prEN 50126-4
(Main)Railway applications - The Specification and Demonstration of Reliability, Availability, Maintainability and Safety (RAMS) - Part 4: Functional Safety - Electrical/Electronic/Programmable electronic systems
Railway applications - The Specification and Demonstration of Reliability, Availability, Maintainability and Safety (RAMS) - Part 4: Functional Safety - Electrical/Electronic/Programmable electronic systems
2014-03 TC Decision: WI to be stopped as draft for vote cannot be delivered on time in the frame of the 3-year timeframe * 2012-06-29 - Enquiry editing allocated to aclausse@cencenelec.eu * D144/C085: Second extension of the target date for vote approved to read 2014-03-05 with transfer in the new audit system
Bahnanwendungen - Spezifikation und Nachweis von Zuverlässigkeit, Verfügbarkeit, Instandhaltbarkeit und Sicherheit (RAMS) - Teil 4: Funktionale Sicherheit - Elektrische/Elektronische/Programmierbare elektronische Systeme
Applications ferroviaires - Spécification et démonstration de la fiabilité, de la disponibilité, de la maintenabilité et de la sécurité (FDMS) - Partie 4: Sécurité fonctionnelle - Systèmes électriques/électroniques/électroniques programmables
Železniške naprave - Specifikacija in prikaz zanesljivosti, razpoložljivosti, vzdrževalnosti in varnosti (RAMS) - 4. del: Funkcionalna varnost - Električno/Elektronsko/Programabilni elektronski sistemi
General Information
Relations
Standards Content (Sample)
SLOVENSKI STANDARD
oSIST prEN 50126-4:2013
01-januar-2013
äHOH]QLãNHQDSUDYH6SHFLILNDFLMDLQSULND]]DQHVOMLYRVWLUD]SRORåOMLYRVWL
Y]GUåHYDOQRVWLLQYDUQRVWL5$06GHO)XQNFLRQDOQDYDUQRVW
(OHNWULþQR(OHNWURQVNR3URJUDPDELOQLHOHNWURQVNLVLVWHPL
Railway applications - The Specification and Demonstration of Reliability, Availability,
Maintainability and Safety (RAMS) - Part 4: Functional Safety -
Electrical/Electronic/Programmable electronic systems
Bahnanwendungen - Spezifikation und Nachweis von Zuverlässigkeit, Verfügbarkeit,
Instandhaltbarkeit und Sicherheit (RAMS) - Teil 4: Funktionale Sicherheit -
Elektrische/Elektronische/Programmierbare elektronische Systeme
Applications ferroviaires - Spécification et démonstration de la fiabilité, de la disponibilité,
de la maintenabilité et de la sécurité (FDMS) - Partie 4: Sécurité fonctionnelle -
Systèmes électriques/électroniques/électroniques programmables
Ta slovenski standard je istoveten z: prEN 50126-4:2012
ICS:
35.240.60 Uporabniške rešitve IT v IT applications in transport
transportu in trgovini and trade
45.020 Železniška tehnika na Railway engineering in
splošno general
oSIST prEN 50126-4:2013 en
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.
---------------------- Page: 1 ----------------------
oSIST prEN 50126-4:2013
---------------------- Page: 2 ----------------------
oSIST prEN 50126-4:2013
DRAFT
EUROPEAN STANDARD
prEN 50126-4
NORME EUROPÉENNE
October 2012
EUROPÄISCHE NORM
ICS Will supersede EN 50129:2003
English version
Railway applications -
The Specification and Demonstration of Reliability, Availability,
Maintainability and Safety (RAMS) -
Part 4: Functional Safety -
Electrical/Electronic/Programmable electronic systems
Applications ferroviaires - Bahnanwendungen -
Spécification et démonstration de la fiabilité, de la Spezifikation und Nachweis von Zuverlässigkeit,
disponibilité, de la maintenabilité et de la sécurité Verfügbarkeit, Instandhaltbarkeit und Sicherheit
(FDMS) - (RAMS) -
Partie 4: Sécurité fonctionnelle - Teil 4: Funktionale Sicherheit -
Systèmes électriques/électroniques/électroniques Elektrische/Elektronische/Programmierbare
programmables elektronische Systeme
This draft European Standard is submitted to CENELEC members for CENELEC enquiry.
Deadline for CENELEC: 2013-03-29.
It has been drawn up by CLC/TC 9X.
If this draft becomes a European Standard, CENELEC members are bound to comply with the CEN/CENELEC Internal Regulations
which stipulate the conditions for giving this European Standard the status of a national standard without any alteration.
This draft European Standard was established by CENELEC in three official versions (English, French, German). A version in any other
language made by translation under the responsibility of a CENELEC member into its own language and notified to the CEN-CENELEC
Management Centre has the same status as the official versions.
CENELEC members are the national electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus, the Czech Republic,
Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia,
Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland,
Turkey and the United Kingdom.
Recipients of this draft are invited to submit, with their comments, notification of any relevant patent rights of which they are aware and to
provide supporting documentation.
Warning : This document is not a European Standard. It is distributed for review and comments. It is subject to change without notice
and shall not be referred to as a European Standard.
CENELEC
European Committee for Electrotechnical Standardization
Comité Européen de Normalisation Electrotechnique
Europäisches Komitee für Elektrotechnische Normung
Management Centre: Avenue Marnix 17, B - 1000 Brussels
© 2012 CENELEC - All rights of exploitation in any form and by any means reserved worldwide for CENELEC members.
Project: 21754 Ref. No. prEN 50126-4:2012 E
---------------------- Page: 3 ----------------------
oSIST prEN 50126-4:2013
prEN 50126-4:2012 - 2 -
7001 Contents Page
7002 Foreword . 6
7003 Introduction . 8
7004 1 Scope . 9
7005 2 Normative references . 10
7006 3 Terms and definitions . 10
7007 4 Abbreviations. 11
7008 5 Overall Framework of the Part 4 . 13
7009 6 E/E/PE systems management and organisation . 15
7010 6.1 Lifecycle Issues and Documentation . 15
7011 6.2 Organisation, Roles and Responsibilities . 18
7012 6.3 Personnel Competence . 20
7013 7 E/E/PE systems assurance . 21
7014 7.1 Analysis . 21
7015 7.2 Testing . 23
7016 7.3 Verification. 24
7017 7.4 Validation. 26
7018 7.5 Independent Assessment. 29
7019 7.6 Quality Assurance . 31
7020 7.7 Safety Management . 33
7021 7.8 Configuration Management and Modification Control . 35
7022 7.9 Support Tools . 37
7023 8 E/E/PE system development: system aspects . 39
7024 8.1 Additional Requirements for E/E/PE Architecture . 39
7025 8.2 Integration and Validation . 45
7026 9 E/E/PE development: Generic hardware . 52
7027 9.1 Hardware Component Specification . 52
7028 9.2 Hardware Component Implementation . 54
7029 9.3 Hardware Component Validation . 55
7030 10 E/E/PE development: Configurable hardware . 56
7031 10.1 Requirements . 56
7032 11 E/E/PE systems operation and maintenance . 56
7033 11.1 Planning & Organisation . 56
7034 11.2 System Deployment . 58
7035 11.3 Operation and Maintenance including Performance Monitoring . 60
7036 11.4 Modification . 63
7037 Annex A (normative) Techniques/Measures . 64
7038 Annex B (normative) Electronic/Electrical Component failure modes . 77
7039 B.1 Introduction. 77
7040 B.2 General Procedure . 77
7041 B.3 Procedure for Integrated Circuits (including Microprocessors) . 77
7042 B.4 Procedure for Electronic/Electrical Components with Inherent Physical Properties . 78
7043 B.5 General Observations concerning Electronic/Electrical Component Failure Modes . 79
---------------------- Page: 4 ----------------------
oSIST prEN 50126-4:2013
- 3 - prEN 50126-4:2012
7044 B.6 Additional General Observations, concerning Electronic/Electrical Components with
7045 Inherent Physical Properties . 79
7046 B.7 Specific Observations concerning Electronic/Electrical Components with Inherent
7047 Physical Properties . 80
7048 Annex C (normative) Key Hardware/System Safety Roles and Responsibilities . 97
7049 Annex D (informative) Technical Recommendations for SIL3 and SIL4 functions . 110
7050 Introduction. 110
D.1
7051 D.2 Achievement of Physical Internal Independence . 110
7052 D.3 Achievement of Physical External Independence . 111
7053 D.4 Single-fault Detection . 112
7054 D.5 Multiple-fault Detection . 113
7055 Annex E (informative) Guidance on Programmable Devices . 117
7056 Introduction. 117
E.1
7057 E.2 Relation to EN 50126-5 . 118
7058 E.3 Pre-existing programmable devices . 133
7059 Annex F (normative) Previously Developed Hardware (PDH) and Commercial Off The Shelf
7060 Hardware (COTSH) . 134
7061 Annex G (informative) Structure of Hardware/Systems Safety Cases . 136
7062 G.1 Generic Product Safety Case Guidance for E/E/PE . 136
7063 G.2 Generic Application Safety Case Guidance for E/E/PE . 145
7064 G.3 Specific Application Safety Case Guidance for E/E/PE . 145
7065 G.4 Cross-Acceptance Safety Case Guidance for E/E/PE . 146
7066 G.4.1Cross-Acceptance Process . 146
7067 Annex H (informative) Bibliography of techniques . 149
7068 H.1 Introduction. 149
7069 H.2 Techniques . 161
7070
7071 Figure 1 – Illustrative Development Lifecycle . 16
7072 Figure 2 – Illustrative Development and System Integration Lifecycle . 17
7073 Figure 3 – Independence and Combination of Roles versus Safety Integrity Levels . 19
7074 Figure 4 – Detection and negation of single faults . 42
7075 Figure B.1 – Example of a 4-terminal Resistor using a hybrid thick layer technique . 80
7076 Figure D.1 –Single-fault and Multiple-fault detection conditions . 114
7077 Figure G.2 – Structure of Technical Safety Report . 138
7078
7079 Table 1 – Relation between Tool Class and applicable paragraphs of this subclause . 39
7080 Table A.1 – Lifecycle Issues and Documentation . 65
7081 Table A.2 – Safety Planning and Quality Assurance Activities . 66
7082 Table A.3 – System Requirements Specification . 67
7083 Table A.4 – Safety Organisation . 68
7084 Table A.5 – Architecture of System/Subsystem/Equipment . 69
7085 Table A.6 – Design Features . 70
7086 Table A.7 – Failure and Hazard Analysis Methods . 72
7087 Table A.8 – Design and Development of System/Sub-system/Item . 73
7088 Table A.9 – Design Phase Documentation . 73
7089 Table A.10 – Verification and Validation of the System and Product Design . 74
---------------------- Page: 5 ----------------------
oSIST prEN 50126-4:2013
prEN 50126-4:2012 - 4 -
7090 Table A.11 – Application, Operation and Maintenance . 75
7091 Table A.12 – Functional Testing . 75
7092 Table A.13 – Performance Testing . 75
7093 Table A.14 – Hardware Safety Analysis . 76
7094 Table B.1 – Resistor and adjustable resistor (excluding 4-terminal resistor) . 85
7095 Table B.2 – 4 Terminal Resistors . 85
7096 Table B.3 – Capacitor and adjustable capacitor (excluding 4-terminal capacitor). 85
7097 Table B.4 – 4-Terminal Capacitors . 86
7098 Table B.5 – Electromagnetic Components-Inductor . 86
7099 Table B.6 – Electromagnetic Components-Transformer . 86
7100 Table B.7 – Electromagnetic Components-Transductor (saturable reactor or magnetic amplifier). 87
7101 Table B.8 – Electromagnetic Components-Relays . 88
7102 Table B.9 – Diodes- Normal diode (power, signal, switching) . 88
7103 Table B.10 – Diodes-Zener Diodes . 89
7104 Table B.11 – Transistors-Bipolar . 89
7105 Table B.12 – Transistors-Field Effect (FET) . 90
7106 Table B.13 – Silicon - controlled rectifier (SCR) (thyristor) . 91
7107 Table B.14 – Bidirectional thyristor (triac) . 91
7108 Table B.15 – Surge Suppressors - Voltage-dependent resistor (VDR) (varistor) . 92
7109 Table B.16 – Surge Suppressors-Protective Diode . 92
7110 Table B.17 – Surge Suppressors-Gas Discharge Arrester . 92
7111 Table B.18 – Surge Suppressors-Air Gap Arrester . 92
7112 Table B.19 – Opto-electronic Components-Photo Diode . 92
7113 Table B.20 – Opto-electronic Components-Photo Transistor . 93
7114 Table B.21 – Opto-electronic Components- Light-emitting diode (LED) . 93
7115 Table B.22 - Opto-electronic Components- Optocoupler and self-contained fibre-optic system. 93
7116 Table B.23 – Filters-Crystal . 93
7117 Table B.24 – Filters-Mechanical Resonator (turning fork/reed/pendulum) . 94
7118 Table B.25 – Interconnection Assemblies-Printed Circuit Board . 94
7119 Table B.26 – Interconnection Assemblies-Connector . 94
7120 Table B.27 – Interconnection Assemblies-Cable and Wire . 94
7121 Table B.28 – Interconnection Assemblies-Connection (soldered, welded, wrapped, crimped, clipped,
7122 screwed) . 95
7123 Table B.29 – Interconnection Assemblies – Fibreoptic Cable . 95
7124 Table B.30 – Interconnection Assemblies-Fibreoptic Connector . 95
7125 Table B.31 – Fuses . 95
7126 Table B.32 – Switches and Push/pull Buttons . 95
7127 Table B.33 – Lamps . 95
7128 Table B.34 – Batteries. 96
7129 Table B.35 – Transducers/sensors . 96
7130 (not including those with internal electronic circuitry) . 96
7131 Table B.36 – Integrated Circuits-Analogue Devices . 96
7132 Table B.37 – Integrated Circuits-Digital Devices . 96
---------------------- Page: 6 ----------------------
oSIST prEN 50126-4:2013
- 5 - prEN 50126-4:2012
7133 Table B.38 – Integrated Circuits-Microprocessors . 96
7134 Table C.1 – Hardware/System Requirements Manager Role Specification . 97
7135 Table C.2 – Hardware/System Designer Role Specification . 98
7136 Table C.3 – Hardware/System Implementer Role Specification . 99
7137 Table C.4 – Hardware/System Tester Role Specification . 100
7138 Table C.5 – Hardware/System Verifier Role Specification . 101
7139 Table C.6 – Hardware/System Integrator Role Specification . 102
7140 Table C.7 – Hardware/System Validator Role Specification . 103
7141 Table C.8 – Hardware/System Assessor Role Specification . 104
7142 Table C.9 – Hardware/System Project Manager Role Specification . 105
7143 Table C.10 – Hardware/System Configuration Manager Role Specification . 106
7144 Table C.11 – Hardware/System Maintenance Manager Role Specification . 107
7145 Table C.12 – Hardware/System Operations Manager Role Specification . 108
7146 Table C.13 – Hardware/System Safety Manager Role Specification . 109
7147 Table D.1 - Measures to detect faults in integrated circuits by means of periodic on-line testing . 115
7148 Table E.1 – Design (including all activities pre-synthesis) . 122
7149 Table E.2 – Synthesis . 123
7150 Table E.3 – Placement, Routing . 124
7151 Table E.4 – Description for techniques/measures from Design. 125
7152 Table E.5 – Description for techniques/ measures from Synthesis . 129
7153 Table E.6 – Description for techniques/ measures from Placement, Routing and Layout Generation . 131
7154 Table H.1 – Properties of techniques . 152
7155
7156
---------------------- Page: 7 ----------------------
oSIST prEN 50126-4:2013
prEN 50126-4:2012 - 6 -
7157 Foreword
7158 This document [prEN 50126-4:2012] has been prepared by CLC/TC 9X "Electrical and electronic
7159 applications for railways".
7160 This document is currently submitted to the Enquiry.
7161 EN 50126 "Railway applications – The specification and demonstration of Reliability, Availability,
7162 Maintainability and Safety (RAMS)" consists of the following parts:
7163 – Part 1: Generic RAMS process;
7164 – Part 2: Systems approach to safety;
7165 – Part 4: Functional safety – Electrical/Electronic/Programmable electronic systems;
7166 – Part 5: Functional safety – Software.
7167 This new edition of EN 50126 (all parts) will supersede EN 50126-1:1999, CLC/TR 50126-2:2007,
7168 CLC/TR 50126-3:2008, EN 50128:2011 and EN 50129:2003.
7169 This part of EN 50126 covers the functional safety for E/E/PE. It is mainly based on EN 50129:2003.
7170 This part of EN 50126 will supersede EN 50129:2003.
7171 This document has been prepared under a mandate given to CENELEC by the European Commission
7172 and the European Free Trade Association, and supports essential requirements of EU Directive(s).
---------------------- Page: 8 ----------------------
oSIST prEN 50126-4:2013
- 7 - prEN 50126-4:2012
7173
---------------------- Page: 9 ----------------------
oSIST prEN 50126-4:2013
prEN 50126-4:2012 - 8 -
7174 Introduction
7175 EN 50126-1:1999 was produced to introduce the application of a systematic RAMS management process
7176 in the railway sector. For safety related electronic systems for signalling EN 50128:2011 and
7177 EN 50129:2003 were produced. Through the application of these standards and the experiences gained
7178 over the last years, the need for revision and restructuring became apparent with a need to deliver a
7179 systematic and coherent approach to RAMS applicable to all the railway application fields Signalling,
7180 Rolling Stock and Electric power supply for Railways (Fixed Installations).
7181 The revision work improved the coherency and consistency of the standards, the concept of safety
7182 management and the practical usage of EN 50126, and took into consideration the existing and related
7183 Technical Reports as well.
7184 This European Standard provides railway duty holders and the railway suppliers, throughout the
7185 European Union, with a process which will enable the implementation of a consistent approach to the
7186 management of reliability, availability, maintainability and safety, denoted by the acronym RAMS.
7187 Processes for the specification and demonstration of RAMS requirements are cornerstones of this
7188 standard. This European Standard promotes a common understanding and approach to the management
7189 of RAMS.
7190 EN 50126 is the railway sector specific application of IEC 61508. Meeting the requirements in this
7191 European Standard is sufficient to ensure that additional compliance to IEC 61508 does not need to be
7192 evaluated.
7193 With regard to safety, EN 50126-1 provides a Safety Management Process which is supported by
7194 guidance and methods described in EN 50126-2.
7195 EN 50126-1 and EN 50126-2 are independent from the technology used. EN 50126-4 and EN 50126-5
7196 provide guidance specific to safety related E/E/PE technology of railway applications. Their application is
7197 determined through the application of the general RAMS process of EN 50126-1 and through the
7198 outcome of the safety related methods described in EN 50126-2. As far as safety is concerned, EN 50126
7199 takes the perspective of functional safety. This does not exclude other aspects of safety. However, these
7200 are not the focus.
7201 The aims set for revision of the EN 50126 standard required a better understanding of the systems
7202 approach and improved methods for applying the safety management process described in EN 50126-1.
7203 EN 50126-2 provides this guidance.
7204 The application of this standard should be adapted to the specific requirements of the system under
7205 consideration.
7206 This European Standard can be app
...
Questions, Comments and Discussion
Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.