1、BRITISH STANDARD BS EN 61511-1:2004 Incorporating Amendment No. 1 (renumbers the BS IEC 61511-1: 2003 as BS EN 61511-1:2004 Functional safety Safety instrumented systems for the process industry sector Part 1: Framework, definitions, system, hardware and software requirements The European Standard E
2、N 61511-1:2004 has the status of a British Standard ICS 25.040.01; 13.110 BS EN 61511-1:2004 This British Standard was published under the authority of the Standards Policy and Strategy Committee on 12 March 2003 BSI 11 April 2005 ISBN 0 580 41386 1 National foreword This British Standard is the off
3、icial English language version of EN 61511-1:2004. It is identical with IEC 61511-1:2003. The UK participation in its preparation was entrusted by Technical Committee GEL/65, Measurement and control, to Subcommittee GEL/65/1, System considerations, which has the responsibility to: A list of organiza
4、tions represented on this subcommittee can be obtained on request to its secretary. Cross-references The British Standards which implement international or European publications referred to in this document may be found in the BSI Catalogue under the section entitled “International Standards Corresp
5、ondence Index”, or by using the “Search” facility of the BSI Electronic Catalogue or of British Standards Online. This publication does not purport to include all the necessary provisions of a contract. Users are responsible for its correct application. Compliance with a British Standard does not of
6、 itself confer immunity from legal obligations. aid enquirers to understand the text; present to the responsible international/European committee any enquiries on the interpretation, or proposals for change, and keep the UK interests informed; monitor related international and European developments
7、and promulgate them in the UK. Summary of pages This document comprises a front cover, an inside front cover, the EN title page, pages 2 to 84, an inside back cover and a back cover. The BSI copyright date displayed in this document indicates when the document was last issued. Amendments issued sinc
8、e publication Amd. No. Date Comments 15776 11 April 2005 Renumbers BS IEC 61511-1:2003 as BS EN 61511-1:2004EUROPEAN STANDARD EN 61511-1 NORME EUROPENNE EUROPISCHE NORM December 2004 CENELEC European Committee for Electrotechnical Standardization Comit Europen de Normalisation Electrotechnique Europ
9、isches Komitee fr Elektrotechnische Normung Central Secretariat: rue de Stassart 35, B - 1050 Brussels 2004 CENELEC - All rights of exploitation in any form and by any means reserved worldwide for CENELEC members. Ref. No. EN 61511-1:2004 E ICS 13.110; 25.040.01 English version Functional safety Saf
10、ety instrumented systems for the process industry sector Part 1: Framework, definitions, system, hardware and software requirements (IEC 61511-1:2003 + corrigendum 2004) Scurit fonctionnelle Systmes instruments de scurit pour le secteur des industries de transformation Partie 1: Cadre, dfinitions, e
11、xigences pour le systme, le matriel et le logiciel (CEI 61511-1:2003 + corrigendum 2004) Funktionale Sicherheit - Sicherheitstechnische Systeme fr die Prozessindustrie Teil 1: Allgemeines, Begriffe, Anforderungen an Systeme, Software und Hardware (IEC 61511-1:2003 + Corrigendum 2004) This European S
12、tandard was approved by CENELEC on 2004-10-01. CENELEC members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration. Up-to-date lists and bibliographical references conc
13、erning such national standards may be obtained on application to the Central Secretariat or to any CENELEC member. This European Standard exists in three official versions (English, French, German). A version in any other language made by translation under the responsibility of a CENELEC member into
14、 its own language and notified to the Central Secretariat has the same status as the official versions. CENELEC members are the national electrotechnical committees of Austria, Belgium, Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latv
15、ia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Slovakia, Slovenia, Spain, Sweden, Switzerland and United Kingdom. Foreword The text of the International Standard IEC 61511-1:2003, prepared by SC 65A, System aspects, of IEC TC 65, Industrial-process measurement and control,
16、was submitted to the Unique Acceptance Procedure and was approved by CENELEC as EN 61511-1 on 2004-10-01 without any modification. The following dates were fixed: latest date by which the EN has to be implemented at national level by publication of an identical national standard or by endorsement (d
17、op) 2005-10-01 latest date by which the national standards conflicting with the EN have to be withdrawn (dow) 2007-10-01 Annex ZA has been added by CENELEC. _ Endorsement notice The text of the International Standard IEC 61511-1:2003 + corrigendum November 2004 was approved by CENELEC as a European
18、Standard without any modification. _ Page2 EN615111:2004CONTENTS INTRODUCTION6 1 Scope 8 2 Normative references13 3 Abbreviations and definitions 14 3.1 Abbreviations.14 3.2 Definitions .15 4 Conformance to this International Standard 29 5 Management of functional safety.29 5.1 Objective .29 5.2 Req
19、uirements 29 6 Safety life-cycle requirements.34 6.1 Objective .34 6.2 Requirements 34 7 Verification .36 7.1 Objective .36 8 Process hazard and risk analysis37 8.1 Objectives .37 8.2 Requirements 37 9 Allocation of safety functions to protection layers38 9.1 Objective .38 9.2 Requirements of the al
20、location process .38 9.3 Additional requirements for safety integrity level 4.39 9.4 Requirements on the basic process control system as a protection layer .40 9.5 Requirements for preventing common cause, common mode and dependent failures 41 10 SIS safety requirements specification .42 10.1 Object
21、ive .42 10.2 General requirements 42 10.3 SIS safety requirements.42 11 SIS design and engineering 43 11.1 Objective .43 11.2 General requirements 43 11.3 Requirements for system behaviour on detection of a fault 45 11.4 Requirements for hardware fault tolerance.46 11.5 Requirements for selection of
22、 components and subsystems 47 11.6 Field devices .50 11.7 Interfaces 51 11.8 Maintenance or testing design requirements53 11.9 SIF probability of failure.53 Page3 EN615111:200412 Requirements for application software, including selection criteria for utility software .54 12.1 Application software sa
23、fety life-cycle requirements 55 12.2 Application software safety requirements specification.61 12.3 Application software safety validation planning 63 12.4 Application software design and development63 12.5 Integration of the application software with the SIS subsystem 68 12.6 FPL and LVL software m
24、odification procedures .69 12.7 Application software verification.69 13 Factory acceptance testing (FAT) .70 13.1 Objectives .70 13.2 Recommendations.71 14 SIS installation and commissioning.72 14.1 Objectives .72 14.2 Requirements 72 15 SIS safety validation .73 15.1 Objective .73 15.2 Requirements
25、 73 16 SIS operation and maintenance 75 16.1 Objectives .75 16.2 Requirements 76 16.3 Proof testing and inspection.77 17 SIS modification78 17.1 Objective .78 17.2 Requirements 78 18 SIS decommissioning79 18.1 Objectives .79 18.2 Requirements 79 19 Information and documentation requirements80 19.1 O
26、bjectives .80 19.2 Requirements 80 Annex A (informative) Differences82 Figure 1 Overall framework of this standard 7 Figure 2 R elatinoshib petween IEC 16511 and IEC 6105810 Figure 3 R elatinoshib petween IEC 16511 and IEC 61058 (see 1.2)1.1 Figure 4 R elatinoshib petween safety instrumtneed functio
27、ns and otreh functisno 12 Figure 5 R elatinoshib petween sysetmah ,rdwar,e and sotfware fo IEC 16511-11.3 Figure 6 P rogrammbale electronci systme (EPS): structure nad etrminology 22 Figure 7 E xample SSI archietcture 2.5 Figure 8 SIS safety life-cycel hpases and fnuctioanl safety assessment staegs3
28、2 Figure 9 Typical risk reduction metohds fuond ni process planst 41 Figure 01 Ailppcitaos nowtfraas efety ilc efycle and tir sealoitnsihht ot pas SIS efety life cycle.5.5 Page4 EN615111:200421 Rqeiuremenst for application sotfware, inclduign selection criteria for utliity sotfware 5.4 12.1 Applicat
29、ion sotfware safety life-cycel reuqiremstne 55 12.2 Application sotfware safety reuqiremstne specifictaio6.n1 12.3 Application sotfware safety vaildation planning 63 12.4 Application sotfware edsign and edvelopmnet63 12.5 Integration fo the application sotfware wiht thS eIS sbusysmet 68 12.6 FPL and
30、 LVL sotfware modificatino procedurse .96 12.7 Application sotfware verification.96 31 aFctory acceptance testing (FAT) 7.0 13.1 Objectivse 7.0 13.2 eRcommneadtions7.1 41 SIS nistallation and commissinoing7.2 14.1 Objectivse 7.2 14.2 Rqeuiremenst 72 51 SIS safety vaildation .73 15.1 Objective 7.3 15
31、.2 Rqeuiremenst 73 16 SIpo Seraiton dna mainteecnan 75 16.1 Objectivse 7.5 16.2 Rqeuiremenst 76 16.3 Prfoo testing nad inspecitno7.7 71 SIS modificatino.7.8 17.1 Objective .87 17.2 Rqeuiremenst 87 81 SIS decommissioning97 18.1 Objectivse .97 18.2 Rqeuiremenst 97 91 nIformation and documnetation requ
32、iremtnes80 19.1 Objectivse 8.0 19.2 Rqeuiremenst 80 Annex A (informative) Differneces82 Figure 1 Overall framework of this standard 7 Figure 2 Relationship between IEC 61511 and IEC 6150810 Figure 3 Relationship between IEC 61511 and IEC 61508 (see 1.2).11 Figure 4 Relationship between safety instru
33、mented functions and other functions 12 Figure 5 Relationship between system, hardware, and software of IEC 61511-1.13 Figure 6 Programmable electronic system (PES): structure and terminology 22 Figure 7 Example SIS architecture .25 Figure 8 SIS safety life-cycle phases and functional safety assessm
34、ent stages32 Figure 9 Typical risk reduction methods found in process plants 41 Figure 10 Application software safety life cycle and its relationship to the SIS safety life cycle55 4egaP 4002:111516NEAnnex ZA (normative) Normative references to international publications with their corresponding Eur
35、opean publications . 83Figure 11 Application software safety life cycle (in realization phase).57 Figure 12 Software development life cycle (the V-model) .58 Figure 13 Relationship between the hardware and software architectures of SIS61 Table 1 Abbreviations used in IEC 61511.14 Table 2 SIS safety
36、life-cycle overview 35 Table 3 Safety integrity levels: probability of failure on demand .39 Table 4 Safety integrity levels: frequency of dangerous failures of the SIF .39 Table 5 Minimum hardware fault tolerance of PE logic solvers .46 Table 6 Minimum hardware fault tolerance of sensors and final
37、elements and non-PE logic solvers47 Table 7 Application software safety life cycle: overview59 Page5 EN615111:2004INTRODUCTION Safety instrumented systems have been used for many years to perform safety instrumented functions in the process industries. If instrumentation is to be effectively used fo
38、r safety instrumented functions, it is essential that this instrumentation achieves certain minimum standards and performance levels. This international standard addresses the application of safety instrumented systems for the Process Industries. It also requires a process hazard and risk assessment
39、 to be carried out to enable the specification for safety instrumented systems to be derived. Other safety systems are only considered so that their contribution can be taken into account when considering the performance requirements for the safety instrumented systems. The safety instrumented syste
40、m includes all components and subsystems necessary to carry out the safety instrumented function from sensor(s) to final element(s). This international standard has two concepts which are fundamental to its application; safety lifecycle and safety integrity levels. This standard addresses safety ins
41、trumented systems which are based on the use of electrical/electronic/programmable electronic technology. Where other technologies are used for logic solvers, the basic principles of this standard should be applied. This standard also addresses the safety instrumented system sensors and final elemen
42、ts regardless of the technology used. This International Standard is process industry specific within the framework of IEC 61508 (see Annex A). This International Standard sets out an approach for safety life-cycle activities to achieve these minimum standards. This approach has been adopted in orde
43、r that a rational and consistent technical policy is used. In most situations, safety is best achieved by an inherently safe process design If necessary, this may be combined with a protective system or systems to address any residual identified risk. Protective systems can rely on different technol
44、ogies (chemical, mechanical, hydraulic, pneumatic, electrical, electronic, programmable electronic) To facilitate this approach, this standard requires that a hazard and risk assessment is carried out to identify the overall safety requirements; requires that an allocation of the safety requirements
45、 to the safety instrumented system(s) is carried out; works within a framework which is applicable to all instrumented methods of achieving functional safety; details the use of certain activities, such as safety management, which may be applicable to all methods of achieving functional safety. This
46、 International Standard on safety instrumented systems for the process industry addresses all safety life-cycle phases from initial concept, design, implementation, operation and maintenance through to decommissioning; enables existing or new country specific process industry standards to be harmoni
47、zed with this standard. This International Standard is intended to lead to a high level of consistency (for example, of underlying principles, terminology, information) within the process industries. This should have both safety and economic benefits. In jurisdictions where the governing authorities
48、 (for example, national, federal, state, province, county, city) have established process safety design, process safety management, or other requirements, these take precedence over the requirements defined in this standard. 3002:111516CEISB7 Page6 EN615111:2004Clauses 9 and 10 Design phase for safe
49、ty instrumented systems Clause 11 Design phase for safety instrumented system software Clause 12 Allocation of the safety requirements to the safety instrumented functions and development of safety requirements specification Development of the overall safety requirements (concept, scope definition, hazard and risk assessment) Clause 8 Factory acceptance testing, installation and commi
