1、 IEC 62061 Edition 1.1 2012-11 INTERNATIONAL STANDARD NORME INTERNATIONALE Safety of machinery Functional safety of safety-related electrical, electronic and programmable electronic control systems Scurit des machines Scurit fonctionnelle des systmes de commande lectriques, lectroniques et lectroniq
2、ues programmables relatifs la scurit IEC62061:2005+A1:2012 colourinsideTHIS PUBLICATION IS COPYRIGHT PROTECTED Copyright 2012 IEC, Geneva, Switzerland All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or
3、 mechanical, including photocopying and microfilm, without permission in writing from either IEC or IECs member National Committee in the country of the requester. If you have any questions about IEC copyright or have an enquiry about obtaining additional rights to this publication, please contact t
4、he address below or your local IEC member National Committee for further information. Droits de reproduction rservs. Sauf indication contraire, aucune partie de cette publication ne peut tre reproduite ni utilise sous quelque forme que ce soit et par aucun procd, lectronique ou mcanique, y compris l
5、a photocopie et les microfilms, sans laccord crit de la CEI ou du Comit national de la CEI du pays du demandeur. Si vous avez des questions sur le copyright de la CEI ou si vous dsirez obtenir des droits supplmentaires sur cette publication, utilisez les coordonnes ci-aprs ou contactez le Comit nati
6、onal de la CEI de votre pays de rsidence. IEC Central Office Tel.: +41 22 919 02 11 3, rue de Varemb Fax: +41 22 919 03 00 CH-1211 Geneva 20 infoiec.ch Switzerland www.iec.ch About the IEC The International Electrotechnical Commission (IEC) is the leading global organization that prepares and publis
7、hes International Standards for all electrical, electronic and related technologies. About IEC publications The technical content of IEC publications is kept under constant review by the IEC. Please make sure that you have the latest edition, a corrigenda or an amendment might have been published. U
8、seful links: IEC publications search - www.iec.ch/searchpub The advanced search enables you to find IEC publications by a variety of criteria (reference number, text, technical committee,). It also gives information on projects, replaced and withdrawn publications. IEC Just Published - webstore.iec.
9、ch/justpublished Stay up to date on all new IEC publications. Just Published details all new publications released. Available on-line and also once a month by email. Electropedia - www.electropedia.org The worlds leading online dictionary of electronic and electrical terms containing more than 30 00
10、0 terms and definitions in English and French, with equivalent terms in additional languages. Also known as the International Electrotechnical Vocabulary (IEV) on-line. Customer Service Centre - webstore.iec.ch/csc If you wish to give us your feedback on this publication or need further assistance,
11、please contact the Customer Service Centre: csciec.ch. A propos de la CEI La Commission Electrotechnique Internationale (CEI) est la premire organisation mondiale qui labore et publie des Normes internationales pour tout ce qui a trait llectricit, llectronique et aux technologies apparentes. A propo
12、s des publications CEI Le contenu technique des publications de la CEI est constamment revu. Veuillez vous assurer que vous possdez ldition la plus rcente, un corrigendum ou amendement peut avoir t publi. Liens utiles: Recherche de publications CEI - www.iec.ch/searchpub La recherche avance vous per
13、met de trouver des publications CEI en utilisant diffrents critres (numro de rfrence, texte, comit dtudes,). Elle donne aussi des informations sur les projets et les publications remplaces ou retires. Just Published CEI - webstore.iec.ch/justpublished Restez inform sur les nouvelles publications de
14、la CEI. Just Published dtaille les nouvelles publications parues. Disponible en ligne et aussi une fois par mois par email. Electropedia - www.electropedia.org Le premier dictionnaire en ligne au monde de termes lectroniques et lectriques. Il contient plus de 30 000 termes et dfinitions en anglais e
15、t en franais, ainsi que les termes quivalents dans les langues additionnelles. Egalement appel Vocabulaire Electrotechnique International (VEI) en ligne. Service Clients - webstore.iec.ch/csc Si vous dsirez nous donner des commentaires sur cette publication ou si vous avez des questions contactez-no
16、us: csciec.ch. IEC 62061 Edition 1.1 2012-11 INTERNATIONAL STANDARD NORME INTERNATIONALE Safety of machinery Functional safety of safety-related electrical, electronic and programmable electronic control systems Scurit des machines Scurit fonctionnelle des systmes de commande lectriques, lectronique
17、s et lectroniques programmables relatifs la scurit INTERNATIONAL ELECTROTECHNICAL COMMISSION COMMISSION ELECTROTECHNIQUE INTERNATIONALE ICS 13.110; 25.040.99; 29.020 ISBN 978-2-8322-0487-0 Registered trademark of the International Electrotechnical Commission Marque dpose de la Commission Electrotech
18、nique Internationale Warning! Make sure that you obtained this publication from an authorized distributor. Attention! Veuillez vous assurer que vous avez obtenu cette publication via un distributeur agr. colourinside 2 62061 IEC:2005+A1:2012 CONTENTS FOREWORD . 5 INTRODUCTION . 7 1 Scope and object
19、10 2 Normative references . 11 3 Terms, definitions and abbreviations 12 3.1 Alphabetical list of definitions 12 3.2 Terms and definitions 14 3.3 Abbreviations 22 4 Management of functional safety 22 4.1 Objective . 22 4.2 Requirements 22 5 Requirements for the specification of Safety-Related Contro
20、l Functions (SRCFs) . 24 5.1 Objective . 24 5.2 Specification of requirements for SRCFs . 24 6 Design and integration of the safety-related electrical control system (SRECS) 26 6.1 Objective . 26 6.2 General requirements 26 6.3 Requirements for behaviour (of the SRECS) on detection of a fault in the
21、 SRECS . 27 6.4 Requirements for systematic safety integrity of the SRECS . 28 6.5 Selection of safety-related electrical control system 30 6.6 Safety-related electrical control system (SRECS) design and development . 30 6.7 Realisation of subsystems . 35 6.8 Realisation of diagnostic functions 51 6
22、.9 Hardware implementation of the SRECS . 52 6.10 Software safety requirements specification 52 6.11 Software design and development . 53 6.12 Safety-related electrical control system integration and testing 60 6.13 SRECS installation 62 7 Information for use of the SRECS . 62 7.1 Objective . 62 7.2
23、 Documentation for installation, use and maintenance 62 8 Validation of the safety-related electrical control system . 63 8.1 Objective . 63 8.2 General requirements 63 8.3 Validation of SRECS systematic safety integrity 64 9 Modification 65 9.1 Objective . 65 9.2 Modification procedure 65 9.3 Confi
24、guration management procedures . 65 10 Documentation . 67 62061 IEC:2005+A1:2012 3 Annex A (informative) SIL assignment . 69 Annex B (informative) Example of safety-related electrical control system (SRECS) design using concepts and requirements of Clauses 5 and 6 . 77 Annex C (informative) Guide to
25、 embedded software design and development 84 Annex D (informative) Failure modes of electrical/electronic components 92 Annex E (informative) Electromagnetic (EM) phenomenon and increased immunity levels for SRECS intended for use in an industrial environment according to IEC 61000-6-2 97 Annex F (i
26、nformative) Methodology for the estimation of susceptibility to common cause failures (CCF) . 99 Figure 1 Relationship of IEC 62061 to other relevant standards . 8 Figure 2 Workflow of the SRECS design and development process . 32 Figure 3 Allocation of safety requirements of the function blocks to
27、subsystems (see 6.6.2.1.1) 33 Figure 4 Workflow for subsystem design and development (see box 6B of Figure 2) 38 Figure 5 Decomposition of a function block into redundant function block elements and their associated subsystem elements . 39 Figure 6 Subsystem A logical representation . 45 Figure 7 Su
28、bsystem B logical representation . 46 Figure 8 Subsystem C logical representation . 46 Figure 9 Subsystem D logical representation . 48 Figure A.1 Workflow of SIL assignment process . 70 Figure A.2 Parameters used in risk estimation . 71 Figure A.3 Example proforma for SIL assignment process . 78 Fi
29、gure B.1 Terminology used in functional decomposition 77 Figure B.2 Example machine . 78 Figure B.3 Specification of requirements for an SRCF . 78 Figure B.4 Decomposition to a structure of function blocks 79 Figure B.5 Initial concept of an architecture for a SRECS 80 Figure B.6 SRECS architecture
30、with diagnostic functions embedded within each subsystem (SS1 to SS4) . 81 Figure B.7 SRECS architecture with diagnostic functions embedded within subsystem SS3 . 82 Figure B.8 Estimation of PFHDfor a SRECS. 83 Table 1 Recommended application of IEC 62061 and ISO 13849-1(under revision) . 9 Table 2
31、Overview and objectives of IEC 62061 11 Table 3 Safety integrity levels: target failure values for SRCFs 26 Table 4 Characteristics of subsystems 1 and 2 used in this example 35 Table 5 Architectural constraints on subsystems: maximum SIL that can be claimed for a SRCF using this subsystem 41 Table
32、6 Architectural constraints: SILCL relating to categories . 41 Table 7 Probability of dangerous failure . 44 Table 8 Information and documentation of a SRECS 68 4 62061 IEC:2005+A1:2012 Table A.1 Severity (Se) classification . 72 Table A.2 Frequency and duration of exposure (Fr) classification . 72
33、Table A.3 Probability (Pr) classification . 73 Table A.4 Probability of avoiding or limiting harm (Av) classification . 74 Table A.5 Parameters used to determine class of probability of harm (Cl) . 74 Table A.6 SIL assignment matrix 75 Table D.1 Examples of the failure mode ratios for electrical/ele
34、ctronic components . 92 Table E.1 EM phenomenon and increased immunity levels for SRECS 97 Table E.2 Selected frequencies for RF field tests . 98 Table E.3 Selected frequencies for conducted RF tests . 98 Table F.1 Criteria for estimation of CCF . 99 Table F.2 Estimation of CCF factor () . 100 62061
35、 IEC:2005+A1:2012 5 INTERNATIONAL ELECTROTECHNICAL COMMISSION _ SAFETY OF MACHINERY FUNCTIONAL SAFETY OF SAFETY-RELATED ELECTRICAL, ELECTRONIC AND PROGRAMMABLE ELECTRONIC CONTROL SYSTEMS FOREWORD 1) The International Electrotechnical Commission (IEC) is a worldwide organization for standardization c
36、omprising all national electrotechnical committees (IEC National Committees). The object of IEC is to promote international co-operation on all questions concerning standardization in the electrical and electronic fields. To this end and in addition to other activities, IEC publishes International S
37、tandards, Technical Specifications, Technical Reports, Publicly Available Specifications (PAS) and Guides (hereafter referred to as “IEC Publication(s)”). Their preparation is entrusted to technical committees; any IEC National Committee interested in the subject dealt with may participate in this p
38、reparatory work. International, governmental and non-governmental organizations liaising with the IEC also participate in this preparation. IEC collaborates closely with the International Organization for Standardization (ISO) in accordance with conditions determined by agreement between the two org
39、anizations. 2) The formal decisions or agreements of IEC on technical matters express, as nearly as possible, an international consensus of opinion on the relevant subjects since each technical committee has representation from all interested IEC National Committees. 3) IEC Publications have the for
40、m of recommendations for international use and are accepted by IEC National Committees in that sense. While all reasonable efforts are made to ensure that the technical content of IEC Publications is accurate, IEC cannot be held responsible for the way in which they are used or for any misinterpreta
41、tion by any end user. 4) In order to promote international uniformity, IEC National Committees undertake to apply IEC Publications transparently to the maximum extent possible in their national and regional publications. Any divergence between any IEC Publication and the corresponding national or re
42、gional publication shall be clearly indicated in the latter. 5) IEC itself does not provide any attestation of conformity. Independent certification bodies provide conformity assessment services and, in some areas, access to IEC marks of conformity. IEC is not responsible for any services carried ou
43、t by independent certification bodies. 6) All users should ensure that they have the latest edition of this publication. 7) No liability shall attach to IEC or its directors, employees, servants or agents including individual experts and members of its technical committees and IEC National Committee
44、s for any personal injury, property damage or other damage of any nature whatsoever, whether direct or indirect, or for costs (including legal fees) and expenses arising out of the publication, use of, or reliance upon, this IEC Publication or any other IEC Publications. 8) Attention is drawn to the
45、 Normative references cited in this publication. Use of the referenced publications is indispensable for the correct application of this publication. 9) Attention is drawn to the possibility that some of the elements of this IEC Publication may be the subject of patent rights. IEC shall not be held
46、responsible for identifying any or all such patent rights. This consolidated version of IEC 62061 consists of the first edition (2005) documents 44/460/FDIS and 44/470/RVD, its amendment 1 (2012) documents 44/655/CDV and 44/663/RVC and its corrigenda of July 2005 and April 2008. It bears the edition
47、 number 1.1. The technical content is therefore identical to the base edition and its amendment and has been prepared for user convenience. A vertical line in the margin shows where the base publication has been modified by amendment 1. Additions and deletions are displayed in red, with deletions be
48、ing struck through. 6 62061 IEC:2005+A1:2012 International Standard IEC 62061 has been prepared by IEC technical committee 44: Safety of machinery Electrotechnical aspects. This publication has been drafted in accordance with the ISO/IEC Directives, Part 2. The committee has decided that the content
49、s of the base publication and its amendments will remain unchanged until the stability date indicated on the IEC web site under “http:/webstore.iec.ch“ in the data related to the specific publication. At this date, the publication will be reconfirmed, withdrawn, replaced by a revised edition, or amended. IMPORTANT The “colour inside” logo on the cover pa
