.1-2018 3.2.16 alarm setpoint
40、alarm limit alarm trip point threshold value of a process variable or discrete state that is used to determine if the alarm is active 3.2.17 alarm summary alarm list display that lists annunciated alarms with selected information (e.g., date, time, priority, and alarm type) Note 1 to entry: Return t
41、o normal indications can also appear on the alarm summary. 3.2.18 alarm system collection of hardware and software that detects an alarm state, communicates the indication of that state to the operator, and records changes in the alarm state Note 1 to entry: The operator is included in the alarm sys
42、tem. See Figure 1. 3.2.19 alarm type alarm attribute that gives a distinction of the alarm condition EXAMPLE: low process variable alarm, high process variable alarm, or discrepancy alarm 3.2.20 alert audible and/or visible means of indicating to the operator an equipment or process condition t hat
43、requires awareness and that does not meet the criteria for an alarm 3.2.21 allowable response time maximum time between the annunciation of the alarm and the time when the operator must take corrective action to avoid the consequence 3.2.22 annunciator device or group of devices that call attention
44、to changes in process conditions 3.2.23 bad-measurement alarm alarm generated when the signal for a process measurement is outside the expected range (e.g., 3.8 mA for a 420 mA signal) 3.2.24 chattering alarm alarm that repeatedly transitions between active state and not active state in a short peri
45、od of time ISA-TR18.2.1-2018 16 3.2.25 classification process of separating alarms into classes based on common requirements (e.g., testing, training, monitoring, and auditing requirements) 3.2.26 clear alternate description of the state of an alarm that has transitioned to the normal state 3.2.27 c
46、onsole interface for an operator to monitor and/or control the process, which may include multiple displays or annunciators and defines the boundaries of the operators span of control 3.2.28 control system system that responds to input signals from the equipment under control and/or from an operator
47、 and generates output signals that cause the equipment under control to operate in the desired manner NOTE 1 to entry: Control system may include both basic process control systems (BPCS) and safety instrumented systems (SIS). 3.2.29 first-out alarm first-up alarm alarm determined (i.e., by first-ou
48、t logic) to be the first, in a multiple-alarm scenario 3.2.30 highly managed alarm (HMA) alarm belonging to a class with additional requirements (e.g., regulatory requirements) above general alarms EXAMPLE: safety alarm 3.2.31 implementation transition stage between design and operation during which
49、 the alarm is put into service Note 1 to entry: Implementation includes activities such as commissioning and training. 3.2.32 instrument diagnostic alarm alarm to indicate a field device or signal fault EXAMPLE: out-of-range alarm 3.2.33 latching alarm alarm that remains in the alarm state after the process condition has returned to normal and requires an operator reset before the alarm returns to normal 17 ISA-TR18.2.1-2018 3.2.34 master alarm database authorized list of rationalized alarms and associated attributes Note 1 to
