iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
SIST

SIST EN ISO 13849-1:2008

(Main)

Safety of machinery - Safety-related parts of control systems - Part 1: General principles for design (ISO 13849-1:2006)

Safety of machinery - Safety-related parts of control systems - Part 1: General principles for design (ISO 13849-1:2006)

This part of ISO 13849 provides safety requirements and guidan ce on the principles for the design and integration of safety- related parts of control systems (SRP/CS), including the desig n of software. For these parts of SRP/CS, it specifies charact eristics that include the performance level required for carry ing out safety functions. It applies to SRP/CS, regardless of the type of technology and energy used (electrical, hydraulic, pneumatic, mechanical, etc.), for all kinds of machinery.

Sicherheit von Maschinen - Sicherheitsbezogene Teile von Steuerungen - Teil 1: Allgemeine Gestaltungsleitsätze (ISO 13849-1:2006)

Dieser Teil der ISO 13849 stellt Sicherheitsanforderungen und einen Leitfaden für die Prinzipien der Gestaltung und Integration sicherheitsbezogener Teile von Steuerungen (SRP/CS) bereit, einschließlich der Entwicklung von Software. Für diese Teile der SRP/CS werden Eigenschaften, einschließlich des Performance Levels, festgelegt, die zur Ausführung der entsprechenden Sicherheitsfunktionen erforderlich sind. Er ist anzuwenden auf SRP/CS aller Arten von Maschinen, ungeachtet der verwendeten Technologie und Energie (elektrisch, hydraulisch, pneumatisch, mechanisch usw.).
Er legt nicht fest, welche Sicherheitsfunktionen oder Performance Level für einen speziellen Fall verwendet werden.
Dieser Teil der ISO 13849 stellt spezielle Anforderungen für SRP/CS mit programmierbar elektronischen Systemen bereit.
Er stellt keine speziellen Anforderungen an den Entwurf von Produkten, die Teile von SRP/CS sind. Trotzdem können die angegebenen Prinzipien, wie Kategorien oder Performance Level, verwendet werden.
ANMERKUNG 1   Beispiele von Produkten, die Teile von SRP/CS sind: Relais, Magnetventile, Positionsschalter, PLC(en), Antriebssteuerungen, Zweihandschaltungen, druckempfindliche Schutzeinrichtungen. Für den Entwurf solcher Produkte ist es wichtig, sich auf spezielle anwendbare Internationale Normen zu beziehen, z. B. ISO 13851, ISO 13856-1 und ISO 13856-2.
ANMERKUNG 2   Für die Definition des erforderlichen Performance Levels, siehe 3.1.24.
ANMERKUNG 3   Die in diesem Teil der ISO 13849 bereitgestellten Anforderungen für programmierbare elektronische Systeme sind kompatibel mit der Methodik für Gestaltung und Entwicklung sicherheitsbezogener elektrischer, elektronischer und programmierbarer elektronischer Steuerungen für Maschinen in der IEC 62061.
ANMERKUNG 4   Für sicherheitsbezogene Embedded-Software in Komponenten mit PLr = e, siehe IEC 61508-3:1998, Abschnitt 7.
ANMERKUNG 5   Siehe auch Tabelle 1.

Sécurité des machines - Parties des systèmes de commande relatives à la sécurité - Partie 1: Principes généraux de conception (ISO 13849-1:2006)

L'ISO 13849-1:2006 fournit des exigences de sécurité et des conseils relatifs aux principes de conception et d'intégration des parties des systèmes de commande relatives à la sécurité (SRP/CS) incluant la conception du logiciel. Pour ces parties, elle spécifie les caractéristiques, incluant le niveau de performance requis, pour réaliser ces fonctions de sécurité. Elle s'applique aux SRP/CS de tous les types de machines, indépendamment de la technologie et du type d'énergie utilisés (électrique, hydraulique, pneumatique, mécanique, etc.). Elle ne spécifie pas quelles fonctions de sécurité et quels niveaux de performance doivent être utilisés dans un cas particulier.
L'ISO 13849-1:2006 fournit des exigences spécifiques pour les SRP/CS utilisant un (des) système(s) électronique(s) programmable(s).
Elle ne donne pas d'exigences spécifiques pour la conception de composants intégrés dans les SRP/CS. Néanmoins, les principes donnés, tels que les catégories ou les niveaux de performance, peuvent être utilisés.

Varnost strojev - Z varnostjo povezani deli krmilnih sistemov - 1. del: Splošna načela za načrtovanje (ISO 13849-1:2006)

General Information

Status
Withdrawn
Publication Date
21-Aug-2008
Withdrawal Date
06-Jan-2016
ICS
13.110 - Safety of machinery
Technical Committee
VSN - Safety of machinery
Current Stage
9900 - Withdrawal (Adopted Project)
Start Date
07-Jan-2016
Due Date
30-Jan-2016
Completion Date
07-Jan-2016
Directive
2006/42/EC - Directive 2006/42/EC of the European Parliament and of the Council of 17 May 2006 on machinery, and amending Directive 95/16/EC (recast)
98/37/EC - Machinery
Mandate
M/079 - Mandate to CEN and CENELEC for standardization in the field of machines
M/396 - Mandate to CEN and Cenelec for standardisation in the field of machinery
Ref Project
EN ISO 13849-1:2008 - Safety of machinery - Safety-related parts of control systems - Part 1: General principles for design (ISO 13849-1:2006)

Relations

Replaces
SIST EN ISO 13849-1:2007 - Safety of machinery - Safety-related parts of control systems - Part 1: General principles for design (ISO 13849-1:2006)
Effective Date
01-Oct-2008
Replaced By
SIST EN ISO 13849-1:2016 - Safety of machinery - Safety-related parts of control systems - Part 1: General principles for design (ISO 13849-1:2015)
Effective Date
01-Mar-2016
Corrected By
SIST EN ISO 13849-1:2008/AC:2009 - Safety of machinery - Safety-related parts of control systems - Part 1: General principles for design (ISO 13849-1:2006/Cor 1:2009)
Effective Date
08-Jun-2022
Replaced By
SIST EN ISO 13849-1:2016 - Safety of machinery - Safety-related parts of control systems - Part 1: General principles for design (ISO 13849-1:2015)
Effective Date
08-Jun-2022
Official Journal Project Relation
SIST EN 954-1:2000 - Safety of machinery - Safety-related parts of control systems - Part 1: General principles for design
Effective Date
20-Jan-2010

Buy Standard

EN ISO 13849-1:2008 (EN)EN ISO 13849-1:2008 (EN)
PreviousNext
Standard
EN ISO 13849-1:2008 (EN)
English language
97 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day
EN ISO 13849-1:2008 (DE)EN ISO 13849-1:2008 (DE)
PreviousNext
Standard
EN ISO 13849-1:2008 (DE)
German language
96 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)

SLOVENSKI STANDARD
SIST EN ISO 13849-1:2008
01-oktober-2008
1DGRPHãþD
SIST EN ISO 13849-1:2007
9DUQRVWVWURMHY=YDUQRVWMRSRYH]DQLGHOLNUPLOQLKVLVWHPRYGHO6SORãQD
QDþHOD]DQDþUWRYDQMH ,62
Safety of machinery - Safety-related parts of control systems - Part 1: General principles
for design (ISO 13849-1:2006)
Sicherheit von Maschinen - Sicherheitsbezogene Teile von Steuerungen - Teil 1:
Allgemeine Gestaltungsleitsätze (ISO 13849-1:2006)
Sécurité des machines - Parties des systèmes de commande relatives à la sécurité -
Partie 1: Principes généraux de conception (ISO 13849-1:2006)
Ta slovenski standard je istoveten z: EN ISO 13849-1:2008
ICS:
13.110 Varnost strojev Safety of machinery
SIST EN ISO 13849-1:2008 en
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------

SIST EN ISO 13849-1:2008

---------------------- Page: 2 ----------------------

SIST EN ISO 13849-1:2008
EUROPEAN STANDARD
EN ISO 13849-1
NORME EUROPÉENNE
EUROPÄISCHE NORM
June 2008
ICS 13.110 Supersedes EN ISO 13849-1:2006
English Version
Safety of machinery - Safety-related parts of control systems -
Part 1: General principles for design (ISO 13849-1:2006)
Sécurité des machines - Parties des systèmes de Sicherheit von Maschinen - Sicherheitsbezogene Teile von
commande relatives à la sécurité - Partie 1: Principes Steuerungen - Teil 1: Allgemeine Gestaltungsleitsätze (ISO
généraux de conception (ISO 13849-1:2006) 13849-1:2006)
This European Standard was approved by CEN on 18 May 2008.
CEN members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this European
Standard the status of a national standard without any alteration. Up-to-date lists and bibliographical references concerning such national
standards may be obtained on application to the CEN Management Centre or to any CEN member.
This European Standard exists in three official versions (English, French, German). A version in any other language made by translation
under the responsibility of a CEN member into its own language and notified to the CEN Management Centre has the same status as the
official versions.
CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Cyprus, Czech Republic, Denmark, Estonia, Finland,
France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal,
Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland and United Kingdom.
EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION
EUROPÄISCHES KOMITEE FÜR NORMUNG
Management Centre: rue de Stassart, 36  B-1050 Brussels
© 2008 CEN All rights of exploitation in any form and by any means reserved Ref. No. EN ISO 13849-1:2008: E
worldwide for CEN national Members.

---------------------- Page: 3 ----------------------

SIST EN ISO 13849-1:2008
EN ISO 13849-1:2008 (E)
Contents Page
Foreword.3
Annex ZA (informative)  Relationship between this European Standard and the Essential
Requirements of EU Directive 98/37/EC, amended by Directive 98/79/EC .4
Annex ZB (informative) Relationship between this European Standard and the Essential
Requirements of EU Directive 2006/42/EC .5

2

---------------------- Page: 4 ----------------------

SIST EN ISO 13849-1:2008
EN ISO 13849-1:2008 (E)
Foreword
The text of ISO 13849-1:2006 has been prepared by Technical Committee ISO/TC 199 “Safety of machinery”
of the International Organization for Standardization (ISO) and has been taken over as EN ISO 13849-1:2008
by Technical Committee CEN/TC 114 “Safety of machinery” the secretariat of which is held by DIN.
This European Standard shall be given the status of a national standard, either by publication of an identical
text or by endorsement, at the latest by December 2008, and conflicting national standards shall be withdrawn
at the latest by December 2009.
Attention is drawn to the possibility that some of the elements of this document may be the subject of patent
rights. CEN [and/or CENELEC] shall not be held responsible for identifying any or all such patent rights.
This document supersedes EN ISO 13849-1:2006.
This document has been prepared under a mandate given to CEN by the European Commission and the
European Free Trade Association, and supports essential requirements of EC Directive(s).
For relationship with EC Directive(s), see informative Annexes ZA and ZB, which are integral part of this
document.
According to the CEN/CENELEC Internal Regulations, the national standards organizations of the following
countries are bound to implement this European Standard: Austria, Belgium, Bulgaria, Cyprus, Czech
Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia,
Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain,
Sweden, Switzerland and the United Kingdom.
Endorsement notice
The text of ISO 13849-1:2006 has been approved by CEN as a EN ISO 13849-1:2008 without any
modification.
3

---------------------- Page: 5 ----------------------

SIST EN ISO 13849-1:2008
EN ISO 13849-1:2008 (E)
Annex ZA
(informative)

Relationship between this European Standard and the Essential
Requirements of EU Directive 98/37/EC, amended by Directive 98/79/EC
This European Standard has been prepared under a mandate given to CEN by the European Commission
and the European Free Trade Association to provide a means of conforming to Essential Requirements of the
New Approach Directive 98/37/EC, amended by Directive 98/79/EC.
Once this standard is cited in the Official Journal of the European Communities under that Directive and has
been implemented as a national standard in at least one Member State, compliance with the normative
clauses of this standard confers, within the limits of the scope of this standard, a presumption of conformity
with Essential Requirements 1.2.1 and 1.2.7 of Annex I of that Directive and associated EFTA regulations.
WARNING: Other requirements and other EU Directives may be applicable to the products falling within the
scope of this standard.

4

---------------------- Page: 6 ----------------------

SIST EN ISO 13849-1:2008
EN ISO 13849-1:2008 (E)
Annex ZB
(informative)

Relationship between this European Standard and the Essential Requirements of
EU Directive 2006/42/EC
This European Standard has been prepared under a mandate given to CEN by the European Commission
and the European Free Trade Association to provide a means of conforming to Essential Requirements of the
New Approach Directive Machinery 2006/42/EC.
Once this standard is cited in the Official Journal of the European Communities under that Directive and has
been implemented as a national standard in at least one Member State, compliance with the normative
clauses of this standard confers, within the limits of the scope of this standard, a presumption of conformity
with Essential Requirements 1.2.1 of Annex I of that Directive and associated EFTA regulations.
WARNING — Other requirements and other EU Directives may be applicable to the product(s) falling within
the scope of this standard.

5

---------------------- Page: 7 ----------------------

SIST EN ISO 13849-1:2008

---------------------- Page: 8 ----------------------

SIST EN ISO 13849-1:2008


INTERNATIONAL ISO
STANDARD 13849-1
Second edition
2006-11-01


Safety of machinery — Safety-related
parts of control systems —
Part 1:
General principles for design
Sécurité des machines — Parties des systèmes de commande relatives
à la sécurité —
Partie 1: Principes généraux de conception




Reference number
ISO 13849-1:2006(E)
©
ISO 2006

---------------------- Page: 9 ----------------------

SIST EN ISO 13849-1:2008
ISO 13849-1:2006(E)
PDF disclaimer
This PDF file may contain embedded typefaces. In accordance with Adobe's licensing policy, this file may be printed or viewed but
shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In
downloading this file, parties accept therein the responsibility of not infringing Adobe's licensing policy. The ISO Central Secretariat
accepts no liability in this area.
Adobe is a trademark of Adobe Systems Incorporated.
Details of the software products used to create this PDF file can be found in the General Info relative to the file; the PDF-creation
parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In
the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given below.


©  ISO 2006
All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means,
electronic or mechanical, including photocopying and microfilm, without permission in writing from either ISO at the address below or
ISO's member body in the country of the requester.
ISO copyright office
Case postale 56 • CH-1211 Geneva 20
Tel. + 41 22 749 01 11
Fax + 41 22 749 09 47
E-mail copyright@iso.org
Web www.iso.org
Published in Switzerland

ii © ISO 2006 – All rights reserved

---------------------- Page: 10 ----------------------

SIST EN ISO 13849-1:2008
ISO 13849-1:2006(E)
Contents Page
Foreword. v
Introduction . vi
1 Scope . 1
2 Normative references . 1
3 Terms, definitions, symbols and abbreviated terms. 2
3.1 Terms and definitions. 2
3.2 Symbols and abbreviated terms . 8
4 Design considerations . 9
4.1 Safety objectives in design. 9
4.2 Strategy for risk reduction. 11
4.2.1 General. 11
4.2.2 Contribution to the risk reduction by the control system . 11
4.3 Determination of required performance level (PL ). 14
r
4.4 Design of SRP/CS . 14
4.5 Evaluation of the achieved performance level PL and relationship with SIL. 15
4.5.1 Performance level PL . 15
4.5.2 Mean time to dangerous failure of each channel (MTTF ) . 17
d
4.5.3 Diagnostic coverage (DC) . 18
4.5.4 Simplified procedure for estimating PL. 18
4.6 Software safety requirements . 21
4.6.1 General. 21
4.6.2 Safety-related embedded software (SRESW) . 21
4.6.3 Safety-related application software (SRASW) . 22
4.6.4 Software-based parameterization . 25
4.7 Verification that achieved PL meets PL . 26
r
4.8 Ergonomic aspects of design. 26
5 Safety functions . 26
5.1 Specification of safety functions . 26
5.2 Details of safety functions . 28
5.2.1 Safety-related stop function . 28
5.2.2 Manual reset function. 29
5.2.3 Start/restart function . 29
5.2.4 Local control function . 30
5.2.5 Muting function. 30
5.2.6 Response time . 30
5.2.7 Safety–related parameters. 30
5.2.8 Fluctuations, loss and restoration of power sources. 31
6 Categories and their relation to MTTF of each channel, DC and CCF. 31
d avg
6.1 General. 31
6.2 Specifications of categories . 32
6.2.1 General. 32
6.2.2 Designated architectures. 32
6.2.3 Category B. 32
6.2.4 Category 1 . 33
6.2.5 Category 2 . 34
6.2.6 Category 3 . 35
6.2.7 Category 4 . 36
6.3 Combination of SRP/CS to achieve overall PL . 39
© ISO 2006 – All rights reserved iii

---------------------- Page: 11 ----------------------

SIST EN ISO 13849-1:2008
ISO 13849-1:2006(E)
7 Fault consideration, fault exclusion. 40
7.1 General . 40
7.2 Fault consideration . 40
7.3 Fault exclusion . 41
8 Validation . 41
9 Maintenance. 41
10 Technical documentation. 41
11 Information for use . 42
Annex A (informative) Determination of required performance level (PL ) . 44
r
Annex B (informative) Block method and safety-related block diagram . 47
Annex C (informative) Calculating or evaluating MTTF values for single components. 49
d
Annex D (informative) Simplified method for estimating MTTF for each channel . 57
d
Annex E (informative) Estimates for diagnostic coverage (DC) for functions and modules. 59
Annex F (informative) Estimates for common cause failure (CCF). 62
Annex G (informative) Systematic failure . 64
Annex H (informative) Example of combination of several safety-related parts of the control
system . 67
Annex I (informative) Examples . 70
Annex J (informative) Software.77
Annex K (informative) Numerical representation of Figure 5 . 80
Bibliography . 83

iv © ISO 2006 – All rights reserved

---------------------- Page: 12 ----------------------

SIST EN ISO 13849-1:2008
ISO 13849-1:2006(E)
Foreword
ISO (the International Organization for Standardization) is a worldwide federation of national standards bodies
(ISO member bodies). The work of preparing International Standards is normally carried out through ISO
technical committees. Each member body interested in a subject for which a technical committee has been
established has the right to be represented on that committee. International organizations, governmental and
non-governmental, in liaison with ISO, also take part in the work. ISO collaborates closely with the
International Electrotechnical Commission (IEC) on all matters of electrotechnical standardization.
International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2.
The main task of technical committees is to prepare International Standards. Draft International Standards
adopted by the technical committees are circulated to the member bodies for voting. Publication as an
International Standard requires approval by at least 75 % of the member bodies casting a vote.
Attention is drawn to the possibility that some of the elements of this document may be the subject of patent
rights. ISO shall not be held responsible for identifying any or all such patent rights.
ISO 13849-1 was prepared by the European Committee for Standardization (CEN) Technical Committee
CEN/TC 114, Safety of machinery, in collaboration with Technical Committee ISO/TC 199, Safety of
machinery, in accordance with the Agreement on technical cooperation between ISO and CEN (Vienna
Agreement).
This second edition cancels and replaces the first edition (ISO ISO 13849-1:1999), which has been technically
revised.
ISO 13849 consists of the following parts, under the general title Safety of machinery — Safety-related parts
of control systems:
⎯ Part 1: General principles for design
⎯ Part 2: Validation
⎯ Part 100: Guidelines for the use and application of ISO 13849-1 [Technical Report]
© ISO 2006 – All rights reserved v

---------------------- Page: 13 ----------------------

SIST EN ISO 13849-1:2008
ISO 13849-1:2006(E)
Introduction
The structure of safety standards in the field of machinery is as follows.
a) Type-A standards (basis standards) give basic concepts, principles for design and general aspects that
can be applied to machinery.
b) Type-B standards (generic safety standards) deal with one or more safety aspect(s), or one or more
type(s) of safeguards that can be used across a wide range of machinery:
⎯ type-B1 standards on particular safety aspects (e.g. safety distances, surface temperature, noise);
⎯ type-B2 standards on safeguards (e.g. two-hands controls, interlocking devices, pressure sensitive
devices, guards).
c) Type-C standards (machinery safety standards) deal with detailed safety requirements for a particular
machine or group of machines.
This part of ISO 13849 is a type-B-1 standard as stated in ISO 12100-1.
When provisions of a type-C standard are different from those which are stated in type-A or type-B standards,
the provisions of the type-C standard take precedence over the provisions of the other standards for machines
that have been designed and built according to the provisions of the type-C standard.
This part of ISO 13849 is intended to give guidance to those involved in the design and assessment of control
systems, and to Technical Committees preparing Type-B2 or Type-C standards which are presumed to
comply with the Essential Safety Requirements of Annex I of the Council Directive 98/37/EC, The Machinery
Directive. It does not give specific guidance for compliance with other EC directives.
As part of the overall risk reduction strategy at a machine, a designer will often choose to achieve some
measure of risk reduction through the application of safeguards employing one or more safety functions.
Parts of machinery control systems that are assigned to provide safety functions are called safety-related
parts of control systems (SRP/CS) and these can consist of hardware and software and can either be
separate from the machine control system or an integral part of it. In addition to providing safety functions,
SRP/CS can also provide operational functions (e.g. two-handed controls as a means of process initiation).
The ability of safety-related parts of control systems to perform a safety function under foreseeable conditions
is allocated one of five levels, called performance levels (PL). These performance levels are defined in terms
of probability of dangerous failure per hour (see Table 3).
The probability of dangerous failure of the safety function depends on several factors, including hardware and
software structure, the extent of fault detection mechanisms [diagnostic coverage (DC)], reliability of
components [mean time to dangerous failure (MTTF ), common cause failure (CCF)], design process,
d
operating stress, environmental conditions and operation procedures.
In order to assist the designer and help facilitate the assessment of achieved PL, this document employs a
methodology based on the categorization of structures according to specific design criteria and specified
behaviours under fault conditions. These categories are allocated one of five levels, termed Categories B, 1, 2,
3 and 4.
vi © ISO 2006 – All rights reserved

---------------------- Page: 14 ----------------------

SIST EN ISO 13849-1:2008
ISO 13849-1:2006(E)
The performance levels and categories can be applied to safety-related parts of control systems, such as
⎯ protective devices (e.g. two-hand control devices, interlocking devices), electro-sensitive protective
devices (e.g. photoelectric barriers), pressure sensitive devices,
⎯ control units (e.g. a logic unit for control functions, data processing, monitoring, etc.), and
⎯ power control elements (e.g. relays, valves, etc),
as well as to control systems carrying out safety functions at all kinds of machinery — from simple (e.g. small
kitchen machines, or automatic doors and gates) to manufacturing installations (e.g. packaging machines,
printing machines, presses).
This part of ISO 13849 is intended to provide a clear basis upon which the design and performance of any
application of the SRP/CS (and the machine) can be assessed, for example, by a third party, in-house or by
an independent test house.
Information on the recommended application of IEC 62061 and this part of ISO 13849
IEC 62061 and this part of ISO 13849 specify requirements for the design and implementation of safety-
related control systems of machinery. The use of either of these International Standards, in accordance with
their scopes, can be presumed to fulfil the relevant essential safety requirements. The following table
summarizes the scopes of IEC 62061 and this part of ISO 13849.
Table 1 — Recommended application of IEC 62061 and ISO 13849-1
Technology implementing the
ISO 13849-1 IEC 62061
safety-related control function(s)
A Non-electrical, e.g. hydraulics X Not covered
B Electromechanical, e.g. relays, Restricted to designated All architectures and up to SIL 3
a
and/or non complex electronics
architectures and up to PL = e
C Complex electronics, e.g. Restricted to designated All architectures and up to SIL 3
a
programmable
architectures and up to PL = d
D A combined with B Restricted to designated
c
X
a
architectures and up to PL = e
E C combined with B Restricted to designated All architectures and up to SIL 3
architectures (see Note 1) and up to
PL = d
F C combined with A, or C
b c
X X
combined with A and B
X indicates that this item is dealt with by the International Standard shown in the column heading.
a
Designated architectures are defined in 6.2 in order to give a simplified approach for quantification of performance level.
b
For complex electronics: use designated architectures according to this part of ISO 13849 up to PL = d or any architecture
according to IEC 62061.
c
For non-electrical technology, use parts in accordance with this part of ISO 13849 as subsystems.

© ISO 2006 – All rights reserved vii

---------------------- Page: 15 ----------------------

SIST EN ISO 13849-1:2008

---------------------- Page: 16 ----------------------

SIST EN ISO 13849-1:2008
INTERNATIONAL STANDARD ISO 13849-1:2006(E)

Safety of machinery — Safety-related parts of control
systems —
Part 1:
General principles for design
1 Scope
This part of ISO 13849 provides safety requirements and guidance on the principles for the design and
integration of safety-related parts of control systems (SRP/CS), including the design of software. For these
parts of SRP/CS, it specifies characteristics that include the performance level required for carrying out safety
functions. It applies to SRP/CS, regardless of the type of technology and energy used (electrical, hydraulic,
pneumatic, mechanical, etc.), for all kinds of machinery.
It does not specify the safety functions or performance levels that are to be used in a particular case.
This part of ISO 13849 provides specific requirements for SRP/CS using programmable electronic system(s).
It does not give specific requirements for the design of products which are parts of SRP/CS. Nevertheless, the
principles given, such as categories or performance levels, can be used.
NOTE 1 Examples of products which are parts of SRP/CS: relays, solenoid valves, position switches, PLCs, motor
control units, two-hand control devices, pressure sensitive equipment. For the design of such products, it is important to
refer to the specifically applicable International Standards, e.g. ISO 13851, ISO 13856-1 and ISO 13856-2.
NOTE 2 For the definition of required perf
...

SLOVENSKI STANDARD
SIST EN ISO 13849-1:2008
01-oktober-2008
1DGRPHãþD
SIST EN ISO 13849-1:2007
9DUQRVWVWURMHY=YDUQRVWMRSRYH]DQLGHOLNUPLOQLKVLVWHPRYGHO6SORãQD
QDþHOD]DQDþUWRYDQMH ,62
Safety of machinery - Safety-related parts of control systems - Part 1: General principles
for design (ISO 13849-1:2006)
Sicherheit von Maschinen - Sicherheitsbezogene Teile von Steuerungen - Teil 1:
Allgemeine Gestaltungsleitsätze (ISO 13849-1:2006)
Sécurité des machines - Parties des systèmes de commande relatives à la sécurité -
Partie 1: Principes généraux de conception (ISO 13849-1:2006)
Ta slovenski standard je istoveten z: EN ISO 13849-1:2008
ICS:
13.110 Varnost strojev Safety of machinery
SIST EN ISO 13849-1:2008 en
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------

SIST EN ISO 13849-1:2008

---------------------- Page: 2 ----------------------

SIST EN ISO 13849-1:2008
EUROPÄISCHE NORM
EN ISO 13849-1
EUROPEAN STANDARD
NORME EUROPÉENNE
Juni 2008
ICS 13.110 Ersatz für EN ISO 13849-1:2006
Deutsche Fassung
Sicherheit von Maschinen - Sicherheitsbezogene Teile von
Steuerungen - Teil 1: Allgemeine Gestaltungsleitsätze (ISO
13849-1:2006)
Safety of machinery - Safety-related parts of control Sécurité des machines - Parties des systèmes de
systems - Part 1: General principles for design (ISO 13849- commande relatives à la sécurité - Partie 1: Principes
1:2006) généraux de conception (ISO 13849-1:2006)
Diese Europäische Norm wurde vom CEN am 18.Mai 2008 angenommen.
Die CEN-Mitglieder sind gehalten, die CEN/CENELEC-Geschäftsordnung zu erfüllen, in der die Bedingungen festgelegt sind, unter denen
dieser Europäischen Norm ohne jede Änderung der Status einer nationalen Norm zu geben ist. Auf dem letzen Stand befindliche Listen
dieser nationalen Normen mit ihren bibliographischen Angaben sind beim Management-Zentrum des CEN oder bei jedem CEN-Mitglied auf
Anfrage erhältlich.
Diese Europäische Norm besteht in drei offiziellen Fassungen (Deutsch, Englisch, Französisch). Eine Fassung in einer anderen Sprache,
die von einem CEN-Mitglied in eigener Verantwortung durch Übersetzung in seine Landessprache gemacht und dem Zentralsekretariat
mitgeteilt worden ist, hat den gleichen Status wie die offiziellen Fassungen.
CEN-Mitglieder sind die nationalen Normungsinstitute von Belgien, Bulgarien, Dänemark, Deutschland, Estland, Finnland, Frankreich,
Griechenland, Irland, Island, Italien, Lettland, Litauen, Luxemburg, Malta, den Niederlanden, Norwegen, Österreich, Polen, Portugal,
Rumänien, Schweden, der Schweiz, der Slowakei, Slowenien, Spanien, der Tschechischen Republik, Ungarn, dem Vereinigten Königreich
und Zypern.
EUROPÄISCHES KOMITEE FÜR NORMUNG
EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION
Management-Zentrum: rue de Stassart, 36  B-1050 Brüssel
© 2008 CEN Alle Rechte der Verwertung, gleich in welcher Form und in welchem Ref. Nr. EN ISO 13849-1:2008 D
Verfahren, sind weltweit den nationalen Mitgliedern von CEN vorbehalten.

---------------------- Page: 3 ----------------------

SIST EN ISO 13849-1:2008
EN ISO 13849-1:2008 (D)
Inhalt
Seite
Vorwort .4
Einleitung.5
1 Anwendungsbereich .7
2 Normative Verweisungen.7
3 Begriffe, Formelzeichen und Abkürzungen .8
3.1 Begriffe .8
3.2 Formelzeichen und Abkürzungen. 14
4 Gestaltungsaspekte. 15
4.1 Sicherheitsziele in der Gestaltung. 15
4.2 Strategie der Risikominderung . 17
4.2.1 Allgemeines. 17
4.2.2 Beitrag der Risikominderung durch das Steuerungssystem. 17
4.3 Bestimmung des erforderlichen Performance Levels (PL ) . 21
r
4.4 Entwicklung des SRP/CS. 21
4.5 Bewertung des erreichten Performance Levels PL und die Beziehung zum SIL . 22
4.5.1 Performance Level PL . 22
4.5.2 Mittlere Zeit bis zum gefahrbringenden Ausfall jedes Kanals (MTTF ). 24
d
4.5.3 Diagnosedeckungsgrad (DC) . 25
4.5.4 Vereinfachtes Verfahren zur Abschätzung eines PL . 25
4.6 Software-Sicherheitsanforderungen. 28
4.6.1 Allgemeines. 28
4.6.2 Sicherheitsbezogene Embedded-Software (SRESW) . 29
4.6.3 Sicherheitsbezogene Anwendungssoftware (SRASW) . 30
4.6.4 Softwarebasierende Parametrisierung.32
4.7 Verifikation, dass der erreichte PL den PL erfüllt . 33
r
4.8 Ergonomische Aspekte der Gestaltung . 34
5 Sicherheitsfunktionen . 34
5.1 Spezifikation der Sicherheitsfunktionen . 34
5.2 Nähere Angaben über die Sicherheitsfunktionen . 37
5.2.1 Sicherheitsbezogene Stoppfunktion . 37
5.2.2 Manuelle Rückstellungsfunktion. 37
5.2.3 Start-/Wiederaufnahmefunktion . 38
5.2.4 Lokale Steuerungsfunktion . 38
5.2.5 Mutingfunktion. 38
5.2.6 Ansprechzeit . 39
5.2.7 Sicherheitsbezogene Parameter . 39
5.2.8 Schwankungen, Verlust und Wiederkehr der Energiequellen . 39
6 Die Kategorien und deren Beziehung zur MTTF jedes Kanals, DC und CCF. 39
d avg
6.1 Allgemeines. 39
6.2 Spezifikation der Kategorien . 40
6.2.1 Allgemeines. 40
6.2.2 Vorgesehene Architekturen. 40
6.2.3 Kategorie B. 41
6.2.4 Kategorie 1 . 41
6.2.5 Kategorie 2 . 43
6.2.6 Kategorie 3 . 44
6.2.7 Kategorie 4 . 45
6.3 Kombination von SRP/CS, um einen Gesamt-PL zu erreichen. 48
7 Berücksichtigung von Fehlern, Fehlerausschluss . 50
7.1 Allgemeines. 50
7.2 Fehlerbetrachtung . 50
7.3 Fehlerausschluss. 51
2

---------------------- Page: 4 ----------------------

SIST EN ISO 13849-1:2008
EN ISO 13849-1:2008 (D)
Seite
8 Validierung .51
9 Instandhaltung.51
10 Technische Dokumentation .51
11 Benutzerinformation .52
Anhang A (informativ) Bestimmung des erforderlichen Performance Levels (PL ).54
r
Anhang B (informativ) Blockmethode und sicherheitsbezogenes Blockdiagramm.57
Anhang C (informativ) Berechnung oder Abschätzung von MTTF -Werten für einzelne Bauteile.59
d
Anhang D (informativ) Vereinfachtes Verfahren zur Bestimmung der MTTF für jeden Kanal.67
d
Anhang E (informativ) Abschätzungen des Diagnosedeckungsgrades (DC) für Funktionen und
Module .69
Anhang F (informativ) Abschätzungen der Ausfälle aufgrund gemeinsamer Ursache (CCF) .72
Anhang G (informativ) Systematischer Ausfall.74
Anhang H (informativ) Beispiel der Kombination von verschiedenen sicherheitsbezogenen
Teilen einer Steuerung.77
Anhang I (informativ) Beispiele .80
Anhang J (informativ) Software.87
Anhang K (informativ) Numerische Darstellung von Bild 5.90
Anhang ZA (informativ) Zusammenhang zwischen dieser Europäischen Norm und den
grundlegenden Anforderungen der EG-Richtlinie 98/37/EG geändert durch
Richtlinie 98/79/EG .92
Anhang ZB (informativ) Zusammenhang zwischen dieser Europäischen Norm und den
grundlegenden Anforderungen der EG-Richtlinie 2006/42/EG.93
Literaturhinweise.94


3

---------------------- Page: 5 ----------------------

SIST EN ISO 13849-1:2008
EN ISO 13849-1:2008 (D)
Vorwort
Der Text von ISO 13849-1:2006 wurde vom Technischen Komitee ISO/TC 199 „Safety of machinery“ der
Internationalen Organisation für Standardisierung (ISO) erarbeitet und wurde als EN ISO 13849-1:2008 vom
Technischen Komitee CEN/TC 114 „Safety of machinery“ übernommen, dessen Sekretariat vom DIN gehalten
wird.
Diese Europäische Norm muss den Status einer nationalen Norm erhalten, entweder durch Veröffentlichung
eines identischen Textes oder durch Anerkennung bis November 2008, und etwaige entgegenstehende
nationale Normen müssen bis November 2009 zurückgezogen werden.
Es wird auf die Möglichkeit hingewiesen, dass einige Texte dieses Dokuments Patentrechte berühren können.
CEN [und/oder CENELEC] sind nicht dafür verantwortlich, einige oder alle diesbezüglichen Patentrechte zu
identifizieren.
Dieses Dokument ersetzt EN ISO 13849-1:2006.
Dieses Dokument wurde unter einem Mandat erarbeitet, das die Europäische Kommission und die
Europäische Freihandelszone dem CEN erteilt haben, und unterstützt grundlegende Anforderungen der EG-
Richtlinien.
Zum Zusammenhang mit EG-Richtlinien siehe informativen Anhang ZA und ZB, der Bestandteil dieses
Dokuments ist.
Entsprechend der CEN/CENELEC-Geschäftsordnung sind die nationalen Normungsinstitute der folgenden
Länder gehalten, diese Europäische Norm zu übernehmen: Belgien, Bulgarien, Dänemark, Deutschland,
Estland, Finnland, Frankreich, Griechenland, Irland, Island, Italien, Lettland, Litauen, Luxemburg, Malta,
Niederlande, Norwegen, Österreich, Polen, Portugal, Rumänien, Schweden, Schweiz, Slowakei, Slowenien,
Spanien, Tschechische Republik, Ungarn, Vereinigtes Königreich und Zypern.
Anerkennungsnotiz
Der Text von ISO 13849-1:2006 wurde vom CEN als EN ISO 13849-1:2008 ohne irgendeine Abänderung
genehmigt.
4

---------------------- Page: 6 ----------------------

SIST EN ISO 13849-1:2008
EN ISO 13849-1:2008 (D)
Einleitung
Die Struktur von Sicherheitsnormen auf dem Gebiet der Maschinen ist wie folgt.
a) Typ-A-Normen (Sicherheitsgrundnormen) behandeln Grundbegriffe, Gestaltungsleitsätze und allgemeine
Aspekte, die auf Maschinen angewandt werden können.
b) Typ-B-Normen (Sicherheitsfachgrundnormen) behandeln einen Sicherheitsaspekt oder eine Art von
Schutzeinrichtungen, die für eine ganze Reihe von Maschinen verwendet werden können:
⎯ Typ-B1-Normen für bestimmte Sicherheitsaspekte (z. B. Sicherheitsabstände,
Oberflächentemperatur, Lärm);
⎯ Typ-B2-Normen für Schutzeinrichtungen (z. B. Zweihandschaltungen, Verriegelungseinrichtungen,
druckempfindliche Schutzeinrichtungen, trennende Schutzeinrichtungen).
c) Typ-C-Normen (Maschinensicherheitsnormen) behandeln detaillierte Sicherheitsanforderungen an eine
bestimmte Maschinen oder eine Gruppe von Maschinen.
Dieser Teil der ISO 13849 ist eine Typ-B1-Norm wie in ISO 12100-1 dargelegt.
Wenn sich die Bestimmungen einer Typ-C-Norm von denen unterscheiden, die in einer Typ-A- oder
Typ-B-Norm dargelegt sind, haben die Bestimmungen der Typ-C-Norm Vorrang vor anderen Normen für
Maschinen, die nach den Bestimmungen der Typ-C-Norm entworfen und hergestellt worden sind.
Mit diesem Teil der ISO 13849 ist beabsichtigt, für diejenigen einen Leitfaden zu geben, die an der Gestaltung
und Beurteilung von Steuerungen beteiligt sind und für Technische Komitees, die Typ-B2- und Typ-C-Normen
erarbeiten, mit der Vermutung, mit den wesentlichen Sicherheitsanforderungen des Anhangs I der
Maschinenrichtlinie 98/37/EG, der Maschinen-Richtlinie, übereinzustimmen. Sie gibt keine besondere
Anleitung zur Übereinstimmung mit anderen EG-Richtlinien.
Als Teil einer Gesamtrisikominderung an einer Maschine wird ein Konstrukteur oft Maßnahmen durch die
Anwendung von Schutzeinrichtungen zur Risikoreduzierung ergreifen, die eine oder mehrere Sicherheits-
funktionen verwenden.
Teile einer Maschinensteuerung, die Sicherheitsfunktionen liefern sollen, werden sicherheitsbezogene Teile
einer Steuerung (SRP/CS) genannt, und diese Teile können entweder aus Hardware und Software bestehen
und separater oder integraler Bestandteil der Maschinensteuerung sein. Zusätzlich zur Bereitstellung von
Sicherheitsfunktionen kann ein SRP/CS auch Betriebsfunktionen liefern (z. B. eine Zweihandsteuerung zum
Start eines Prozesses).
Die Fähigkeit sicherheitsbezogener Teile von Steuerungen, eine Sicherheitsfunktion unter vorhersehbaren
Bedingungen auszuführen, wird einer von fünf Stufen zugeordnet, den so genannten Performance Level (PL).
Diese Performance Level werden definiert in Form der Wahrscheinlichkeit eines gefahrbringenden Ausfalls je
Stunde (siehe Tabelle 3).
Die Wahrscheinlichkeit eines gefahrbringenden Ausfalls der Sicherheitsfunktion hängt von mehreren Faktoren
ab, einschließlich der Hardware- und Softwarestruktur, dem Umfang der Fehler-Detektionsmechanismen
[Diagnosedeckungsgrad (DC)], der Zuverlässigkeit von Bauteilen [mittlere Zeit bis zum gefahrbringenden
Ausfall (MTTF), den Ausfällen infolge gemeinsamer Ursache (CCF)], dem Gestaltungsprozess, der
d
Belastung im Betrieb, den Umgebungsbedingungen und den betrieblichen Einsatzbedingungen.
Um den Konstrukteur zu unterstützen und als Hilfe zur Bestimmung des erreichten PL, stellt diese Norm eine
Methode auf Basis einer Kategorisierung von Strukturen nach speziellen Entwurfskriterien und spezifiziertem
Verhalten bei Fehlerbedingungen bereit. Diese Kategorien werden einer von fünf Stufen zugeordnet, genannt
Kategorien B, 1, 2, 3 und 4.
5

---------------------- Page: 7 ----------------------

SIST EN ISO 13849-1:2008
EN ISO 13849-1:2008 (D)
Die Performance Level und Kategorien können angewendet werden für sicherheitsbezogene Teile von
Steuerungen, wie:
⎯ nicht trennende Schutzeinrichtungen (z. B. Zweihandschaltungen, Verriegelungseinrichtungen),
berührungslos wirkende Schutzeinrichtungen (z. B. Lichtschranken), druckempfindliche Schutz-
einrichtungen,
⎯ Steuerungsbaugruppen (z. B. die Logik für Steuerungsfunktionen, Datenverarbeitung, Überwachung
usw.), und
⎯ Leistungsschaltelemente (z. B. Relais, Ventile usw.)
als auch Sicherheitsfunktionen ausführende Steuerungen in allen Arten von Maschinen — von einfachen (z. B.
einer kleinen Küchenmaschine oder automatischen Türen und Toren) bis zu einer Fertigungsanlage (z. B.
Verpackungsmaschinen, Druckmaschinen, Pressen).
Dieser Teil der 13849 liefert eine verständliche Basis, auf der die Gestaltung und Leistungsfähigkeit jeder
Anwendung eines SRP/CS (und der Maschine) beurteilt werden kann, z. B. durch Dritte, innerhalb einer
Organisation oder durch eine unabhängige Prüfstelle.
Informationen zur empfohlenen Anwendung der IEC 62061 und dieses Teils der ISO 13849
Die IEC 62061 und dieser Teil der ISO 13849 legen Anforderungen für den Entwurf und die Realisierung
sicherheitsbezogener Steuerungssysteme von Maschinen fest. Der Anwender einer von beiden Normen kann
in Übereinstimmung mit deren Anwendungsbereichen annehmen, die relevanten und erforderlichen
Sicherheitsanforderungen zu erfüllen. Die folgende Tabelle fasst die Anwendungsbereiche der IEC 62061 und
dieses Teils der ISO 13849 zusammen.
Tabelle 1 — Empfohlene Anwendung der IEC 62061 und ISO 13849-1
Technologie für die
Implementierung der
ISO 13849-1 IEC 62061
sicherheitsbezogenen
Steuerungsfunktion(en)
A Nicht elektrisch, z. B. hydraulisch X Nicht enthalten
B Elektromechanisch, z. B. Relais Beschränkt auf die Alle Architekturen und bis SIL 3
a
und/oder nicht komplexe Elektronik vorgesehenen Architekturen und
bis PL = e
C Komplexe Elektronik, z. B. Beschränkt auf die Alle Architekturen und bis SIL 3
a
programmierbar vorgesehenen Architekturen und
bis PL = d
c
D A kombiniert mit B Beschränkt auf die X
a
vorgesehenen Architekturen und
bis PL = e
E C kombiniert mit B Beschränkt auf die Alle Architekturen und bis SIL 3
a
vorgesehenen Architekturen und
bis PL = d
b c
F C kombiniert mit A, oder C X X
kombiniert mit A und B
X zeigt, dass dieses Merkmal in der Norm der entsprechenden Tabellenüberschrift behandelt wird.
a Um ein einfaches Verfahren zur Berechnung des Performance Levels zu ermöglichen, sind vorgesehene Architekturen in 6.2
beschrieben.
b Für komplexe Elektronik: Verwendung der vorgesehenen Architekturen nach diesem Teil der ISO 13849 bis PL = d oder
irgendeine Architektur nach IEC 62061.
c Für nicht elektrische Technologie, Verwendung der Teile nach diesem Teil der ISO 13849 als Teilsysteme.
6

---------------------- Page: 8 ----------------------

SIST EN ISO 13849-1:2008
EN ISO 13849-1:2008 (D)
1 Anwendungsbereich
Dieser Teil der ISO 13849 stellt Sicherheitsanforderungen und einen Leitfaden für die Prinzipien der
Gestaltung und Integration sicherheitsbezogener Teile von Steuerungen (SRP/CS) bereit, einschließlich der
Entwicklung von Software. Für diese Teile der SRP/CS werden Eigenschaften, einschließlich des
Performance Levels, festgelegt, die zur Ausführung der entsprechenden Sicherheitsfunktionen erforderlich
sind. Er ist anzuwenden auf SRP/CS aller Arten von Maschinen, ungeachtet der verwendeten Technologie
und Energie (elektrisch, hydraulisch, pneumatisch, mechanisch usw.).
Er legt nicht fest, welche Sicherheitsfunktionen oder Performance Level für einen speziellen Fall verwendet
werden.
Dieser Teil der ISO 13849 stellt spezielle Anforderungen für SRP/CS mit programmierbar elektronischen
Systemen bereit.
Er stellt keine speziellen Anforderungen an den Entwurf von Produkten, die Teile von SRP/CS sind. Trotzdem
können die angegebenen Prinzipien, wie Kategorien oder Performance Level, verwendet werden.
ANMERKUNG 1 Beispiele von Produkten, die Teile von SRP/CS sind: Relais, Magnetventile, Positionsschalter,
PLC(en), Antriebssteuerungen, Zweihandschaltungen, druckempfindliche Schutzeinrichtungen. Für den Entwurf solcher
Produkte ist es wichtig, sich auf spezielle anwendbare Internationale Normen zu beziehen, z. B. ISO 13851, ISO 13856-1
und ISO 13856-2.
ANMERKUNG 2 Für die Definition des erforderlichen Performance Levels, siehe 3.1.24.
ANMERKUNG 3 Die in diesem Teil der ISO 13849 bereitgestellten Anforderungen für programmierbare elektronische
Systeme sind kompatibel mit der Methodik für Gestaltung und Entwicklung sicherheitsbezogener elektrischer,
elektronischer und programmierbarer elektronischer Steuerungen für Maschinen in der IEC 62061.
ANMERKUNG 4 Für sicherheitsbezogene Embedded-Software in Komponenten mit PL = e, siehe IEC 61508-3:1998,
r
Abschnitt 7.
ANMERKUNG 5 Siehe auch Tabelle 1.
2 Normative Verweisungen
Die folgenden zitierten Dokumente sind für die Anwendung dieses Dokuments erforderlich. Bei datierten
Verweisungen gilt nur die in Bezug genommene Ausgabe. Bei undatierten Verweisungen gilt die letzte
Ausgabe des in Bezug genommenen Dokuments (einschließlich aller Änderungen).
ISO 12100-1:2003, Safety of machinery —Basic concepts, general principles for design — Part 1: Basic
terminology, methodology
ISO 12100-2:2003, Safety of machinery — Basic concepts, general principles for design — Part 2: Technical
principles
ISO 13849-2:2003, Safety of machinery — Safety-related parts of control systems — Part 2: Validation
1)
ISO 14121 , Safety of machinery — Principles of risk assessment
IEC 60050-191:1990, International Electrotechnical Vocabulary ⎯ Chapter 191: Dependability and quality of
service and IEC 60050-191: -am 1:1999 and IEC 60050-191-am2:2002:1999, Amendment 1 and
Amendment 2, International Electrotechnical Vocabulary — Chapter 191: Dependability and quality of service

1) Noch zu veröffentlichen (Überarbeitung von ISO 14121:1999).
7

---------------------- Page: 9 ----------------------

SIST EN ISO 13849-1:2008
EN ISO 13849-1:2008 (D)
IEC 61508-3:1998, Functional safety of electrical/electronic/programmable electronic safety-related
systems — Part 3: Software requirements, and IEC 61508-3 Corr. 1:1999, Corrigendum 1 — Functional safety
of electrical/electronic/programmable electronic safety-related systems — Part 3: Software requirements
IEC 61508-4:1998, Functional safety of electrical/electronic/programmable electronic safety-related
systems — Part 4: Definitions and abbreviations, and IEC 61508-4 Corr. 1:1999, Corrigendum 1 — Functional
safety of electrical/electronic/programmable electronic safety-related systems — Part 4: Definitions and
abbreviations
3 Begriffe, Formelzeichen und Abkürzungen
3.1 Begriffe
Für die Anwendung dieses Dokuments gelten die Begriffe nach ISO 12100-1, IEC 60050-191 und die
folgenden Begriffe.
3.1.1
sicherheitsbezogenes Teil einer Steuerung
SRP/CS
Teil einer Steuerung, das auf sicherheitsbezogene Eingangssignale reagiert und sicherheitsbezogene
Ausgangssignale erzeugt
ANMERKUNG 1 Die Kombination sicherheitsbezogener Teile einer Steuerung beginnt an dem Punkt, an dem
sicherheitsbezogene Signale erzeugt werden (einschließlich z. B. Betätiger und Rolle eines Positionsschalters) und endet
an den Ausgängen der Leistungssteuerungselemente (einschließlich z. B. Hauptkontakte eines Schützes).
ANMERKUNG 2 Werden Überwachungssysteme zur Diagnose verwendet, werden sie wie SRP/CS behandelt.
3.1.2
Kategorie
Einstufung der sicherheitsbezogenen Teile einer Steuerung bezüglich ihres Widerstandes gegen Fehler und
ihres nachfolgenden Verhaltens bei einem Fehler, das erreicht wird durch die Struktur der Anordnung der
Teile, der Fehlererkennung und/oder ihrer Zuverlässigkeit
3.1.3
Fehler
Zustand einer Einheit, charakterisiert durch die Unfähigkeit, eine geforderte Funktion auszuführen,
ausgenommen der Unfähigkeit während vorbeugender Wartung oder anderer geplanter Handlungen, oder
aufgrund des Fehlens externer Mittel
ANMERKUNG 1 Ein Fehler ist oft das Resultat eines Ausfalls der Einheit selbst, kann aber ohne vorherigen Ausfall
bestehen.
[IEC 60050-191:1990, 05-01]
ANMERKUNG 2 In diesem Teil der ISO 13849 bedeutet der Begriff „Fehler“ zufälliger Fehler.
3.1.4
Ausfall
Beendigung der Fähigkeit einer Einheit, eine geforderte Funktion zu erfüllen
ANMERKUNG 1 Nach einem Ausfall hat die Einheit einen Fehler.
ANMERKUNG 2 Der „Ausfall“ ist ein Ereignis, im Unterschied zum „Fehler“, dieser ist ein Zustand.
ANMERKUNG 3 Der so definierte Begriff kann nicht angewendet werden auf Einheiten, die nur aus Software bestehen.
[IEC 60050-191:1990, 04-01]
ANMERKUNG 4 Ausfälle, die nur die Verfügbarkeit des zu steuernden Prozesses betreffen, liegen nicht im
Anwendungsbereich dieses Teils der ISO 13849.
8

---------------------- Page: 10 ----------------------

SIST EN ISO 13849-1:2008
EN ISO 13849-1:2008 (D)
3.1.5
gefahrbringender Ausfall
Ausfall der das Potential hat, das SRP/CS in einen gefährlichen Zustand oder eine Fehlfunktion zu bringen
ANMERKUNG 1 Ob dieses Potential bemerkt werden kann oder nicht, hängt von der Architektur des Systems ab; in
einem redundanten System wird ein gefährlicher Hardwareausfall weniger wahrscheinlich zu einem gefährlichen Ausfall
des Gesamtsystems führen.
ANMERKUNG 2 Abgeleitet von IEC 61508-4:1998, Begriff 3.6.7.
3.1.6
Ausfall infolge gemeinsamer Ursache
CCF
Ausfälle verschiedener Einheiten aufgrund eines einzelnen Ereignisses, wobei diese Ausfälle nicht auf
gegenseitiger Ursache beruhen
[IEC 60050-191-am 1:1999, 04-23]
ANMERKUNG Ausfälle infolge gemeinsamer Ursache sollten nicht verwechselt werden mit gleichartigen Ausfällen
(siehe ISO 12100-1:2003, 3.34).
3.1.7
systematischer Ausfall
Ausfall mit deterministischem Bezug zu einer bestimmten Ursache, der nur durch Änderung der Gestaltung
oder des Herstellungsprozesses, Betriebsverfahren, Dokumentation oder zugehörenden Faktoren, beseitigt
werden kann
ANMERKUNG 1 Instandsetzung ohne Änderung wird üblicherweise den Grund des Ausfalls nicht beseitigen.
ANMERKUNG 2 Ein systematischer Ausfall kann hervorgerufen werden durch Simulation der Ausfallursache.
[IEC 60050-191:1990, 04-19]
ANMERKUNG 3 Beispielursachen systematischer Ausfälle beinhalten menschliches Versagen in:
⎯ der Spezifikation der Sicherheitsanforderungen,
⎯ der Gestaltung, der Herstellung, der Installation, des Betriebs der Hardware und
⎯ der Gestaltung, Realisierung usw. der
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

SIST
SIST EN ISO 19085-12:2021/A11:2023(Amendment)
Woodworking machines - Safety - Part 12: Tenoning/profiling machines (ISO 19085-12:2021)
EN ISO 19085-12:2021/A11:2023
  • Amendment
    5 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO 16090-1:2023(Main)
Machine tools safety - Machining centres, milling machines, transfer machines - Part 1: Safety requirements (ISO 16090-1:2022)
EN ISO 16090-1:2022

This document specifies the technical safety requirements and protective measures for the design, construction and supply (including installation and dismantling, with arrangements for transport and maintenance) of:
—    milling machines (see 3.1.1), including machines capable of performing boring operations (see 3.1.2);
—    machining centres; and
—    transfer machines (see 3.1.3)
designed for continuous production use, which are intended to cut cold metal and other non-combustible cold materials, except wood or materials with physical characteristics similar to those of wood as defined in ISO 19085‑1 and glass, stone and engineered/agglomerated materials as defined in EN 14618.
This document covers the following machines (referred to as "machines" in this document):
a)    manually, without numerical control, operated boring and milling machines (see 3.2.1, Group 1), e.g. knee and column type milling machines (see Figures C.1 and C.2);
b)    manually, with limited numerical control, operated boring and milling machines (see 3.2.2, Group 2), e.g. profile and contouring milling machines (see Figures C.3 and C.4);
c)     numerically controlled milling machines and machining centres (see 3.2.3, Group 3), e.g. automatic milling machines and milling centres, e.g. multi-spindle milling machines, gear-milling machines (see Figures C.5 to C.7);
d)    transfer and special-purpose machines (see 3.2.4, Group 4), which are designed to process only pre-specified workpieces or limited range of similar workpieces by means of a predetermined sequence of machining operations and process parameters (see Figures C.8 to C.13).
e)    machines fitted with the following devices/facilities, whose hazards have been dealt with:
—    tool magazine(s);
—    tool changer(s);
—    workpiece handling mechanism(s);
—    powered workpiece clamping mechanism(s);
—    swarf/chip conveyor(s);
—    power-operated door(s);
—    moveable operator cabin(s);
—    additional equipment for turning;
—    additional equipment for grinding.
This document deals with all significant hazards, hazardous situations and events relevant to this type of machinery which can occur during transportation, assembly and installation, setting, operation, cleaning and maintenance, troubleshooting, dismantling or disabling according to ISO 12100, when the machinery is used as intended and under conditions of misuse which are reasonably foreseeable by the manufacturer (see Clause 4).
This document presumes accessibility to the machine from all directions and specifies access conditions to operator positions. It also applies to workpiece transfer devices including transport devices for loading/unloading when they form an integral part of the machine.

  • Standard
    164 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    151 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO 15537:2022(Main)
Principles for selecting and using test persons for testing anthropometric aspects of industrial products and designs (ISO 15537:2022)
EN ISO 15537:2022

This document establishes methods for determining the composition of groups of persons whose
anthropometric characteristics are to be representative of the intended user population of any specific
object under test.
This document is applicable to the testing of anthropometric aspects of industrial products and designs
having direct contact with the human body or dependent on human body measurements, such as
machinery, work equipment, personal protective equipment (PPE), consumer goods, working spaces,
architectural details or transportation equipment.
This document is also applicable to the testing of such safety aspects of products that are dependent on
human body measurements. It does not deal with other aspects of the task or other requirements, such
as perception of information (except geometrical arrangement of the viewing targets) and the use of
controls (except their geometrical placement).
Although this document deals with selecting test persons from an anthropometric perspective, similar
general principles can be applied for other test variables, e.g. biomechanical aspects.

  • Standard
    17 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    16 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TP CEN ISO/TR 22100-5:2022(Main)
Safety of machinery - Relationship with ISO 12100 - Part 5: Implications of artificial intelligence machine learning (ISO/TR 22100-5:2021)
CEN ISO/TR 22100-5:2022

This document addresses how artificial intelligence – machine learning can impact the safety of machinery and machinery systems. This document describes how hazards being associated with artificial intelligence (AI) applications – machine learning in machinery or machinery systems and designed to act within specific limits can be considered in the risk assessment process. This document is not applicable to machinery or machinery systems with artificial intelligence (AI) applications – machine learning designed to act beyond specified limits that can result in unpredictable effects. This document does not address safety systems with AI, for example, safety-related sensors and other safety-related parts of control systems.

  • Technical report
    14 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO 19085-3:2022(Main)
Woodworking machines - Safety - Part 3: Numerically controlled (NC/CNC) boring and routing machines (ISO 19085-3:2021)
EN ISO 19085-3:2021

This document gives the safety requirements and measures for numerically controlled (NC/CNC)
boring machines, NC/CNC routing machines and NC/CNC boring and routing machines (as defined in
3.2, 3.3 and 3.4), capable of continuous production use, hereinafter referred to as "machines".
This document deals with all significant hazards, hazardous situations and events, listed in Annex A,
relevant to the machines when they are operated, adjusted and maintained as intended and under the
conditions foreseen by the manufacturer including reasonably foreseeable misuse. Also, transport,
assembly, dismantling, disabling and scrapping phases have been taken into account.
This document is also applicable to machines fitted with one or more of the following devices/additional
working units, whose hazards have been dealt with:
— additional working units for sawing, sanding, assembling or dowel inserting;
— fixed or movable workpiece support;
— mechanical, pneumatic, hydraulic or vacuum workpiece clamping;
— automatic tool change devices.
It is also applicable to machines fitted with edge-banding equipment, even if the relevant specific
hazards have not been dealt with.
NOTE For the risk assessment needed for the edge-banding equipment, ISO 19085-17 can be useful.
Machines covered in this document are designed for workpieces consisting of:
— solid wood;
— material with similar physical characteristics to wood (see ISO 19085-1:2021, 3.2);
— gypsum boards, gypsum bounded fibreboards, cardboard;
— matrix engineered mineral boards, silicate boards;
— composite materials with core consisting of polyurethane or mineral material laminated with light
alloy;
— polymer-matrix composite materials and reinforced thermoplastic/thermoset/elastomeric
materials;
— aluminium light alloy profiles;
— aluminium light alloy plates with a maximum thickness of 10 mm;
— composite boards made from the materials listed above.
This document does not deal with specific hazards related to:
— use of grinding wheels;
— ejection through openings guarded by curtains on machines where the height of the opening in the
enclosure above the workpiece support exceeds 700 mm;
— ejection due to failure of milling tools with a cutting circle diameter equal to or greater than 16 mm
and sawing tools not conforming to EN 847-1:2017 and EN 847-2:2017;
— the combination of a single machine being used with other machines (as a part of a line);
— integrated workpiece loading/unloading systems (e.g. robots).
This document is not applicable to:
— single spindle hand fed or integrated fed routing machines;
— machines intended for use in potentially explosive atmosphere;
— machines manufactured prior to its publication.

  • Standard
    96 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    89 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO 19085-16:2022(Main)
Woodworking machines - Safety - Part 16: Table band saws and band re-saws (ISO 19085-16:2021)
EN ISO 19085-16:2021

This document gives the safety requirements and measures for stationary and displaceable table band saws and band resaws with manual loading and/or unloading, designed to cut wood and materials with similar physical characteristics to wood, hereinafter referred to as “machines”.
NOTE 1   For the definition of displaceable machine, see ISO 19085-1:2017, 3.5.
It deals with all significant hazards, hazardous situations and events as listed in Clause 4, relevant to the machines, when operated, adjusted and maintained as intended and under the conditions foreseen by the manufacturer including reasonably foreseeable misuse. Also, transport, assembly, dismantling, disabling and scrapping phases have been taken into account.
NOTE 2   For relevant but not significant hazards, e.g. sharp edges of the machine frame, see ISO 12100:2010.
It is also applicable to machines fitted with one or more of the following devices/additional working units, whose hazards have been dealt with:
a)   device to tilt the table;
b)   device to tilt the saw unit.
This document does not apply to:
1)   machines driven by combustion engines or power take offs (PTO);
2)   log band sawing machines;
NOTE 3   Log band sawing machines are covered by EN 1807-2.
3)   machines designed for cross-cutting round or irregular shaped work-pieces;
4)   transportable / displaceable machines with a maximum length of the band saw blade of ≤ 2700 mm and a maximum diameter of the powered wheel of ≤ 350 mm;
NOTE 4    Transportable electrically driven machines are covered by the requirements of EN 61029-1:2009 together with EN 61029-2-5:2015.

  • Standard
    45 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    45 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO 19085-14:2022(Main)
Woodworking machines - Safety - Part 14: Four-sided moulding machines (ISO 19085-14:2021)
EN ISO 19085-14:2021

This part of ISO 19085 gives the safety requirements and measures for stationary four sided moulding machines with a maximum working width of 350 mm and a maximum speed of the integrated workpiece feed of 200 m/min, with electrical and/or electronic control system, hereinafter referred to as “machines” designed to cut solid wood and materials with similar physical characteristics to wood (see ISO 19085-1:2017, 3.2).
It deals with all significant hazards, hazardous situations and events as listed in Clause 4 relevant to machines, when operated, adjusted and maintained as intended and under the conditions foreseen by the manufacturer including reasonably foreseeable misuse. Also, transport, assembly, dismantling,
disabling and scrapping phases are taken into account.
NOTE: For relevant but not significant hazards, e.g. sharp edges of the machine frame, see ISO 12100:2010.
It is also applicable to machines fitted with one or more of the following devices / additional working units, whose hazards have been dealt with:
- universal spindle;
- glass bead saw unit
- fixed or movable work-piece support;
- quick tool changing system
- laser marking unit
- automatic work-piece returner
- in-feed hopper
- in-feed loading table
This part of ISO 19085 does not deal with any hazards related to:
a) in-feed devices other than in-feed hopper and in-feed loading table (magazines, etc.);
NOTE: For mechanical in-feed devices which also prevent access to the in-feed opening, see 6.6.4.
b) out-feed devices (e.g. mechanical handling systems) except for hazards related to ejection from the machine due to climb cutting
c) single machine being used in combination with any other machine (as part of a line);
It is not applicable to machines intended for use in potentially explosive atmosphere and to machines manufactured prior to its publication.

  • Standard
    57 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    52 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO 19085-15:2022(Main)
Woodworking machines - Safety - Part 15: Presses (ISO 19085-15:2021)
EN ISO 19085-15:2021

This part of ISO 19085 gives the safety requirements and measures for stationary manually loaded and unloaded:
-   cold presses,
-   hot presses,
-   bending presses,
-   edge/face gluing presses,
-   membrane presses,
-   embossing presses,
where pressing force is applied by hydraulic actuators pushing two flat or shaped surfaces against each other, hereinafter referred to as "machines".
It deals with all significant hazards, hazardous situations and events as listed in Clause 4 relevant to machines, when operated, adjusted and maintained as intended and under the conditions foreseen by the manufacturer including reasonably foreseeable misuse. Also transport, assembly, dismantling, disabling and scrapping phases are taken into account.
NOTE:   For relevant but not significant hazards, e.g. sharp edges of the machine frame, see ISO 12100:2010.
It is also applicable to machines fitted with one or more of the following devices/additional working units, whose hazards have been dealt with:
-   Device for hot gluing
-   Device for high frequency gluing
-   Device for high frequency shaping
-   Automatic work-piece loading and unloading system
-   intermediate additional platens
-   work-piece extractor
-   work-piece clamping pressure beam
-   split moveable platens.
The machines are designed to process work-pieces consisting of:
-   solid wood;
-   materials with similar characteristics to wood (see ISO 19085-1:2017, 3.2);
-   honeycomb.
This part of ISO 19085 does not deal with any hazards related to:
-   specific devices that differ from the list above;
-   hot fluid heating systems internal to the machine other than electrical;
-   any hot fluid heating systems external to the machine;
-   operation of taking intermediate platens out and in again;
-   the combination of a single machine being used with any other machine (as part of a line).
It is not applicable to:
-   frame presses;
-   membrane presses where the pressing force is applied by vacuum only;
-   presses for producing chipboard, fibreboard, OSB;
-   machines intended for use in potentially explosive atmosphere;
-   machines manufactured before the date of its publication as an international standard.

  • Standard
    54 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO 19085-2:2022(Main)
Woodworking machines - Safety - Part 2: Horizontal beam panel circular sawing machines (ISO 19085-2:2021)
EN ISO 19085-2:2021

This document gives the safety requirements and measures for horizontal beam panel circular sawing machines with the saw carriage of the front cutting line mounted below the workpiece support, which are manually and/or powered loaded and manually unloaded, capable of continuous production use, as defined in 3.1 and hereinafter referred to as “machines”.
This document deals with all significant hazards, hazardous situations and events as listed in Annex A, relevant to the machines, when operated, adjusted and maintained as intended and under the conditions foreseen by the manufacturer including reasonably foreseeable misuse. Also, transport, assembly, dismantling, disabling and scrapping phases have been taken into account.
It is also applicable to machines fitted with one or more of the following devices/additional working units, whose hazards have been dealt with:
—    side pressure device;
—    device for powered unloading;
—    unit for scoring;
—    unit for post-formed/soft-formed edge pre-cutting;
—    panel turning device;
—    front side turn table;
—    pushing out device;
—    pneumatic clamping of the saw blade;
—    powered panel loading device;
—    device for grooving by milling tool;
—    one or more additional cutting lines inside the machine for longitudinal and/or head cut (before the transversal cutting line);
—    workpiece vacuum clamping as part of a front side turn table or of a panel loading device;
—    panel pusher;
—    independent panel pushers;
—    additional panel pushers mounted on the panel pusher carriage;
—    additional panel pusher with integrated label printer device;
—    lifting platform;
—    device for automatic loading of thin panels;
—    device for base board unloading by gravity;
—    device for base board powered unloading;
—    device for panel unloading in limited space condition;
—    loading or pre-loading roller conveyors;
—    pressure beam with additional flaps to increase dust extraction efficiency;
—    saw blade cooling system by air or water-air or oil-air;
—    vibrating conveyor with/without trimming unit for offcuts management;
—    predisposition for top loading/unloading by an external system directly on the machine table and/or on the machine preloading roller conveyor and/or on the machine lifting table.
NOTE      base board is a support panel underlying the panel stack, to protect the panels from damages during transportation.
The machines are designed for cutting panels consisting of:
a) solid wood;
b) material with similar physical characteristics to wood (see ISO19085‑1:2021, 2);
c) gypsum boards, gypsum bounded fibreboards;
d) composite materials, with core consisting of e.g. polyurethane or mineral material, laminated with light alloy;
e) cardboard;
f) foam board;
g) matrix engineered mineral boards, silicate boards;
h) polymer‐matrix composite materials and reinforced thermoplastic/thermoset/elastomeric materials;
i) aluminium light alloy plates with a maximum thickness of 10 mm;
j) composite boards made from the materials listed above.
This document does not deal with hazards related to:
—    specific features different from those listed above;
—    the machining of panels with milling tools for grooving;
—    powered unloading of panels;
—    rear half of split pressure beam on the front cutting line;
—    the combination of a single machine being used with any other machine (as part of a line).
It is not applicable to:
—    machines intended for use in potentiall

  • Standard
    56 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    50 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN ISO 19085-17:2021(Main)
Woodworking machines - Safety requirements - Part 17: Edge-banding machines fed by chains (ISO 19085-17:2021)
EN ISO 19085-17:2021

This document gives the safety requirements and measures for edge banding machines fed by chains or
belts, with manual loading and unloading and maximum workpiece height capacity of 100 mm, capable
of continuous production use, hereinafter referred as “machines”.
It deals with all significant hazards, hazardous situations and events, listed in Annex A, relevant to the
machines, when operated, adjusted and maintained as intended and under the conditions foreseen by
the manufacturer; reasonably foreseeable misuse has been considered too. Also, transport, assembly,
dismantling, disabling and scrapping phases are taken into account.
The machines are designed to process in one pass one end (single-end machine) or both ends (doubleend
machine) of panels of:
— materials with similar physical characteristics to wood (see ISO 19085-1:2021, 3.2), even with a
core sheet of aluminium light alloy;
— gypsum plaster boards.
Edges to be applied by the machine can be made of:
— paper;
— melamine;
— plastic;
— composite materials;
— aluminium;
— light alloy;
— veneer;
— solid wood.
It is also applicable to machines fitted with one or more of the following devices/working units, whose
hazards have been dealt with:
— hot air banding unit;
— laser banding unit;
— infrared banding unit;
— dynamic processing units;
— sanding belt units;
— milling unit installed out of the integral enclosure at the panel side on single-end machines;
— milling unit installed out of the integral enclosure between machines halves of double-end machines;
— additional fixed or movable workpiece support along the feed;
— additional infeed workpiece support;
— additional outfeed workpiece support;
— in-feed device for transversal loading of panels in single-end machines;
— intermediate workpiece support in double-end machines;
— automatic panel returner in single-end machines;
— automatic tool changing;
— quick tool changing system;
— automatic multiple edges infeed device;
— workpiece heaters.
This document does not deal with any hazards relating to:
a) systems for loading and unloading of the workpiece to a single machine other than automatic panel
returner and infeed and outfeed workpiece supports (e.g. robots);
b) the combination of a single machine being used with other machines (as part of a line);
c) workpiece dividing unit installed out of the integral enclosure and/or whose tools protrude out of
the integral enclosure;
d) plasma banding unit.
It is not applicable to machines intended for use in potentially explosive atmosphere nor manufactured
before the date of its publication.

  • Standard
    62 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Draft
    55 pages
    English language
    sale 10% off
    e-Library read for
    1 day