Safety of machinery - Functional safety of safety-related electrical, electronic and programmable electronic control systems

2012-11-19: Publication editing allocated to cpalagi@cencenelec.eu

Sicherheit von Maschinen - Funktionale Sicherheit sicherheitsbezogener elektrischer, elektronischer und programmierbarer elektronischer Steuerungssysteme

Sécurité des machines - Sécurité fonctionnelle des systèmes de commande électriques, électroniques et électroniques programmables relatifs à la sécurité

Varnost strojev - Funkcijska varnost na varnost vezanih električnih, elektronskih in programirljivih elektronskih krmilnih sistemov (IEC 62061:2005/A1:2012)

Ta mednarodni standard določa zahteve in priporočila za izdelavo, vgradnjo in ovrednotenje na varnost vezanih električnih, elektronskih in programirljivih elektronskih krmilnih sistemov (SRECS) za stroje (glej opombi 1 in 2). Uporablja se za krmilne sisteme, ki se samostojno ali v kombinaciji uporabljajo za izvajanje na varnost vezanih krmilnih funkcij na strojih, ki jih med delom ni mogoče prenašati v roki, vključno s skupino strojev, ki delujejo skupaj na usklajen način.

General Information

Status
Withdrawn
Publication Date
31-Jan-2013
Withdrawal Date
17-Dec-2015
Current Stage
9960 - Withdrawal effective - Withdrawal
Start Date
26-Apr-2024
Completion Date
26-Apr-2024

Relations

Buy Standard

Amendment
EN 62061:2005/A1:2013
English language
12 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)


SLOVENSKI STANDARD
01-april-2013
9DUQRVWVWURMHY)XQNFLMVNDYDUQRVWQDYDUQRVWYH]DQLKHOHNWULþQLKHOHNWURQVNLKLQ
SURJUDPLUOMLYLKHOHNWURQVNLKNUPLOQLKVLVWHPRY ,(&$
Safety of machinery - Functional safety of safety-related electrical, electronic and
programmable electronic control systems (IEC 62061:2005/A1:2012)
Sicherheit von Maschinen - Funktionale Sicherheit sicherheitsbezogener elektrischer,
elektronischer und programmierbarer elektronischer Steuerungssysteme (IEC
62061:2005/A1:2012)
Sécurité des machines - Sécurité fonctionnelle des systèmes de commande électriques,
électroniques et électroniques programmables relatifs à la sécurité (CEI
62061:2005/A1:2012)
Ta slovenski standard je istoveten z: EN 62061:2005/A1:2013
ICS:
13.110 Varnost strojev Safety of machinery
25.040.40 Merjenje in krmiljenje Industrial process
industrijskih postopkov measurement and control
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

EUROPEAN STANDARD
EN 62061/A1
NORME EUROPÉENNE
February 2013
EUROPÄISCHE NORM
ICS 13.110; 25.040.99; 29.020
English version
Safety of machinery -
Functional safety of safety-related electrical, electronic and programmable
electronic control systems
(IEC 62061:2005/A1:2012)
Sécurité des machines -  Sicherheit von Maschinen -
Sécurité fonctionnelle des systèmes de Funktionale Sicherheit
commande électriques, électroniques et sicherheitsbezogener elektrischer,
électroniques programmables relatifs à la elektronischer und programmierbarer
sécurité elektronischer Steuerungssysteme
(CEI 62061:2005/A1:2012) (IEC 62061:2005/A1:2012)

This amendment A1 modifies the European Standard EN 62061:2005; it was approved by CENELEC on 2012-
12-18. CENELEC members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate
the conditions for giving this amendment the status of a national standard without any alteration.

Up-to-date lists and bibliographical references concerning such national standards may be obtained on
application to the CEN-CENELEC Management Centre or to any CENELEC member.

This amendment exists in three official versions (English, French, German). A version in any other language
made by translation under the responsibility of a CENELEC member into its own language and notified to the
CEN-CENELEC Management Centre has the same status as the official versions.

CENELEC members are the national electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus,
the Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany,
Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland,
Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and the United Kingdom.

CENELEC
European Committee for Electrotechnical Standardization
Comité Européen de Normalisation Electrotechnique
Europäisches Komitee für Elektrotechnische Normung

Management Centre: Avenue Marnix 17, B - 1000 Brussels

© 2013 CENELEC - All rights of exploitation in any form and by any means reserved worldwide for CENELEC members.
Ref. No. EN 62061:2005/A1:2013 E

Foreword
The text of document 44/655/CDV, future edition 1 of IEC 62061:2005/A1, prepared by IEC TC 44 "Safety
of machinery - Electrotechnical aspects" was submitted to the IEC-CENELEC parallel vote and approved
by CENELEC as EN 62061:2005/A1:2013.

The following dates are fixed:
(dop) 2013-09-18
• latest date by which the document has
to be implemented at national level by
publication of an identical national
standard or by endorsement
• latest date by which the national (dow) 2015-12-18

standards conflicting with the
document have to be withdrawn
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. CENELEC [and/or CEN] shall not be held responsible for identifying any or all such patent
rights.
Endorsement notice
The text of the International Standard IEC 62061:2005/A1:2012 was approved by CENELEC as a
European Standard without any modification.

- 3 - EN 62061:2005/A1:2013
Annex ZA
(normative)
Normative references to international publications
with their corresponding European publications

The following documents, in whole or in part, are normatively referenced in this document and are
indispensable for its application. For dated references, only the edition cited applies. For undated
references, the latest edition of the referenced document (including any amendments) applies.

NOTE  When an international publication has been modified by common modifications, indicated by (mod), the relevant EN/HD
applies.
Make the following modifications to Annex ZA of EN 62061:2005:

Publication Year Title EN/HD Year

Replace ISO 12100-1:2003 and ISO 12100-2:2003 by ISO 12100:2010

ISO 12100 2010 Safety of machinery - General principles for EN ISO 12100 2010
design - Risk assessment and risk reduction

Replace ISO 13849-1:1999 by ISO 13849-1:2006

ISO 13849-1 2006 Safety of machinery - Safety-related parts of EN ISO 13849-1 2008
control systems -
Part 1: General principles for design

IEC 62061 ®
Edition 1.0 2012-11
INTERNATIONAL
STANDARD
NORME
INTERNATIONALE
AMENDMENT 1
AMENDEMENT 1
Safety of machinery – Functional safety of safety-related electrical, electronic

and programmable electronic control systems

Sécurité des machines – Sécurité fonctionnelle des systèmes de commande

électriques, électroniques et électroniques programmables relatifs à la sécurité

INTERNATIONAL
ELECTROTECHNICAL
COMMISSION
COMMISSION
ELECTROTECHNIQUE
PRICE CODE
INTERNATIONALE
CODE PRIX J
ICS 13.110; 25.040.99; 29.020 ISBN 978-2-83220-441-2

– 2 – 62061 Amend. 1  IEC:2012
FOREWORD
This amendment has been prepared by IEC technical committee 44: Safety of machinery –
Electrotechnical aspects.
The text of this amendment is based on the following documents:
CDV Report on voting
44/655/CDV 44/663/RVC
Full information on the voting for the approval of this amendment can be found in the report
on voting indicated in the above table.
The committee has decided that the contents of this amendment and the base publication will
remain unchanged until the stability date indicated on the IEC web site under
"http://webstore.iec.ch" in the data related to the specific publication. At this date, the
publication will be
• reconfirmed,
• withdrawn,
• replaced by a revised edition, or
• amended.
_____________
INTRODUCTION
Delete the tenth paragraph of this clause.
Delete the following text below Figure 1:
Information on the recommended application of IEC 62061 and ISO 13849-1
(under revision)
Replace the text of the paragraph above Table 1 by the following:
IEC 62061 and ISO 13849-1 specify requirements for the design and implementation of
safety-related control systems of machinery. The use of either of these standards, in
accordance with their scopes, can be presumed to fulfil the relevant essential safety
requirements. IEC/TR 62061-1 provides guidance on the application of IEC 62061 and
ISO 13849-1 in the design of safety-related control systems for machinery.
Delete the note above Table 1.
Delete Table 1.
1 Scope
Replace the text of Note 2 by the following:
NOTE 2 In this standard, it is presumed that the design of complex programmable electronic subsystems or
subsystem elements conforms to the relevant requirements of IEC 61508 and uses Route 1 (see
H
IEC 61508-2:2010, 7.4.4.2). It is considered that Route 2H (see IEC 61508-2:2010, 7.4.4.3) is not suitable for

62061 Amend. 1  IEC:2012 – 3 –
general machinery. Therefore, this standard does not deal with Route 2 . This standard provides a methodology for
H
the use, rather than development, of such subsystems and subsystem elements as part of a SRECS.
2 Normative references
Replace the references to ISO 12100-1:2003 and ISO 12100-2:2003 by the following new
reference:
ISO 12100:2010, Safety of machinery – General principles for design – Risk assessment and
risk reduction
Replace the existing reference to ISO 13849-1 by the following new reference:
ISO 13849-1:2006, Safety of machinery – Safety-related parts of control systems – Part 1:
General principles for design
3.2.5
subsystem
Replace definition 3.2.5 by the following new definition:
3.2.5
subsystem
entity of the top-level architectural design of the SRECS where a dangerous failure of any
subsystem will result in a dangerous failure of a safety-related control function
[IEC 61508-4, 3.4.4 modified]
NOTE 1 A complete subsystem can be made up from a number of identifiable and separate subsystem elements,
which when put together implement the function blocks allocated to the subsystem.
NOTE 2 This differs from common language where “subsystem” may mean any sub-divided part of an entity, the
term “subsystem” is used in this standard within a strongly defined hierarchy of terminology: “subsystem” is the first
level subdivision of a system. The parts resulting from further subdivision of a subsystem are called “subsystem
elements”.
3.2.7
low complexity component
Replace the reference above Note 1 by the following new reference:
[IEC 61508-4, 3.4.3 modified]
3.2.9
functional safety
Replace the reference by the following new reference:
[IEC 61508-4, 3.1.12 modified]
3.2.10
hazard (from machinery)
Replace the reference by the following new reference:
[ISO 12100, 3.6 modified]
3.2.11
hazardous situation
Replace the reference by the following new reference:
[ISO 12100, 3.10 modified]
– 4 – 62061 Amend. 1  IEC:2012
3.2.12
protective measure
Replace the reference by the following new reference:
[ISO 12100, 3.19 modified]
3.2.13
risk
Replace the reference by the following new reference:
[ISO 12100, 3.12]
3.2.15
safety function
Replace the reference by the following new reference:
[ISO 12100, 3.30]
3.2.19
safety integrity
Replace the reference by the following new reference:
[IEC 61508-4, 3.5.4 modified]
3.2.20
hardware safety integrity
Replace the reference by the following new reference:
[IEC 61508-4, 3.5.7 modified]
3.2.21
software safety integrity
Replace the reference by the following new reference:
[IEC 61508-4, 3.5.5 modified]
3.2.22
systematic safety integrity
Replace the reference by the following new reference:

[IEC 61508-4, 3.5.6 modified]
3.2.23
Safety Integrity Level
SIL
Replace the reference by the following new reference:
[IEC 61508-4, 3.5.8 modified]
3.2.26
low demand mode
Replace the first paragraph by the following new paragraph:
mode of operation in which the frequency of demands on a SRECS is no greater than one per
year
3.2.27
high demand or continuous mode
Replace the first paragraph by the following new paragraph:

62061 Amend. 1  IEC:2012 – 5 –
mode of operation in which the frequency of demands on a SRECS is greater than one per
year or the SRCF retains the machine in a safe state as part of normal operation
Replace the reference by the following new reference:
[IEC 61508-4, 3.5.16 modified]
3.2.28
Probability of dangerous Failure per Hour
PFH
D
Replace definition 3.2.28 by the following new definition:
3.2.28
Probability of dangerous Failure per Hour
PFH
D
average probability of a dangerous failure per hour of a safety related system/subsystem to
perform the specified safety function over a given period of time
NOTE PFH should not be confused with probability of dangerous failure on demand (PFD).
D
3.2.29
target failure value
Replace the reference by the following new reference:
[IEC 61508-4, 3.5.17 modified]
3.2.35
architecture
Replace the reference by the following new reference:
[IEC 61508-4, 3.3.4 modified]
3.2.37
proof test
Replace the first paragraph by the following new paragraph:
periodic test performed to detect dangerous hidden failures and degradation in a SRECS and
its subsystems so that, if necessary, the SRECS and its subsystems can be restored to an “as
new” condition or as close as practical to this condition
3.2.38
diagnostic coverage
Replace the first paragraph by the following new paragraph:
fraction of dangerous failures detected by automatic on-line diagnostic tests
Add, at the end of this subclause, new Note 2 as follows:
NOTE 2 The fraction of detected dangerous failures is computed to be the rate of dangerous failures that are
detected by automatic on-line diagnostic tests divided by the rate of total dangerous failures.
and number the existing note as Note 1.
3.2.40
dangerous failure
Delete the reference “[IEC 61508-4, 3.6.7 modified]”.
3.2.41
safe failure
Delete the reference “[IEC 61508-4, 3.6.8 modified]”.

– 6 – 62061 Amend. 1  IEC:2012
3.2.43
Common Cause Failure
CCF
Replace, in the first paragraph, the word “coincident” by “concurrent”.

5.2.3 Functional requirements specification for SRCFs
Replace the existing text of this subclause (including 5.2.3.1 and 5.2.3.2) by the following:
The functional requirements specification for SRCFs shall describe details of each SRCF to
be performed including, as applicable:
– the condition(s) (e.g. operating mode) of the machine in which the SRCF shall be active or
disabled;
– the priority of those functions that
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.