1、raising standards worldwideNO COPYING WITHOUT BSI PERMISSION EXCEPT AS PERMITTED BY COPYRIGHT LAWBSI Standards PublicationDependability managementPart 3-15: Application guide Engineering of system dependabilityBS EN 60300-3-15:2009National forewordThis British Standard is the UK implementation of EN
2、 60300-3-15:2009. It isidentical to IEC 60300-3-15:2009. It supersedes BS IEC 61713:2000 which iswithdrawn.The UK participation in its preparation was entrusted to Technical CommitteeDS/1, Dependability and terotechnology.A list of organizations represented on this committee can be obtained onreques
3、t to its secretary.This publication does not purport to include all the necessary provisions of acontract. Users are responsible for its correct application. BSI 2010ISBN 978 0 580 56313 3ICS 03.120.01; 29.020Compliance with a British Standard cannot confer immunity fromlegal obligations.This Britis
4、h Standard was published under the authority of the StandardsPolicy and Strategy Committee on 31 July 2010.Amendments issued since publicationAmd. No. Date Text affectedBRITISH STANDARDBS EN 60300-3-15:2009EUROPEAN STANDARD EN 60300-3-15 NORME EUROPENNE EUROPISCHE NORM December 2009 CENELEC European
5、 Committee for Electrotechnical Standardization Comit Europen de Normalisation Electrotechnique Europisches Komitee fr Elektrotechnische Normung Central Secretariat: Avenue Marnix 17, B - 1000 Brussels 2009 CENELEC - All rights of exploitation in any form and by any means reserved worldwide for CENE
6、LEC members. Ref. No. EN 60300-3-15:2009 E ICS 03.120.01 English version Dependability management - Part 3-15: Application guide - Engineering of system dependability (IEC 60300-3-15:2009) Gestion de la sret de fonctionnement - Partie 3-15: Guide dapplication - Ingnierie de la sret de fonctionnement
7、 des systmes (CEI 60300-3-15:2009) Zuverlssigkeitsmanagement - Teil 3-15: Anwendungsleitfaden - Technische Realisierung der Systemzuverlssigkeit (IEC 60300-3-15:2009) This European Standard was approved by CENELEC on 2009-10-01. CENELEC members are bound to comply with the CEN/CENELEC Internal Regul
8、ations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration. Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to the Central Secretariat or to any CENELEC member. Thi
9、s European Standard exists in three official versions (English, French, German). A version in any other language made by translation under the responsibility of a CENELEC member into its own language and notified to the Central Secretariat has the same status as the official versions. CENELEC member
10、s are the national electrotechnical committees of Austria, Belgium, Bulgaria, Cyprus, the Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia
11、, Spain, Sweden, Switzerland and the United Kingdom. EN 60300-3-15:2009 - 2 - Foreword The text of document 56/1315/FDIS, future edition 1 of IEC 60300-3-15, prepared by IEC TC 56, Dependability, was submitted to the IEC-CENELEC parallel vote and was approved by CENELEC as EN 60300-3-15 on 2009-10-0
12、1 The following dates were fixed: latest date by which the EN has to be implemented at national level by publication of an identical national standard or by endorsement (dop) 2010-07-01 latest date by which the national standards conflicting with the EN have to be withdrawn (dow) 2012-10-01 Annex ZA
13、 has been added by CENELEC. _ Endorsement notice The text of the International Standard IEC 60300-3-15:2009 was approved by CENELEC as a European Standard without any modification. In the official version, for Bibliography, the following notes have to be added for the standards indicated: 1 IEC 6106
14、9-1 NOTE Harmonized as EN 61069-1:1993 (not modified). 2 IEC 62347 NOTE Harmonized as EN 62347:2007 (not modified). 7 IEC 60300-3-1 NOTE Harmonized as EN 60300-3-1:2004 (not modified). 9 IEC 61508 NOTE Harmonized in EN 61508 series (not modified). 10 IEC 61508-1 NOTE Harmonized as EN 61508-1:2001 (n
15、ot modified). 12 IEC 61014 NOTE Harmonized as EN 61014:2003 (not modified). 13 IEC 61164 NOTE Harmonized as EN 61164:2004 (not modified). 14 ISO 10007 NOTE Harmonized as EN ISO 10007:1996 (not modified). 16 IEC 60300-3-11 NOTE Harmonized as EN 60300-3-11:2009 (not modified). 17 IEC 60300-3-12 NOTE H
16、armonized as EN 60300-3-12:2004 (not modified). 22 IEC 60721 NOTE Harmonized in EN 60721 series (not modified). IEC 60300-3-4 NOTE Harmonized as EN 60300-3-4:2008 (not modified). IEC 60812 NOTE Harmonized as EN 60812:2006 (not modified). IEC 61025 NOTE Harmonized as EN 61025:2007 (not modified). IEC
17、 61078 NOTE Harmonized as EN 61078:2006 (not modified). IEC 61508-7 NOTE Harmonized as EN 61508-7:2001 (not modified). IEC 61709 NOTE Harmonized as EN 61709:1998 (not modified). IEC 62308 NOTE Harmonized as EN 62308:2006 (not modified). ISO 13407 NOTE Harmonized as EN ISO 13407:1999 (not modified).
18、_ BS EN 60300-3-15:2009- 3 - EN 60300-3-15:2009 Annex ZA (normative) Normative references to international publications with their corresponding European publications The following referenced documents are indispensable for the application of this document. For dated references, only the edition cit
19、ed applies. For undated references, the latest edition of the referenced document (including any amendments) applies. NOTE When an international publication has been modified by common modifications, indicated by (mod), the relevant EN/HD applies. Publication Year Title EN/HD Year IEC 60300-1 -1)Dep
20、endability management - Part 1: Dependability management systems EN 60300-1 20032)IEC 60300-2 -1)Dependability management - Part 2: Guidelines for dependability management EN 60300-2 20042)1)Undated reference. 2)Valid edition at date of issue. BS EN 60300-3-15:2009 2 60300-3-15 IEC:2009 CONTENTS INT
21、RODUCTION.6 1 Scope.7 2 Normative references .7 3 Terms and definitions .7 4 System dependability engineering and applications 8 4.1 Overview of system dependability engineering 8 4.2 System dependability attributes and performance characteristics 9 5 Managing system dependability10 5.1 Dependabilit
22、y management .10 5.2 System dependability projects .10 5.3 Tailoring to meet project needs .11 5.4 Dependability assurance .11 6 Realization of system dependability11 6.1 Process for engineering dependability into systems.11 6.1.1 Purpose of dependability process 11 6.1.2 System life cycle and proce
23、sses 11 6.1.3 Process applications through the system life cycle 12 6.2 Achievement of system dependability14 6.2.1 Purpose of system dependability achievements.14 6.2.2 Criteria for system dependability achievements .14 6.2.3 Methodology for system dependability achievements.15 6.2.4 Realization of
24、 system functions .16 6.2.5 Approaches to determine achievement of system dependability.17 6.2.6 Objective evidence of achievements18 6.3 Assessment of system dependability .18 6.3.1 Purpose of system dependability assessments 18 6.3.2 Types of assessments .18 6.3.3 Methodology for system dependabil
25、ity assessments 20 6.3.4 Assessment value and implications .21 6.4 Measurement of system dependability.21 6.4.1 Purpose of system dependability measurements .21 6.4.2 Classification of system dependability measurements22 6.4.3 Sources of measurements .23 6.4.4 Enabling systems for dependability meas
26、urements23 6.4.5 Interpretation of dependability measurements24 Annex A (informative) System life cycle processes and applications 25 Annex B (informative) Methods and tools for system dependability development and assurance.35 Annex C (informative) Guidance on system application environment42 Annex
27、 D (informative) Checklists for System Dependability Engineering 47 Bibliography54 Figure 1 An overview of a system life cycle12 Figure 2 An example of a process model .13 BS EN 60300-3-15:200960300-3-15 IEC:2009 3 Figure A.1 An overview of system life cycle processes.25 Figure C.1 Environmental req
28、uirements definition process.43 Figure C.2 Mapping system application environments to exposures .44 BS EN 60300-3-15:2009 6 60300-3-15 IEC:2009 INTRODUCTION Systems are growing in complexity in todays application environments. System dependability has become an important performance attribute that a
29、ffects the business strategies in system acquisition and the cost-effectiveness in system ownership and operations. The overall dependability of a system is the combined result of complex interactions of system elements, application environments, human-machine interfaces, deployment of support servi
30、ces and other influencing factors. This part of IEC 60300 gives guidance on the engineering of the overall system to achieve its dependability objectives. The engineering approach in this standard represents the application of appropriate scientific knowledge and relevant technical disciplines for r
31、ealizing the required dependability for the system of interest. The four main aspects for engineering dependability concerning systems are addressed in terms of process, achievement, assessment, and measurement. The engineering disciplines consist of technical processes that are applicable to the va
32、rious stages of the system life cycle. Specific technical processes described in this part of IEC 60300 are supported by a sequence of relevant process activities to achieve the objectives of each system life cycle stage. This part of IEC 60300 is applicable to generic systems with interacting syste
33、m functions consisting of hardware, software and human elements to achieve system performance objectives. In many cases a function can be realized by commercial off-the-shelf products. A system can link to other systems to form a network. The boundaries separating a product from a system, and a syst
34、em from a network, can be distinguished by defining the application of the entity. For example, a digital timer as a product can be used to synchronize the operation of a computer; the computer as a system can be linked with other computers in a business office for communications as a local area net
35、work. The application environment is applicable to all kinds of systems. Examples of applicable systems include control systems for power generation, fault-tolerant computing systems and systems for provision of maintenance support services. Guidance on dependability engineering is provided for gene
36、ric systems. It does not classify systems for special applications. The majority of systems in use are generally repairable throughout their life cycle operation for economic reasons and practical applications. Non-repairable systems such as communication satellites, remote sensing/monitoring equipm
37、ent, and one-shot devices are considered as application-specific systems. They require further identification of specific application environment, operational conditions and additional information on unique performance characteristics to achieve their mission success objectives. Non-repairable subsy
38、stems and components are considered as throwaway items. The selection of applicable processes for engineering dependability into a specific system is carried out through the project tailoring and dependability management process. This part of IEC 60300 forms part of the framework standards on system
39、 aspects of dependability to support IEC 60300-1 and IEC 60300-2 on dependability management. References are made to project management activities applicable to systems. They include identification of dependability elements and tasks relevant to the system and guidelines for dependability management
40、 reviews and tailoring of dependability projects. BS EN 60300-3-15:200960300-3-15 IEC:2009 7 DEPENDABILITY MANAGEMENT Part 3-15: Application guide Engineering of system dependability 1 Scope This part of IEC 60300 provides guidance for an engineering systems dependability and describes a process for
41、 realization of system dependability through the system life cycle. This standard is applicable to new system development and for enhancement of existing systems involving interactions of system functions consisting of hardware, software and human elements. This standard also applies to providers of
42、 subsystems and suppliers of products that seek system information and criteria for system integration. Methods and tools are provided for system dependability assessment and verification of results for achievement of dependability objectives. 2 Normative references The following referenced document
43、s are indispensable for the application of this document. For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendments) applies. IEC 60300-1, Dependability management Part 1: Dependability management systems IEC
44、 60300-2, Dependability management Part 2: Guidelines for dependability management 3 Terms and definitions For the purposes of this document, the following terms and definitions apply. 3.1 system set of interrelated items considered as a whole for a defined purpose, separated from other items NOTE 1
45、 A system is generally defined with the view of performing a definite function. NOTE 2 The system is considered to be bound by an imaginary surface that intersects the links between the system and the environment and the other external systems. NOTE 3 External resources (i.e. outside the system boun
46、dary) may be required for the system to operate. NOTE 4 A system structure may be hierarchical, e.g. system, subsystem, component, etc. 3.2 subsystem system that is part of a more complex system 3.3 operating profile complete set of tasks to achieve a specific system objective BS EN 60300-3-15:2009
47、8 60300-3-15 IEC:2009 NOTE 1 Configurations and operating scenarios form part of the mode of system operation. NOTE 2 An operating profile is the sequence of required tasks to be performed by the system to achieve its operational objective. The operating profile represents a specific operating scena
48、rio for the system in operation. 3.4 function elementary operation performed by the system which, when combined with other elementary operations (system functions), enables the system to perform a task IEC 61069-1 :1991, 2.2.5 113.5 element combination of components that form the basic building bloc
49、k to perform a distinct function NOTE 1 An element may comprise hardware, software, information and/or human components. NOTE 2 For some systems, information and data are an important part of the system operations. 3.6 integrity ability of a system to sustain its form, stability and robustness, and maintain its consistency in performance and use 4 System dependability engineering and applications 4.1 Overview of system dependability e
