Redundant Systems
SUPREMA
233
US
13 Redundant Systems
13.1 Application/Function Safety
For the safety functions of gas warning measuring instruments, the European standards
EN 60 079-29-1, EN 50 104, EN 50 271 , and EN 50 402 have been prepared for the monitoring
of explosive gas and vapours as well as oxygen.
Additionally, if systems are operated together with microcomputers, the standard EN 61 508 must
be considered with regard to functional safety in a measuring and control application.
This standard divides the application types into Safety Integrity Levels SIL 1–4. The system must
be designed to meet the safety level required.
For operation according to SIL 4, additional conditions must be met which are not planned for the
SUPREMA for the time being.
By retrofitting modules, a non-redundant rack system can be converted to a redundant system.
There are sufficient spare slots in the rack for the additional MGO modules but not for additional
relay modules, (MTO, MRC).
The following module types are needed for retrofitting:
By adding the MCP module, operation of a second CAN bus for data acquisition and alarming as
well as the necessary double modules for data acquisition and alarming, the non-redundant sys-
tem can be converted to a redundant system.
For the EN 61 508 SIL 3 Safety Level, the SUPREMA must be operated with redundancy.
Moreover, the system as well as the MRC TS module must not be operated with a redun-
dancy whose failure rate is more than 6.73 * 10-6 1/h.
MCP Module Central Processing
MDA Module Data Acquisition
MAR Module Analog Redundant
MGO Module General Output
MRO 8 Module Relay Output (8 Relay)
MRO 16 Module Relay Output (2 x 8 Relay, redundant)
To Next Page
Loading...
