IEC TS 61508-3-1:2016
(Main)Functional safety of electrical/electronic/programmable electronic safety-related systems - Part 3-1: Software requirements - Reuse of pre-existing software elements to implement all or part of a safety function
Functional safety of electrical/electronic/programmable electronic safety-related systems - Part 3-1: Software requirements - Reuse of pre-existing software elements to implement all or part of a safety function
IEC TS 61508-3-1:2016(E) presents requirements by the application of which pre-existing software elements may be claimed to be proven-in-use for all or a part of safety function(s) of SIL1 or SIL2.
General Information
Overview
IEC TS 61508-3-1:2016 is a technical specification published by the International Electrotechnical Commission (IEC) focusing on the functional safety of electrical, electronic, and programmable electronic safety-related systems. This part, titled Software requirements – Reuse of pre-existing software elements to implement all or part of a safety function, specifically addresses how pre-existing software components can be reused in safety-critical systems to achieve Safety Integrity Level 1 (SIL1) or Safety Integrity Level 2 (SIL2).
The standard presents proven-in-use requirements for software components, allowing safety engineers and developers to claim the reliability and safety conformity of reused software through detailed documentation and operational history evaluation, instead of re-qualifying software from scratch.
Key Topics
Proven-in-use Requirements
The core focus of IEC TS 61508-3-1 is establishing when a pre-existing software element can be considered "proven-in-use". This involves verifying documentation, historical software application, operational conditions, and safety performances consistent with future intended use.Software Element Description and Documentation
It requires comprehensive documentation covering software requirements, usage history, input/output data combinations, execution timing, and any integration specifics with hardware.Operational Experience and Testing
Evidence of comprehensive operational experience, failure detection, and testing must be documented to verify software reliability within the context of the intended application.Conditions of Use Consistency
The standard emphasizes that the previous operational environment (hardware, compiler settings, configuration, interfaces) should closely match the future deployment conditions, with any deviations analyzed and documented.Safety Function Integration
This specification extends IEC 61508-3:2010 by detailing how to integrate legacy software components into safety functions compliant with SIL1 or SIL2, closing a gap where earlier standards referred to hardware aspects without detailed software reuse guidance.
Applications
Industrial Automation
Automation systems rely heavily on software for controlling safety functions. IEC TS 61508-3-1 enables the reuse of tested software modules, reducing development cost and time while maintaining functional safety.Process Control Systems
Safety-related software that controls industrial processes-such as chemical plants or manufacturing-can benefit from this specification by allowing previously validated software parts to be integrated safely into new systems.Safety-Critical Embedded Systems
Embedded software in automotive, aerospace, or machinery safety control systems can apply this standard to justify the reuse of legacy software components without full redevelopment.Software Maintenance and Upgrades
Organizations can apply IEC TS 61508-3-1 requirements when upgrading existing safety software by reusing documented legacy elements verified under previous operational conditions.
Related Standards
IEC 61508-3:2010
Provides general software requirements for safety-related systems, serving as the base standard that IEC TS 61508-3-1 expands upon specifically for software reuse scenarios.IEC 61508-2:2010
Addresses overall system requirements but excludes software specifics; referenced for understanding system-level safety requirements.ISO/IEC Electropedia
Utilized for consistent terminology regarding electrotechnical and software functional safety concepts within IEC standards.
By adhering to IEC TS 61508-3-1:2016, industries can confidently incorporate pre-existing software elements into SIL1 or SIL2 safety functions, ensuring that these components meet stringent safety integrity requirements while optimizing resources and leveraging proven operational history. This standard is vital for ensuring software reliability, safety compliance, and functional integrity in a cost-effective manner within complex safety-related systems.
Frequently Asked Questions
IEC TS 61508-3-1:2016 is a technical specification published by the International Electrotechnical Commission (IEC). Its full title is "Functional safety of electrical/electronic/programmable electronic safety-related systems - Part 3-1: Software requirements - Reuse of pre-existing software elements to implement all or part of a safety function". This standard covers: IEC TS 61508-3-1:2016(E) presents requirements by the application of which pre-existing software elements may be claimed to be proven-in-use for all or a part of safety function(s) of SIL1 or SIL2.
IEC TS 61508-3-1:2016(E) presents requirements by the application of which pre-existing software elements may be claimed to be proven-in-use for all or a part of safety function(s) of SIL1 or SIL2.
IEC TS 61508-3-1:2016 is classified under the following ICS (International Classification for Standards) categories: 01 - GENERALITIES. TERMINOLOGY. STANDARDIZATION. DOCUMENTATION; 25.040.40 - Industrial process measurement and control; 35.240.50 - IT applications in industry. The ICS classification helps identify the subject area and facilitates finding related standards.
You can purchase IEC TS 61508-3-1:2016 directly from iTeh Standards. The document is available in PDF format and is delivered instantly after payment. Add the standard to your cart and complete the secure checkout process. iTeh Standards is an authorized distributor of IEC standards.
Standards Content (Sample)
IEC TS 61508-3-1 ®
Edition 1.0 2016-07
TECHNICAL
SPECIFICATION
Functional safety of electrical/electronic/programmable electronic safety-related
systems –
Part 3-1: Software requirements – Reuse of pre-existing software elements to
implement all or part of a safety function
All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form
or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from
either IEC or IEC's member National Committee in the country of the requester. If you have any questions about IEC
copyright or have an enquiry about obtaining additional rights to this publication, please contact the address below or
your local IEC member National Committee for further information.
IEC Central Office Tel.: +41 22 919 02 11
3, rue de Varembé Fax: +41 22 919 03 00
CH-1211 Geneva 20 info@iec.ch
Switzerland www.iec.ch
About the IEC
The International Electrotechnical Commission (IEC) is the leading global organization that prepares and publishes
International Standards for all electrical, electronic and related technologies.
About IEC publications
The technical content of IEC publications is kept under constant review by the IEC. Please make sure that you have the
latest edition, a corrigenda or an amendment might have been published.
IEC Catalogue - webstore.iec.ch/catalogue Electropedia - www.electropedia.org
The stand-alone application for consulting the entire The world's leading online dictionary of electronic and
bibliographical information on IEC International Standards, electrical terms containing 20 000 terms and definitions in
Technical Specifications, Technical Reports and other English and French, with equivalent terms in 15 additional
documents. Available for PC, Mac OS, Android Tablets and languages. Also known as the International Electrotechnical
iPad. Vocabulary (IEV) online.
IEC publications search - www.iec.ch/searchpub IEC Glossary - std.iec.ch/glossary
The advanced search enables to find IEC publications by a 65 000 electrotechnical terminology entries in English and
variety of criteria (reference number, text, technical French extracted from the Terms and Definitions clause of
committee,…). It also gives information on projects, replaced IEC publications issued since 2002. Some entries have been
and withdrawn publications. collected from earlier publications of IEC TC 37, 77, 86 and
CISPR.
IEC Just Published - webstore.iec.ch/justpublished
Stay up to date on all new IEC publications. Just Published IEC Customer Service Centre - webstore.iec.ch/csc
details all new publications released. Available online and If you wish to give us your feedback on this publication or
also once a month by email. need further assistance, please contact the Customer Service
Centre: csc@iec.ch.
IEC TS 61508-3-1 ®
Edition 1.0 2016-07
TECHNICAL
SPECIFICATION
Functional safety of electrical/electronic/programmable electronic safety-related
systems –
Part 3-1: Software requirements – Reuse of pre-existing software elements to
implement all or part of a safety function
INTERNATIONAL
ELECTROTECHNICAL
COMMISSION
ICS 25.040.40; 35.240.50 ISBN 978-2-8322-3516-4
– 2 – IEC TS 61508-3-1:2016 © IEC 2016
CONTENTS
FOREWORD . 3
INTRODUCTION . 5
1 Scope . 6
2 Normative References . 6
3 Terms and definitions . 6
4 Requirements . 6
Bibliography . 10
INTERNATIONAL ELECTROTECHNICAL COMMISSION
____________
FUNCTIONAL SAFETY OF ELECTRICAL/ELECTRONIC/PROGRAMMABLE
ELECTRONIC SAFETY-RELATED SYSTEMS –
Part 3-1: Software requirements –
Reuse of pre-existing software elements
to implement all or part of a safety function
FOREWORD
1) The International Electrotechnical Commission (IEC) is a worldwide organization for standardization comprising
all national electrotechnical committees (IEC National Committees). The object of IEC is to promote
international co-operation on all questions concerning standardization in the electrical and electronic fields. To
this end and in addition to other activities, IEC publishes International Standards, Technical Specifications,
Technical Reports, Publicly Available Specifications (PAS) and Guides (hereafter referred to as “IEC
Publication(s)”). Their preparation is entrusted to technical committees; any IEC National Committee interested
in the subject dealt with may participate in this preparatory work. International, governmental and non-
governmental organizations liaising with the IEC also participate in this preparation. IEC collaborates closely
with the International Organization for Standardization (ISO) in accordance with conditions determined by
agreement between the two organizations.
2) The formal decisions or agreements of IEC on technical matters express, as nearly as possible, an international
consensus of opinion on the relevant subjects since each technical committee has representation from all
interested IEC National Committees.
3) IEC Publications have the form of recommendations for international use and are accepted by IEC National
Committees in that sense. While all reasonable efforts are made to ensure that the technical content of IEC
Publications is accurate, IEC cannot be held responsible for the way in which they are used or for any
misinterpretation by any end user.
4) In order to promote international uniformity, IEC National Committees undertake to apply IEC Publications
transparently to the maximum extent possible in their national and regional publications. Any divergence
between any IEC Publication and the corresponding national or regional publication shall be clearly indicated in
the latter.
5) IEC itself does not provide any attestation of conformity. Independent certification bodies provide conformity
assessment services and, in some areas, access to IEC marks of conformity. IEC is not responsible for any
services carried out by independent certification bodies.
6) All users should ensure that they have the latest edition of this publication.
7) No liability shall attach to IEC or its directors, employees, servants or agents including individual experts and
members of its technical committees and IEC National Committees for any personal injury, property damage or
other damage of any nature whatsoever, whether direct or indirect, or for costs (including legal fees) and
expenses arising out of the publication, use of, or reliance upon, this IEC Publication or any other IEC
Publications.
8) Attention is drawn to the Normative references cited in this publication. Use of the referenced publications is
indispensable for the correct application of this publication.
9) Attention is drawn to the possibility that some of the elements of this IEC Publication may be the subject of
patent rights. IEC shall not be held responsible for identifying any or all such patent rights.
The main task of IEC technical committees is to prepare International Standards. In
exceptional circumstances, a technical committee may propose the publication of a technical
specification when
• the required support cannot be obtained for the publication of an International Standard,
despite repeated efforts, or
• the subject is still under technical development or where, for any other reason, there is the
future but no immediate possibility of an agreement on an International Standard.
Technical specifications are subject to review within three years of publication to decide
whether they can be transformed into International Standards.
– 4 – IEC TS 61508-3-1:2016 © IEC 2016
IEC TS 61508-3-1, which is a technical specification, has been prepared by subcommittee
65A: System aspects, of IEC technical committee 65: Industrial-process measurement, control
and automation.
The text of this technical specification is based on the following documents:
Enquiry draft Report on voting
65A/780/DTS 65A/802/RVC
Full information on the voting for the approval of this technical specification can be found in
the report on voting indicated in the above table.
This publication has been drafted in accordance with the ISO/IEC Directives, Part 2.
A list of all parts in the IEC 61508 series, published under the general title Functional safety
of electrical/electronic/programmable electronic safety-related systems, can be found on the
IEC website.
The committee has decided that the contents of this publication will remain unchanged until
the stability date indicated on the IEC website under "http://webstore.iec.ch" in the data
related to the specific publication. At this date, the publication will be
• transformed into an International standard,
• reconfirmed,
• withdrawn,
• replaced by a revised edition, or
• amended.
A bilingual version of this publication may be issued at a later date.
INTRODUCTION
The requirements set out in this technical specification deal with the reuse of software
elements when they are intended to form part of a safety function.
In many fields of automation, software elements are used today in support of safety functions.
Such applications will certainly be further developed and extended. Software engineers,
however, do not always wish to write the software for these applications from scratch, but will
in many cases use already existing software and integrate it with the new application which
might be slightly different from the one for which the software was originally specified.
In IEC 61508-3:2010, a requirement is given in 7.4.2.12. It offers three routes to the
achievement of the necessary integrity for the pre-existing software element. The
requirements to compl
...
Die Norm IEC TS 61508-3-1:2016 behandelt die funktionale Sicherheit von elektrischen, elektronischen und programmierbaren elektronischen sicherheitsrelevanten Systemen mit einem spezifischen Fokus auf Softwareanforderungen. Insbesondere behandelt sie die Wiederverwendung von bestehenden Softwareelementen zur Umsetzung von Sicherheitsfunktionen, die den Sicherheitsintegritätsstufen SIL1 oder SIL2 zugeordnet sind. Der Umfang dieser Norm ist entscheidend, da er Entwicklern und Ingenieuren ermöglicht, bereits erprobte Softwarekomponenten in sicherheitskritischen Anwendungen zu verwenden, wodurch Aufwand und Kosten reduziert werden können. Die Vorgaben zur Nachweisführung von „proven-in-use“ Softwareelementen fördern nicht nur die Effizienz, sondern auch die Verlässlichkeit und Planbarkeit von Projekten, in denen Sicherheitsfunktionen implementiert werden. Ein starkes Merkmal der IEC TS 61508-3-1:2016 ist ihre klare Struktur und die detaillierten Anforderungen, die sicherstellen, dass wiederverwendete Softwareelemente die notwendigen Kriterien für die funktionale Sicherheit erfüllen. Dies umfasst nicht nur die Anforderungen an die Dokumentation, sondern auch an die Tests und Validierungen, die für die Integration dieser Software erforderlich sind. Die Norm bietet somit einen wertvollen Rahmen für Organisationen, die ihre Softwareentwicklungsprozesse im Kontext der funktionalen Sicherheit optimieren möchten. Die Relevanz der Norm im Kontext der industriellen Anwendungen ist unbestreitbar. In der heutigen Zeit, in der immer mehr Systeme mit sicherheitskritischen Funktionen arbeiten, ist die Einhaltung hoher Sicherheitsstandards entscheidend. Die Wiederverwendung von geprüften Softwareelementen ermöglicht es, Sicherheitsanforderungen effektiv zu erfüllen, während gleichzeitig Zeit und Ressourcen eingespart werden. Infolge dessen ist die IEC TS 61508-3-1:2016 ein unverzichtbares Dokument für alle, die sich mit der Implementierung von Software in sicherheitskritischen Systemen befassen.
IEC TS 61508-3-1:2016 is a pivotal standard in the domain of functional safety, specifically addressing the software requirements related to the reuse of pre-existing software elements in safety-related systems. This standard delineates a clear framework that enables the application of proven-in-use software components for implementing safety functions categorized under Safety Integrity Level (SIL) 1 or SIL 2. One of the primary strengths of IEC TS 61508-3-1:2016 is its ability to facilitate the integration of legacy software into modern safety-related systems. By providing guidelines on how existing software can be effectively utilized without compromising safety integrity, this standard significantly enhances the efficiency of software development processes. Organizations can leverage pre-existing components, minimizing redundancy and reducing the time and costs associated with software development. The relevance of this standard extends to various industries that rely on the safety and reliability of electrical, electronic, and programmable electronic safety-related systems. By ensuring that pre-existing software elements meet stringent criteria for proven-in-use, IEC TS 61508-3-1:2016 reinforces the foundation of safety practices in critical applications such as automotive, industrial automation, and healthcare. This standard further emphasizes the importance of detailed documentation and assessment of pre-existing software elements, ensuring that they can be reclaimed for new safety functions while maintaining compliance with overall safety requirements. The structured approach it offers enhances stakeholders' confidence in the safety functions derived from reused software components. In summary, IEC TS 61508-3-1:2016 stands out as a crucial guideline for organizations seeking to implement safety functions using pre-existing software. Its comprehensive framework not only supports efficient development strategies but also aligns with the essential principles of functional safety, making this standard an invaluable asset for enhancing the safety integrity of systems within various industries.
IEC TS 61508-3-1:2016は、電気・電子・プログラム可能電子安全関連システムの機能安全に関する標準の一部として、特にソフトウェアの要件について焦点を当てています。この標準は、特にSIL1およびSIL2の安全機能に関連する事前に存在するソフトウェア要素の再利用を推進することを目的としています。 この標準の範囲は、既存のソフトウェア要素が効果的に使用され、安全機能の実装においてその妥当性を証明できるための要求事項を示しています。これにより、開発者は過去に確認されたソフトウェア資産を活用し、コストを削減しつつ、信頼性の高い安全機能を提供することができる点が大きな強みです。 IEC TS 61508-3-1:2016の重要な強みは、既存のソフトウェア要素の一部またはすべてを再利用することによって、安全機能の実装の効率と効果を高めることができる点です。これにより、特に産業用途において、開発時間の短縮とリスク管理の強化が期待されます。 さらに、この標準は、SIL1およびSIL2における機能安全の実現を求める企業にとって、非常に関連性の高いガイドラインを提供しています。また、再利用に関するガイドラインは、プロジェクトにおける柔軟性を提供し、多様なアプリケーションにおける適応性を確保します。 全体として、IEC TS 61508-3-1:2016は、安全関連システムにおけるソフトウェア要件の標準として、業界におけるベストプラクティスを形成する重要な文書であり、その実用性と適切性は、安全機能を追求するすべてのエンジニアにとって欠かせないものと言えます。
IEC TS 61508-3-1:2016 표준 문서는 전기/전자/프로그래머블 전자 안전 관련 시스템의 기능적 안전성을 다루며, 특히 소프트웨어 요구사항에 대한 지침을 제공합니다. 이 표준의 주요 목적은 기존 소프트웨어 요소를 재사용하여 안전 기능을 구현할 수 있도록 하는 방법론을 제시하는 것입니다. 이를 통해 SIL1 또는 SIL2 수준의 안전 기능의 일부 또는 전체를 위한 사용에 있어 그 소프트웨어 요소들이 효과적으로 검증되었음을 주장할 수 있도록 합니다. 표준의 범위는 기존 소프트웨어의 재사용에 대한 요구사항을 명확히 하여, 안전 관련 시스템 개발의 효율성을 높이며, 비용 절감과 시간 단축에 기여할 수 있는 근거를 제공합니다. 이는 특히 반복해서 사용되는 소프트웨어 컴포넌트나 모듈의 안정성 및 신뢰성을 검증함으로써, 기능 안전성에 대한 높은 기준을 유지하는 데 중요한 역할을 합니다. IEC TS 61508-3-1:2016의 강점은 기술적 전문성과 실용성을 균형 있게 반영하고 있다는 점입니다. 이 표준은 명확한 지침을 통해 개발자들이 안전 기능을 효과적으로 구현하고 법적 요구사항을 준수할 수 있도록 돕습니다. 더 나아가, 기존 소프트웨어의 효율적인 활용을 통해 개발 산업 전반에 걸쳐 표준화된 접근 방식을 제안함으로써, 전체 시스템의 안전성을 향상시키는 데 기여합니다. 이 표준은 기능 안전성을 요구하는 산업 분야에서의 적용 가능성이 높으며, 다양한 전기 및 전자 시스템에 널리 활용될 수 있는 기반을 제공합니다. 따라서 IEC TS 61508-3-1:2016은 전반적인 안전 시스템의 신뢰성을 높이는 데 있어 매우 중요한 역할을 하고 있으며, 이는 관련 업계에서 그 필요성을 더욱 강조받고 있습니다.
La norme IEC TS 61508-3-1:2016 fournit un cadre essentiel pour la sécurité fonctionnelle des systèmes de sécurité associés aux dispositifs électriques, électroniques et programmables. Son domaine d'application se concentre sur l'utilisation de logiciels préexistants dans la mise en œuvre de fonctions de sécurité, en spécifiant les exigences nécessaires pour revendiquer que ces éléments logiciels sont prouvés par leur usage dans le cadre de fonctions de sécurité de niveaux de sécurité (SIL) 1 ou 2. L'un des points forts de cette norme est son approche systématique qui permet de garantir la fiabilité et l'efficacité des logiciels préexistants. En facilitant la réutilisation de composants logiciels éprouvés, cette norme permet aux ingénieurs de gagner du temps et de réduire les coûts liés au développement de nouveaux logiciels tout en maintenant des standards élevés de sécurité. Cela s'avère particulièrement pertinent dans les industries où la sécurité est primordiale, en intégrant des processus de validation et de vérification rigoureux pour assurer que les éléments logiciels utilisés répondent aux exigences nécessaires pour appliquer des fonctions de sécurité. De plus, la norme IEC TS 61508-3-1:2016 renforce la pertinence de la sécurité fonctionnelle en intégrant des recommandations spécifiques sur la façon dont les éléments logiciels doivent être évalués et documentés. Cette documentation est cruciale pour les audits de conformité et pour établir une traçabilité dans les systèmes de gestion de sécurité. En définissant clairement les attentes et les méthodes d'évaluation, la norme contribue à une culture de sécurité proactive au sein des organisations. En résumé, la norme IEC TS 61508-3-1:2016 se positionne comme un document de référence incontournable pour les professionnels cherchant à implémenter des systèmes de sécurité fonctionnelle de manière efficace et fiable, tout en maximisant l'usage des logiciels préexistants. Ses exigences robustes jouent un rôle clé dans la rationalisation de processus de développement tout en assurant une conformité aux standards de sécurité imposés dans les applications critiques.
Questions, Comments and Discussion
Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.
Loading comments...