Siemens Welding System ST PCS 7 User Manual
Automation systems
Safety-related automation systems
10/24
Siemens ST PCS 7 · Update November 2008
10
■
Overview
Safety-related automation systems are used for critical applica-
tions where a fault could endanger life or result in damage to the
plant or the environment. These F/FH systems frequently re-
ferred to as "fail-safe automation systems" detect both faults in
the process and their own internal faults in association with the
safety-related F modules of the ET 200 distributed I/O systems
or fail-safe transmitters connected directly via the fieldbus. They
automatically transfer the plant to a safe state in the event of a
fault.
tions where a fault could endanger life or result in damage to the
plant or the environment. These F/FH systems frequently re-
ferred to as "fail-safe automation systems" detect both faults in
the process and their own internal faults in association with the
safety-related F modules of the ET 200 distributed I/O systems
or fail-safe transmitters connected directly via the fieldbus. They
automatically transfer the plant to a safe state in the event of a
fault.
■
Design
In general, two design versions are differentiated across all ar-
chitectural levels of a system based on Safety Integrated for
Process Automation:
chitectural levels of a system based on Safety Integrated for
Process Automation:
• Single-channel, non-redundant design
• Redundant, fault-tolerant design
These two design versions are highly variable and offer a wide
scope for design with regard to different customer requirements.
Standard (basic process control) and safety-related functions
can be combined flexibly, not only in the area of distributed I/O.
scope for design with regard to different customer requirements.
Standard (basic process control) and safety-related functions
can be combined flexibly, not only in the area of distributed I/O.
Even at the controller level, they can be combined in one system
or separated. In addition, there are numerous possibilities aris-
ing from the use of flexible modular redundancy.
or separated. In addition, there are numerous possibilities aris-
ing from the use of flexible modular redundancy.
At the individual architectural levels (controller, fieldbus, distrib-
uted I/O) the configuration alternatives shown in the figure are
available depending on the distributed I/O used (ET 200M and
ET 200S remote I/O stations or PROFIBUS PA devices accord-
ing to Profile 3.0).
uted I/O) the configuration alternatives shown in the figure are
available depending on the distributed I/O used (ET 200M and
ET 200S remote I/O stations or PROFIBUS PA devices accord-
ing to Profile 3.0).
Design versions for safety-related systems
ET 200M
ET 200M
ET 200M
ET 200M
ET 200M
ET 200M
PROFIBUS PA
PROFIBUS PA
PROFIBUS PA
PROFIBUS PA
ET 200S
ET 200S
ET 200M
AS 412F/
AS 414F/
AS 417F
AS 414F/
AS 417F
AS 412FH/
AS 414FH/
AS 417FH
AS 414FH/
AS 417FH
AS 412FH/
AS 414FH/
AS 417FH
AS 414FH/
AS 417FH
PROFIBUS DP
PROFIBUS DP
PROFIBUS DP
F-modules
F-modules
Active field
splitter
splitter
Active field distributors
F- and standard modules
F- and standard modules
Flexible Modular Redundancy
at module or device level
at module or device level
F- and standard modules
F- and
standard
modules
standard
modules
Standard modules
Standard modules
Module or channel
redundancy over
several separate
stations
redundancy over
several separate
stations
DP/PA Link
DP/PA Link
with redundant
DP/PA couplers
DP/PA couplers
DP/PA Link
with redundant
DP/PA couplers
DP/PA couplers
PROFIBUS PA
DP/PA Link
Y-Link
Distributed I/O and
direct fieldbus interfacing
direct fieldbus interfacing
Direct fieldbus interfacing
Distributed I/O
Redundant, high-availability
and fault-tolerant configuration
and fault-tolerant configuration
Single-channel,
non-redundant configuration
non-redundant configuration
© Siemens AG 2008