Bsi bs en 61784 3 18 2011 + a1 2017

This stan ard explain the relevant prin iples for fu ctional safety commu ication with referen e to IEC 615 8 series an sp cifies several saf ety commu ication layers prof iles an cor es

Trang 1

Indus trial c o mmunic atio n

Part 3-1 8: Functional s afety fieldbus es

Trang 2

EN 617 4-3-18:2 1 +A 1:2 17 It is identical to IEC 617 4-3-18:2 1

incorp ratin amen ment 1:2 16 It su er edes BS EN 617 4-3-18:2 1 ,

w hich is w ith raw n

T he s ar an f ish of tex t int o uced or altered by amen ment is

in icated in the tex t by tags Tags in icatin chan es to IEC tex t car y

the n mber of the IEC amen ment For ex ample, tex t altered by IEC

amen ment 1 is in icated by 

T he UK par icipatio in it preparatio w as ent us ed to Tech ical

C mmit e A MT /7, In us rial commu icatio s: proces me surement an

co t ol inclu in feld us

A ls of organiz tio s represented o this commit e can be o tained

o req es to it secretary

T his p blcatio d es n t p rp r to inclu e al the neces ary prov isio s

of a co t act User are resp nsible f or it cor ect ap lcatio

P blshed by BSI Stan ards Limited 2 17

ISBN 9 8 0 5 0 947 1 6

ICS 13.1 0, 2 040.40, 3 10 0

C mpla ce w ith a British Sta d rd ca not conf er immu ity f rom

le al oblg tions

T his British Stan ard w as p blshed u der the auth rity of the Stan ards

P lcy an St ategy C mmit e o 31 July 2 1

A me dme t s is u d since publcat ion

31 Mar c h 2 17 Implementatio of IEC amen ment 1:2 16 with

CENEL EC en or sement A1:2 17

Trang 3

EUR OPÄISCHE NOR M

Euro e n Committee for Elec trot ec hnical Stan ardiz ation

Comité Euro é n de Normalsat ion Elec trotec niq e

Euro äis hes Komitee für Elek trot ec hnisc he Normu g

Manage ment Centre: Aven e Ma rnix 17, B - 10 0 Bru se ls

ICS 13.1 0; 2 0 0.4 ; 3 10 0

En ls version

Indust rial communicat ion network s -

Profi es -

Part 3- 18: Funct ional safety fieldbuses -

Addit ional specificat ions for CPF 18

Zusät zlc he Fes eg ngen für die

K ommunikat ionsprofifami e 18

(IEC 61784-3-18:2011)

This Euro e n Stan ard was a proved b CENELEC o 2 1 -0 -2 CENELEC memb rs are b u d to c omply

with t he CEN/CENELEC Int ern l R eg latio s which s p late the con itio s for givin this Euro e n Stan ard

the stat us of a n t io al stan ard witho t a y alteratio

Up-t o-d te lsts a d biblo ra hical refere ces concernin such n tio al stan ards ma b o tain d o

a plcatio to the Ce t ral Secretariat or to a y CENELEC memb r

This Euro e n Stan ard e ists in t hre oficial v rsio s (En lsh, Fre ch, Germa ) A versio in a y other

la g a e ma e b t ra slatio u d r the resp nsibi ty of a CENELEC memb r into it s own la g a e a d n tifie

to t he Ce tral Sec retariat h s th same status as th oficial v rsio s

CENELEC memb rs are the n t io al elect rotec hnical commit tees of Aust ria, Belgium, Bulg ria, Cro tia, Cy rus,

the Czech Rep blc, De mark, Est onia, Finla d, Fra ce, Germa y, Gre ce, Hu g ry, Ic la d, Irela d, Italy,

L t via, Lithu nia, L ux mb urg, Malta, the Netherla ds, Norway, Pola d, Portug l, Roma ia, Slo akia, Slo e ia,

Sp in, Swe e , Swit z erla d a d the Unit ed Kin d m

Trang 4

Foreword

The t ex t of doc ment 6 C/63 /FDIS, fut ure edition 1 of IEC 617 4-3-18, pre ared by SC 6 C, In u t rial

network , of IEC TC 6 , In u t rial-proces me s remen cont rol an automat ion, was s bmit t ed t o t he

IEC-CENELEC p ralel v ote an was a prov ed by CENELEC as EN 617 4-3-18 on 2 1 -0 -2

At t ent ion is drawn t o t he p s ibi ty t hat some of t he element s of t his doc ment may b t he s bject of

p t ent rig t s CEN an CENELEC s al not b held resp n ible for ident ifyin an or al s c p t ent

rig t s

The folowin dat es w ere fixed:

– lat est date by whic the EN has t o b implement ed

at nat ional level by publcat ion of an identical

– lat est date by whic the national st an ar ds conflct in

An e ZA has b en ad ed by CENELEC

Endorsement notice

The t ex t of t he Int er national St an ard IEC 617 4-3-18:2 1 was a proved by CENELEC as a Euro e n

St an ard w ithout an modificat ion

In t he oficial v ersion, for Biblogra h , t he folowin not es hav e to b ad ed for t he st an ard in icat ed:

IEC 6 2 4- NOT Harmo iz d a EN 6 2 4-

IEC 61 31 6 NOT Harmo iz d a EN 61 31 6

1)

IEC 61 5 s rie NOT Harmo iz d in EN 61 5 s rie

IEC 613 6-3- NOT Harmo iz d a EN 613 6-3-

IEC 613 6-3-2 NOT Harmo iz d a EN 613 6-3-2

IEC 614 6 s rie NOT Harmo iz d in EN 614 6 s rie

IEC 615 8- :2 10 NOT Harmo iz d a EN 615 8- :2 10

IEC 615 8-4:2 10 NOT Harmo iz d a EN 615 8-4:2 10

IEC 615 8-5:2 10 NOT Harmo iz d a EN 615 8-5:2 10

IEC 6151 s rie NOT Harmo iz d in EN 6151 s rie

IEC 617 4- NOT Harmo iz d a EN 617 4-

IEC 617 4-5 s rie NOT Harmo iz d in EN 617 4-5 s rie

IEC 618 0-5-2 NOT Harmo iz d a EN 618 0-5-2

IEC 6 0 1 NOT Harmo iz d a EN 6 0 1

ISO 10 18- NOT Harmo iz d a EN ISO 10 18-

ISO 1210 - NOT Harmo iz d a EN ISO 1210 -

ISO 13 4 - NOT Harmo iz d a EN ISO 13 4 -

Trang 5

ISO 14121 NOT Harmo iz d a EN ISO 14121

EN 617 4- 3- 18:2 1 /A1:2017

This doc ment (EN 617 4-3-18:2 1 /A1:2 17) con ist s of t he t ex t of IEC 617 4-3-18:2 1 / A1:2 16

pre ared by SC 6 C “In u t rial netw ork ” of IEC/TC 6 “In u t rial proces me s remen cont rol an

aut omat ion”

The folowin dat es are fix ed:

• lat est date by whic the doc ment has t o b

implement ed

at nat ional level by publcat ion of an identical

nat ional st an ard or by en orsement

(do ) 2 18-01-16

• lat est date by whic the national st an ards conflct in

w it h t he doc ment hav e t o b w it hdr awn

At t ent ion is drawn to t he p s ibi ty t hat some of t he element s of t his doc ment may b the s bject of

p t ent rig t s CENELEC [an / or CEN] s al not b held resp n ible for ident ifyin an or al s c

p t ent rig t s

Endorsement notice

The t ex t of t he International St an ard IEC 617 4-3-18:2 1 /A 1:2 16 was a proved by CENELEC as

a Eur op an St an ard w ithout an modificat ion

Foreword to amendment A1

Trang 6

(normat iv e)

Normat ive references t o int ernat ional publ cat ions

with t heir cor esponding European publ cat ions

The folow in referen ed doc ment s are in isp n a le for t he a plcation of t his doc men F r dat ed

referen es, only t he edit ion cit ed a ples F r u dated referen es, t he lat est edition of t he referen ed

doc ment in lu in an amen ment s) a ples

NOTE When an international publcat ion has b en modified by common modificat ion , in icat ed by

(mod), t he relev ant EN/HD a ples

IEC 61 5 -3-2 - In u t rial commu icat ion network - Fieldbu

Part 4-2 : Dat a-ln layer pr ot ocol

sp cificat ion - Typ 2 element s

Part 6-2 : Ap lcat ion layer prot ocol

sp cificat ion - Typ 2 element s

IEC 615 8 Series Fu ct ional safety of

elect rical/elect ronic/programma le elect ronic

safety-elated s stems

IEC 615 8-2 2 10 Fu ct ional safety of

safety-elated s stems -

Part 2: R eq ir ement s for

safety-elated s stems

IEC 617 4-2 2 10 In u t rial commu icat ion network -

Profies -

Part 2: A ddit ional fieldbu profies for re l-t ime

network b sed on ISO/ IEC 8 0 -3

IEC 617 4-3 2 10 In u t rial commu icat ion network -

Profies -

Part 3: Fu ctional safety fieldbu es - General

rules an profie definit ion

IEC 61918 - In u t rial commu icat ion network -

In t alation of commu icat ion network in

in u t rial premises

ISO/IEC 10 31 - Informat ion tec nolog - Op n Sy tems

Int ercon ect ion - Basic referen e model -

Trang 7

2 Normative ref eren es � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �1

3 Terms, def i ition , s mb ls, a breviated terms an con ention � � � � � � � � � � � � � 12

3�1 Terms an def i ition � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �12

3�1�1 Common terms an def i ition � � � � � � � � � � � � � � � � � � � � � � � �12

3�1�2 CPF 18: Ad itional terms an defi ition � � � � � � � � � � � � � � � � � � �16

3�2 Symb ls an a breviated terms � � � � � � � � � � � � � � � � � � � � � � � � � � � 17

3�2�1 Common s mb ls an a breviated terms � � � � � � � � � � � � � � � � � � 17

3�2�2 CPF 18: Ad itional s mb ls an a breviated terms � � � � � � � � � � � � � 18

5�1 External doc ments providin sp cif i ation f or the prof ile � � � � � � � � � � � � � 21

5�2 Saf ety f un tional req irements � � � � � � � � � � � � � � � � � � � � � � � � � � � �21

5�3 Saf ety me s res � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �2

5�4 Saf ety commu ication layer stru ture� � � � � � � � � � � � � � � � � � � � � � � � 2

5�5 Relation hips with FAL (an DL , PhL)� � � � � � � � � � � � � � � � � � � � � � � 2

5�5�1 General� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �2

5�5�2 Data Typ s � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �2

6 Saf ety commu ication layer services � � � � � � � � � � � � � � � � � � � � � � � � � � � �2

6�1 General elements � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 2

6�1�1 General� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �2

6�1�2 Saf ety o ject dictionary � � � � � � � � � � � � � � � � � � � � � � � � � � � �2

6�1�3 Saf ety proces data o ject (SPDO)� � � � � � � � � � � � � � � � � � � � � 2

6�1�4 Saf ety he rtb at (SHB) � � � � � � � � � � � � � � � � � � � � � � � � � � � �2

6�1�5 Saf ety delay monitorin (SDM) � � � � � � � � � � � � � � � � � � � � � � � �2

6�2 Commu ication relation� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 2

7 Saf ety commu ication layer protocol � � � � � � � � � � � � � � � � � � � � � � � � � � � �2

7�2 Saf ety commu ication layer management (SALMT) � � � � � � � � � � � � � � � � � 3

7�3 Saf ety proces data commu ication � � � � � � � � � � � � � � � � � � � � � � � � � 3

7�4 Saf ety he rtb at � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 3

7�5 Delay monitorin � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �3

8 Saf ety commu ication layer management � � � � � � � � � � � � � � � � � � � � � � � � � 3

8�1 Parameter han l n � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 3

Trang 8

8�2�2 Commu ication prof ile section � � � � � � � � � � � � � � � � � � � � � � � �3

8�2�3 Stan ardized device prof ile section� � � � � � � � � � � � � � � � � � � � � 5

9 Sy tem req irements � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �5

9�3�2 Determination of FSCP 18/1 time exp ctation b havior � � � � � � � � � � �5

9�3�3 Calc lation of the worst case safety fun tion resp n e time � � � � � � � � �5

9�4 Duration of deman s � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �5

9�5 Con traints f or calc lation of s stem c aracteristic � � � � � � � � � � � � � � � � �5

9�5�1 Saf ety related con traints � � � � � � � � � � � � � � � � � � � � � � � � � � 5

9�5�2 Pro a i stic con ideration � � � � � � � � � � � � � � � � � � � � � � � � � 5

Ta le 3 – Commu ication er ors an detection me s res � � � � � � � � � � � � � � � � � � � 2

Ta le 4 – SPDO PDU stru ture� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 2

Ta le 5 – SHB req est PDU stru ture � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 2

Ta le 6 – SHB resp n e PDU stru ture � � � � � � � � � � � � � � � � � � � � � � � � � � � � �2

Ta le 7 – SHB safety commu ication layer state en odin � � � � � � � � � � � � � � � � � � �2

Ta le 8 – SALMT comman s � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 3

Ta le 9 – Sy tem states of SALMT state mac ine � � � � � � � � � � � � � � � � � � � � � � � 31

Ta le 10 – State tran ition SALMT state mac ine � � � � � � � � � � � � � � � � � � � � � � �3

Ta le 1 – Sy tem states of RxSPDO state mac ine � � � � � � � � � � � � � � � � � � � � � �3

Ta le 12 – State tran ition RxSPDO state mac ine � � � � � � � � � � � � � � � � � � � � � � 3

Ta le 13 – Time uts � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �3

Ta le 14 – Safety o ject dictionary stru ture � � � � � � � � � � � � � � � � � � � � � � � � � �3

Ta le 15 – Objects of commu ication section � � � � � � � � � � � � � � � � � � � � � � � � � 3

Ta le 16 – Device typ � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 3

Ta le 17 – Safety ID� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �3

Ta le 18 – Safety con umer he rtb at entry � � � � � � � � � � � � � � � � � � � � � � � � � � 3

Ta le 19 – Safety con umer he rtb at � � � � � � � � � � � � � � � � � � � � � � � � � � � � �4

Trang 9

Ta le 2 – SPDO time ut toleran e � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �4

Ta le 2 – Receive SPDO commu ication p rameter � � � � � � � � � � � � � � � � � � � � � 4

Ta le 2 – Tran mit SPDO commu ication p rameter � � � � � � � � � � � � � � � � � � � � �4

Ta le 2 – Ma pin format � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 51

Ta le 2 – Receive SPDO ma pin p rameter � � � � � � � � � � � � � � � � � � � � � � � � �51

Ta le 2 – Tran mit SPDO ma pin p rameter � � � � � � � � � � � � � � � � � � � � � � � � 5

Ta le 2 – In icator states def i iton� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 5

Ta le 2 – STATUS in icator states � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �5

Fig re 1 – Relation hips of IEC 617 4-3 with other stan ard (mac inery)� � � � � � � � � � �8

Fig re 2 – Relation hips of IEC 617 4-3 with other stan ard (proces ) � � � � � � � � � � � � 9

Fig re 3 – FSCP 18/1 s stem � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �2

Fig re 4 – FSCP 18/1 sof tware arc itecture � � � � � � � � � � � � � � � � � � � � � � � � � � 2

Fig re 5 – SPDO interaction model� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �2

Fig re 6 – SHB interaction model � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �2

Fig re 7 – Saf ety proces data o ject stru ture � � � � � � � � � � � � � � � � � � � � � � � � 2

Fig re 8 – Saf ety he rtb at req est stru ture � � � � � � � � � � � � � � � � � � � � � � � � � 2

Fig re 9 – Saf ety he rtb at resp n e stru ture � � � � � � � � � � � � � � � � � � � � � � � � 2

Fig re 10 – Saf ety PDU f or FSCP 18/1 emb d ed in a T yp 2 CDC data section� � � � � � 3

Fig re 1 – SALMT state mac ine � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 31

Fig re 12 – RxSPDO state mac ine � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 3

Fig re 13 – He rtb at proced re � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 3

Fig re 14 – Delay me s rement prin iple � � � � � � � � � � � � � � � � � � � � � � � � � � � �3

Fig re 15 – Parameter han l n � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 3

Fig re 16 – Saf ety resp n e time comp nents � � � � � � � � � � � � � � � � � � � � � � � � �5

Fig re 17 – Con idered data field f or mes age size calc lation � � � � � � � � � � � � � � � �5

Fig re 18 – Resid al er or rate � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � 5

Trang 10

0 Introduction

The IEC 61 5 fieldbu stan ard together with its comp nion stan ard IEC 617 4-1 an

IEC 617 4-2 defines a set of commu ication protocols that ena le distributed control of

automation a plcation Fieldbu tec nolog is now con idered wel ac e ted an wel

proven Th s man f ieldbu en an ements are emergin , ad res in not yet stan ardized

are s s c as re l time, saf ety- elated an sec rity- elated ap lcation

This stan ard explain the relevant prin iples for fu ctional safety commu ication with

referen e to IEC 615 8 series an sp cifies several saf ety commu ication layers (prof iles an

cor esp n in protocols) b sed on the commu ication profi es an protocol layers of

IEC 617 4-1, IEC 617 4-2 an the IEC 61 5 series It do s not cover electrical safety an

intrin ic safety asp cts

Fig re 1 s ows the relation hips b twe n this stan ard an relevant saf ety an f ieldbu

stan ard in a mac inery en ironment

IEC 610 0-1-2

Meth dolo y EMC & FSIEC 610 0-1-2

Meth dolo y EMC & FS

Desig of sa f ety -rela tedelec tric a l, ele tro ic nd pro

ram-ma le le tro icc ontrolsy s tems (SR ECS) formac hine ry

ISO 1210 -1 a d ISO 14121

Safetyo f mac hin ry Princ ip lesf or

des ig a drisk s es me tISO 1210 -1 a d ISO 14121

Sa fetyo f mac hin ry Princ ip lesf or

Safetyo f e lec tric al

Func tio a lsafe ty

formac hin ry

(SRECS)

(inc lu in EMCfor

ind striale viro me t

Func tio a lsafe ty ( FS)

(b sicsta dard)IEC 615 8 s rie

Func tio a lsafe ty (FS)

(b sicsta dard)

Ins talatio guide

(profie-sp c ific )

Instalatio guide

Sa fetyfunc tio s

f ordriv sProd c tsta d rd

Sa f etyreq ireme ts

f or o ots

Key

(y elow) safet y -relat ed st an ards

(blu ) field us-relat ed st an ards

(d sh d y elow) t his st an ard

NOT Su cla s s 6.7.6.4 (hig c mple ity) a d 6.7.8.1.6 (low c mple ity) of IEC 6 0 1 s e if y th relatio s ip

b twe n PL (Cate ory) a d SIL

IEC 78/1

Trang 11

Fig re 2 s ows the relation hips b twe n this stan ard an relevant saf ety an f ieldbu

stan ard in a proces en ironment

F nc tio a lsa fety (FS)

(b sicsta d rd)

IEC 61 5 s rie /

IEC 617 4-1, -2

Field us forusein

in ustria lc ontro ls y ste ms

IEC 61 5 s rie /

IEC 617 4-1, -2

Field us forusein

in ustria lc ontro ls y ste ms

Ins talatio g id

(pro file-s pec ific )

IEC 617 4-5

Ins talatio g id

(pro file-s pec ific )

IEC 61918

Ins talatio g id

(c om o np rtIEC 61918

Ins talatio g id

Sec urity

(c ommo n p rt

See safet y st andards for machinery

(Figure 1)

V al d also in process indust ries,

Sa fetyre uire me ts

for o o ts

Key

(y elow) safet y -relat ed st an ards

(blu ) field us-relate st an ards

(d sh d y elow) t his st an ard

a

For s e if i d ele troma n tic e viro me ts; oth rwis IEC 613 6-3-

b

EN ratifie

Figure 2 – Relations ips of IEC 617 4-3 with other sta dards (proc s )

Saf ety commu ication layers whic are implemented as p rts of safety- elated s stems

ac ordin to IEC 615 8 series provide the neces ary con den e in the tran p rtation of

mes ages (inf ormation) b twe n two or more p rticip nts on a fieldbu in a safety- elated

s stem, or s ff i ient confiden e of safe b haviour in the event of fieldbu er ors or fai ures

Safety commu ication layers sp cified in this stan ard do this in s c a way that a fieldbu

can b u ed f or a plcation req irin f un tional saf ety up to the Saf ety Integrity L vel (SIL)

sp cified by its cor esp n in fu ctional saf ety commu ication profi e

The res ltin SIL claim of a s stem de en s on the implementation of the selected fu ctional

saf ety commu ication profi e within this s stem – implementation of a fu ctional saf ety

commu ication profi e in a stan ard device is not s f ficient to q al fy it as a safety device

IEC 79 /1

Trang 12

This stan ard des rib s:

– b sic prin iples for implementin the req irements of IEC 615 8 series f or

safety-related data commu ication , in lu in p s ible tran mis ion faults, remedial

me s res an con ideration aff ecting data integrity;

– in ivid al des ription of fu ctional safety profi es for several commu ication profi e

f ami es in IEC 617 4-1 an IEC 617 4-2;

– safety layer exten ion to the commu ication service an protocols section of the

IEC 61 5 series

0.2 Pate t de laration

The International Electrotec nical Commis ion (IEC) draws at ention to the fact that it is

claimed that compl an e with this doc ment may in olve the u e of a p tent con ernin the

f un tional saf ety commu ication profi es f or f ami y 18 as fol ows, where the [x ] notation

in icates the holder of the p tent rig t:

DE 10 2 0 0 7 6 2.4-31 [PI Verf ahren u d Vor ic tu g z m Üb rtragen von

Daten in einem Netzwerk

IEC takes no p sition con ernin the eviden e, valdity an s o e of this p tent rig t

The holder of this p tent rig t has as ured the IEC that he/s e is wi in to negotiate lcen es

either f e of c arge or u der re sona le an non-dis riminatory terms an con ition with

a pl cants throu hout the world In this resp ct, the statement of the holder of this p tent

rig t is registered with IEC Inf ormation may b o tained f rom:

Information may b o tained fom:

F l x-Wan el-Str 2

7 7 0 Ostfi dern

GERMANY

At ention is drawn to the p s ibi ty that some of the elements of this doc ment may b the

s bject of patent rig ts other than those identified a ove IEC s al not b held resp n ible for

identifyin any or al s c p tent rig ts

ISO (www.iso.org/p tents) an IEC (htp:/www.iec.c / cto ls/p tent_decl.htm) maintain on

-lne data b ses of p tents relevant to their stan ard Users are en ouraged to con ult the

data b ses f or the most up to date information con ernin p tents

Trang 13

INDUSTRIA L COMMUNICA TION NETWORKS –

PROFILES

Part 3-18: Functional safety fieldbuses –

Additional specifications f or CPF 18

This p rt of the IEC 617 4-3 series sp cifies a saf ety commu ication layer (services an

protocol) b sed on CPF 18 of IEC 617 4-2 an IEC 61 5 Typ 2 It identif ies the prin iples

f or f un tional saf ety commu ication def i ed in IEC 617 4-3 that are relevant f or this safety

commu ication layer

NOT 1 It d e n t c v r ele tric l s fety a d intrin ic s fety a p cts Ele tric l s fety relate to h z rd s c

a ele tric l s o k Intrin ic s f ety relate to h z rd a s ciate with p te tialy e plo iv atmo p ere

This p rt defines mec anisms f or the tran mis ion of safety- elevant mes ages amon

p rticip nts within a distributed network u in fieldbu tec nolog in ac ordan e with the

req irements of IEC 615 8 series

2

for f un tional safety These mec anisms may b u ed in

variou in u trial a pl cation s c as proces control, man f acturin automation an

mac inery

This p rt provides g idelnes for b th develo ers an as es ors of compl ant devices an

s stems

NOT 2 Th re ultin SIL claim of a s stem d p n s o th impleme tatio of th s le te fu ctio al s f ety

c mmu ic tio profie within this s stem – impleme tatio of a f un tio al s f ety c mmu ic tio profie a c rdin to

this p rt in a sta d rd d vic is n t s ff i ie t to q alfy it a a s f ety d vic

The fol owin ref eren ed doc ments are in isp n a le for the ap l cation of this doc ment

F r dated referen es, only the edition cited a pl es For u dated referen es, the latest edition

of the referen ed doc ment (in lu in an amen ments) a pl es

IEC 61 5 -3-2 , Industrial c mmu ic tion n t works – Fiel d bus sp cific tions – Part 3-2 :

Data-l ink layer servic definit ion – Ty e 2 eleme ts

IEC 61 5 -4-2 , Industrial c mmu ic tion n tworks – F iel d bus sp cific tions – P art 4-2 :

Data-l ink l ayer prot oc l sp cific t io – Type 2 el eme ts

IEC 61 5 -5-2 , Industrial c mmu ic tion n t works – Fiel d bus sp cific tions – Part 5-2 :

Ap l i at ion la er servic definit io – Ty e 2 el eme ts

IEC 61 5 -6-2 , Industrial c mmu ic tion n tworks – Fiel d bus sp cific tions – Part 6-2 :

Ap l i ation la er proto ol spe ific t ion – Type 2 eleme ts

IEC 615 8 (al p rts), Fun tion l safety of electric l/ele tro ic/pro ramma le el ectro ic

safety-relat ed systems

_ _ _ _ _ _

1

In th f olowin p g s of this sta d rd, “this p rt wi b u e f or “this p rt of th IEC617 4-3 s rie ”

Trang 14

IEC 615 8-2:2 10, Fu ction l safety of el ectric l/ele tro ic/pro ramma l e ele tro ic s

afety-related systems – P art 2: Re uireme ts for electric l/ele tro ic/pro ramma le el ect ro ic

safety-rel at ed systems

IEC 617 4-2:2 10, Industrial c mmu ic t ion n tworks – Profil es – P art 2: Add ition l field bus

profil s for re l-t ime n t works b sed o ISO/IEC 8 0 -3

IEC 617 4-3:2 10, Industrial c mmu ic tio n tworks – P rofil es – Part 3: Fu ction l safety

fieldbuses – Ge eral rul es a d profil definitions

IEC 61918, I nd ustrial c mmu ic tio n tworks – I nstall t ion of c mmu ication n t works in

ind ustrial premises

ISO/IEC 10 31, Informat ion te h ol og – Op n system int erc n e t io – Basic refere c

mod el – Co vent ions for the d efinition ofOSI services

3 Terms, def initions, symbols, abbreviated terms a d conventions

3.1 Terms a d def initions

F r the purp ses of this doc ment, the fol owin terms an definition a ply

3.1.1 Common terms a d definitions

3.1.1.1

a ai abi ty

pro a i ty for an automated s stem that f or a given p riod of time there are no u satisf actory

s stem con ition s c as los of prod ction

ar an ement of hardware, sof tware an pro agation media to al ow the tran fer of mes a es

(ISO/IEC 7 9 a plcation layer) f rom one a pl cation to another

<value red n ant data derived f om, an stored or tran mited together with, a bloc of data

in order to detect data cor uption

<method> proced re u ed to calc late the red n ant data

NOT 1 Terms “CRC c d ” a d "CRC sig ature", a d la els s c a CRC1, CRC2, ma als b u e in this

Trang 15

NOT 2 Se als [3 ], [3 ]

3.1.1.7

er or

dis re an y b twe n a computed, o served or me s red value or con ition an the true,

sp cified or the retical y cor ect value or con ition

[IEC 615 8-4:2 10] [IEC 61 5 ]

NOT 1 Erors ma b d e to d sig mista e within h rdware/s f tware a d/or c ru te inf ormatio d e to

ele troma n tic interere c a d/or oth r ef fe ts

NOT 2 Erors d n t n c s ariy re ult in a fail ure or a fault

3.1.1.8

f ai ure

termination of the a i ty of a fu ctional u it to p rf orm a req ired f un tion or o eration of a

fu ctional u it in an way other than as req ired

NOT 1 Th d finitio inIEC 615 8-4 is th s me, with a ditio al n te

[IEC 615 8-4:2 10, modif ied] [ISO/IEC 2 8 -14.01.1 , modified]

NOT 2 Faiure ma b d e to a eror (f or e ample, pro lem with h rdware/s f tware d sig or me s g

disru tio )

3.1.1.9

f ault

a normal con ition that may cau e a red ction in, or los o the ca a i ty of a f un tional u it

to p rf orm a req ired fu ction

NOT IEV 191 0 -01 d f i e “a lt a a state c ara teriz d b th in bi ty to p rorm a re uire fu ctio ,

e clu in th in bi ty d rin pre e tiv mainte a c or oth r pla n d a tio s, or d e to la k of e tern l

re o rc s

[IEC 615 8-4:2 10, modif ied] [ISO/IEC 2 8 -14.01.10, modified]

3.1.1.10

fieldbus

c mmu ic tion system b sed on serial data tran fer an u ed in in u trial automation or

proces control a pl cation

red n ant data derived fom a bloc of data within a DLPDU (f ame), u in a has f un tion,

an stored or tran mit ed together with the bloc of data, in order to detect data cor uption

NOT 1 An FCS c n b d riv d u in f or e ample a CRC or oth r h s f un tio

Trang 16

NOT 2 Commo h s f un tio s in lu e p rity, c e k umor CRC.

[IEC/TR 6 210, modified]

3.1.1.14

h zard

state or set of con ition of a s stem that, together with other related con ition wi inevita ly

le d to harm to p rson , pro erty or en ironment

spuriou trip with no harmf ul ef fect

NOT Intern l a n rmal erors c n b c u e in c mmu ic tio s stems s c a wirele s tra smis io , for

e ample b to ma y retrie in th pre e c of interf ere c s

3.1.1.19

perf orma c le el (PL)

dis rete level u ed to sp cify the a i ty of safety- elated p rts of control s stems to p rorm a

saf ety fu ction u der f orese a le con ition

[ISO 13 4 -1]

3.1.1.2

existen e of me n , in ad ition to the me n whic would b s f ficient for a f un tional u it to

p r orm a req ired f un tion or for data to re resent information

[IEC 615 8-4:2 10, modif ied] [ISO/IEC 2 8 -14.01.12, modified]

3.1.1.21

ris

combination of the pro a i ty of oc ur en e of harm an the severity of that harm

NOT For more dis u sio o this c n e t s e An e A of IEC 615 8-5:2 10

[IEC 615 8-4:2 10] [ISO/IEC Guide 51:19 9, definition 3.2]

3.1.1.2

s fety communic tion la er (SCL)

commu ication layer that in lu es al the neces ary me s res to en ure safe tran mis ion of

Trang 17

s fety data

data tran mit ed acros a saf ety network u in a safety protocol

NOT Th Safety Commu ic tio L y r d e n t e s re s f ety of th d ta its lf , o ly th t th d ta is tra smite

s fely

3.1.1.2

s fety de ic

device desig ed in ac ordan e with IEC 615 8 an whic implements the fu ctional safety

commu ication profi e

3.1.1.2

s fety function

fu ction to b implemented by an E/E/PE safety- elated s stem or other ris red ction

me s res, that is inten ed to ac ieve or maintain a safe state for the EUC, in resp ct of a

sp cific hazardou event

NOT Th d finitio in IEC 615 8-4 is th s me, with a a ditio al e ample a d refere c

[IEC 615 8-4:2 10, modif ied]

3.1.1.2

s fety function re p ns time

worst case ela sed time fol owin an actuation of a saf ety sen or con ected to a fieldbu ,

b fore the cor esp n in safe state of its safety actuator(s) is ac ieved in the presen e of

er ors or fai ures in the saf ety fu ction c an el

NOT This c n e t is intro u e in IEC 617 4-3:2 10, 5.2.4 a d a dre s d b th fu ctio al s fety

c mmu ic tio profie d f i e in this p rt

3.1.1.2

s fety inte rity le el (SIL)

dis rete level (one out of a p s ible f our), cor esp n in to a ran e of saf ety integrity values,

where saf ety integrity level 4 has the hig est level of saf ety integrity an saf ety integrity level

1 has the lowest

NOT 1 Th targ t f aiure me s re (s e IEC 615 8-4:2 10, 3.5.17) for th f our s fety inte rity le els are

s e if i d in Ta le 2 a d 3 of IEC 615 8- :2 10

NOT 2 Saf ety inte rity le els are u e for s e if yin th s fety inte rity re uireme ts of th s f ety f un tio s to

b alo ate to th E/E/PE s f ety-elate s stems

NOT 3 A s f ety inte rity le el (SIL) is n t a pro erty of a s stem, s b y tem, eleme t or c mp n nt Th c re t

interpretatio of th p ra e “SIL s fety-elate s stem” (wh re n is 1, 2, 3 or 4) is th t th s stem is p te tialy

c p ble of s p ortin s fety fu ctio s with a s fety inte rity le el u to n

[IEC 615 8-4:2 10]

3.1.1.2

s fety me s re

<this stan ard> me s re to control p s ible commu ication er ors that is desig ed an

implemented in compl an e with the req irements of IEC 615 8

NOT 1 In pra tic , s v ral s f ety me s re are c mbin d to a hie e th re uire s f ety inte rity le el

NOT 2 Commu ic tio erors a d relate s fety me s re are d taie in IEC 617 4-3:2 10, 5.3 a d 5.4

3.1.1.2

s fety-relate appl c tion

programs desig ed in ac ordan e with IEC 615 8 to me t the SIL req irements of the

Trang 18

trip cau ed by the safety s stem without a proces deman

3.1.2 CPF 18: Ad itional terms a d def initions

u sig ed integer with wra to zero on overf low whic is u ed as me n to en ure

completenes an the rig t order of tran mited safety PDUs

a i ty of a s stem that, by adeq ate tec nical or organizational me s res, prevents hazard

either deterministical y or by red cin the ris to a tolerable me s re

seq en e of ro t device an al ordinary devices proces in the commu ication f rame in

forward an b c ward direction

3.1.2.8

prod c r/cons mer relations ip

relation hip where the prod cer sen s data to the con umer without a sp cific req est

Trang 19

s fety proc s data obje t (SPDO)

mec anism to c cl cal y ex han e saf ety proces data b twe n devices

commu ication relation hip with exactly one sen er an one or many receivers

3.2 Symbols a d abbre iate terms

3.2.1 Common s mbols a d abbre iate terms

CRC Cy lc Re u d n y Ch c

DLP U Data Lin Proto ol Data Unit

EMC Ele troma n tic Comp tibi ty

E/E/PE Ele tric l/Ele tro ic/Pro ramma le Ele tro ic [IEC 615 8-4:2 10]

FCS Frame Ch c Se u n e

F Fu ctio al Saf ety

F C Fu ctio al Saf ety Commu ic tio Pro le

Trang 20

3.2.2 CPF 18: Ad itional s mbols a d abbre iate terms

3.2.2.1 Additional abbre iate terms

Actu tor time Worst c s re p n e time of th a tu tor f or c n ersio

a d re ctio a c rdin to th s f ety f un tio

The at ributes of an o ject are des rib d in the f orm as s own in Ta le 1 The me nin of the

atributes is des rib d in the fol owin lst

• In ex des rib s the p sition within the safety o ject dictionary of an o ject

• Sub-in ex des rib s a sin le element of the o ject containin the folowin data It wi b

re e ted f or e c element of the o ject

– Name denotes a name strin for this atribute

Trang 21

– Object typ denotes the c aracterizin typ for e c o ject as sp cified in

IEC 61 5 -6-2

– Data Typ denotes the data typ of this element

– Category in icates whether the element is man atory (M), o tional (O) or de en s

up n set in of other atributes (C)

to in icate that this p rameter is not ma a le

– Value ran e contain the value ran e of a dedicated element or “No” for no

pre-defined value ran e

– Value contain the con tant value(s) an /or the me nin of the p rameter or “No” f or

no pre-defined value

The FSCP s ntax elements related to PDU stru ture are des rib d as s own in Ta le 2 The

me nin of the ta le column is des rib d in the fol owin lst

• Octet of fset denotes the off set of the DLPDU p rt relative to the start of the saf ety PDU

• Data field is the name of the element

• Value/Des ription contain the con tant value or the me nin of the p rameter

Table 2 – Safety PDU eleme t definition

Trang 22

The b sic profi es CP 18/1 an CP 18/2 are defined in IEC 617 4-2:2 10 The fu ctional

saf ety commu ication prof ile FSCP 18/1 (SafetyNET p™) is b sed on the CPF 18 b sic

profi es in IEC 617 4-2 an the safety commu ication layer sp cification def i ed in this p rt

FSCP 18/1 des rib s a saf ety protocol for tran fer in saf ety proces data up to SIL 3

b twe n FSCP 18/1 devices For the tran fer of the safety protocol, a s b rdinated fieldbu is

u ed that is not in lu ed in the safety con ideration (blac c an el ap ro c ) Safety data

ex han ed b twe n commu icatin p rtners is regarded as c clc proces data ex han ed

b twe n them by the s b rdinated f ieldbu

Figure 3 – FSCP 18/1 s stem

_ _ _ _ _ _

4

SafetyNE p is a tra e n me of Piz GmbH & Co KG This inf ormatio is giv n for th c n e ie c of u ers of

this Intern tio al Sta d rd a d d e n t c n titute a e d rs me t b IEC of th tra e n me h ld r or a y of

its pro u ts Compla c to this p rt d e n t re uire u e of th tra e n me SafetyNE p Us of th tra e

Trang 23

FSCP 18/1 u es a dedicated 1:n relation hip of the prod cer/con umer relation hip typ for

saf ety proces data commu ication an a 1:1 relation hip for the purp se of saf ety device

monitorin Fig re 3 s ows p s ible commu ication relation hips b sed on a CP 18/1 an

CP 18/2 network

For the re l zation of FSCP 18/1, the f ol owin safety me s res have b en c osen:

• ses ion n mb r (con ec tive n mb r);

• time exp ctation f or commu ication monitorin ;

• u iq e identif i ation of sen ers;

• c clc red n an y c ec in f or data integrity;

• diff erent data integrity as uran e s stems for safety an non-saf ety commu ication;

• p c et delay monitorin for dedicated commu ication relation hips

Eac device maintain a saf ety commu ication layer state mac ine, whic is co rdinated by

the saf ety a plcation Saf ety is en ured b sed on the SCL switc in to the s stem er or state

(i.e saf e state) as so n as an er or is detected

5.1 External doc me ts providing spe if ic tion for the profi e

The fol owin doc ment is u eful in u derstan in the desig of FSCP 18/1 protocol:

5.2 Safety f unctional re uireme ts

The f ol owin req irements s al a ply to the develo ment of devices that implement the

FSCP 18/1 protocol The same req irements were u ed in the develo ment of FSCP 18/1

• Req irements of IEC 615 8 s al b fulfi ed

• The FSCP 18/1 protocol is desig ed to s p ort Saf ety Integrity L vel 3 (SIL 3) (se

IEC 615 8)

• FSCP 18/1 protocol is implemented u in a blac c an el a pro c ; there is no safety

related de en en y on the stan ard CPF 18 commu ication profi es Tran mis ion

eq ipment s al remain u modif ied

• Safety commu ication an stan ard commu ication s al b in e en ent Safety devices

an stan ard devices s al b a le to u e the same commu ication c an el

• There s al alway b a 1:1 relation hip b twe n commu icatin devices f or device

monitorin purp se

• Saf ety commu ication s al u e a sin le-c an el commu ication s stem Red n an y

may only b u ed o tional y for in re sed avai a i ty

• Implementation of the saf ety protocol s al b restricted to the commu ication en

device hardware to ac ou t f or the commu ication c an el�

NOT In this wa , th u er of th d vic wi n t h v to a c u t f or th n mb r of lo ic l c n e tio s within a

s f ety f un tio �



Trang 24

The safety me s res u ed in the FSCP 18/1 to detect commu ication er ors are l sted in

Ta le 3 Al safety me s res s al b a pl ed an monitored within e c safety device

Table 3 – Commu ic tion er ors a d dete tion me s re

Commu ic tio er ors

In this sta d rd re lz d b “SID” a d “PID”

5.4 Saf ety communic tion la er structure

Fig re 4 s ows how the protocol is related to CPF 18 an Typ 2 The FSCP 18/1 saf ety

commu ication layer is located on to of the CPF 18 an Typ 2 a pl cation an data l n

layers an uti zes the non-safety services of CPF 18 an Typ 2 to tran fer saf ety PDUs

Fig re 4 – FSCP 18/1 sof tware arc ite ture

A saf ety proces data o ject (SPDO) containin the safety proces data, the identification

information an the req ired er or detection me s res is in lu ed in the Typ 2 proces data

o jects The ma pin of the saf ety proces data to SPDOs is done by entries in the safety

Trang 25

Fig re 4 – FSCP 18/1 sof tware arc ite ture

A saf ety proces data o ject (SPDO) containin the safety proces data, the identification

inf ormation an the req ired er or detection me s res is in lu ed in the Typ 2 proces data

o jects The ma pin of the safety proces data to SPDOs is done by entries in the safety

o ject dictionary

Monitorin of the time s n hronization of the safety a pl cation is re l zed u in a safety

he rtb at service (SHB)

The calc lation of the resid al er or pro a i ty for the FSCP 18/1 protocol takes no credit of

the er or detection mec anisms of the commu ication s stem The protocol can also b

tran f er ed via other commu ication s stems

5.5 Relation hips with FAL (a d DLL, PhL)

This safety commu ication layer is desig ed to b u ed in conju ction with CPF 18

commu ication profi es But it is not restricted to this commu ication profi e

5.5.2 Data Type

Profi es defined in this part s p ort al the CPF 18 data typ s as defined in IEC 61 5 -5-2

The en odin of these data typ s fol ows the en odin rules defined in IEC 61 5 -6-2

6 Saf ety communication lay r servic s

6.1 Ge eral eleme ts

The FSCP 18/1 provides the fol owin elements:

• saf ety o ject dictionary;

• saf ety proces data o ject (SPDO);

• saf ety he rtb at (SHB);

• saf ety delay monitorin (SDM)

6.1.2 Saf ety obje t dictionary

The saf ety o ject dictionary is the interf ace b twe n the safety a pl cation an the

commu ication s stem It is a groupin of o jects an sp cif ies u iform commu ication an

device p rameters for the saf ety- elated fu ctionalty The organization of o jects is adju ted

with the organization of CP 18/1 an CP 18/2 Ac es to saf ety o ject dictionary entries can

o tional y b re l zed by SDO services as def i ed in IEC 61 5 -5-2 an IEC 61 5 -6-2

This ac es s al b restricted to re d only (RO) ac es

6.1.3 Safety proc s data obje t (SPDO)

Saf ety proces data o jects s al provide the req ired services f or safety related proces data

ex han e b twe n certain commu icatin devices Saf ety proces data commu ication in

FSCP 18/1 is c clc, u in safety proces data o jects (SPDOs) The proces data

commu ication is splt into safety tran mit an receive proces data o jects (TxSPDOs or

RxSPDO)

6.1.4 Safety he rtbe t (SHB)

Devices whic implement FSCP 18/1 SCL u e SHB service f or a pl cation layer monitorin

an a pl cation monitorin This service is in e en ent of any other he rtb at services that

devices could implement in p ral el SHB mes ages are confirmed c cl c mes ages

ex han ed b twe n commu icatin devices an re l ze a 1:1 relation hip b twe n devices

BS EN 617 4-3-18:2 1 +A 1:2 17

IEC 617 4-3-18:2 1 +A 1:2 16– 2 –

Trang 26

6.1.5 Saf ety dela monitoring (SDM)

The safety delay monitorin service is u ed to monitor the delay of p c ets within a

commu ication relation hip of commu icatin devices This mec anism is b sed on a

confirmed service relation b twe n devices The service monitors that the time b twe n

prod cin the service req est an receivin the service confirmation do s not ex e d a

config ra le maximum delay Further on, the service monitors the time b twe n two

s c es ful delay me s rements This time s al not ex e d a con g ration de en ent time in

whic it would b p s ible that the delay arises over the maximum al owed delay

6.2 Communic tion relation

FSCP 18/1 defines a 1:n relation hip with prod cer/con umer relation hip for saf ety proces

data commu ication Prod cers s al c clcal y sen saf ety proces data o jects identified by

a u iq e PDO-ID f or p c et identification an a u iq e safety ID for prod cer identif i ation

Saf ety proces data o ject interaction is u confirmed Fig re 5 s ows the safety proces data

o ject interaction model (se ISO/IEC 10 31 for explanation of seq en e c art

Figure 5 – SPDO intera tion model

The state an presen e of commu ication p rtners (i.e prod cers an con umers) in

FSCP 18/1 is monitored in e en ently by e c p rticip tin device For al commu ication

relation f rom one dedicated device to one other dedicated device one he rtb at relation hip

is exec ted Th s, a 1:1 relation hip b twe n commu ication p rtners exists Saf ety

he rtb at commu ication fol ows the confirmed clent server relation hip Fig re 6 s ows

he rtb at interaction f or a saf ety proces data o ject relation hip The c cle time of the

he rtb at service is in e en ent f om other commu ication c cle times an de en s on the

saf ety fu ction resp n e time as wel as f rom the maximum al owed growth of mes age

del very time

IEC 73/1

Trang 27

Safety related proces data commu ication u in FSCP 18/1 is b sed on the folowin two

es ential comp nents:

• saf ety proces data o jects (SPDO);

• saf ety he rtb at (SHB)

The FSCP 18/1 commu ication c cle mainly con ists of c clc u confirmed ex han e of

saf ety proces data o jects A time exp ctation b havior is u ed on the con umer side to

monitor safety proces data ex han e an to detect commu ication fai ures Becau e of the

u con rmed interaction model an ad itional mec anism is req ired whic ena les the

detection of a f ai ed device an whic also ena les the detection of an in re sed PDU

delvery delay b sides the time exp ctation of the con umer This is re l zed by safety

he rtb at service Both mec anisms in combination define an o serve a commu ication

c cle

7 Saf ety communication lay r protocol

7.1 Saf ety PDU f ormat

7.1.1.1 PDU stru ture

A safety PDU con ists of either a saf ety proces data o ject (SPDO) or a safety he rtb at

(SHB) Whie the SPDO is u ed to commu icate the saf ety a pl cation data, the SHB is u ed

to s n hronise the commu icatin devices

7.1.1.2 Data inte rity

The receiver of a saf ety PDU s al verify the safety integrity of the data by c ec in b th

co ies of the data (SPDO or SHB) again t their CRCs an by comp rin the CRCs of the two

co ies of the data

If tran mis ion re etition are con g red, then e c rece tion s al b c ec ed as sp cified

a ove The rece tion of the saf ety PDU s al b tre ted as f ai ed if al re etition fai ed the

data integrity c ec

7.1.2 Saf ety proc s data obje ts (SPDO)

7.1.2.1 SPDO structure

Fig re 7 defines the stru ture of a safety proces data o ject an its data field

Figure 7 – Safety proc s data obje t structure

The SPDO is c cl cal y tran fer ed via the s b rdinate fieldbu The content of one SPDO

con ists of one or several safety a plcation o jects out of the safety o ject dictionary The

ma pin fom the safety o ject dictionary element to the SPDO is done by the SPDO ma pin

d ta 2

SID 2 Co s

n 2 CRC 2

IEC 7 4/

Trang 28

This data field s al contain the complete p c et len th in octets.

7.1.2.4 Saf ety data

This data field s al contain the safety a pl cation o jects ac ordin to the ma pin

config ration

In order to al ow the safety PDU to b tran p rted via a blac c an el whose tran fer

c aracteristic are not in lu ed in the saf ety con ideration , the amou t of data is restricted

f rom 0 to 1 7 octets For the data integrity as uran e s stem a pl ed by this FSCP the

resid al er or rate p r hour do s not ex e d 10

-9

as proven in 9.5.2

7.1.2.5 SPDO SID

This data field is a 16 bit identifier of the sen er This value s al b u iq e acros the

network Eac particip tin FSCP 18/1 device o tain one SID The SID of a device is stored

within the cor esp n in saf ety o ject dictionary entry with in ex 0x12 0 The SID s al not

b 0 The n mb r is generated by the network con g ration to l whic s al en ure the

u iq enes of the SPDO SID

7.1.2.6 SPDO cons c tiv number

This data f ield is an 8 bit con ec tive n mb r (c cl c cou ter) f or a pl cation layer l fe-sig

monitorin an p c et seq en in This numb r is generated by the sen er of the SPDO

7.1.2.7 SPDO CRC

This data f ield contain the 3 bit CRC coverin the data f ield PID, len th, data, SID an

con ec tive n mb r

7.1.2.5 SPDO SID

This data field is a 16 bit identifier of the sen er This value s al b u iq e acros the

network Eac p rticip tin FSCP 18/1 device o tain one SID The SID of a device is stored

within the cor esp n in safety o ject dictionary entry with in ex 0x12 0 The SID s al not

b 0 The n mb r is generated by the network config ration to l whic s al en ure the

u iq enes of the SPDO SID

This data field is an 8 bit con ec tive n mb r (c cl c cou ter) f or a pl cation layer l f e-sig

monitorin an p c et seq en in This n mb r is generated by the sen er of the SPDO

m = 1 for proto ol v rsio 1

NOT 1 n is th le gth in o tets of th d ta fields fety d ta 1 (s fety d ta 2)

NOT 2 m is th le gth of th c n e utiv n mb r d p n in o th proto ol v rsio (s e 7.1.3.4)

7.1.2.4 Saf ety data

Re lac , in this s b lau e, s c nd p ra ra h:

“1 7 octets” b “1 5 octets for protocol version 2 or resp ctively 1 7 octets f or protocol

version 1”

7.1.2.6 SPDO cons c tiv n mber

Re lac , in this s b lau e, “an 8 bit b “a”

Ad d, at the end of this s b lau e, the followin tex t :

The size of the con ec tive n mb r de en s on the protocol version (se 7.1.3.4) an is 1

octet for protocol version 1 an 3 octets f or protocol version 2

In order to al ow the saf ety PDU to b tran p rted via a blac c an el whose tran f er

c aracteristic are not in lu ed in the saf ety con ideration , the amou t of data is restricted

f rom 0 to 1 5 octets f or protocol version 2 or resp ctively 1 7 octets f or protocol version1�

For the data integrity as uran e s stem a pl ed by this FSCP the resid al er or rate p r hour

do s not ex e d 10

-9

as proven in 9�5�2�

This data f ield is a con ec tive n mb r (c cl c cou ter) f or a pl cation layer lf e-sig

monitorin an p c et seq en in � This n mb r is generated by the sen er of the SPDO�

The size of the con ec tive n mb r de en s on the protocol version (se 7�1�3�4) an is 1 octet

f or protocol version 1 an 3 octets f or protocol version 2�





Trang 29

This data f ield is an 8 bit con ec tive n mb r (c cl c cou ter) for a pl cation layer l fe-sig

monitorin an p c et seq en in This numb r is generated by the sen er of the SPDO

Fig re 8 s ows the stru ture of a safety he rtb at req est PDU

Figure 8 – Safety he rtbe t re ue t structure

Ta le 5 lsts the general stru ture of this PDU

This data f ield contain the 3 bit CRC coverin the data f ield PID, text deleted data,

9 n m to 12 n m C C 1 3 bit c clc re u d n y c e k c v rin d ta field PID,

SCL state 1, Safety AP state 1, SID 1 a d c n e utiv

n mb r 1

14 n m to 14 2 +m- Safety AP state 2 Co y of s fety a plc tio pro e s state 1

NOT 1 n is th le gth in o tets of th d ta field Safety AP state

NOT 2 m is th le gth of th c n e utiv n mb r, d p n in o th proto ol v rsio (s e 7.1.3.4)





Trang 30

Fig re 9 s ows the stru ture of a safety he rtb at resp n e PDU.

Fig re 9 – Safety he rtbe t re pon e structure

PID L n th SID 1 Co s

n 1CRC 1 SID 2 Co s

n 2CRC 2

IEC 76/

Table 6 – SHB re pons PDU structure

This data field s al contain the complete p c et len th in octets

7.1.3.4 SHB s fety communic tion la er state

This data f ield s al contain state information a out the SCL This information is interpreted by

SHB receivers Ta le 7 sp cifies the en odin of the content of this data field

Table 7 – SHB s fety communic tion la er state e coding

0 0 F FAL is in BOOTU state

0 0 F FAL is in S OP ED state

0 0 F FAL is in OPERATIONAL state

0 7F F FAL is in PRE-OPERATIONAL state

7.1.3.5 SHB s fety AP state

This data f ield s al contain state information a out the safety a plcation The content an

en odin of this data f ield are a pl cation de en ent an are outside the s o e of this

international stan ard The len th is restricted f rom 0 to 1 6 octets

7.1.3.6 SHB SID

This data field is the 16 bit identif ier of the sen er This value s al b u iq e acros the

network Eac p rticip tin FSCP 18/1 device o tain a SID The SID of a device is stored

b 0 The n mb r is generated by the network config ration to l whic s al en ure the

BS EN 617 4-3-18:2 1

Table 6 – SHB re pons PDU structure

This data field s al contain the complete p c et len th in octets

7.1.3.4 SHB s fety communic tion la er state

This data f ield s al contain state information a out the SCL This information is interpreted by

SHB receivers Ta le 7 sp cifies the en odin of the content of this data field

Table 7 – SHB s fety communic tion la er state e coding

0 0 F FAL is in BOOTU state

0 0 F FAL is in S OP ED state

0 0 F FAL is in OPERATIONAL state

0 7F F FAL is in PRE-OPERATIONAL state

This data f ield s al contain state information a out the safety a plcation The content an

en odin of this data f ield are a pl cation de en ent an are outside the s o e of this

Table 6 – SHB re p ns PDU structure

Re lac , in this s b lau e, the ex istin Ta le 6 b the followin n w table:

Table 6 – SHB re pon e PDU structure

a plc tio mo itorin wh re:

NOT m is th le gthof th c n e utiv n mb r, d p n in o th proto ol v rsio (s e 7.1.3.4)

7.1.3.4 SHB s f ety communic tion la er state

Table 7 – SHB s f ety commu ic tion la er state e coding

Re lac , in this s b lau e, the ex istin Ta le 7 b th followin n w table:

Table 7 – SHB s f ety communic tion la er state e codin

0 0 F FAL is in OP RATION L state Versio 1

0 7F F FAL is in PRE-OP RATION L state Versio 1

0 10 F FAL is in BOOTUP state Versio 2

Ad d , in this s b lau e, after Ta le 7 , a la t p ra ra h:

The device s al s p ort at le st one protocol version The FS FAL state s al b en oded

ac ordin to Ta le 7 de en in on the u ed protocol version It is recommen ed to s p ort al

protocol version

7.1.3.5 SHB s f ety AP state

Re lac , in the last s nten e of this s b la s : “1 6 octets” b “1 4 octets f or protocol

version 2 or resp ctively 1 6 octets for protocol version 1”





Trang 31

7.1.3.6 SHB SID

This data field is the 16 bit identifier of the sen er This value s al b u iq e acros the

u iq enes of the SHB SID

This data field s al contain state information a out the safety a pl cation The content an

en odin of this data field are a plcation de en ent an are outside the s o e of this

7.1.3.6 SHB SID

This data field is the 16 bit identifier of the sen er This value s al b u iq e acros the

u iq enes of the SHB SID

The p ly omial 0x2 0 4 0 is u ed for calc latin the CRCs For detai s se 7.1.3.5 an

9.5.2

7.1.4 Saf ety PDUs embe de in a Type 2 PDU

Fig re 10 s ows the stru ture of a FSCP 18/1 saf ety PDU emb d ed in a Typ 2 CDC

DLPDU The presen e of IP an UDP he der information de en s on the u ed

commu ication prof ile For detai s a out the Typ 2 DLPDU ref er to IEC 61 5 -4-2

This data field is an 8 bit con ec tive n mb r (c cl c cou ter) f or a pl cation layer l f e-sig

monitorin an p c et seq en in In the event of a resp n e PDU this data field contain the

con ec tive n mb r of the PDU confirmed by this resp n e This n mb r is generated by the

Fig re 10 s ows the stru ture of a FSCP 18/1 safety PDU emb d ed in a Typ 2 CDC

DLPDU The presen e of IP an UDP he der inf ormation de en s on the u ed

commu ication profi e For detai s a out the Type 2 DLPDU refer to IEC 61 5 -4-2

Fig re 10 s ows the stru ture of a FSCP 18/1 safety PDU emb d ed in a Typ 2 CDC

DLPDU The presen e of IP an UDP he der inf ormation de en s on the u ed

commu ication profi e For detai s a out the Type 2 DLPDU refer to IEC 61 5 -4-2

Table 7 – SHB s f ety communic tion la er state e codin

0 10 F FAL is in BOOTUP state Versio 2

Ad d , in this s b lau e, after Ta le 7 , a last p ra ra h:

The device s al s p ort at le st one protocol version The FS FAL state s al b en oded

ac ordin to Ta le 7 de en in on the u ed protocol version It is recommen ed to s p ort al

protocol version

7.1.3.5 SHB s f ety AP state

Re lac , in the la t s nten e of this s b la s : “1 6 octets” b “1 4 octets f or protocol

version 2 or resp ctively 1 6 octets for protocol version 1”

The device s al s p ort at le st one protocol version� The FS FAL state s al b en oded

ac ordin to Ta le 7 de en in on the u ed protocol version� It is recommen ed to s p ort al

protocol version �



This data f ield s al contain state inf ormation a out the saf ety a pl cation� The content

an en odin of this data f ield are a pl cation de en ent an are outside the s o e of this

international stan ard� The len th is restricted f rom 0 to 1 4 octets f or protocol version 2 or

resp ctively 1 6 octets f or protocol version 1�

This data f ield is a con ec tive n mb r (c cl c cou ter) f or a pl cation layer lf e-sig

monitorin an p c et seq en in � In the event of a resp n e PDU this data f ield contain the

con ec tive n mb r of the PDU con rmed by this resp n e� This n mb r is generated by the

sen er of the SHB�

The size of the con ec tive n mb r de en s on the protocol version (se 7�1�3�4) an is 1 octet

f or protocol version 1 an 3 octets f or protocol version 2�



This data f ield contain the 3 bit CRC coverin the data f ield PID, text deleted data,

SID an con ec tive n mb r�

Trang 32

Figure 10 – Safety PDU f or FSCP 18/1 embe de in a Type 2 CDC data s ction

7.2 Saf ety communic tion la er ma a eme t (SALMT)

By the local SALMT service it is p s ible to trig er the state mac ine of the SCL an th s to

control the b havior of the saf ety p rt of a device

The SALMT comman s as sp cif ied in Ta le 8 are avai a le

Table 8 – SALMT comma ds

0 01 Re et c mmu ic tio

0 0 Enter pre p ratio al

Fig re 1 s ows the SALMT state mac ine Al states of the state mac ine s al b

Trang 33

Figure 1 – SALMT state ma hine

The local management comman s are related to the tran ition an states in the SALMT state

mac ine, as sp cif ied in Ta le 9 an Ta le 10

Table 9 – Sy tem state of SALMT state ma hin

1 Start u Virtu l state after d vic start-u

IEC 78/1

Trang 34

Table 10 – State tra sitions SALMT state ma hine

c mma d e ter “PreOp ratio al” state

En ble s n in a d re eivin

of SHB P Us Dis ble s n in

a d re eivin of SP O P Us

c mma d start remote n d

En ble s n in a d re eivin

of SP O a d SHB P Us

c mma d sto remote n d

f ault d rin initialz tio

7.3 Saf ety proc s data communic tion

Safety proces data commu ication is b sed on a 1:n relation hip of the prod cer/con umer

relation hip typ No confirmation mes ages are u ed Commu ication relation hips are

config red d rin s stem con g ration phase There exists no f urther onl ne con ection

management

A time exp ctation b havior is u ed on the con umer side to monitor safety proces data

ex han e an to detect commu ication f ai ures The SPDO c cle time is monitored with an

a pro riate time ut mec anism Furthermore, prod cer an con umer monitor the p c et

delay to identify an u ac e ta le in re se

Fig re 12 s ows the RxSPDO state mac ine This state mac ine is a pl ed for e c

config red RxSPDO Al states s al b s p orted

Tiêu đề	Profiles Part 3-18: Functional Safety Fieldbus Specifications
Trường học	British Standards Institution
Chuyên ngành	Industrial Communication Networks
Thể loại	Standard
Năm xuất bản	2011
Thành phố	London

Định dạng
Số trang	68
Dung lượng	1,87 MB