March 5

How to choose a Safety PLC

When it comes to implementing safety instrumented systems (SIS) to comply with functional safety standard IEC 61511, the safety PLC is a pivotal system to specify. So, what are the key questions that you need to ask if choosing a new system supplier? Read more here.

Safety PLC or Regular PLC?

A standard PLC (programmable logic contoller) is designed for regular control, whereas a safety PLC has additional hardware and software design features to self-diagnose failure and trip safely when the need arises.

With a standard PLC, selection is based on performance; such as the capacity of the program, number of inputs and outputs (I/O) it can handle, communications capability and speed.

With a safety PLC, the selection criteria are more related to Safety Integrity Level (SIL) capability, reliability and fault tolerance of the system.

The choice of a safety PLC with a capability for meeting a Safety Integrity Level of SIL 1, SIL 2 or SIL 3 is a crucial early decision for any company implementing a new SIS, or for a major system upgrade project.

A safety PLC comes into its own when implementing numerous Safety Instrumented Functions (SIF); where sequences, time delays or more complex logic are a requirement of the application that would be too complex for relays or hard-wired logic.

The safety PLC can efficiently transmit data and alarms to a control system and operator workstation via serial communications links. The safety system can send useful diagnostics to the control layer without itself being compromised.

Well-designed safety PLC's can readily accept analog sensor signals, where a single instrument can provide alarm and trip points at different levels. Analog signals also enable dynamic display of the process variable and diagnostic alarm information that can give early operator warnings that may help to avoid spurious trips.

Hard-wired systems are very effective when there are very few safety functions and little need for remote monitoring of status.

However, in many applications such as offshore oil and gas platforms or large chemical complexes, the choice of programmable or hard-wired system is usually easy to make. Due to the likely number of safety functions and the complexity of achieving both control and safety, the hard-wired option isn't practical or cost-effective.

Programmable logic solver system and software suppliers

There are many providers of SIL capable Safety PLC logic solvers. Choices range from single-channel systems with in-built safety circuits to triplicated systems designed for achieving high availability and safety.

As there is no "one-size-fits-all", users must carefully select the system and supplier that best meets both their application requirements, and the need for initial and ongoing support.

At the end of this article are links to some logic solver suppliers that have SIL capability certification; some of them with several different products. It's best to contact each company directly; making sure you ask appropriate questions such as the ones below.

Product and technical questions to ask suppliers

  • What is the claimed SIL capability of the system (e.g. SIL 1, SIL 2 or SIL 3)?
  • Who completed the SIL capability certification of this system (e.g. TÃœV Rheinland / exida)?
  • What level of Hardware Fault Tolerance (HFT) is required to meet the SIL capability claimed?
  • How are you assuring the latest cyber-security requirements are met with your safety PLC?
  • Can you provide a functional safety manual that conforms with IEC 61508-2 edition 2 Annex D?
  • Does the SIS logic solver have a sister control system (BPCS) with approved communications links?
  • Are there any Application Program restrictions to implement in software or hardware to achieve the claimed SIL?
  • What other utility software is needed to configure and/or compile the application program?
  • What is the programming language for the SIS logic solver (e.g. Function Block Diagram / Ladder / Other)?
  • What are the ongoing proof test requirements for the system?

Support and general questions to ask suppliers

  • How is the system & software supported in your region?
  • What specialist training is needed to program the system?
  • What specialist training is needed to maintain the system hardware?
  • Do you have recommended 3rd party integrators who can configure the system?
  • Do you provide direct configuration / programming support for the system?
  • How long do you plan to support this system?
  • Do you have a functional safety management system (FSMS) for SIS project implementation?

Safety PLC / Logic Solver Suppliers List (2021)

Conclusions

Like everything in life, there are trade-offs when you narrow down the search for a new safety PLC.

Some suppliers have a more significant presence than others in certain regions of the world. Some rely on 3rd party system integrators to implement their software, whereas others will want to provide more of a "turn-key" package.

Many companies have legacy products that they will push to the background whilst pointing you at the "latest new thing".

Depending on a number of detailed application factors, the good news is that selecting a SIL capable safety PLC from a reputable supplier and reputable certification company should mean few issues with meeting SIL targets.

The bad news; the safety PLC is rarely the main issue when it comes to achieving adeqaute safety and availability. Meeting SIL targets and assuring maximum uptime is related much more to field sensors and final elements.

About the author

Jon Keswick, CFSE

Jon Keswick is a Certified Functional Safety Expert (CFSE) and founder of eFunctionalSafety. Feel free to make contact via Linked-In or comment on any of the eFunctionalSafety blog pages.

Related posts

{"email":"Email address invalid","url":"Website address invalid","required":"Required field missing"}
>
Success message!
Warning message!
Error message!