Documente Academic
Documente Profesional
Documente Cultură
Industrial Automation
Homework #2
Done by
920014500
920014661
Date
27.04.2014
factor opt
are countless
6. Emergency Response Layer: Last layer that handles dangers and of the
protection layers. Consists of plans and protocols to minimize damages
to the equipment and save the workers by evacuation procedures and
so on.
As mentioned earlier, SIS is considered to be the third layer of the
protection layers. It has three main components: sensor, logical devise and
controlled element. As explained earlier, the components of the SIS are
completely distinct from the control systems equipment. A sensor is a
device that reads and measures different parameters such as pressure, flow,
temperature and etc. A sensor can act either as a switching device or a
transmitter connected to a transducer. After the data is measured by the
sensor, it is collected by the logical device. The device is programmed to
carry out a set of procedures such as open a valve if the flow reading is low.
The device should be able to distinguish major faults and minor ones before
acting accordingly. Finally, the control element is the actuating device that
acts upon the command of the logical device. Control valves and circuit
breakers are examples of control elements.
Each process in the industrial operation has different protocols and safety
standards, where they determine the safety level by conducting a risk
tolerance analysis. In order to quantify this risk, Safety Integrity Level (SIL) is
used to convert this risk analysis into a number and therefore assess the
performance of each system. Most of the standards categorize the SIL into 4
levels as table 1 shows. Required safety Availability (RSA) is the percentage
of how often the SIS functions properly while the Probability of Failure on
Demand (PFD) is the percentage of how often the SIS fails.
Table 1. Four levels of SIL according to IEC standards
SIL
Required
1
2
3
Availability (RSA)
90 99 %
99 99.9 %
99.9 99.99 %
Safety Probability
of
Failure
on
Demand (PFD)
10 1 %
1 0.1 %
0.1 0.01 %
2
99.99 99.999 %
0.01 0.001 %
Risk Level
1
2
3
4
5
Description
Improbable
Remote
Occasional
Probable
Frequent
Frequency
Once in 10,000 years
Once in 1,000 years
Once in 100 years
Once in 10 years
Once a year
Risk Level
1
2
3
4
5
Description
Negligible
Minor
Serious
Severe
Catastrophic
Severity
No injury
Medical treatment
Disability
Death
Multiple deaths
By the levels determined in the above tables, the risk factor is determined by
multiplying the risk level from both tables. Accordingly, SIL is assigned as per
the result of the multiplication. As stated previously, each hazard and every
safety procedure has to conduct this analysis to select the suitable SIL for
the SIS and then design the system considering the PFD percentage.
Since the possibility that the SIS fails is there, there are several ways in
which it can. The first is when the operation is terminated before the
existence of a threat. But such failure is costly in terms of time and operation
costs. The second would be more harmful and devastating as the process
continues with high risk of threats to occur. Such failure blinds the SIS from
responding which could be fatal. The percentage PFD showed in table 1 is to
the total percentage failure of all the components of the SIS. Each element is
evaluated separately by analyzing data on failure rates. As the PFD
increases, the Test Interval rises; which is the time between maintaining and
testing each device. Tests should be done more frequently to maintain an
acceptable PFD percentage as the SIL is higher of a system.