Servomex 2223A Instrucciones de uso

Part Number: 02223006A

Revision: 0

Language: UK English

Functional Safety Manual

SERVOTOUGH OxyExact

2223A Transmitter

PROCESS ANALYSERS

This page intentionally blank.

2223A Oxygen Transmitter Functional Safety Manual

02223006A / Revision 0 i

LIST OF CONTENTS

Section

1INTRODUCTION ................................................................................................1

1.1 Purpose of this manual.......................................................................................1

1.2 Product description............................................................................................. 1

1.3 Required documentation.....................................................................................1

2DEFINITIONS AND DESCRIPTIONS ................................................................ 3

2.1 Safety instrumented system (SIS)......................................................................3

2.2 Safety function.................................................................................................... 3

2.3 Safe failure..........................................................................................................3

2.4 Dangerous failure................................................................................................ 3

2.5 Detected failure...................................................................................................3

2.6 Type A and type B subsystems.......................................................................... 3

2.7 Hardware fault tolerance (HFT) .......................................................................... 4

2.8 Safe failure fraction (SFF)...................................................................................4

2.9 PFDAVG................................................................................................................4

2.10 Mean time to repair (MTTR) ...............................................................................4

2.11 Proof test.............................................................................................................4

2.12 Safety integrity level (SIL)................................................................................... 5

3SAFETY INSTRUCTIONS.................................................................................. 7

3.1 Boundary of safety system ................................................................................. 7

3.2 Safety function.................................................................................................... 7

3.3 Installation...........................................................................................................7

3.4 Settings...............................................................................................................8

3.4.1 mA Output...........................................................................................................8

3.4.2 Fault relay........................................................................................................... 9

3.4.3 Flow alarm .......................................................................................................... 9

3.4.4 Analog inputs...................................................................................................... 9

3.5 Protection of settings ........................................................................................ 10

3.6 Checking safety ................................................................................................10

3.6.1 Checks where pressure compensation is not used..........................................10

3.6.2 Checks where pressure compensation is used................................................11

3.6.3 Routine calibration............................................................................................11

A1 APPENDIX........................................................................................................13

2223A Oxygen Transmitter Functional Safety Manual

ii 02223006A / Revision 0

This page intentionally blank.

2223A Oxygen Transmitter Functional Safety Manual

02223006A / Revision 0 1

1 INTRODUCTION

1.1 Purpose of this manual

This manual provides information and instructions that will be needed in order to use the

2223A Oxygen Transmitter in a safety instrumented system.

It is aimed at those responsible for planning, designing, installing, commissioning and

maintaining safety instrumented systems using the 2223A Oxygen Transmitter.

1.2 Product description

The 2223A Oxygen Transmitter provides a stable and accurate measurement of the oxygen

concentration in a sample gas stream. Pressure compensation and flow alarm are available

as internally fitted options or as inputs from external measurements.

The measurement is provided as a mA output. Fault indications are provided by a solid

state relay output and by an out-of-range current from the mA output. Additional status

indications are provided by further solid state relays.

The 2223A Oxygen Transmitter is normally used in conjunction with a 2210 or 2213 Control

Unit. This provides additional system inputs and outputs and allows the transmitter to be

configured and measurements to be displayed.

1.3 Required documentation

This manual covers only the functional safety-related aspects of the 2223A Oxygen

Transmitter. For complete information it must be read in conjunction with the following:-

Title Part Number Language

Operator Manual 02210001A English

02210011A French

02210021A German

Installation Manual 02223005A English

02223015A French

02223025A German

2223A Oxygen Transmitter Functional Safety Manual

2 02223006A / Revision 0

This page intentionally blank.

2223A Oxygen Transmitter Functional Safety Manual

02223006A / Revision 0 3

2 DEFINITIONS AND DESCRIPTIONS

2.1 Safety instrumented system (SIS)

A safety instrumented system comprises components and subsystems (from sensor

through to final element) which provide functions aimed at mitigating dangerous failure

conditions.

2.2 Safety function

A defined function executed by a safety instrumented system which is intended to mitigate

a specific dangerous event.

2.3 Safe failure

A failure other than the specific failures which lead to the defined hazardous failure state.

2.4 Dangerous failure

A specific failure mode which leads to a defined non-functioning state. Note that there may

be more than one dangerous failure mode for any particular system.

2.5 Detected failure

A failure that is detected by diagnostic tests, proof tests, operator intervention or through

normal operation.

2.6 Type A and type B subsystems

This relates to the complexity of the subsystem and the degree to which it is understood.

A subsystem is classified as Type A if all of the following are true:-

•The failure modes of all components are well defined

•The behaviour of the subsystem under fault conditions can be completely

determined

•There is sufficient dependable field failure data to show that the claimed failure

rates for detected and undetected dangerous failures are met.

A subsystem is classified as Type B if any of the following are true:-

•The failure mode of at least one component is not well defined

•The behaviour of the subsystem under fault conditions cannot be completely

determined

•There is insufficient dependable field failure data to support claims for failure rates

for detected and undetected dangerous failures.

Type B subsystems include those with complex components (e.g. microprocessors) or

software.

2223A Oxygen Transmitter Functional Safety Manual

2.7 Hardware fault tolerance (HFT)

The ability to continue to provide a safety function in the presence of faults and errors. A

hardware fault tolerance of N means that N+1 faults could cause the loss of a safety

function.

2.8 Safe failure fraction (SFF)

The fraction of failures that does not have the potential to put the safety instrumented

system in a dangerous or non-functioning state. In other words, for each failure mode the

ratio of the diagnosed dangerous failures and the safe failures to the total failures. This

figure is sometimes expressed as a percentage.

2.9 PFDAVG

The probability of a dangerous failure on demand. This is intended to apply to systems

operating in a low demand mode where the safety function is required on average a

maximum of once per year.

A typical safety instrumented system normally consists of three subsystems as follows:-

It can be seen that the analyser will typically be a part of the overall system and is therefore

only entitled to a fraction of the total PFDAVG range associated with the specified SIL.

Sensor

e.g. Analyser

Logic System

e.g. PLC

Final Elements

e.g. Valve

2.10 Mean time to repair (MTTR)

This is the average time taken to restore the safety instrumented system to a working state.

2.11 Proof test

Periodic tests that are performed to detect failures so that, if necessary, the system can be

restored to a fully working state.

4 02223006A / Revision 0

2223A Oxygen Transmitter Functional Safety Manual

02223006A / Revision 0 5

2.12 Safety integrity level (SIL)

The international standard IEC 61508 defines four Safety Integrity Levels from SIL1 to

SIL4. Each of these corresponds to a range of probabilities that the safety function will fail.

The higher the SIL the greater the probability that the safety function will work when

required to do so.

The achievable SIL is determined by a number of factors that include the safety

management procedures and lifecycle activities carried out during the development of a

product or system. This manual only considers product hardware failures and so covers the

following characteristics:-

•Product type (A or B)

•Hardware fault tolerance

•Safe failure fraction

•Average probability of a dangerous failure of the safety function on demand

(PFDAVG) and associated proof test interval

The following table shows the relationship between hardware fault tolerance and safe

failure fraction for a Type B subsystem (see IEC 61508 Section 2).

HFT

SFF 0 1 2

<60% Not allowed SIL1 SIL2

60 to 90% SIL1 SIL2 SIL3

90 to 99% SIL2 SIL3 SIL4

>99% SIL3 SIL4 SIL4

The following table shows the dependency of the SIL on the probability of failure on

demand (PFDAVG) for low demand mode of operation.

Safety Integrity

Level Low Demand Mode of Operation

Average Probability of Failure to Perform

Safety Function on Demand

4 ≥10-5 to 10-4

3 ≥10-4 to 10-3

2 ≥10-3 to 10-2

1 ≥10-2 to 10-1

2223A Oxygen Transmitter Functional Safety Manual

6 02223006A / Revision 0

This page intentionally blank.

Tabla de contenidos

Otros manuales de Transmisor de Servomex

Servomex

Servomex AquaXact 1688 Manual de usuario

Manuales populares de Transmisor de otras marcas

NIVELCO

NIVELCO EasyTREK SCA-300 Series Manual del propietario

Honeywell

Honeywell 5816WMBR Manual de usuario

Kamstrup

Kamstrup READy MTU Instrucciones de funcionamiento

Omega

Omega ZW Series Manual de usuario

ABB

ABB Field 264H Guía

Alinco

Alinco DJ-V17T Manual de usuario

Dejero

Dejero EnGo 3x Manual de usuario

Rosemount

Rosemount 4600 Manual de usuario

Speaka Professional

Speaka Professional 2342740 Manual de usuario

trubomat

trubomat GAB 1000 Manual de usuario

Teledyne Analytical Instruments

Teledyne Analytical Instruments LXT-380 Manual de usuario

Rondish

Rondish UT-11 Manual de usuario

MG 10JRE Manual de usuario

Burkert

Burkert 8177 Manual de usuario

Firetide

Firetide HotPort 3203 Manual

Tele Radio

Tele Radio T9-02 Manual de usuario

Rotronic

Rotronic HygroFlex HF3 Series Manual de usuario

Jamara

Jamara FCX6 Pro Tel Manual de usuario