Implementing High Diagnostic Coverage for SIL 3 Systems on a Standard Microcontroller

Beyond the limitation of 99 % diagnostic coverage

Martin Schrape

Keywords: Architecture, Diagnostic coverage, IEC 61508, Microcontroler, Memory, Certification, Safe-T-Core

This article is available in: English. Please login to request translation.

Abstract:

Functional safety, as defined by the IEC 61508 standard, introduces the concepts of safe failure fraction (SFF) and hardware fault tolerance (HFT). For single channel architectures using a microcontroller the maximum safety integrity level is limited to SIL 2. The Safe-T-Core concept presented in this paper abolishes this limitation. The detailed understanding of internal structures and failure mechanism only available for the microcontroller manufacturer results in a library of software tests, which are highly efficient, can run in the background and implements a diagnostic coverage of >99%. The Safe-T-Core software enables a smart integration of functional safety requirements into industrial and automotive embedded control systems. © 2009 Inside Publishing. All Rights Reserved.

Volume: 2009 Issue: 1

EUR 3.34

(Pages: 7, Words: 1855)

Readers of this article also bought

EUR 9.66

Certification, Proven In Use, And Reliability Data

Michel Houtermans

Language: English

EUR 7.28

Determination of the Safety Integrity Level for a Safety Instrumented Function

Ian Hitchen

Language: English

EUR 7.04

Handling Documentation Requirements in the Functional Safety Industry

Roberto Eduardo Varela

Language: English

Articles by keywords

2oo4d accident accidents accumulative risk actuators alarm annunciator alarp ansi/isa s.84 api 521 architecture asil asset management audit automatic code generation automatic documentation automotive availability bayesian updating bpcs buncefield burner management system caex certification common cause common cause failures communication compliance component failure analysis consequence matrix content management control cost reduction cost-benefit analysis cots demand mode diagnostic coverage diagnostics digital valve controller documentation emc emergency shutdown system emi en 50402 en 746 en/iec 60079–29–1 failure incident failure rate data failure rates fieldbus fire and gas fired equipment fmeda foundation sif full stroke functional modules functional safety functional safety management gas detection gas sensors gas turbine global risk hardware hazard and operability analysis hazard and operability study hazop hazop templates heterogeneous hipps iec 61131 iec 61131-3 iec 61508 iec 61511 iec 62061 iec 61508 incident investigation independent protection layer instrumentation and control iso 26262 knowledge-based system layer of protection layer of protection analysis life cycle lifecycle management liquiphant lock-up valve lopa management management of change markov memory metrological standards microcontroler mttfs namur 93 nfpa 72 oem online changes operator over spill protection overspeed protection p&id flowchart paag partial stroke partial stroke testing pha prior use process hazop process risk process safety proof test interval proof testing proven in use qs9000 quality data quality management redundancy regulations reliability reliability data reliability engineering reliability program requirements definition review risk graphs risk matrix risk reduction risk reduction factor rule-based system safe-t-core safeguard safety safety goal safety instrumented function safety instrumented system safety instrumented systems safety integrity level safety lifecycle self-declaration sensor poisoning sif signature test sil sil determination methods sil evaluation sil-capability silstroke sil verification sis sis design software solenoid valves spurious trip standardisation state transition modelling sulphur recovery tank farm test bench texas city thermal burner third party tier 1 tolerable risk training tridefine type testing valve testing valves vdi 2180 verification