Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 1
Safety engineering guidelines Pneumatic and electric solutions
SLS STR STR STO SS1 STO SDI SS2 SOS v v v v v M s s s 0 t 0t0 t 0 t 0 t 0 t Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 2
Overview of technical safety measures
Input Logic Output
Emergency Limited, safe speed stop
Page Reducing pressure and force Two-hand 27–30 ...... control
Moving guard: De-energise 31 ...... guard door
Safety shut-off mat • Wiring Safe direction • Safe, pneumatic logic of movement • Safety relay • Safety PLC Light curtain
Initial position, standstill
Set-up and Normal operation Laser scanner service operation Stopping, blocking a movement Emergency operation
Enabling switch ...... Page 65–66
Mode selector OFF switch
Vision systems
Please observe the legal information on page 73.
2 Sicherheitstechnik_135242_en.qxp 20.07.2012 10:09 Uhr Seite 3
Pneumatic Electrical Page
...... 44 Reducing speed
SLS Safely limited v speed (SLS) ...... 34 0 t
Reducing pressure ...... 32–33 and force
Exhausting ...... 35–41
STO Safe torque off v (STO) ...... 46 0 t
Reversing ...... 43–45 a movement SDI Safe direction of v s movement (SDI) 0 t
Stopping, ...... 50–57 holding, Stopping blocking SS1 STO Safe stop 1 (SS1) without power v s ...... 42 0 t
Stopping, ...... 47–49 holding, blocking Stopping with power SS2 SOS Safe stop 2 (SS2) v s 0 t
SOS Safe operating v s stop (SOS) 0 t
SLP Safe position SPF s (general SLP) t Protection against unexpected start-up ...... 58–62
You will see these symbols frequently on the following pages. They clearly and quickly point to the respective safety function.
3 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 4
Your partner for safety
At Festo, quality has many aspects – one of these is handling machines safely. This is the reason for our safety-oriented automation technology. These components ensure that optimum safety is achieved in the workplace.
This brochure is intended • Which safety measures are These can be used to implement as a guide. derived from these? many safety functions. It covers the core questions • What are the most common relating to safety-oriented safety measures? If you have more extensive pneumatics and electrical requirements, our specialists engineering: Simple and helpful: The second worldwide will be happy to help. part of the brochure contains • Why use safety-oriented sample circuit diagrams for the pneumatics? most commonly used safety • How can I identify the risk functions in conjunction with posed by a system or machine pneumatic and electric drives to the operator or user? as well as the corresponding • Which standards and Festo product combinations. directives apply?
Contents
Introduction...... 2
Directives and standards...... 6
Safety functions with products and solutions ...... 27
Training and consulting ...... 67
4 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 5
Reduce risk – think preventively
Machines have to be designed in a way that protects people, animals, property and the environment from harm. The goal is to prevent physical damage of any type. Using safety-oriented pneumatics from Festo provides you with the security of implementing safety measures in compliance with the EC machinery directive.
This reliably prevents collisions The protection goals are Safety-oriented solutions from In addition to this, if errors occur, or uncontrolled restarts after achieved using various safety Festo provide you with proposals they must not lead to failure of EMERGENCY-STOP, for example. functions. for the safety functions, depending At the same time, using safety- • Commissioning on their hazard potential. oriented pneumatics also Safety-oriented solutions from • Automatic/manual operation minimises the risk of liability Festo, in the form of • Setting up claims. • Components • Risk situations and emergency • Circuits functions, such as safe stop, The EC Machinery Directive • Engineering safe exhausting. specifies a risk analysis and make it easy to achieve your • Restart -> Protection against assessment for machines. These safety objectives. Safe operation unexpected start-up have helped to develop and of machines should be possible • Service/maintenance define protection goals. in all modes and stages of their service life.
Simple but safe
As a general rule, the simpler the As a result, it would seem To ensure that the electrical safety technology used in the virtually impossible to safety functionality of your application, the more efficient it implement standardised safety control system is a suitable is. The complexity of safety engineering concepts. continuation of in your safety engineering is in the variety of concept for pneumatic state combinations and Due to their flexible applications, components, Festo offers transitional states. Festo drive systems can be solutions based on risk analyses incorporated in the risk analysis and risk assessments for the and assessment for each most commonly used machine, depending on the applications. application.
5 Sicherheitstechnik_135242_en.qxp 02.05.201211:57UhrSeite6 6 measures. assessment whichreveals risksandresults inriskminimising be built and operated safely. Almost all laws require a risk There are global framework conditions can to ensure that machinery Technical safetyconditions Festo Didactic: training and consulting
Solutions from Festo NIO1891IEC61508/61511/62061 EN ISO13849-1 ikaayi ikassmn Risk reduction Risk assessment Risk analysis Risk assessment PL PL ≥ Evaluation e.g. EC Machinery Directive e.g. ECMachinery Input r Safety function SIL ≥SIL Laws Logic r User information Technical measures Design measures Output risk reduction issufficient Objective: evaluation whether measures assessment of technical safety Objective: evaluation and Objective: riskreduction + “checklist” Objective: standardised process Objective: safemachines Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 7
Basic safety requirements in the manufacturing industry
As part of the development of the single European market, the directives for machine construction in the manufacturing industry were harmonised.
Free movement of goods in Europe
Article 95, EC treaty (free movement of goods) Article 137, EC treaty (safety at work)
“Health and Safety” Framework Directive e.g. machines 89/391/EEC
Machinery Directive Low Voltage Directive “Use of work equipment” 98/37/EC 2006/95/EC single directive 86/655/EEC 2006/42/EC
Harmonised European standards National legal provisions
Responsibility
Manufacturers Operators
Directives are comparable with the design and construction in the Official Journal of the laws. Among others, the EC of machines. The CE mark European Communities. machinery directive is applicable indicates compliance with the Applying these results in what is for machine construction. machinery directive. known as the “presumption of The primary aim of the EC Harmonised standards provide conformity”, which reinforces machinery directive is to specify assistance in complying with the legal security of operators basic health and safety the EC machinery directive. and manufacturers. requirements in relation to Harmonised standards are listed
7 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 8
Basic standards for designing control functions
Harmonised standards that relate to machine safety serve to reduce safety risks to an acceptable minimum, as per the EC Machinery Directive.
Design and risk assessment of machinery Electrical safety aspects
EN ISO 12100 EN 60204-1 Safety of machinery Safety of machinery General principles for design Electrical equipment of machines, Part 1: General requirements
Functional and safety-oriented requirements for safety-related control systems
Designing and implementing safety-related control systems
EN 62061 Safety of machinery Functional safety of electrical/electronic/ programmable safety-related electronic control systems
Any architectures Safety integrity level (SIL) SIL 1, SIL 2, SIL 3
DIN EN ISO 13849-1 Safety of machinery Safety-related parts of control systems, Part 1 – General principles for design
Designated architectures (categories) Performance Level (PL) PL a, PL b, PL c, PL d, PL e
8 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 9
Definition and concept of risk
Risks are the result of hazards and relate to the gravity of possible damage and the probability of the damage occurring. Low risk High risk
Safety Adequately reduced Danger
Residual risk Risk without safety measures
Necessary minimum risk reduction
Actual risk reduction
Safety = acceptable residual risk
Risk Severity Probability in terms of the =+of the possible of the damage respective hazard damage occurring
Frequency and duration of the exposure to hazard
Options for avoiding or limiting the damage
Probability of an event that could cause the damage occurring
9 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 10
Risk assessment
Directives and standards describe the risk assessment process. All manufacturers are obligated to perform a risk assessment. This is followed by a risk evaluation and appropriate risk reduction measures must be implemented as required.
Focusing on risk reduction Start This guide is primarily concerned with the area of risk reduction in Identifying/examining the system limits the form of technical safety Establish the limits of the machine • Limits of use • Space limits • Preliminary hazard analysis measures. We assume that all Source: • Time limits EN ISO 12100 (PHA) possible design measures for • “WHAT IF” method reducing risk have already been • Failure mode and effects Determine the Determine/define analysis, failure effects explored. hazard situation states & transitional states analysis (FMEA) • Failure simulation for Source: control systems Risk analysis EN ISO 12100 • MOSAR procedure • Fault tree analysis (FTA) Source: EN ISO 12100 • Human intervention • Operating statuses Risk evaluation • Unintentional behaviour or Source: EN ISO 12100 foreseeable misuse Source: EN ISO 12100
Risk assessment Risk assessment No
Source: EN ISO 14121 ISO EN Source: of design safety measures– Is the machine safe?
Yes
Risk assessment Risk assessment of technical safety No Source: EN ISO 12100 measures– Is the machine safe?
Yes
Instructive No measures exhausted
Yes
End
Source: Directive 2006/42/EC Appendix I, 1) 10 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 11
When assessing risk and identifying the necessary performance level, the degree Design measures e.g. inherent safety of risk reduction is established. is Source: EN 12100 Whether or not the required risk reduction level has been achieved depends on the
Technical safety measures and following parameters: complimentary safety measures Selecting the safety function 1) Control architecture 2) Mean time to dangerous Defining the characteristics of the safety function failure (MTTFd) 3) Diagnostic coverage (DC) Determining the PLr 4) Common cause failures (CCF) Design and technical implementation of the safety function
Determining the PL
Risk reduction In all cases, the performance
Source: EN ISO 12100 level (PL) must be equivalent to Category MTTFd DC CCF at least the required PLr. For all safety functions safety all For
Yes PL PLr
No
Source: DIN EN ISO 13849-1, 4.2 Fig. 3
User information on the machine and in the user manual
Source: EN 12100
11 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 12
Evaluating technical safety measures – Determining the performance level
The figure shows the simplified Determining the MTTF = Mean Time To Dangerous Failure procedure for determining the d performance level (PL) of a 1 3 safety function. The PL is a a 10–5 ≤ PFHd < 10–4 function of categories B to 4, diagnostic coverage “none to b 3 x 10–6 ≤ PFHd < 10–5 high”, various MTTF areas and d 1 the Common Cause Failure. c 10–6 ≤ PFHd < 3 x 10–6 The PL can be assigned to a
specific SIL level. However, it is d 2 10–7 ≤ PFHd < 10–6 not possible to infer the PL from the SIL. Apart from the average e 3 10–8 ≤ PFH < 10–7 Determining the PL = Performance Level = Performance Determining the PL d
probability of one dangerous Determining the SIL Integrity Level = Safety failure per hour, other measures DC < 60% 60% ≤ DC 90% ≤ DC 60% ≤ DC 90% ≤ DC 99% ≤ DC 4 DC < 60% are needed to achieve a specific None None < 90% < 99% < 90% < 99% High PL. Low Medium Low Medium 2 Cat. B Cat. 1 Cat. 2 Cat. 3 Cat. 4
5 CCF not relevant CCF ≤ 65%
1 Risk graph: Which Performance Level Evaluation MTTFd is required? PL a to e Low 3 years ≤ MTTFd < 10 years
2 How is the control chain or safety function Medium 10 years ≤ MTTFd < 30 years structured? Category B to 4 High 30 years ≤ MTTFd < 100 years Source: DIN EN ISO 13849-1 Chapter 4.5.2 3 Quality of components in the control chain: Determining the MTTFd for the entire process chain, from the sensor to the actuator!
4 Degree of diagnostic coverage: which dangerous faults are detected?
5 Common cause failures (CCF): measures for DIN EN ISO 13849-1 avoiding CCF Chapter 4.5.4
12 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 13
Application of 13849-1 Step 1: determining the required performance levels
The graph for determining the required performance level is Low risk based on identifying the risk and P1 a F1 the resulting necessity for P2 reducing this to an acceptable S1 P1 b level. F2 Low risk results in PL = a (minimal P2 c measures for risk reduction). P1 High risk results in PL = e F1 P2 (comprehensive measures for S2 d risk reduction). P1 F2 P2 e
High risk Source: DIN EN ISO 13849-1 Appendix 1.2.3
Statements from other standards Technically speaking, PLr (required) is a “nominal value”, DIN EN ISO 13849-1 EN 62061
which is the minimum that should S Severity of injury Irreversible injury (4 points) (death, loss of eye or arm) be achieved by the real structure. S1 Slight (normally reversible injury) Irreversible injury (3 points) (broken limb, loss of finger) S2 Serious (normally irreversible injury, Reversible injury (2 points) Statements from EN 62061 are or death) (requires further medical attention from a doctor) also quoted here for a better Reversible injury (1 point) assessment of risks. The risk is Frequency (with a duration > 10 min) < 1 h (5 points) always evaluated in the same way, Frequency and/or duration of exposure to hazard > 1 h to < 1 day (5 points*) > 1 day < 2 weeks (4 points*) that is as the severity of possible > 2 weeks to < 1 year (3 points*) damage and the probability that F1 Seldom to less often and/or brief > 1 year (2 points*) damage will occur. F2 Frequent to continuous and/or long * If exposure lasts less than 10 min, this can be reduced one level
P Possibility of avoiding the hazard Impossible (5 points)
P1 Possible under specific conditions Seldom (3 points)
P2 Scarcely ever possible Probable (1 point)
13 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 14
Overview of control architectures
Fundamental safety principles must be fulfilled (DIN EN ISO 13849-1 Pt. 6.2.3/DIN EN ISO 13849-2 Tab. A 1/B.1/D.1)
Suitable design for external influences (DIN EN ISO 13849-1 Pt. 6.2.3)
1 channel SRP/CS: proven safety principles must be fulfilled (DIN EN ISO 13849-2 B.4; refer to DIN EN ISO 13849-2 Tab. A.2/B.2/D.2) 0 Fault safety (DIN EN ISO 1 channel 1 channel 2 channels 2 channels 13849-1 Pt. 6.2.3) SPR/CS components 100x test of the (DIN EN ISO (refer to DIN EN ISO (DIN EN ISO 13849-2 A.4/B.4/D.4) function before the 13849-1 Pt. 6.2.7) 13849-1 Pt. 6.2.7) request by the Every fault must be 0 fault safety machine controller Some, but not all detected before or (DIN EN ISO 13849-1 Pt. 6.2.4) (DIN EN ISO faults are detected during the next Category B Compliance with Components proven 13849-1 Pt. 6.2.5) before or during the request fundamental and in operation. next request proven safety Already used in 0 Fault safety > 1 fault safety principles similar applications between the test 1 Fault safety Compliance with (refer to DIN EN ISO phases Multiple undetected appropriate standards 13849-2 B.4) faults lead to the loss of SF Category 1 Category 2
Category B or 1 Category 3 Category 4 I im L im O
Category 2 Category 3 Category 4
m m I im L im O I1 im L1 O1 I1 im L1 O1 im im
m c c
m m TE im OTE I2 im L2 O2 I2 im L2 O2 im im
14 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 15
Category 2 application: Pick & Place
Pneumatic implementation of a category 2 solution In this example, the parts Feedback of the controller via the PLC relevant for the safety function Feedback of the safety door switch to S-PLC are also used for the normal PLC S-PLC controller of the system. This is used for testing. If this is not possible, it is easier to implement Category 3 for many Safety switch Diagnostics solutions in pneumatic safety controls, even if a Category 2 Safety would actually be sufficient, as switch the safety function for this is implemented via diversity and not using 100x testing.
Sporadic manipulation after more Testing should not trigger a hazard. than 100 cycles. Manipulation via The circuit must be tested at the safety door. least 100 times before the safety function is requested. This test of the pneumatic components must be performed without causing hazards.
15 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 16
Defining the diagnostic coverage (DC)
Sources of error
Products Unintentional loosening of the Change to the response times Change to the response Non-switching/ back switching not Auto-switching Leakage Change to the leakage use of period long a over of the housing/ Cracking piece/tubing connecting rate Change to the flow without assistance (adjustable) rate Change to the flow without assistance (fixed) Change to the behaviour without assistance proportional valves: For flow unintentional change to the value setting Automatic change to the device adjusting
This table shows a summary Directional control valves of sources of error related Shut-off/non-return/quick to pneumatics, taken from exhaust/shuttle valves DIN EN ISO 13849-2. Under certain conditions, it is possible Flow control valves to exclude faults. Pressure limiting valves The requirements for excluding a fault are described in detail in Pipelines DIN EN ISO 13849-2. Faults must be examined and evaluated in Tubing lines the context of each application
to establish whether the fault Connecting components has a dangerous effect on the safety function. Depending on Pressure intensifier and pressure medium converter the construction principle and
the design of components, Filters different results may arise for different applications; in other Lubricators words, a specific product may be suitable for one application but Silencers not for another. The design Energy storage device engineer for the installation is and reservoir responsible for checking this. Sensors
Logic elements (AND/OR)
Delay elements
Transformers (pressure switch, position switch and amplifier)
Cylinders
16 adjusting device Sicherheitstechnik_135242_en.qxp 02.05.201211:57UhrSeite17 Unintentional loosening of the operating elements in the adjusting device
Fault in the connecting component (ripped off/out, leakage)
Clogging (blockage)
Bending
Change to the recording and output characteristics
Failure of the end-position cushioning
Loosening of the piston/ piston rod connection
Pressure rise
Pressure failure
Electrical power failure DC 1 = errors) (Total dangerous dangerous errors) (Recognised Key DC DC avg average = component guaranteed forthis No error freedom 13849-2) ISO EN (see DIN Freedom from errors component Not relevant for this MTTF MTTF DC 11 11 1 d1 d1 . + ... + + + ... + + MTTF MTTF DC 2 d2 d2 MTTF MTTF DC N dN dN 17 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 18
Defining the mean time to dangerous failure (MTTFd)
The mean time to dangerous failure (MTTFd) is initially determined for each redundant Input Input signal Logic Control signal Output channel. Next, a total MTTFd value is determined for both channels. This value is given in years and is a qualitative statement of the safety function. Characteristic service life values from the technical data In line with the applicable standard, the technical safety B10 measure is assessed and given Application one of three classifications: low, data medium and high.
MTTFd MTTFd MTTFd
Evaluation MTTFd N ______1 ______1 Low 3 years ≤ MTTFd < 10 years = Medium 10 years ≤ MTTF < 30 years MTTFd i=1MTTFd,i d High 30 years ≤ MTTFd < 100 years Source: DIN EN ISO 13849-1 Chapter 4.5.2
18 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 19
B10 value
Definition It depends on the respective For which products do I require and directly contribute to the Time at which statistically 10% application whether the failure is a B10d value? execution of a safety function, of test specimens have failed a dangerous failure. If no For all products which are such as controllers, fieldbus (determined per DIN EN ISO information is possible/available subject to wear, are used in nodes which serve to detect 19973). on the number of dangerous safety-related parts of a dangerous situations, sensors > failures, ISO 13849 permits the controller and directly contribute (test channel Category 2). Per definition, 10% of the test assumption that every second to the execution of a safety specimens have failed at this failure is dangerous. Therefore, function, such as valves, Do I need an MTTFd value or time. A component can also fail it can be assumed that clamping cartridges, for B10d value for components before the B10 value is reached. B10d = 2*B10. example. which are used for monitoring The service life cannot be This does not apply to fittings, purposes in safety-related parts guaranteed. B10: Statistical probability tubes, angle brackets, fixtures, of controllers? > of failure etc. No, for SRP/CS Category 3 and 4. Dangerous failures: B10d: Statistical probability Yes, for SRP/CS Category 2 in the In relation to the safety of of failure due to For which products do I need an test channel. machines/the EC Machinery dangerous faults MTTFd value? Directive/ISO 13849-1, only For all products which are used in dangerous failures are relevant. safety-related parts of a controller
Defining the MTTFd The MTTFd value is application-dependent and describes the mean period to a dangerous failure of a system part.
Where:
Formula for determining the B10d [cycles] = Mean number of cycles, B10 up to 10% of the components fail dangerously MTTFd value for a mechanical MTTF = d d 0.1 • n B10d = 2xB10 element in a channel op
Mean number of annual hop [h/d]: Operating hours/day d • h • 3600s/h dop [d/anno]: Operating days/year actuations nop for the op op nop = t tcycle [s]: Cycle time mechanical element cycle
MTTFdC1 and MTTFdC2: Values for two different, Calculating the total MTTF d 2 1 redundant channels. MTTF = MTTF + MTTF – for two different channels d 3 dC1 dC2 If the MTTF of a channel is more 1 + 1 d than 100 years, 100 years is used MTTFdC1 MTTFdC2 for further calculation.
19 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 20
Safety engineering coefficients – Sistema library
Sistema software from the Institute for Occupational Health and Safety [Institut für Arbeitsschutz (IFA)] The SISTEMA software assistant (safety of controllers in machinery) provides support in evaluating the safety of controllers as part of DIN EN ISO 13849-1. The Windows tool maps the structure of the safety-related control parts (SRP/CS, Safety-Related Parts of a Control System) on the basis of the designated architectures and calculates reliability values at various levels of detail, including the Performance Level (PL) reached. The software is available as a free download from the following link: www.dguv.de/ifa/de/pra/softwa/sistema/index.jsp
Sistema database from Festo The Sistema software is only the tool for performing the safety engineering evaluations. This is based on databases with safety-related specifications for products and solutions. There are numerous libraries on the homepage of the IFA.
The library of Festo’s safety engineering coefficients are available to download on Festo’s homepage: www.festo.com/sicherheitstechnik www.festo.com/safety
20 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 21
Pneumatic diagnostic options
Plausibility check The PLC checks whether a signal change has taken place within a specific period t, and if the desired change in status has occurred.
A plausibility check reveals Proximity sensor (S1, S2) faults with different causes Displacement encoders • Solenoid coils, final control element or pushbutton generate a signal • Energy switching element, a valve in this case
Change of status Pressure • From 0 to 1 or Plausibility sensors • From 1 to 0 check t PLC Flow meter
Sensors E.g. piston position sensing, pressure sensor, proximity Switching position sensing sensor, displacement encoder or flow meter must register the Output signal change of switching status
Status
Signal (solenoid coil, final control element, pushbutton, etc.)
Sensor (piston position sensing, pressure sensor, proximity sensor, flow meter, roller lever)
Time t
21 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 22
How test pulses affect solenoid valves
Fail-safe output modules of How does a solenoid valve react Does this result in accidental break-away force for the safety control systems and to these test pulses? deactivation of a solenoid valve armature. In turn, this means electronic safety switchgear If a solenoid valve is connected in the event of an ON signal? that unfavourable vibration- connect test pulses to their to a failsafe output, the test This reaction in the armature shock conditions could result in outputs for diagnostic purposes. pulses often cause the LED on generally indicates a reduction an unplanned activation of the On the one hand, these test the solenoid valve to flicker at of the holding force for the pilot valve, and thus of the pulses help detect cross circuits the same speed as the pulses armature. In turn, this means power valve. or to check the function of the and a clicking can be heard in that unfavourable vibration- outputs relative to their the solenoid valve. That clearly shock conditions on the machine Does my controller still comply deactivation efficiency. shows that these test pulses could result in an unplanned with the EC Machinery Depending on the manufacturer, have an effect on the solenoid deactivation of the pilot valve Directive? these test pulses have varying valve. Many modern solenoid and thus of the power valve. As long as the basic safety and pulse widths of up to several valves consist of a magnetic health protection requirements milliseconds. For example, a system, which actuates a pilot Does this result in accidental from the EC Machinery Directive controller manufacturer valve via an armature, which in activation of the solenoid valve are complied with, it is in deactivates their outputs for a turn actuates the main part, in the event of an OFF signal? compliance with the EC period of several milliseconds in which then controls the Although these positive test Machinery Directive. If we the event of an ON signal. In the actuators. Even if the switching pulses of several milliseconds assume that in SRP/CS, the event of an OFF signal, the times for activation or cause the LED on the solenoid deactivation of the solenoid outputs are switched on for up deactivation, which are listed in valve to flicker at the same speed valves represents the safe status to 4 ms to check whether they the technical data, are far higher as the test pulses, it is extremely of the function, hazards still will can be deactivated safely if a than the duration of the test rare for it to cause the solenoid not result. safety function request is made. pulses, the armature reacts valve to switch. much earlier. In some solenoid In some solenoid valves, the Summary: valves, this occurs with blackout armature already reacts after All measurements at Festo were times of just 0.1 ms. just 0.4 ms. This means that the performed at worst case armature in the solenoid system, conditions. That means in the which controls the pilot valve of event of deactivation with the named solenoid valves, minimal pressure and minimal moves. This reaction in the output voltage. As the pressure magnetic system generally and output voltage values indicates a reduction of the approach the upper limits, the
22 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 23
sensitivity of the solenoid valves (SRP/CS). Check whether the • Use filter clamps, as close as Where can I find the maximum decreases. In the event of safety level of your SRP/CS possible to the solenoid valve, pulse length of a solenoid activation, the behaviour is is still reached despite the to filter out the test pulses. valve? reversed. In summary, operating deactivation of the test pulses During the design phase of our solenoid valves on failsafe of the failsafe outputs. The • The cable length or the cable a safety-related part of a outputs does not always comply MTTF of the entire control diameter used (like a controller, always contact the with the intended use of our chain must comply with the capacitor) has a damping manufacturer of the solenoid solenoid valves. The minimal required MTTF. This solution effect on the test pulse valve, and ask for the maximum movements caused by the test is simple, practical and, in reaction of the solenoid valve. pulse widths for test pulses. pulses could result in aging of particular, can be implemented A short cable has a negative the magnetic system. This, in without taking additional time. effect (the test pulse reaches turn, can adversely affect the the coil of the solenoid valve in service life of the solenoid valve. • Actuate the solenoid valve via an attenuated state), a long a non-pulsed output of a cable has a positive effect (the standard PLC. For example, test pulse is unattenuated What are the alternatives for connect a normally open when it reaches the coil of the safe operation of solenoid contact of a safety shutdown solenoid valve). valves? relay between the solenoid • In any case, you must ensure valve and the output, which that the system complies with guarantees the safety function the specifications in the when needed. technical data and operating instructions. • Disconnect the solenoid valve from the test pulses by • If possible, switch off the test actuating it via a relay contact, pulses. Incorporate the MTTF which is supplied by a non- values of the failsafe output pulsed supply voltage. The when calculating the failure relay is actuated from a safe probability of the safety- output (even here, the test related part of the controller pulses must be observed).
23 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 24
Application 13849-1 Step 5: Defining Common Cause Failures
Common Cause Failures CCF No. Measure against CCF Points S 1 Separation/ Segregation Physical separation between signal paths: 15 separation in wiring/piping, sufficient clearances and creepage distances on printed-circuit boards. 2 Diversity Different technologies/design or physical principles are used, 20 for example: first channel programmable electronic and second channel hardwired, kind of initiation, pressure and temperature, Measuring of distance and pressure, digital and analogue. Components of different manufacturers. 3 Design/application/experience 3.1 Protection against over-voltage, over-pressure, over-current, etc. 15 3.2 Components used are well-tried and attention has been paid 5 to the ambient conditions 4 Assessment/analysis Are the results of a failure mode and effect analysis taken into account 5 to avoid common-cause failuresin design. 5 Competence/training Have designers/maintainers been trained to understand the causes and consequences 5 of common-cause failures? 6 Environmental 6.1 Electromagnetic Compatibility (EMC) 25 Has the system been checked for electromagnetic immunity, e.g. as specified inrelevant standards against CCF? 6.2 Other influences 10 Have the requirements for immunity to all relevant environmental influences such as, temperature, shock, vibration, humidity (e.g. as specified in relevant standards) been considered? Total [max. possible 100] Measures to avoid CCF Total points S Requirements reached 65% or better Process failed; select additional measures less than 65%
Which common cause failures or none. If a measure is only can arise? The measures against partially fulfilled, the number of these failures should be points is zero. recorded in a grid. For each of the listed measures, either all the points are assigned
24 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 25
Combination or series connection of SRP/CS to achieve an overall performance level
Safety functions can be Sensors Logic Actuators implemented using multiple SRP/CS connected in series. The User design Using certified User design Using certified User design Using certified components components components performance of each SRP/CS is either determined by the user or, ideally, specified by the Architecture Architecture Architecture selection selection selection manufacturer of the component in the technical data for the MTTFd MTTFd MTTFd certified components. B10 value B10 value B10 value Application Application Application data nop data nop data nop The lowest performance level must be determined to establish Diagnostic Diagnostic Diagnostic coverage coverage coverage the overall performance level, 0 ... 99% 0 ... 99% 0 ... 99%
which in turn has to be CCF value CCF value CCF value determined based on the Common Cause Common Cause Common Cause Failure Failure Failure standard for the overall PL.
PL a, b, c, d or e PL a, b, c, d or e PL a, b, c, d or e PL a, b, c, d or e PL a, b, c, d or e PL a, b, c, d or e
Interim results, Interim results, Interim results, sensors logic actuators
Determined by the machine manufacturer PL Specified by the manufacturer
Simplified procedure for Lowest PL Number of the lowest PL Total system determining the PL for PLlow Nlow PL components with PL a ,3 Not permitted For series connection, the ≤3 a number of the lowest PL is b ,2a determined. This result can be ≤2 b used to determine the overall PL c ,2b using the table. ≤2 c d ,3c ≤3 d e ,3d ≤3 e 25 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 26
Safety component
What is a safety component? with the conformity assessment Examples of safety components Art. 2 c) 2006/42/EC procedures to market the safety • Light curtain • It guarantees a safety function components in the EEA. For the • EMERGENCY STOP relay • It is marketed separately user, it makes no difference • Safety door switch • Its failure and/or malfunction whether a safety function is • EMERGENCY STOP command of the component endangers implemented via a purchased device safety of persons and it can be safety component or an • Safety relay replaced by standard internally developed and components for the internally evaluated safety- Do vales with switching position functioning of the machine. related part of the controller to sensing come under the EN ISO 13849-1. definition “Valve with failure The EC Machinery Directive detection? And do they have to defines whether a component What is the difference between be marketed as safety is a safety component or not, a safety component and components? and this depends on how it is a safety-related part of • No – switching position marketed. The term safety a controller (SRP/CS)? sensing can be used to component generally does not • A safety component is implement failure detection, indicate the safety level or evaluated by the manufacturer but does not detect the failure reliability of a component. The of the safety component for without further circuitry or the EC Machinery Directive does not its safety function. evaluation via a PLC. prescribe the use of safety • A safety-related part of components. It only describes a controller (SRP/CS) is the conformity assessment developed by the procedure for components which manufacturer of a machine, correspond to the definition for and evaluated for its safety safety components. level and function as part Manufacturers of safety of the manufacturing components must comply of a machine.
26 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 27
Can be used to implement a two-hand control device
Front panel valve SV/O
Notes The front panel valve is not a complete safety solution. It can be used as part of a solution.
Special features Can be combined with various actuator attachments • Mushroom actuator PR • Mushroom pushbutton with detent, lockable PRS • Key actuator Q with key
All specified values are Cat. Can be used in maximum values, which PL higher category can be achieved via DC systems. CCF correct operation and Channels 2 interconnection of the Safety component No SRP/CS. to MD 2006/42/EC
Part no. Type 184135 SV/O-3-PK-3x2
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
27 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 28
Two-hand operation
Two-hand control block
Notes The two hand control block is not a complete safety solution. It can be used as part of a solution.
2 Cat. Can be used in All specified values are PL higher category maximum values, which DC systems. can be achieved via 3 Channels 1 correct operation and DIN EN 574 IIIA interconnection of the Safety component Yes SRP/CS. to MD 2006/42/EC
1 1
Part no. Type 3527 ZSB-1/8
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
28 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 29
Safety function Two-hand operation
Input Logic Output Pneumatic Electrical Mechanical
Double two-hand control block
Double-channel Always check that each channel in multi-channel solutions fulfils the safety function.
Diagnostics Error detection is performed via internal diagnostics.
Cat. 3 All specified values are PL d maximum values, which MTTF High can be achieved via (assumption) correct operation and DC (internal) Average interconnection of the CCF >65% SRP/CS. Channels 2 EN 574-1 IIIB Safety component No to MD 2006/42/EC
Part no. Type 3527 ZSB-1/8 184135 SV/O-3-PK-3x2 9270 VD-3-PK-3 6680 ZK-1/8-B
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
29 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 30
Safety function Two-hand control – Reversing or stopping, holding, blocking a movement Input Logic Output Pneumatic Electrical
Reversing the safety function
Logic Output
Notes The sensors permit reliable position sensing. It is then possible to switch between different safety functions.
Switches are mechanically connected, are protected against manipulation and securely mounted.
Sample application: In two-hand operation, the cylinder advances to an Sensor function uncritical position where Cat. 3 All specified values are the position of the hands no PL d maximum values, which longer needs to be blocked. DC Medium can be achieved via The two-hand switches can now CCF >65% correct operation of the be released. Channels 2 component. Safety component No to MD 2006/42/EC
Part no. Type 575815 SAMH-S-N8-S-MK Mounting kit (complete) 575816 SAMH-S-N8-L-MK Mounting kit (complete) 575817 SAMH-S-N8-S-SC Cover (spare part) 575818 SAMH-S-N8-L-SC Cover (spare part)
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
30 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:57 Uhr Seite 31
Safety function Movable guard, holding, stopping, blocking a movement Input Logic Output Pneumatic Electrical
Cylinder as a door drive
Logic Output
Notes The position of the guard door, which is pneumatically activated, can be reported reliably (SAMH-S) and directly via the drive. Additional sensing per EN 1088 is not necessary.
The guard door is opened by a cylinder.
If the door is open, the cylinder is not in the normal position. This is detected by the safe Sensor function position encoders; the system Cat. 3 All specified values are remains at rest. PL d maximum values, which DC Medium can be achieved via Switches are mechanically CCF >65% correct operation connected, are protected against Channels 2 of the component. manipulation and securely Safety component No mounted. to MD 2006/42/EC
Part no. Type 575815 SAMH-S-N8-S-MK Mounting kit (complete) 575816 SAMH-S-N8-L-MK Mounting kit (complete) 575817 SAMH-S-N8-S-SC Cover (spare part) 575818 SAMH-S-N8-L-SC Cover (spare part)
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
31 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 32
Safety function Reducing pressure and force, protection against unexpected start-up, two-hand control Input Logic Output Pneumatic Electrical
Reduce valve terminal pressure
Safety function Protection against unexpected start-up (two-channel), with simultaneous actuation of both solenoid coils.
The time between the two actuating signals should not exceed 200 ms. This meets DIN EN 574 IIIB.
Technical data
PVoltage Cat. 3 All specified values are 24 V DC PL e maximum values, DC Medium which can be achieved LPressure (integrated via correct operation 3 ... 8 bar diagnostics) of the component. CCF >65% QTemperature range Channels 2 0 ... +40°C DIN EN 574 IIIB Safety component No MFlow rate ISO 1: to MD 2006/42/EC approx. 500 Nl/min
Part no. Type Flow rate 571887 ISO 1 500 l/min
Please observe the legal information on page 73.
32 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 33
Safety function Reducing pressure and force
Dual-pressure regulator
Notes The dual-pressure regulator is not a complete safety solution. It can be used as part of a solution.
Special features Diaphragm pressure regulator with secondary venting for setting two different initial pressures in one device. Switching from the lower to the higher value occurs electrically. Technical data
LRegulator pressure P2 Cat. Can be used in All specified values are 0.5 ... 7 bar PL higher category maximum values, DC systems. which can be achieved LSupply pressure P1 Channels 1 via correct operation and interconnection 1.5 ... 10 bar Safety component No 1 2 to MD 2006/42/EC of the SRP/CS. MFlow rate up to 1300 l/min
QTemperature range -10 ... +60°C Part no. Type 550588 LR-D-MINI-ZD-V24-SA 567841 LR-D-MINI-ZD-V24-UK-SA
Please observe the legal information on page 73.
33 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 34
SLS v Safety function 0 t Safely limited speed (SLS)
Input Logic Output Pneumatic Electrical
Safely limited speed
With external safety relay
SLS v 0 t
Cat. 1 or 2 All specified values are PL c maximum values, which DC Not relevant can be achieved via Power supply CCF Not relevant correct operation Safety component No of the component. to MD 2006/42/EC 1st deactivation path: interruption of output stage supply for IGBTs Part no. Type Safety relay 561406 CMMD-AS-C8-3A 550041 CMMP-AS-C2-3A 2nd deactivation path: disabling output stage 550042 CMMP-AS-C5-3A 551023 CMMP-AS-C5-11A-P3 551024 CMMP-AS-C10-11A-P3 Motor controller 1366842 CMMP-AS-C20-11A-P3 CMM_ 552741 CMMS-AS-C4-3A 547454 CMMS-ST-C8-7
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
34 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 35
Safety function Exhausting Protection against unexpected start-up Input Logic Output Pneumatic Electrical
Valve block, exhausting
Safety functions Safe exhausting (two-channel) when the coils are switched off.
The time between the two actuating signals should not exceed 200 ms. This meets DIN EN 574 IIIB.
Cat. 3 All specified values are PL e maximum values, which can be achieved via DC Medium Technical data (integrated correct operation of the component. diagnostics) P Voltage CCF >65% 24 V DC Channels 2 DIN EN 574 IIIB LPressure Safety component No 3 ... 8 bar to MD 2006/42/EC Q Temperature range Part no. Type 0 ... +40°C 573619 ISO 1 572788 ISO 2 M Flow rate ISO 1: approx. 500 Nl/min
M Flow rate for ISO 3: approx. 1200 Nl/min
Please observe the legal information on page 73.
35 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 36
Safety function Exhausting Protection against unexpected start-up Input Logic Output Pneumatic Electrical
Safe pressure build-up MS–6-SV-E
Special features Electrical interface Sub-D 9-pin
Possible special plug NECA- MP3-SA The NECA-MP3-SA permits actuation of the MS6-SV with signals, whereby the enable signals EN1 and EN2 are Cat. 4 All specified values are galvanically isolated from the PL e maximum values, which supply of the MS6-SV. Galvanic DC integrated can be achieved via Technical data isolation is guaranteed via 2 Internal sensing correct operation optocouplers. of the piston- of the component. Voltage position P 24 V DV Channels 2 Certificate IFA Operating pressure Safety component Yes L 3.5 ... 10 bar to MD 2006/42/EC 2 12 Q Temperature range Part no. Type -10 ... +50°C 1 3 548713 MS6-SV 562580 MS6-SV-1/2-E-10V24-AD1 M Flow rate (exhausting) 548715 MS6-SV-1/2-E-10V24-AG Up to 9000 l/min 548717 MS6-SV-1/2-E-10V24-SO-AG 552252 UOS-1 573695 Multi-pin plug NECA-S1G9-P9-MP3-SA 548719 Multi-pin plug NECA-S1G9-P9-MP1 552703 Multi-pin plug NECA-S1G9-P9-MP3
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
36 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 37
Safety function Switching off power, exhausting
Input Logic Output Pneumatic Electrical
Safety function for servopneumatics
Switching off power
Features • Protection against unexpected start-up (2-channel) • Safety measure: pressure release (1-channel) • Safety measure: stop (1-channel) • Stop category: “0” (EN 60204-1) Cat. 3 All specified values are • Pressure supply not PL d maximum values, which deactivated DC Medium can be achieved via CCF >65% correct operation Notes Channels 2 of the component. • This set-up is only Safety component No recommended for horizontal to MD 2006/42/EC axes. • The axis can still move after an emergency stop. The Part no. Designation Description overtravel depends on the 550 171 VPWP-6-L-5-… Proportional valve, component of the servopneumatic system current speed and the moving as a first channel mass. 534 546 VSVA-B-M52-MZH-A1-1R5L 5/2 single solenoid switching valve, with spring return and • On reactivation, the drive 161 109 NAS-1/4-01-VDMA external auxiliary pilot air as a 2nd channel. The size (flow can move, depending on the rate) is based on the proportional valve. activation conditions. 535 413 DNCI-50-500-P-A Standard cylinder with displacement encoder • Use of a braking/clamping 542 897 SDE5-D10-FP-Q6E-P-M8 Pressure switch for diagnostics of the emergency stop valves unit, together with the (VSVA) servopneumatic controller, 9 517 GRU-1/4-B Flow control/silencer for defined exhausting of the cylinder can prevent a movement 153 464 H-QS-8 Non-return valve on restart.
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
37 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 38
Safety function Exhausting Protection against unexpected start-up Input Logic Output Pneumatic Electrical
VOFA-3/2 Safety valves for presses
Diagnostics Diagnostics via evaluation of the actuation and feedback signal must be carried out via software
Fault exclusion Fault exclusion for valves that are jammed or haven’t switched.
Cat. 4 All specified values are PL e maximum values, DC Switching position which can be achieved sensing with via correct operation inductive PNP/NPN of the component. proximity sensor CCF >65% Channels 2 Certificate IFA (applied for) Safety component Yes to MD 2006/42/EC
Part no. Type Version 574011 VOFA-L26-T32C-M-G14-1C1-APP Complete 2 x 3/2 control block, individual electrical connection, PNP sensor 574012 VOFA-L26-T32C-M-G14-1C1-ANP Complete 2 x 3/2 control block, individual electrical connection, NPN sensor
See the technical data of the individual products for detailed information. Please observe the legal information on page 73. (applied for)
38 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 39
Safety function Exhausting Protection against unexpected start-up Input Logic Output Pneumatic Electrical
Exhausting via non-return valves
Double-channel Always check that each channel in multi-channel solutions fulfils the safety function.
Diagnostics Diagnostics for both channels must be carried out via software.
Special features The non-return valves also need a differential pressure in order to exhaust. In the event of a fault, Cat. 3 All specified values are a residual pressure of approx. PL d maximum values, which 0.5 bar cannot exhaust. DC Medium can be achieved via CCF >65% correct operation Safety function Channels 2 of the component. With this set-up, both cylinder Safety component No chambers are exhausted via to MD 2006/42/EC 2 channels.
Part no. Type 534556 VSVA-B-M52-MH-A1-1R5L 5/2-way valve 153464 H-QS-8 530031 HGL-1/4-B Non-return valve 163371 DNC-50-50-PPV-A Cylinder Pressure switches Application-specific proximity sensors
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
39 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 40
Safety function Exhausting Protection against unexpected start-up Input Logic Output Pneumatic Electrical
Soft-start and exhaust valve VTSA
Double-channel Always check that each channel in multi-channel solutions fulfils the safety function.
Safety function In conjunction with safe electrical disconnection and a pressure switch for diagnosing the exhausted status, “Exhausting in PL d Cat 3” can be achieved for connection 4.
The pneumatic diagram shown is only a basic example. The soft- start valve function and further valve functions can be configured in the valve terminal VTSA. The pressure switch must be screwed on separately. The calculations of the PL must be Safety exhausting adjusted for this. The soft-start function refers valve alone is not a complete to connection safety solution. 4 of the VSVA valve! All specified values are Protection against accidental Cat. 3 maximum values, which activation of the manual override PL d can be achieved via must be guaranteed in all DC Switching position System correct operation modes. sensing protection of the component. CCF >65% for a restart Diagnostics Channels 2 Diagnostics for both channels Safety component No must be carried out via software. Per MD 2006/42/EC
Part no. Type 557377 VABF-S6-1-P5A4-G12-4-1-P 560726 VSVA-B-M52-MH-A1-1C1-APP
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
40 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 41
Safety function Exhausting
On-off valve with piston position sensing
Notes The on-off valve with piston position sensing is not a complete safety solution. It can be used as part of a solution.
Special features With solenoid coil, without socket, 3 voltage ranges can be selected, position sensing
Standard sensors with reed contacts can be used for a T-slot: Type SME-8M, SMT-8M, SME-8, SMT-8
Switching output contactless All specified values are Cat. Can be used in or via reed contacts PL higher category maximum values, which Technical data systems. can be achieved via DC Switching position suitable integration of P Voltage sensing the component into the 24 V DC Safety component No entire system. 2 to MD 2006/42/EC LOperating pressure 12 2.5 ... 16 bar 13
Part no. Type Q Temperature range 533537 HEE-D-MIDI-...-SA207225 -10 ... +60°C 548535 HEE-D-MAXI-...-SA217173
Please observe the legal information on page 73.
41 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 42
SS1 STO Safety function v s Safe stop 1 0 t SS1 Input Logic Output Pneumatic Electrical
Safe stop 1
Notes With an external safety relay, 2-channel safety requirement and monitoring of a deactivation path.
SS1 STO v s 0 t Power supply Cat. 3 All specified values are Medium () e maximum values, which can DC Medium be achieved via suitable CCF >65% integration of the 1st deactivation path: Safety component No component into the entire interruption to MD 2006/42/EC system. of output stage supply Safety relay for IGBTs
2nd deactivation path: disabling output stage
Part no. Type Motor controller 561406 CMMD-AS-C8-3A CMM_ 550041 CMMP-AS-C2-3A 550042 CMMP-AS-C5-3A 551023 CMMP-AS-C5-11A-P3 551024 CMMP-AS-C10-11A-P3 1366842 CMMP-AS-C20-11A-P3 552741 CMMS-AS-C4-3A 547454 CMMS-ST-C8-7
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
42 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 43
Safety function Reversing Protection against unexpected start-up Input Logic Output Pneumatic Electrical
Valve block, reversing
Safety functions The time between the two actuating signals should not exceed 200 ms. This meets DIN EN 574 IIIB.
Cat. 3 All specified values are Technical data PL e maximum values, which DC Medium can be achieved via P Voltage Error diagnostics Integrated correct operation 24 V DV Channels 2 of the component. EN 574-1 IIIB LOperating pressure Safety component No 3 ... 8 bar to MD 2006/42/EC Q Temperature range 0 ... +40°C
Part no. Type M Flow rate ISO 1 570336 ISO 1 500 Nl/min 572244 ISO 2 M Flow rate for ISO 2 1100 Nl/min
Please observe the legal information on page 73.
43 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 44
Safety function Reversing at reduced speed
Input Logic Output Pneumatic Electrical
Safety function for servopneumatics
Pneumatic reversing
Features • Protection against unexpected start-up (2-channel) • Safety measure: reversing (1-channel) • Safety measure: travel at reduced speed (1-channel) • Pressure supply not deactivated Cat. 3 All specified values are PL d maximum values, which Notes DC Medium can be achieved via • Can also be used for vertical CCF >65% correct operation axes Channels 2 of the component. • If an emergency stop is Safety component No activated, the drive is to MD 2006/42/EC pressurised. • On reactivation, the drive can move, depending on the Part no. Designation Description activation conditions. • Use of a braking/clamping 550 171 VPWP-6-L-5-… Proportional valve, component of the servopneumatic unit, together with the system as a first channel 534 546 VSVA-B-M52-MZH-A1-1R5L 5/2 single solenoid switching valve, with spring return and servopneumatic controller, 161 109 NAS-1/4-01-VDMA auxiliary pilot air as a 2nd channel. The size (flow rate) is can prevent a movement on based on the proportional valve. restart. 535 413 DNCI-50-500-P-A Standard cylinder 542 897 SDE5-D10-FP-Q6E-P-M8 Pressure switch for diagnostics of the emergency stop valves (VSVA) 193 973 GR0-QS-6 Flow control valve for regulating the repositioner speed 11 689 H-QS-8 Non-return valve
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
44 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 45
Safety function Reversing Protection against unexpected start-up Input Logic Output Pneumatic Electrical
VOFA – 5/2 Safety valves for presses
Diagnostics Diagnostics via evaluation of the actuation and feedback signal must be carried out via software
Fault exclusion Cat. 4 All specified values are Fault exclusion for valves that PL e maximum values, are jammed or haven’t switched. DC Switching position which can be achieved sensing with via suitable integration inductive PNP/NPN of the component into proximity sensor the entire system. CCF >65% Channels 2 Certificate IFA Safety component Yes to MD 2006/42/EC
Part no. Type Version 569819 VOFA-L26-T52-M-G14-1C1-APP Complete 2 x 5/2 control block, individual electrical connection, PNP sensor 569820 VOFA-L26-T52-M-G14-1C1-ANP Complete 2 x 5/2 control block, individual electrical connection, NPN sensor Property “SP” in order code Complete 2 x 5/2 control block, integration in valve terminal VTSA, PNP sensor Property “SN” in order code Complete 2 x 5/2 control block, integration in valve terminal VTSA, NPN sensor
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
45 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 46
STO v Safety function 0 t Safe torque off (STO)
Input Logic Output Pneumatic Electrical
Safe torque off (STO)
Notes With an external safety relay, 2-channel safety requirement and monitoring of a deactivation path.
STO v 0 t
Cat. 3 All specified values are Power PL e maximum values, which supply DC Medium can be achieved via CCF >65% suitable integration of the component into 1st deactivation path: Safety component No interruption to MD 2006/42/EC the entire system. of output stage Safety relay supply for IGBTs
2nd deactivation path: disabling output stage Part no. Type 561406 CMMD-AS-C8-3A Motor controller 550041 CMMP-AS-C2-3A CMM_ 550042 CMMP-AS-C5-3A 551023 CMMP-AS-C5-11A-P3 551024 CMMP-AS-C10-11A-P3 1366842 CMMP-AS-C20-11A-P3 552741 CMMS-AS-C4-3A 547454 CMMS-ST-C8-7
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
46 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 47
Safety function Stopping, holding, blocking a movement with power, protection against unexpected start-up Input Logic Output Pneumatic Electrical
Stopping with shut-off valves
Notes Always check that each channel When the safe status is set, in multi-channel solutions fulfils there are no additional air the safety function sufficiently. inflows or outflows.
The diagnostic evaluation must After the cylinder stops, it can be performed by the software. move depending on the leakage of the individual components. The cylinder is stopped via This can result in exhausting the compressed air. Therefore, the cylinder chambers. Please also system contains energy stored note this for the restart. Cat. 3 All specified values are as compressed air. Additional PL d maximum values, which measures must be taken to be DC Medium can be achieved via able to exhaust the cylinder CCF >65% correct operation chambers if necessary. Channels 2 of the component. Safety component No If trapped compressed air can to MD 2006/42/EC result in a danger, further measures are required.
Part no. Type 534559 VSVA-B-P53C-H-A1-1R5L 5/3-way valve 534556 VSVA-B-M52-MH-A1-1R5L 5/2-way valve 25025 VL-2-1/4-SA Stop valve 151172 GRLA-1/4-B Flow control valve 163371 DNC-50-50-PPV-A Cylinder Pressure switches Application-specific proximity sensors
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
47 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 48
Safety function Stopping, holding, blocking a movement with power, protection against unexpected start-up Input Logic Output Pneumatic Electrical
Stopping with non-return valves
Notes complied with during braking Always check that each channel via dynamic energy (e.g. via in multi-channel solutions fulfils resulting pressure peaks). the safety function. In the event of a fault of the The diagnostic evaluation must 5/3-WV, compressed air can flow be performed by the software. through the non-return valve HGL until the forces are The cylinder is stopped via balanced. That can lead to an compressed air. Therefore, the increased overtravel time of the system contains energy stored cylinder. Cat. 3 All specified values are as compressed air. Additional PL d maximum values, which measures must be taken to be After the cylinder stops, it can DC Medium can be achieved via able to exhaust the cylinder move depending on the leakage CCF >65% correct operation chambers. of the individual components. Channels 2 of the component. This can result in exhausting the Safety component No If trapped compressed air can cylinder chambers. Please also to MD 2006/42/EC result in a danger, further note this for the restart. measures are required.
Part no. Type 534559 VSVA-B-P53C-H-A1-1R5L 5/3-way valve Please note that the technical 534556 VSVA-B-M52-MH-A1-1R5L 5/2-way valve values of the components are 530031 HGL-1/4-B Non-return valve 151172 GRLA-1/4-B Flow control valve 163371 DNC-50-50-PPV-A Cylinder Pressure switches Application-specific proximity sensors
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
48 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:58 Uhr Seite 49
Safety function Stopping, holding, blocking a movement (mechanical)
ISO valve for lifting and rotary cylinders
Technical data Description • For lifting and rotary cylinders P Voltage in the automotive industry 24 V DC Application LPressure • Self-locking loop and 3 ... 10 bar subsequent pressure supply in both end positions Q Temperature range • During the stroke, the cylinder -5 ... +50°C must be kept under pressure in the event of an emergency M Flow rate (e.g. if a safety shut-off mat is 1000 l/min stepped on) Cat. 2 All specified values are PL d maximum values, which DC Low can be achieved via CCF >65% correct operation Channels 1 of the component. Safety component No to MD 2006/42/EC
Order code Function Part no. Type 560728 VSVA-B-P53AD-ZD-A1-1T1L Size 01, 5/3 mid-position, 1 port pressurised and 1 port exhausted, switching position 14 detented
Function Normal operation In the case of emergency off Control (electrical power is switched off) Retract clamping The 5/2-WV is used to retract the The clamping device remains under 5/3-WV 12 switched device clamping device pressure in both chambers. (no automatic locking) 5/3-WV normal position (14) 5/2-WV 12 connected 5/2-WV 12 connected Advance clamping The clamping device is advanced via The clamping device remains under 5/3-WV 12 switched device the 5/2 WV pressure in both chambers. (no automatic locking) 5/3-WV 14 normal position 5/2-WV 14 switched 5/2-WV 14 switched Spanner in end The end positions remain pressurised The pressure is maintained in the end 5/3-WV is switched to 12 positions positions (automatic locking) 5/3-WV 12 automatic locking 5/2-WV switched to 14 or 12 5/2-WV 14 or 12 switched
49 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 50
Safety function Stopping a movement
Input Logic Output Pneumatic Electrical
Safety function for servopneumatics
Pneumatic stopping
Notes • This set-up can be used for horizontal and vertical axes. • When the emergency stop is Features activated, the compressed air • Protection against unexpected remains trapped in the drive; Cat. 3 All specified values are start-up (2-channel) the drive is not free of PL d maximum values, which • Safety measure: stopping compressed air. DC High can be achieved via a movement (2-channel) • It is characteristic of CCF >65% correct operation • Stop category: “1” pneumatic systems that the Channels 2 of the component. • The compressed air supply is trapped compressed air in the Safety component No switched off (2-channel) cylinder does not lead directly to MD 2006/42/EC to a standstill of the axis. The overtravel depends on the Element Part no. Designation Description current speed and the moving V1 550 171 VPWP-6-L-5-… Proportional valve, component of the mass. servopneumatic system as a first channel • On restart, the drive can move, V2, V3 534 546 VSVA-B-M52-MZH-A1-1R5L 5/2 single solenoid switching valve with spring depending on the start 161 109 NAS-1/4-01-VDMA return and auxiliary pilot air and switching conditions. If the valves VSVA position sensing as a second channel. are switched on with a delay The size (flow rate) is based on the depending on SDE5, this proportional valve. movement can be minimised. V5 548 713 MS6-SV-1/2-E-10V24-SO Soft-start/quick exhaust valve with 2-channel • Use of a braking/clamping self monitoring and performance level e. unit, together with the A3 544 428 DGCI-40-750-P-A Rodless linear drive with displacement encoder servopneumatic controller, S1 542 897 SDE5-D10-FP-Q6E-P-M8 Pressure switch for monitoring the restarting can prevent a movement pressure on restart. 11 689 H-QS-8 Non-return valves
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
50 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 51
Safety function Stopping, holding, blocking a movement
Input Logic Output Pneumatic Electrical
Mechanical and pneumatic stopping
Notes Always check that each channel in multi-channel solutions fulfils the safety function.
The diagnostic evaluation must be performed by the software.
After the cylinder stops, it can Cat. 3 All specified values are vent depending on the leakage PL d maximum values, which of the individual components. DC Medium can be achieved via Please also note this for the CCF >65% correct operation restart. Channels 2 of the component. Safety component No to MD 2006/42/EC
Part no. Type 534559 VSVA-B-P53C-H-A1-1R5L 534556 VSVA-B-M52-MH-A1-1R5L Pressure switches 151172 GRLA-1/4-B 526483 DNCKE-63-100-PPV-A
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
51 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 52
Safety function Stopping, holding, blocking a movement
Input Logic Output Pneumatic Electrical
Safety function for servopneumatics
Mechanical and pneumatic stopping
Features
• Protection against unexpected start-up (2-channel) • Safety measure: stopping (2-channel) • Safety measure: blocking (1-channel) • Stop category: “1” Cat. 3 All specified values are • Pressure supply not deactivated PL e maximum values, which DC Medium can be achieved via Notes CCF >65% correct operation • Recommended for vertical axes Channels 3 of the component. • When the emergency stop is Safety component No activated, the compressed air to MD 2006/42/EC remains trapped in the drive; the drive is not free of compressed air. Part no. Designation Description • The braking unit, together with 550 171 VPWP-6-L-5-… Proportional valve, component of the servopneumatic the servopneumatic controller, system as a first channel can prevent a movement on 534 546 VSVA-B-M52-MZH-A1-1R5L 5/2 single solenoid switching valve, with spring return and restart. 161 109 NAS-1/4-01-VDMA auxiliary pilot air as a 2nd channel. The size (flow rate) is • If only one clamping unit/cartridge based on the proportional valve. is used, the axis must be at a standstill before it is clamped. 173 124 MEH-3/2-1/8-B 3/2 single solenoid switching valve with spring return This standstill can be generated via a STOP signal with the 526 483 DNCKE-63-250-PPV-A Standard cylinder with clamping unit, displacement encoder servopneumatic controller. attached externally The emergency stop valves VSVA 542 897 SDE5-D10-FP-Q6E-P-M8 Pressure switch for monitoring the emergency stop valves are then deactivated with a time VSVA and the clamping function delay. 11 689 H-QS-8 Non-return valves
52 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 53
Safety function Stopping, holding, blocking a movement (mechanically)
Clamping units
Notes Cat. Can be used in All specified values are The clamping cartridge is not a The piston rod can also be held PL higher category maximum values, complete safety solution. It can for extended periods, alternating DC systems. which can be achieved be used as part of a solution. loads, fluctuations or leakage. CCF via correct operation Channels 1 of the component. The piston rod can be held or Safety component No clamped in any position. to MD 2006/42/EC
Part no. Type Part no. Type Part no. Type Part no. Type 178455 KP-10-350 178460 KP-25-5000 178465 KPE-10 178470 KPE-32 178456 KP-12-600 178461 KP-32-7500 178466 KPE-12 178462 KPE-4 178457 KP-16-1000 178452 KP-4-80 178467 KPE-16 178463 KPE-6 178458 KP-20-1400 178453 KP-6-180 178468 KPE-20 178464 KPE-8 178459 KP-20-2000 178454 KP-8-350 178469 KPE-25
Part no. DNC-KP Emergency stop stroke Part no. ADN-...-...-KP Stroke DNC-KP 163302 Ø 32 10 ... 2000 548206 Ø 20 10-300 KP-10-350 163334 Ø 40 10 ... 2000 548207 Ø 25 10-300 KP-10-350 163366 Ø 50 10 ... 2000 548208 Ø 32 10-400 KP-12-1000 163398 Ø 63 10 ... 2000 548209 Ø 40 10-400 KP-16-1400 163430 Ø 80 10 ... 2000 548210 Ø 50 10-400 KP-20-1400 163462 Ø 100 10 ... 2000 548211 Ø 63 10-400 KP-20-2000 163494 Ø 125 10 ... 2000 548212 Ø 80 10-500 KP-25-5000 548213 Ø 100 10-500 KP-25-5000
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
53 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 54
Safety function Holding, blocking a movement (mechanical)
Mini-slide DGSL with clamping unit or end-position locking
Notes The clamping unit and the end-position locking are not complete safety solutions. They can be used as part of a solution. Cat. Can be used in All specified values PL higher category are maximum values, Clamping unit DC systems. which can be achieved • For fixing the slide in any CCF via correct operation position Channels 1 of the component. • Frictional locking Safety component No • Clamping via spring force, to MD 2006/42/EC release via compressed air
end-position locking • Mechanical locking when the end position is reached • Positive-locking • Locking via spring force, release compressed air
Part no. Type 543903 DGSL-6 543904 DGSL-8 Clamping unit E3 end-position locking 543905 DGSL-10 543906 DGSL-12 543907 DGSL-16 543908 DGSL-20 543909 DGSL-25
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
54 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 55
Safety function Blocking a movement (mechanical)
Cylinder with end-position locking
Notes The mechanical lock is not a complete safety solution. It can be used as part of a solution. Cat. Can be used in All specified values PL higher category are maximum values, Mechanical locking when the DC systems. which can be achieved end position is reached. CCF via correct operation The requirement for releasing is Channels 1 of the component. back pressure on the other side Safety component No of the piston. to MD 2006/42/EC Positive-locking Part no. Type 163302 DNC-32-EL Locking is automatically released 163334 DNC-40-EL when pressure is applied to the 163366 DNC-50-EL cylinder 163398 DNC-63-EL 163430 DNC-80-EL End-position locking at one 163462 DNC-100-EL or both ends
Part no. Type 548214 ADN-20-EL 548215 ADN-25-EL 548216 ADN-32-EL 548217 ADN-40-EL 548218 ADN-50-EL 548219 ADN-63-EL 548220 ADN-80-EL 548221 ADN-100-EL
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
55 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 56
Safety function Stopping, holding, blocking a movement (mechanical)
Brake unit DNCKE-S, KEC-S
Notes The clamping unit and the end-position locking are not complete safety solutions. They can be used as part of a solution.
As a holding device All specified values are Cat. Can be used in • Holding and clamping in the maximum values, PL higher category event of a power failure which can be achieved DC systems. • Protection against pressure via correct operation CCF failure and pressure drop Channels 1 of the component. Safety component Yes, if IFA certified As a braking device to MD 2006/42/EC • Braking or stopping movements Part no. Type • Interruption of a movement 526482 DNCKE-40- -PPV-A if a danger area is entered 526483 DNCKE-63- -PPV-A 526484 DNCKE-100- -PPV-A 538239 DNCKE-40- -PPV-A-S IFA-certified 538240 DNCKE-63- -PPV-A-S IFA-certified 538241 DNCKE-100- -PPV-A-S IFA-certified 527492 KEC-16 527493 KEC-20 527494 KEC-25 538242 KEC-16-S IFA-certified 538243 KEC-20-S IFA-certified 538244 KEC-25-S IFA-certified
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
56 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 57
Safety function Stopping, holding, blocking a movement
Stop valve VL-2-1/4-SA
Notes The stop valve is not a complete safety solution. It can be used as part of a solution.
Cat. Can be used in All specified values PL higher category are maximum values, Technical data DC systems. which can be achieved CCF via correct operation LOperating pressure Channels 1 of the component. 0 ... 10 bar Safety component No to MD 2006/42/EC Q Temperature range -20 ... 80°C
Part no. Type 25025 VL-2-1/4-SA
Please observe the legal information on page 73.
57 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 58
Safety function Protection against unexpected start-up
Input Logic Output Pneumatic Electrical
VTSA – pilot air switching valve
Cat. 3 All specified values are PL e maximum values, which DC Switching can be achieved via position sensing correct operation CCF > 65% of the component. Channels 2 Safety component No to MD 2006/42/EC Part no. Type Notes 573201 VSVA-B-M52-MZD-A2-1T1L-APX-0.5 5/2-way valve, width 18 mm, single solenoid, Always check that each channel mechanical spring return, with switching position in multi-channel solutions fulfils sensing via inductive sensor with PNP output and the safety function. 0.5 m cable with 4-pin sensor push-in connector M12x1 The diagnostic evaluation must 570850 VSVA-B-M52-MZD-A1-1T1L-APX-0.5 5/2-way valve, width 26 mm, single solenoid, be performed by the software. mechanical spring return, with switching position sensing via inductive sensor with PNP output and The pneumatic diagram shown is 0.5 m cable with 4-pin sensor push-in connector only a basic example. The M12x1 “connectable pilot air” function 573200 VABF-S4-2-S Vertical stacking manifold, width 18 mm, for con - and further valve functions can necting the pilot air from channel 1 to channel 14 be configured in the valve 570851 VABF-S4-1-S Vertical stacking manifold, width 26 mm, for con - terminal VTSA. The calculations necting the pilot air from channel 1 to channel 14 of the PL must then be adjusted. 8000033 SPBA-P2R-G18-W-M12-0.25X Mechanical pressure switch with a fixed switching point 0.25 bar The pilot air switching valve Sensing the pilot air in channel 14 alone is not a complete safety G1/8 threads, for screwing in VABF-S4-2-S or solution. It can be used as part VABF-S4-1-S of a solution. Sensor plug connector M12x1 8000210 SPBA-P2R-G18-2P-M12-0.25X Electronic pressure switch with a fixed switching Electrically reliable 2-channel point 0.25 bar deactivation must be Sensing the pilot air in channel 14 guaranteed. G1/8 threads, for screwing in VABF-S4-2-S or VABF-S4-1-S Sensor plug connector M12x1
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
58 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 59
Safety function Protection against unexpected start-up
Valves with switching position sensing
Description Notes • Solenoid valves to ISO 15407-1, The switching position sensing plug type C, for individual allows higher diagnostic electrical connection coverage to be achieved for • Solenoid valve to ISO 15407-2, the valves. for use with valve terminal VTSA • Valve function: 5/2-way valve • ISO size 1, other sizes on Cat. All specified values request PL are maximum values, • Width: 26 mm DC Switching position which can be achieved • Normal position of the sensing with via correct operation piston spool is monitored inductive PNP/NPN of the component. by a proximity sensor proximity sensor • For control architectures CCF in higher categories Channels 1 • Proximity sensor with M8 Safety component No connection to MD 2006/42/EC
Part no. Type 560723 VSVA-B-M52-MZD-A1-1T1L-APC Size 01, 5/2 single solenoid, return via mech. spring, plug-in valve, with PNP sensor and cable 560724 VSVA-B-M52-MZD-A1-1T1L-APP Size 01, 5/2 single solenoid, return via mech. spring, plug-in valve, with PNP sensor and plug M8 560725 VSVA-B-M52-MZH-A1-1C1L-APC Size 01, 5/2 single solenoid, return via mech. spring, Cnomo valve, with PNP sensor and cable 560726 VSVA-B-M52-MZH-A1-1C1L-APP Size 01, 5/2 single solenoid, return via mech. spring, Cnomo valve, with PNP sensor and plug M8 560742 VSVA-B-M52-MZD-A1-1T1L-APC Size 01, 5/2 single solenoid, return via mech. spring, plug-in valve, with NPN sensor and cable 560743 VSVA-B-M52-MZD-A1-1T1L-ANP Size 01, 5/2 single solenoid, return via mech. spring, plug-in valve, with NPN sensor and plug M8 560744 VSVA-B-M52-MZH-A1-1C1L-APC Size 01, 5/2 single solenoid, return via mech. spring, Cnomo valve, with NPN sensor and cable 560745 VSVA-B-M52-MZH-A1-1C1L-ANP Size 01, 5/2 single solenoid, return via mech. spring, Cnomo valve, with NPN sensor and cable
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
59 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 60
Safety function Tamper-proof
Tamper-proof flow control valve GRLA-…-SA
Notes The flow control valve is not a complete safety solution. It can be used as part of a solution.
• Selection of a specified flow rate • A spring pin protects against the unauthorised resetting of Cat. Can be used in All specified values the volumetric flow rate. PL higher category are maximum values, DC systems. which can be achieved CCF via correct operation Channels 1 of the component. 2 Safety component No to MD 2006/42/EC
Part no. Type 1 539717 GRLA-M5-B-SA 539661 GRLA-1/8-B-SA 539662 GRLA-1/4-B-SA 539715 GRLA-3/8-B-SA 539716 GRLA-1/2-B-SA 539714 GRLA-3/4-B-SA
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
60 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 61
Safety function Tamper-proof Protection against unauthorised pressurisation
Shut-off valve (European version)
Notes The shut-off valve is not a complete safety solution. It can be used as part of a solution.
• Switching off and venting pneumatic systems • Can be shut off up to 6 times Cat. Can be used in All specified values • Free of PWIS PL higher category are maximum values, DC systems. which can be achieved The shut-off valve may not be CCF via correct operation used as an emergency stop valve Channels 1 of the component. Safety component No to MD 2006/42/EC
Part no. Type Part no. Type 187026 HE-3/8-D-MIDI-NOT-SA 197136 HE-G1-LO 187027 HE-1/2-D-MIDI-NOT-SA 197135 HE-G3/4-LO 187028 HE-3/4-D-MIDI-NOT-SA 197134 HE-G1/2-LO 186688 HE-3/4-D-MAXI-SA 197133 HE-G3/8-LO 186689 HE-1-D-MAXI-SA 197132 HE-N1-LO-NPT 197131 HE-N3/4-LO-NPT 197130 HE-N1/2-LO-NPT 197129 HE-N3/8-LO-NPT
See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
61 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 62
Safety function (3 phases) Switching off power, self-locking, pneumatic operation
ISO valve for pneumatic manual clamping devices
Technical data Description Pneumatic manual clamping P Voltage device for use in car body 24 V DC construction (inserting stations)
LPressure 3 ... 10 bar
Q Temperature range -5 ... +50°C
M Flow rate 1000 l/min
Cat. 2 All specified values are PL d maximum values, which DC Low can be achieved via CCF >65% correct operation Channels 1 of the component. Safety component No to MD 2006/42/EC Function
Part no. Type 560727 VSVA-B-P53ED-ZD-A1-1T1L Size 01, 5/3 mid-position exhausted, switching position 14 detenting
Function Normal operation In the case of emergency off Control (electrical power is switched off) Clamping device The 5/2-WV is used to retract Unpressurised Valve is in the mid-position is closed manually the clamping device Clamping device is in The clamping device is advanced Supporting force via air pressure Coil 12 is switched the end position via the 5/2 WV (self-locking); valve remains in (metal sheet position 12 is clamped) Clamping device Pneumatically operated Valve returns to the mid-position Coil 14 is switched opens automatically
62 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 63
Pressure zones for valve terminal type 44 VTSA
Creating pressure zones and Further examples of pressure separating exhaust air supply and pilot air via an • With the VTSA, pressure zones end plate with different working • Internal pilot air, ducted pressures can be easily exhaust air/silencer created • External pilot air, • A pressure zone can be created silencer/ducted exhaust air by separating the internal supply ducts between the Reliable exhausting of valves series manifolds using or pressure zones appropriate duct separation If used together with the MS6-SV • Compressed air supply and valve, certain areas can be exhaust via the supply plate exhausted safely whilst the • Free positioning of the supply pressure is retained for specific plates and separating seals in valves or pressure zones. the VTSA This is a common requirement • Channel separations for protective circuits. integrated ex works as per the order, differences can be indicated via the coding system for assembled valve terminals
VTSA with CPX terminal The illustration shows an example connection of how three pressure zones are • Up to 16 pressure zones built up and connected with duct possible with VTSA separation, with internal pilot air. (if only size 1, ISO 5599-2, is used, up to 32 pressure zones are possible) See the technical data of the individual products for detailed information. Please observe the legal information on page 73.
63 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 64
Pressure zones for valve terminal type 32 MPA
Creating pressure zones and MPA with CPX terminal separating exhaust air connection • With the MPA, pressure zones Example of pressure zones with different working • Up to 8 pressure zones pressures can be easily possible with MPA and CPX created. • A pressure zone can be created Further examples of by separating the internal compressed air supply and pilot supply ducts between the air supply sub-bases, with a • External pilot air supply, corresponding separating seal flat plate silencer or via a separator integrated • Internal pilot air supply, into the sub-base (code I) ducted exhaust air • Compressed air supply and • External pilot air supply, exhaust via the supply plate. ducted exhaust air • Free positioning of the supply plates and separating seals in Reliable exhausting of valves or MPA with CPX and MPM pressure zones (multiple connector plate) If used together with the MS6-SV • Separating seals integrated valve, specific areas can be ex works as per the order, exhausted safely whilst the differences can be indicated pressure is retained for specific via the coding system for valves or pressure zones. This is assembling valve terminals a common requirement for The illustration shows an protective circuits. example of how three pressure zones are built up and connected with separating seals, with external pilot air supply.
Please observe the legal information on page 73.
64 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 65
Safety function Shut-off module
Input Logic Output Pneumatic Electrical
CPX Profisafe
0 V Val C 24 V Val H0 0 V Out 24 V Out 0 V El./Sen. 24 V
Subbase (Internal Power Rail) El./Sen.
FE C H1 0 V Val C 24 V Val H2 Notes Front- Connection The CPX Profisafe module is a safety component.
All channels are self-monitoring for the safety function and for protection against short circuits.
Galvanic isolation of the voltage concepts.
Cat. 3 All specified values are CPX-FVDA-P can work with every PL e maximum values, which Profisafe-capable controller. DC 99 % can be achieved via CCF >65% correct operation Two channel, self-monitoring, Channels 2 of the component. electrical switch off. Certified TÜV Safety component Yes M12- or Cage Clamp connection to MD 2006/42/EC block.
The ProfiSafe module is always Part no. Type ordered in a fixed configuration; Select according to order code CPX-FVDA-P see part printed in bold in the example: 51E-F33GCQPEKANFKAQF-Z
65 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 66
CPX terminal – power supply concept
Description Interlinking blocks, together The use of decentralised devices with all the power supply rails, on the fieldbus – particularly are the backbone of the CPX with high protection for direct terminal. They provide the power machine mounting – demands supply for the CPX modules and a flexible power supply concept. their fieldbus connection.
A valve terminal with CPX can Many applications require the generally be supplied via a CPX terminal to be separated socket for all voltages. Here, into voltage zones. we distinguish between This is particularly true for supplying the switching off the solenoid coils • Electronics plus sensors and the ports separately. The • Valves plus actuators. interlinking blocks can either The following connection types be designed as an installation- can be selected saving centralised power supply • 7/8“, 4 or 3-pin for the entire CPX terminal, or • M18, 4-pin they can be designed as • Push-Pull galvanically isolated, all-pin disconnectable potential groups/voltage segments.
The voltage concept of the CPX terminal permits safe deactivation via external safety devices, safety control outputs or via the integrated ProfiSafe deactivation module.
Please observe the legal information on page 73.
66 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 67
Knowledge provides greater safety
Safety is always more than simply the hardware and the appropriate circuit diagrams. Safety starts at the concept stage, for example by identifying necessary performance levels. For comprehensive training on the subject of safety, Festo Didactic provides numerous courses on various topics.
Over 40 years of experience For example, SMS Meer GmbH up-to-date. SMS Meer now has a Festo Training and Consulting in training and consulting, in Mönchengladbach with the new central department for supported the company during courses in 40 languages, over seminar series on the new strategic and operational the conformity process for an 40,000 participants each year, EC Machinery Directive support for product areas and assembly system for motors, and approx. 230 ongoing 2006/42/EC and the new can provide design and sales from drawing up a risk national and international standard EN ISO 13 849-1: departments with exactly the assessment to issuing the projects with 200 experienced “Although the specifications training they need. The declaration of conformity. trainers and consultants speak have been implemented by the significant global changes for themselves. Our trainers EC machinery directory for some necessitate regular broad The team listed specific hazards place their wealth of expertise time, questions still arise in training courses, and keeping on the machine and the resulting at your disposal and prepare day-to-day work. They must be the overall qualifications of the risks were documented in the you or your employees for the answered and all employees employees up to date.” risk assessment. Then, specific specific safety responsibilities must be at the same level and Andreas Dröttboom, technical solutions – both in in the best possible manner. have the same understanding Documentation and Product terms of design and functionality that was the objective of the Safety Manager, SMS Meer – were found and documented. Our web-based training course seminars. For example, the GmbH Mönchengladbach The components used were Safety Engineering is ideal for discussion of the details took checked and documented. In the independent and flexible quite a lot of time, which Or Stanzwerk Salzwedel about operating instructions, the team learning. resulted in very high satisfaction the project “Supervisory support also described and explained ratings in the seminar in obtaining the CE mark per possible residual risks. In addition to the various evaluation. MD 2006/42/EC”: seminars on safety technology, The implemented technical we also provide on-site support Many participants wanted Stanzwerk Salzwedel produces control solutions were reviewed to our customers. follow-up events, particularly assembly systems for building in accordance with the new on DIN EN ISO 13849. The varied operating equipment, and standard 13849-1 and their global relevance of safety requires CE marks for these safety engineering functions engineering issues now requires machines. This is subject were demonstrated a broad range of expertise. to the EC Machinery Directive mathematically. It is almost impossible for design 2006/42/EC. or sales departments to keep
67 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 68
Overview of training courses
Focus course “Calculating with EN ISO 13 849-1 Focus course “EC Machinery Directive and (FOKUS-3)” the German industrial safety regulations (Betriebssicherheitsverordnung) – CE, modification, expansion and liability (FOKUS-4)”
While EN 954-1 only described Performance Level PL, The EC Machinery Directive Content: safety switches quantitatively, probability of failure per hour describes the requirements a • Responsibilities of the the new standard adds a PFH, diagnostic coverage DC, machine manufacturer must fulfil documentation officer qualitative aspect. It takes the common cause failures CCF, when building a machine. In • Liability for managing safety in all phases of a mean time to failure MTTF particular, the aspects of liability directors, design engineers and machine’s service life as well as • Determining the individual and documentation must be signees of the declaration of safety-relevant software into values based on selected clarified. conformity consideration. There are different pneumatic and electro- • CE marking and interlinked classifications for the control pneumatic circuits CE certification for interlinked or machines category, which permits lower- • Checking prescribed safety incomplete machines which are • What does the term cost solutions. The new standard switches integrated in other machines is “incomplete machine” mean? raises many questions. • Insight into the software particularly important. In this • Operational safety regulation How can we calculate with SISTEMA case, the safety at transition • Old machines and protecting EN ISO 13 849-1 and how is it • Practical exercises points must be clarified, while existing machinery used to confirm the required the control and emergency stop • Checking machine safety over Performance Level? Which Target group: design engineers concepts are also important. time components are taken into and design managers from After being sold, machines are • Expansion and modification of consideration and how are they mechanics, electrical generally modified, sold on or a machine - is recertification assigned to the individual engineering and control “refitted” and often operated for required? channels? technology, as well as project many years. What safety • What is a major modification? managers standard is provided for these Content: phases? What is the liability Target group: design engineers • Risk assessment as per Duration: 1 day situation if a machine is returned and design managers from EN ISO 13 849-1 to a manufacturer for reworking? mechanics, electrical engineering • Differences from EN 954-1 and control technology, as well • Terms in EN ISO 13 849: as project managers
Duration: 1 day
For dates and other information, see www.festo-tac.de
68 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 69
Seminar Seminar “Safety in pneumatics and electro-pneumatics “Calculating safety circuits to DIN EN ISO 13849-1 for design engineers (SAFETY2)” using the software SISTEMA (SAFETY3)“
After this seminar, participants • Selected safety measures of This course will enable • Structure of the software will understand the connection safety-oriented pneumatics participants to specify the SISTEMA between pneumatic and electric (unexpected restart; blocking, components in a protection • Calculations based on many components, be able to evaluate braking and reversing of circuit and calculate the examples the behaviour of pneumatic movements; switching off performance level of this circuit • Calculation with complex drives and design safety circuits power and free mobility; using the SISTEMA software. structures (multiple guards, up to control category 4. They reduced force and speed; They will be able to understand multiple drives) will work in accordance with two-hand operation) the qualitative aspect of DIN EN • Calculations with safety DIN EN ISO 13849-1 and other • Error analysis and exclusion ISO 13849-1. components and error standards required to fulfil the per DIN EN ISO 13849-2 exclusion EC Machinery Directive. • Effect of tube length, diameter • Risk assessment • Creation of own libraries and fittings on the speed of to DIN EN ISO 13849-1 • Integration of own Content: cylinders • Terms in EN ISO 13849-1: documentation • Structure and function of • Information on operating Performance Level (PL), • Many practical computer safety-related circuits to instructions and maintenance probability of failure per hour exercises using the software DIN EN ISO 13849-1 (PFH), mean time to failure SISTEMA • Identification of the safety Target group: mechanical, (MTTF), service life categories of circuits electrical and control technology characteristics of components Target group: mechanical, • Selecting spare parts engineers (B10), diagnostic coverage electrical and control technology • Power failure and restore (DC), common cause failures engineers • Reliable pressurising and Duration: 2 days (CCF) exhausting • Safety functions and control Duration: 2 days • Safe opening of brakes and categories clamps • Determining the components For dates and other information, • Fundamental and proven in the safety chain see www.festo-tac.de safety principles of pneumatics per DIN EN ISO 13849-2
69 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 70
Seminar Seminar “Safe switching technology “Safety-relevant circuits in pneumatics and for maintenance technicians (P141)” electro-pneumatics for vocational training (SAFETY-AL)”
Participants will be able to • Selected safety measures of After this seminar, participants • Methodical and learning- troubleshoot, repair and safety-oriented pneumatics can teach their trainees the core oriented implementation tools recommission systems, taking (unexpected restart; blocking, and specialised skills required in for trainers in the business into consideration the applicable braking and reversing of the training curriculum with a process safety regulations and safety movements; switching off focus on safety engineering, • Information on producing measures. To this end they learn power and free mobility/ preparing them ideally for the documentation and test about the respective control reduced force and speed; vocational qualification reports required in accordance categories and their stipulations. two-hand operation) examinations. They will be with the training plan, which They observe the potential • Explaining and eliminating familiar with the standards and are a part of the final hazards in pneumatic circuits errors in safety-related circuits regulations which must be examination and choose the right spare parts. • Selecting the right spare parts observed and can apply them • Practical exercises, structure, In this way they acquire the by taking the failure in their training and when tests and troubleshooting knowledge they need to observe characteristics into account supervising trainees as part of the applicable safety • Safe pressurisation and their company responsibilities. Target group: all trainers and specifications in their working exhausting of drives and company supervisors in the environment. systems Content: metal and electronics industries • Influences of the overtravel • Directives and standards on or in mechatronic engineering Content: time of pneumatic drives on safety in machine construction • Introduction to safety the working range of safe light • Structure of safety-related Duration: 4 days engineering and barriers circuits to EN ISO 13849-1 EN ISO 13849-1 • Safe handling of brakes and • Terms in EN ISO 13849-1 For dates and other information, • Fundamental and proven clamps • Fundamental and proven see www.festo-tac.de safety principles for • Practical exercises safety principles of pneumatics pneumatics per • Control and stop categories Target group: maintenance DIN EN ISO 13849-2 and their effects employees and mechanics and • Selected safety measures of • Safe handling of potential electricians safety-oriented pneumatics dangers in pneumatic circuits (unexpected restart/blocking, Duration: 4 days braking and reversing of movements; switching off power and free mobility/ reduced force and speed; two-hand operation) 70 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 71
Machine safety services by Festo in Austria
Festo Austria offers services for machine safety engineering, such as employee qualification, planning support, technical support, etc.
Machine safety training at the From standards to circuits “Thanks to the specific training customer’s premises Selected targets of Fill’s training concept customised for Fill, Festo Didactic has organised concept included the ability to spread out over several weeks, comprehensive training courses understand and apply specific our employees are now perfectly at Fill as a general contractor. standards, planning safe equipped for new safety Other specialists and trainers electrical, hydraulic and engineering requirements.” came from Siemens, Pilz, pneumatic circuits, using SEW Eurodrive, Sick, software for optimal design, TÜV Austria Services and programming safety-related Contact at Festo Austria: IBF Automatisierungs- und control units and creating and Ing. Thomas Müller Sicherheitstechnik. The training dimensioning bus concepts –of [email protected] courses took place on site at course all in the light of the new Fill’s technology park in the EC Machinery Directive. north of Austria. That was a Festo Gesellschaft m.b.H. major advantage for the Rudolf Reiter, Head of Safety Linzer Straße 227 customer, as the employees did Engineering at Fill: “Continuity of 1140 Vienna not have to travel long distances evaluating safety functions Tel.: +43(0)1/91075-300 to and from a training location. regardless of the technology and Fax: +43(0)1/91075-302 energy used (electric, hydraulic, www. festo.at pneumatic, mechanical, etc.) www.festo-didactic.at was important for us and that was completely achieved with Festo’s fluid technical background.”
71 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 72
WBT – Web-based training for safety engineering
Until then, 98/37/EC was valid. • Definitions There is no transitional period. • Risk estimation: determining the Performance Level required How is the overall performance • Risk reducing measures: level of a technical safety design measures, technical measure determined? The safety measures, instructive training program explains measures concepts such as probability of • Selecting the safety function failure (POF), diagnostic • Determining the control coverage (DC), common cause category failure (CCF), redundancy and diversity. There is also a detailed We can meet your needs explanation of all the Available as a CD-ROM version This training program provides components for safety or alternatively a WBT version an introduction to the complex equipment. for installation on networks and subject of safety engineering in learning management systems, industrial machines and systems. From the contents with as many licences as you • Introduction to machine safety need. The aim is to make participants • The question of liability (who is more aware of the problems in liable in the case of an Duration the design aspects of safety accident?) About 4 hours engineering and help them • European directives understand safety engineering • The relationship between For more information, see the equipment and hazard analysis directives and standards Festo Didactic homepage: methods. • The new EU Machinery www.festo-didactic.com Directive 2006/42/EC The training program is based • The hierarchy of the European on an amended version of the standards for machine safety EC Machinery Directive • Machine safety in the USA 2006/42/EC, which came into • Risk assessment procedure force on 29 December 2009. according to EN ISO 14121 and EN ISO 12100
72 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 73
Legal notice
This guideline is intended only for shown in this guide in the form during conversion. They are information for everyone who of technical and/or schematic therefore addressed to uses or wants to use safety sketches are only application sufficiently trained and qualified engineering. All information examples for our products/ personnel. contained in this guideline was assemblies. They are non- drafted and compiled according binding solution and application In this context, we assume no to our best knowledge and suggestions for the customer’s responsibility or liability for the conscience as a support on the concrete application. The solution conceived, drafted and topic of safety engineering. respective customer/user must implemented by the customer This applies in particular to the check and observe the laws, for the respective, concrete guidelines and norms mentioned guidelines and standards application. and makes no claim of relevant for the construction, completeness. manufacture and product information, independently and The solutions, illustrated on his own responsibility for the assemblies, product respective application, and must compositions and arrangements observe and comply with them
73 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 74
74 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 75
List of abbreviations
Abbreviation German name English name Source a, b, c, d, e Bezeichnung für die Performance Level Denotation of performance levels DIN EN ISO 13849-1 AB Anzeige-Bediengeräte Display and operating units Festo AC/DC Wechsel-/Gleichstrom Alternating current/direct current IEC 61511 AE Anfahr- und Entlüftungsventile Start-up and exhaust valves Festo ALARP So niedrig wie vernünftigerweise möglich As low as reasonable practicable IEC 61511 ANSI US-amerikanische Normungsorganisation American National Standards Institute IEC 61511 AOPD/AOPDDR Aktive optoelektronische Schutzein- Active optoelectronic protection device ISO 12100, richtung DIN EN ISO 13849-1 AS-Interface Aktuator Sensor Interface Aktuator Sensor Interface B, 1, 2, 3, 4 Bezeichnung für die Kategorien Denotation of categories DIN EN ISO 13849-1 B10 Anzahl von Zyklen, bis 10 % der Kompo- Number of cycles until 10% of the DIN EN ISO 13849-1 nenten ausgefallen sind (u.a. für pneumati- components fail (for pneumatic sche und elektromechanische Komponenten) and electromechanical compnents) B10d Anzahl von Zyklen, bis 10 % der Kompo- Number of cycles until 10% of the com- DIN EN ISO 13849-1 nenten gefährlich ausgefallen sind ponents fail dangerously (for pneumatic (u.a. für pneumatische und elektrome- and electomechanical components) chanische Komponenten) BPCS Betriebs- und Überwachungseinrichtungen Basic process control system IEC 61511 BPCS Betriebs- und Überwachungseinrichtungen Basic process control system IEC 61511 als ein System BSL Bootstraploader Bootstrap loader BTB/RTO Betriebsbereit Ready-to-operate BWP Berührungslos wirkende Positionsschalter Electro-sensitive position switch BWS Berührungslos wirkende Schutzeinrichtung Electro-sensitive protective equipment EN 61496 Cat. Kategorie Category DIN EN ISO 13849-1 CC Stromrichter Current converter DIN EN ISO 13849-1 ccd Kommando-Code, Teil einer SDO-Nachricht Command-code CCF Ausfall in Folge gemeinsamer Ursache Common cause failure IEC 61508, IEC 62061, prEN ISO 12849-1EN 61511-1:2004, DIN EN ISO 13849-1 CEN Europäisches Komitee für Normung European Commttee for Standardization CENELEC Europäisches Komitee für elektro- European Commttee for Electrotechnical technische Normung Standardization CMF Ausfall in Folge gemeinsamer Ausfallart Common mode failure EN 61511-1:2004 CRC Prüfsumme in einem Daten-Telegramm, Cyclic redundancy check Signatur durch zyklische Redundanzprüfung DC Diagnosedeckungsgrad Diagnostic coverage DIN EN ISO 13849-1, IEC 62061(IEC 61508-2:2000 DC Gleichstrom Direct current DCavg[%] Diagnosedeckungsgrad (von Tests) Average diagnostic coverage DIN EN ISO 13849-1 DPV0 DPV1 Funktionsversionen von PROFIBUS DR Druckventile Pressure control valves Festo DS Druckschalter Pressure switch Festo DV Druckverstärker Pressure amplifier Festo E Externe Einrichtung zur Risikominderung External risk reduction facilities EN 61511-1:2004 E/A Eingabe/Ausgabe Input/output E/E/EP Elektrisch/elektronisch/programmierbar Electrical/electronic/programmable IEC 61511, IEC 61508 elektronisch electronic E/E/PE Elektrisch/elektronisch/programmierbar Electrical/electronic/programmable IEC 61511, IEC 61508 elektronisch electronic E/E/PES Elektrisches/elektronisches/programmier- Electrical/electronic/programmable IEC 61511 bares elektronisches System electronic system EDM Schützkontrolle, Rückführkreis External device monitoring EDS Elektronisches Datenblatt Electronic data sheet
75 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 76
Abbreviation German name English name Source F, F1, F2 Häufigkeit und/oder Dauer der Gefähr- Frequency and/or time of exposure to DIN EN ISO 13849-1 dungsexposition the hazard FB Funktionsblock Function block DIN EN ISO 13849-1 FMEA Ausfallarten und Effekt-Analyse Failure modes and effects analysis DIN EN ISO 13849-1, EN ISO 12100 FO Funktionsorientierte Antriebe Function-oriented drives Festo FR Filterregler Filter-regulator unit Festo FTA Fehlerbaumanalyse/Fehlerzustandsbaum- Fault tree analysis EN ISO 12100 analyse Gefährdung Potenzielle Quellen von Verletzungen oder Potential source of injury or damage to Maschinenrichtlinie Gesundheitsschäden health 2006/42/EG Gefährdungs- Jeder Bereich in einer Maschine und/oder Any zone within and/or around EN ISO 12100 bereich um eine Maschine herum, in dem eine Per- machinery in which a person is subject son einer Gefährdung ausgesetzt sein kann to a risk to his health or safety H & RA Gefährdungs- und Risikobeurteilung Hazard and risk assessment IEC 61511 H/W Hardware Hardware IEC 61511 HFT Hardware-Fehlertoleranz Hardware fault tolerance IEC 61511 HMI Mensch-Maschine-Schnittstelle Human machine interface IEC 61511 HRA Analyse menschlicher Zuverlässigkeit Human reliability analysis IEC 61511 I, I1, I2 Eingabegerät, z.B. Sensor Input device, e.g. sensor DIN EN ISO 13849-1 i, j Index für Zählung Index for counting DIN EN ISO 13849-1 I/O Eingänge/Ausgänge Inputs/outputs DIN EN ISO 13849-1 iab, ibc Verbindungsmittel Interconnecting means DIN EN ISO 13849-1 Inhärente Schutzmaßnahme, die entweder Gefähr- Inherently safe design measure EN ISO 12100 sichere dungen beseitigt oder die mit den Gefähr- Safety measure, which either eliminates Konstruktion dungen verbundenen Risiken vermindert, hazards or minimises the risks associated indem ohne Anwendung von trennenden with the hazards, by changing the design oder nicht trennenden Schutzeinrichtungen operating properties of the machine die Konstruktions-Betriebseigenschaften without using disconnecting/ der Maschine verändert werden non-disconnecting protective devices KL Kolbenstangenloser Zylinder Rodless cylinders Festo Konformitäts- Verfahren, bei dem der Hersteller oder sein Declaration of conformity Maschinenrichtlinie erklärung in der Gemeinschaft niedergelassener Process in which the manufacturer or 2006/42/EG Bevollmächtigter erklärt, dass die in den their authorised representative established Verkehr gebrachten Maschine allen ein- in the community declares that the machine schlägigen grundlegenden Sicherheits- und markets complies with all relevant funda- Gesundheitsanforderungen entspricht mental safety and health requirements KS Kolbenstangenzylinder Cylinders with position rod Festo L, L1, L2 Logik Logic DIN EN ISO 13849-1 Lambda Ausfallrate bei ungefährlichen und Gefahr Rate to failure IEC 62061 bringenden Fehlern MTBF Mittlere Ausfallzeit eines Gerätes Mean time between failure DIN EN ISO 13849-1 MTTF/MTTFd Mittlere Zeit bis zu einem Ausfall Mean time to failure/ DIN EN ISO 13849-1 bzw. gefährlichen Ausfall Mean time to dangeous failure MTTR Mittlere Reparaturzeit eines Gerätes Mean time to repair DIN EN ISO 13849-1 NMT Service-Dienste des CAN-Application Layers Network management Nniedrig Anzahl von SRP/CS mit PLniedrig in einer Number of SRP/CS with PLlow in a DIN EN ISO 13849-1 Kombination von SRP/CS combination of SRP/CS NOT-AUS Ausschalten im Notfall Emergency switching off EN 418 (ISO 13850) EN 60204-1 Anhang D NOT-HALT Stillsetzen im Notfall Emergency stop ISO 13850 EN 60204-1 Anhang D NP Nicht programmierbares System Non-programmable system EN 61511-1:2004
76 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 77
Abbreviation German name English name Source O, O1, O2, OTE Ausgabegerät, z.B. Antriebselement Output device, e.g. actuator DIN EN ISO 13849-1 OE Öler Lubricator Festo OSHA OSI Referenzmodell zur Datenkommunikation, Open System Interconnection Darstellung als Schichtenmodell mit ver- teilten Aufgaben für jede Schicht OSSD Ausgangsschaltelement, Output signal switching device EN 61496-1 Sicherheits-Schaltausgang P, P1, P2 Möglichkeit zur Vermeidung der Gefährdung Possibility of avoiding the hazard DIN EN ISO 13849-1 Pdf Wahrscheinlichkeit gefahrbringender Probability of dangerous failure IEC 61508, IEC 62061 Ausfälle PE Programmierbare Elektronik Programmable electronics EN 61511-1 PES Programmierbares elektronisches System Programmale electronic system EN 61511-1, DIN EN PFD Ausfallwahrscheinlichkeit bei Auslösen/ Probability of failure on demad IEC 61508, IEC 62061 Anfrage der Sicherheitsfunktion PFH Ausfallwahrscheinlichkeit pro Stunde Probability of failure per hour IEC 62061 PFHd Wahrscheinlichkeit gefahrbringender Probability of dangerous failure per hour IEC 62061 Ausfälle pro Stunde PHA Vorläufige Untersuchung von Gefährdungen Preliminary hazard analysis EN ISO 12100 PL/Perfor- Diskreter Level, der die Fähigkeit von Discrete level used to specify the ability DIN EN ISO 13849-1 mance Level sicherheitsbezogenen Teilen einer Steue- of safety-related parts of control systems rung spezifiert, eine Sicherheitsfunktion to perform a safety function under fore- unter vorhersehbaren Bedingungen auszu- seeable condtions führen PLr Angewandter Performance Level(PL), Performance level (PL) applied in order DIN EN ISO 13849-1 um die erforderliche Risikominderung für to achieve the required risk reduction jede Sicherheitsfunktion zu erreichen for each safety function PLC Speicherprogrammierbare Steuerung (SPS) Programmable logic contoller IEC 61511, DIN EN ISO 13849-1 PLniedrig Niedrigster Performance Level einer SRP/CS Lowest performance level of a SPR/CS DIN EN ISO 13849-1 in einer Kombination von SRP/CS in a combination of SPR/CS PR Proportionalventile Proportional valves Festo RE Regler Regulator Festo Restrisiko Risiko, das nach Ausführung der Schutz- Risk remaining after safety measures EN ISO 12100 maßnahme verbleibt have been taken Risiko Kombination der Wahrscheinlichkeit Combination of the probability EN ISO 12100 Risikoanalyse Kombination aus Festlegung der Grenzen Combination of the specification of the EN ISO 12100 einer Maschine, Identifizierung einer limits of the machine, hazard identifi- Gefährdung und Risikoeinschätzung cation and risk estimation Risiko- Gesamtheit des Verfahrens, das eine Overall process comprising a risk EN ISO 12100 beurteilung Risikoanalyse und Risikobewertung analysis and a risk evaluation umfasst Risiko- Auf der Risikoanalyse beruhende Beur- Judgement, on the basis of risk analysis, EN ISO 12100 bewertung teilung, ob die Ziele zur Risikominderung of whether the risk reduction objectives erreicht wurden have been achieved Risiko- Bestimmung des wahrscheinlichen Aus- Defining the likely severity of harm and EN ISO 12100 einschätzung maßes eines Schadens und der Wahr- probability of its occurrence scheinlichkeit seines Eintritts S, S1, S2 Schwere der Verletzung Severity of injury DIN EN ISO 13849-1 SA Schwenkantriebe Semi-rotary drives Festo SAT Vor-Ort-Abnahme Site acceptance test IEC 61511 Schaden Physische Verletzung und/oder Schädigung Physical injuy or damage to health EN 61511-1 von Gesundheit oder Sachen Schutzmaß- Maßnahme zur Beseitigung einer Gefähr- Means that eliminates a hazard or EN ISO 12100, nahme dung oder zur Minderung eines Risikos reduces a risk EN 61511-1 SIF Sicherheitstechnische Funktion Safety instrumental function EN 61511-1
77 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 78
Abbreviation German name English name Source SIL Sicherheits-Integritätslevel Safety integrity level IEC 61511, DIN EN ISO 13849-1 SIS Sicherheitstechnisches System Safety instrumented system EN 61511-1 SP Sperrventile Shut-off valves Festo SPE Sensitive Schutzeinrichtung mechanisch Sensitive protection equipment EN ISO 12100 behaftetes Betriebsmittel SRASW Sicherheitsbezogene Anwendungssoftware Safety related application software DIN EN ISO 13849-1 SRECS Sicherheitsbezogenes elektrisches Safety related electrical control system IEC 62061 Steuerungssystem SRESW Sicherheitsbezogene Embedded-Software Safety related embedded software DIN EN ISO 13849-1 SRP Sicherheitsbezogenes Teil Safety related part DIN EN ISO 13849-1 SRP/CS Sicherheitsbezogenes Teil von Steuerungen Safety related part of control systems DIN EN ISO 13849-1 SRS Spezifikation der Sicherheitsanforderungen Safety requirements specification IEC 61511 ST Stromventile Flow control valves Festo SW1A, SW1B, Positionsschalter Position switces DIN EN ISO 13849-1 SW2 SYNC Objekt zur Synchronisierung von Synchronisation objects Teilnehmern im Netzwerk TE Testeinrichtung Test equipment DIN EN ISO 13849-1 Techn. Schutz- Schutzmaßnahmen, bei denen Schutzein- Protective measure using safeguards to EN ISO 12100 maßnahmen richtungen zur Anwendung kommen, um protect persons from the hazard which Personen vor Gefährdungen zu schützen, cannot reasonably be eliminated or from die durch inhärent sichere Konstruktion the risks which cannot be sufficiently nicht in angemessener Weise beseitigt reduced by inherently safe design werden können, oder vor Risiken zu measures schützen, die dadurch nicht ausreichend vermindert werden können TM Gebrauchsdauer Mission time DIN EN ISO 13849-1
78 Sicherheitstechnik_135242_en.qxp 02.05.2012 11:59 Uhr Seite 79 Sicherheitstechnik_135242_en.qxp 02.05.201211:59UhrSeite80 e.+7 6 56,Fx+7 6 561 15 666 [email protected] +372 Fax E-mail: 60, 15 666 +372 Tel. Tallinn 12918 118B tee Tammsaare A.H. Filiaal Eesti AB OY Festo Estonia 10 81 88 44 +45 [email protected] Fax 90, E-mail: 10 21 70 +45 Tel. Rødovre 2610 180 Islevdalvej A/S Festo Denmark 84 33 77 241 +420 [email protected] Fax 11, E-mail: 96 09 261 +420 Tel. 4 Praha 00 147 543/76 Modřanská s.r.o. Festo, Republic Czech [email protected] 18 E-mail: 69, 18 619 19 (0)1 +385 619 Fax (0)1 +385 Tel. Zagreb 10000 181 Cesta Nova d.o.o. Festo Croatia Ext.287 [email protected] 88 88, E-mail: 77 865 77 (1) +57 865 Fax (1) +57 Tel. sur) (costado Cundinamarca 6 Tenjo, Km Medellín - Bogotá Autopista Ltda. Festo Colombia 00 03 54 58 21 +86 Fax [email protected] 00, E-mail: 51 81 60 21 +86 Tel. Shanghai 201206 Pudong, Zone, Processing Export Jinqiao Road, Yunqiao 1156 Ltd. (China) Festo China 60 28 690 2 +56 [email protected] Fax 00, E-mail: 28 690 2 +56 Tel. Santiago Pudahuel 760 Vespucio, Américo Avenida S.A. Festo Chile [email protected] 01 E-mail: 00, 90 624 90 (0)905 +1 624 Fax (0)905 +1 Tel. 5G4 L4W Ontario Mississauga, Drive Explorer 5300 Inc. Festo Canada [email protected] 13 E-mail: 12, 07 960 07 (0)2 +359 960 Fax (0)2 +359 Tel. 9 Kolumb Christophor Bul. Sofia 1592 EOOD Festo Bulgaria 68 [email protected] 00, 18 E-mail: 13 16 50 13 (0)11 +55 50 Fax (0)11 +55 Tel. SP-Brazíl Paulo São Anchieta 04183-080 Via - 12,5 KM 76 Crespi, Guiseppe Rua Ltda Brasil Festo Brazil 09 32 702 (0)2 +32 [email protected] Fax 11, E-mail: 32 702 (0)2 +32 Tel. Brussel 1030 101 Bourgstraat Kolonel nv Belgium Festo Belgium 09 32 702 (0)2 +32 [email protected] Fax 11, E-mail: 32 702 (0)2 +32 Tel. Bruxelles 1030 101 Bourg Colonel Rue sa Belgium Festo Belgium [email protected] 59 E-mail: 85 58, 204 85 (0)17 +375 204 Fax (0)17 +375 Tel. Minsk 220035 78 avenue, Masherov Festo IP Belarus 75-250 910 (0)1 [email protected] +43 E-mail: Fax 75-0, 910 (0)1 +43 Tel. Wien 1140 227 Straße Linzer m.b.H. Gesellschaft Festo Austria [email protected] 87 E-mail: 55, 97 95 95 97 +61(0)3 95 Fax 97 +61(0)3 Tel. 3174 Vic. Park Noble 261 Box P.O. Road Browns 179-187 (Melbourne) Office Head Ltd. Pty. Festo Australia 82 [email protected] 82 E-mail: 17 00, 47 82 (011) +54 4717 Fax (011) +54 Tel. Aires Buenos Prov. Martínez (1640) 2392 Edison S.A. Festo Argentina e.+2() 5 11,Fx+2() 6 040 70 864 (0)2 +82 [email protected] Fax 14, E-mail: 71 850 (0)2 +82 Tel. #153-803 Seoul Geumcheon-gu Gasan-dong 470-1 Ltd. Co., Korea Festo South Korea [email protected] -5611, 78 E-mail: / 56 593 10 (0)45 56 +81 Fax 593 (0)45 +81 Tel. 224-0025 Yokohama Tsuzuki-ku Hayabuchi 1-26-10 K.K. Festo Japan 20 06 488 02 +39 [email protected] Fax 81, E-mail: 78 45 02 +39 Tel. (MI) Assago 20090 36/38 Fermi Enrico Via SpA Festo Italy [email protected] 77 66, E-mail: 22 632 22 (0)3 +972 632 Fax (0)3 +972 Tel. 56100 Yehud 48 Road Ha'atzma'ut 1076 Box P.O. Ltd. Israel Pneumatic Festo Israel [email protected] 80 E-mail: 55, 56 295 49 (0)1 +353 295 Fax (0)1 +353 Tel. 18 Dublin Estate Industrial Sandyford Park Sandyford 5 Unit Limited Festo Ireland 08 [email protected] 09, 24 E-mail: 52 24 44 52 (0)21 +98 44 Fax (0)21 +98 Tel. 1389793761 Teheran 15815-1485 P.O.Box Road Karaj Special 8, avenue, Km 16th street, 6th 2, # S.K. Pneumatic Festo Iran 98 [email protected] 00, 79 E-mail: 50 79 27 50 (0)21 +62 27 Fax (0)21 +62 Tel. 12240 Jakarta Indah Pondok 68 Arteri No. Muda Iskandar Sultan JL. Festo PT. Indonesia 62 33 83 27 / 58 [email protected] 00, 20 E-mail: 83 41 27 89 (0)80 +91 22 Fax (0)80 +91 Tel. 099 560 Bangalore Highway, Hosur Bangalore Area, Industrial Bommasandra 237B, Ltd. Private Controls Festo India 01 51 436 1 +36 [email protected] Fax 11, E-mail: 51 436 1 00 +36 Tel. 51 436 1 +36 Hotline Budapest 1037 32-34. út Csillaghegyi Kft. Festo Hungary 73 21 86 27 852 + Fax [email protected] 79, 83 E-mail: 43 27 852 + Tel. Kong Hong Kowloon, Road, Peak Castle 497 Building, Factory Timely New 6/F Ltd. Festo Kong Hong 05 29 341 210 +30 [email protected] Fax 00, E-mail: 29 341 210 +30 Tel. Athens 11853 P.C. Ave. Hamosternas 40 Ltd. Festo Greece 28 26 347 [email protected] (0)711 +49 E-mail: Fax 0, 347 (0)711 +49 Tel. Esslingen 73734 82 Straße Ruiter Esslingen 73726 KG Postfach Co. & AG Festo Germany 41 [email protected] 46 indigo), E-mail: 20 (numéro 820 40 (0) 46 +33 Fax 20 820 (0) +33 Tel. Bry-sur-Marne Catherine 94360 sainte clos du rue 8 Rouges Maisons des ZA Eurl Festo France 00 info_fi@festo.com 52 51, E-mail: 06 87 06 (09) +358 87 Fax (09) +358 Tel. Vantaa 01511 86 Box P.O. 9 Mäkituvantie OY Festo Finland e.+56 40 2 a 6 26 026 10 61 62 +65 [email protected] Fax 52, E-mail: 01 64 62 +65 Tel. 628754 Singapore Way Teck Kian 6 Ltd. Pte. Festo Singapore 01 34 737 495 +7 [email protected] Fax 00, E-mail: 34 737 495 +7 Tel. Moscow 119607 49 prosp., Michurinskiy Festo-RF OOO Russia [email protected] 09 E-mail: 90, 24 310 31 (0)21 +40 310 Fax (0)21 +40 Tel. Bucuresti 010217 17 Constantin St. S.R.L. Festo Romania 89 61 615 22 +351 [email protected] Fax 50, E-mail: 61 615 22 43 +351 20 Tel. 20 707 Center: Contact Porto 4109-016 8013 567 Apartado Azevedo, De Pinto Manuel Rua Lda. Unipessoal, Automação, – Festo Portugal [email protected] 02 E-mail: 00, 41 711 41 (0)22 +48 711 Fax (0)22 +48 Tel. Raszyn 05090 7 Mszczonowska ul. k/Warszawy Janki o.o. z Sp. Festo Poland 220/21 34 82 (2) [email protected] +63 Fax E-mail: 888, 66 77 (2) +63 Tel. Manila Metro City Paranaque 1700 Highway Super South Road Service West 18, KM Building Festo Inc. Festo Philippines 71 69 219 (1) +51 [email protected] Fax 60, E-mail: 69 219 (1) +51 Tel. Lima Isidro San 480 Reyna Merino Amador S.R.L. Festo Peru 51 89 72 22 +47 [email protected] Fax 50, E-mail: 89 72 22 +47 Tel. Oslo 0666 2 vei Deviks Ole AS Festo Norway [email protected] 94 E-mail: 20, 78 555 78 (0)1 +234 794 Fax (0)1 +234 Tel. Lagos Ikeja, C Alausa, Block Floor, First Centre, Motorways Ltd. Automation Festo Nigeria 99 10 574 (0)9 +64 [email protected] Fax 94, E-mail: 10 574 (0)9 +64 Tel. Auckland Wellington Mount Crescent Fisher 20 Ltd. Festo Zealand New [email protected] 67 E-mail: 99, 88 251 88 (0)15 +31 251 Fax (0)15 +31 Tel. Delft AN 2627 62 Schieweg B.V. Festo Netherlands 55 [email protected] 00, 66 E-mail: 21 66 53 (01)55 21 +52 53 Fax (01)55 +52 Tel. México de Estado Tlalnepantla 54020 Tequesquináhuac Col. 3, Ceylán Av. S.A. Pneumatic, Festo Mexico 11 [email protected] 00, 64 E-mail: 75 80 62 86 (0)3 +60 62 Fax (0)3 +60 Tel. Lumpur Kuala 52200 Persekutuan Wilayah Damansara Sri Bandar Industri Persiaran 10 Berhad Sdn. Festo Malaysia 15 13 32 (8)7 +370 [email protected] Fax 14, E-mail: 13 32 (8)7 +370 Tel. Lietuva Kaunas 50306 63M Partizanų UAB Festo, Lithuania 46 79 57 67 +371 [email protected] Fax 64, E-mail: 78 57 67 +371 Tel. Riga 1035 60 iela Deglava A. SIA Festo Latvia -al [email protected] 50 E-mail: 00 85, 585 00 (0)216 +90 585 Fax (0)216 +90 Tel. Istanbul/TR - Tuzla 34956 6/18 Bölgesi Sanayi Organize A.S. Mermerciler Tuzla Tic. ve San. Festo Turkey 30 88 01 29 +66 [email protected] Fax 00, E-mail: 88 01 29 +66 Tel. 12120 Pathumthani Klongluang A. 1, Klong T. Rd., Phaholyothin 67/1 Ltd. Festo Thailand 86-7 [email protected] 92 E-mail: 01 81, 26 01-92 (0)2 +886 26 Fax (0)2 +886 Tel. R.O.C. Taiwan, 24450 City Taipei New Dist., Linkou Zone Industrial 2nd Linkou Road 8th Kung 9, Office Head Ltd. Co., Festo Taiwan [email protected] 00 E-mail: 44, 55 744 55 (0)44 +41 744 Fax (0)44 +41 Tel. ZH Dietikon 8953 24 Moosmattstrasse AG Festo Switzerland 10 38 38 (0)40 +46 [email protected] Fax 40, E-mail: 38 38 (0)20 +46 Tel. Malmö 21 200 21038 Box 1 Stillmansgatan AB Festo Sweden 20 64 261 93 +34 [email protected] Fax 00, E-mail: 64 261 93 +34 Tel. 902243660 Fax: 901243660, Tel.: Barcelona Llobregat de Hospitalet 08908 L'H Granvia Económico Distrito 159 Granvia, Avenida S.A.U. Pneumatic, Festo Spain [email protected] 57 E-mail: 00, 21 974 55 (0)11 +27 971 Fax (0)11 +27 Tel. 1600 Isando 255 Box P.O. Avenue Electron 22-26 Ltd. (Pty) Festo Africa South [email protected] 25 E-mail: 00, 21 530 21 (0)1 +386 530 Fax (0)1 +386 Tel. Trzin 1236 8 Blatnica Trzin, IC Ljubljana d.o.o. Festo Slovenia 11 [email protected] 10, 49 E-mail: 10 49 49 10 (0)2 +421 49 Fax (0)2 +421 Tel. 3 Bratislava 83103 1 ul. Gavlovicová r.o. s spol. Festo Slovakia DP Ukraine e.+4()6 14 3–4454, 42 – [email protected] 44 53 E-mail: 81 62 44 (8) 81 +84 Fax 62 (8) +84 Tel. City Minh Chi Ho 2 District Street Phu, Dong An Dai Van Ward 1516 – 1515 No. FESTO) TNHH Ty (Cong Ltd Co Festo Vietnam [email protected] 55 E-mail: 04 38, 759 44 (261) 20/759 41 +58 20/759 Fax 11 759 (261) +58 Tel. Venezuela - Maracaibo Paraíso Sector Festo. Edif. 71 22-62, calle N° con esquina 23 Av. C.A. Festo Venezuela 26 80 435 [email protected] +1(631) Fax E-mail: 00, 08 435 +1(631) Tel. 3786 800/963 Toll-free Fax 3786 800/993 Toll-free Call 11788 NY Hauppauge, 18023 Box P.O. Road Moreland 395 York) (New Corporation Festo States United 01 [email protected] 70 00, E-mail: 66 70 / (0)1604 66 ++44 / Fax (0)1604 ++44 Tel. 7PY NN4 Northampton Estate Trading Brackmills Road Caswell Centre Automation Applied Limited Festo Kingdom United [email protected] 96 E-mail: 70 30, 463 24 (0)44 +380 239 Fax (0)44 +380 Tel. Kiev 04070, Borisoglebskaya,11 ul. et worldwide Festo Festo
135242 en 2011/11