• State Resolved
  • Locked Locked
  • Replies 7 replies
  • Subscribers 32 subscribers
  • Views 2253 views
  • Users 0 members are here
Support feedback
Options
Options
Related

This thread has been locked.

If you have a related question, please click the "Ask a related question" button in the top right corner. The newly created question will be automatically linked to this question.

Safety Certification

Hassan Haroon
Intellectual 830 points

Hello,

I need to know that if e.g i made a system with TI safe MCU. what need to be done to make it Certified? For example if i developed a Positioning System with TI RM46x mcu. which certification do i need and what else i have to do to make it certified? thanks

  • 0
    Expert 1995 points

    In order to have an answer to that question, you first would want to determine which safety standard would want a product to be certified in.

  • 0 in reply to NeilBerry_at_Parker
    Intellectual 830 points
    I am a student and its my thesis topic. i have to suggest the safety standard as well. As far as i have searched i think for the functional safety the IEC 61508 will be a good option. what do you think? can you guide which would be the best certification standard for that type of systems?
  • 0 in reply to Hassan Haroon
    Expert 1995 points
    IEC 61508 is a safety standard that is a basis for several other standards. Itself, the IEC 61508 demands that situational risk to people be assessed (and mitigated). A human-free plant that is located on an island far from any people would have only economic risk, and the same plant in a crowed city would have higher safety demand to prevent risk to people. There is much more to IEC 61508, but does this describe the safety situation you are concerned with? Is it a situation where you build something with a MCU for a particular plant at a particular location and want the device at that plant certified?
  • 0 in reply to NeilBerry_at_Parker
    Intellectual 830 points
    The system is a human robot collaboration safety system. In which in a working environment if a worker with that system on his body goes near to the robot the robot will know the position of the worker and it will take measures according to that e.g the robot will be stopped or make it speed slow. Now the idea is we have the safe system w.r.t functionality and what if we also make it certified as well. I dont know which standards do i need w.r.t to this scenario.
  • 0 in reply to Hassan Haroon
    Expert 1995 points
    If you are building this feature as a part a "safety integrated feature" at a particular plant, then IEC 61508 is the correct standard. If it is a feature that you want to sell, then it would need be certified according to some different standard (13489, 26262,..).

    Based on your description, it would not be a sold part that would need to meet a "equipment under control" classification. Though it might need some kind of EUC parts to complete the safety function.

    Let us consider this as a IEC 61508 situation: it would be set of safety goals where requirements are determined before works starts, with validation goals specified early on, and scope of life design goals, testing requirements, maintenance plans, and replacement schedules. You would build the devices to perform a safety integrated function and seek certification of the devices. The reliability of the MCU would become a part of failure rate calculations for the device and the documentation of the MCU might be a part of "best practices" and "well known technologies" attributes. If you fail to build a device with acceptable reliability for the risk level, the other attributes will not help.
  • 0 in reply to NeilBerry_at_Parker
    TI__Guru**** 196776 points
    Hello Hassan,

    There are several safety standards covering many industries. The Hercules MCUs were designed from the ground up for use in IEC 61508 SIL-3 safety system. The device architecture provides protection against both random and systematic failures, provides headroom for customer application differentiation, and allows for simplified development and safety certification.

    The device architecture provides protection against both random and systematic failures, provides headroom for customer application differentiation, and allows for simplified development and safety certification.

    1. in which industry is your system planning to be used? If the industry doesn't have its own safety standard, please use IEC61508.
    2. What are the required safety functions: hazards and safety functions
    3. the assessment of the risk reduction required by the safety function: safety integrity level (SIL)
    4. ensure the safety functions perform to your design intent including under the conditions of incorrect operator input and failure modes.
    5. verify your system meets the assigned SIL: SFF, FIT etc (please refer to TI FMEDA)
    6. functional safety audits to examine and assess the evidence that the appropriate safety lifecycle management techniques were applied consistently and thoroughly in the relevant lifecycle stages of product.

    I recommend you to consult with the certification agency to get more information about the certification process.

    Regards,
    QJ
  • 0 in reply to Hassan Haroon
    TI__Guru 59540 points

    Hassan,

    First, the simple use of the Hercules certified device doesn't get you to a certified system. What the device level certification means is you can use the device and it's identified safety mechanisms to protect from the Random faults that are covered by the safety standards as well as potential systematic faults that could be generated by the software you develop for the MCU/system. Each of the safety standards would need to be applied at a system level which means that you would need to first develop your system safety requirements, complete your qualitative and quantitative analysis, enter the design phase, then validation etc. There is a model that is recognized as the required model for functional safety development that goes from the development side to life cycle management to end of life. It is a holistic approach with very intentional and planned activities from start to finish. In a since the physical product is simply a by product of the process and the process is the core of the functional safety development. Documentation and adherence to the process is of the upmost importance. Here is a depiction of the V-Model Safety Lifecycle provided in a diagram based on one received from our assessor, TUEV SUED.

    As you can see by the responses, your question is a very high level question. In general, it sounds like the primary application for your design would be industrial automation. For any industrial automation project that is to be sold on the global market (especially in Europe), EN/ISO13849 is a required standard to be incompliance with. The details of what need to be done from a safety point of view are dependent on what level of safety is needed. (EN/ISO13849 uses a Category number and performance level to define safety levels). This standard also imposes some HW architecture requirements dependent on the safety levels targeted but, with Hercules, there are some exceptions that we have successfully argued. In most cases, the developers also target a SIL level according to IEC61508 in parallel with the EN/ISO13849 safety targets because the IEC61508 standard has a lot in common and is referred from the EN/ISO13849.

    As this is a very broad topic, I would recommend you first have a look at some of the training materials that TI has for our customer. For certain, these are not comprehensive and may have some gaps still, they are a good start to beginning your learning curve. In the end it is best to read and understand the standards and perhaps even evaluate taking formal Functional Safety Training from an accredited assessment house.

    Some links to helpful content:

    "A Brief Introduction to Functional Safety"

    "Hercules Platform & Safety Feature Overview"

    Defining the impact of functional safety e-book

    Link to SafeTI Video resources for Safety Training and General Information

    Hopefully this material is helpful. You can also find a fairly long list of application notes on the Hercules product pages. Start looking here: ti.com/hercules