• State Resolved
  • Locked Locked
  • Replies 1 reply
  • Subscribers 29 subscribers
  • Views 1189 views
  • Users 0 members are here
Support feedback
Options
Options
Related

This thread has been locked.

If you have a related question, please click the "Ask a related question" button in the top right corner. The newly created question will be automatically linked to this question.

Original question:

TMS570LC4357: ISO 13849-1 example circuit with TPS65381-Q1 to meet Category 3

functional safety according ISO13849 and IEC61508

Philipp Baudermann
Prodigy 20 points

Hello,

You offer microcontrollers that meet the standard ISO13849 Cat.3 PL d (1oo2).

Here you advertise on your homepage with "Functional safety for industrial motor drives".

Can you please summarize the following points for me:

- Which of your microcontrollers are suitable for these needs?

- What do you offer on software packages / libraries?

- To what extent are the microcontrollers and the software packages / libraries certified?

- What kind of implementation does this mean for us for the application?

- How much in-house development do we have to do to keep the microcontroller rudimentary run (RAM checks, ROM checks, runtime checks, ...)?

- What will be your support for hardware and software development?

Thank you very much.
Kind regards,

P. Baudermann

  • 0
    TI__Mastermind 49120 points

    Hello,

    See my comments below.

    - Which of your microcontrollers are suitable for these needs?

    >> TI has several microcontrollers (MCUs) that can be used for motyor drive applications targeting functional safety standards such as IEC 61508 or ISO 13849. Hercules MCUs are designed for use in functional safety applications up to SIL3 / ASIL-D. There are also some C2000 MCUs that can be used in safety applications. You may require two MCUs to meet the Cat 3 PL d requirements depending on the safety function to be implemented. A "Safe Torque Off" sate state can be achieved using a single Hercules MCU with an external safety monitor such as a TPS65381A. Safety functions such as "Safe Stop 1", "Safe Stop 2", etc. would require at least two separate independent channels to carry out the safety function in the presence of a single fault.

    - What do you offer on software packages / libraries?

    >> Check out software packages offered on C2000 MCUs here: http://www.ti.com/microcontrollers/c2000-real-time-control-mcus/design-development.html#software

    Software offered on Hercules MCUs is listed here: 

    Note that Hercules MCUs share several of the same timing and control peripherals as the C2000 MCUs, so it is possible to port applications over from C2000 MCUs to Hercules MCUs.

    - To what extent are the microcontrollers and the software packages / libraries certified?

    >> TI does not offer certified software packages or libraries. Rather we have certified the development process that is used to create these software libraries and packages. We provide compliance support packages (CSPs) which allow you to generate the required coverage and test reports to provide as evidence to your system assessors.

    - What kind of implementation does this mean for us for the application?

    - How much in-house development do we have to do to keep the microcontroller rudimentary run (RAM checks, ROM checks, runtime checks, ...)?

    >> Hercules MCUs implement many safety mechanisms and online diagnostics in hardware. These are either always-ON or are enabled by simple instructions from the application. The value of having these mechanisms implemented in hardware is to minimize the application requirements for enabling and using these mechanisms.

    - What will be your support for hardware and software development?

    >> Support is typically provided over this E2E forum. We also have several training modules that you can find online at https://training.ti.com/hercules.

    Regards,

    Sunil