DMC5 Inverter safety unit (ISU) Handout

Similar documents
CT433 - Machine Safety

Safety-critical systems: Basic definitions

Safety Critical Systems

Functional Example CD-FE-I-029-V30-EN Safety-related controls SIRIUS Safety Integrated

D-Case Modeling Guide for Target System

Service & Support. Questions and Answers about the Proof Test Interval. Proof Test According to IEC FAQ August Answers for industry.

Safety Manual. Process pressure transmitter IPT-1* 4 20 ma/hart. Process pressure transmitter IPT-1*

Safety Manual VEGAVIB series 60

Reliability of Safety-Critical Systems Chapter 3. Failures and Failure Analysis

Safely on the way in the automotive and Tier 1 supplier industry

Safety Manual VEGAVIB series 60

Missing no Interaction Using STPA for Identifying Hazardous Interactions of Automated Driving Systems

Control Units for Oil+Air Lubrication

Using what we have. Sherman Eagles SoftwareCPR.

Qualità e Sicurezza A cura di Aicq e Anfia. Torino, Lingotto Fiere 18 aprile 2013

Pressure maintenance valve SDV-P / SDV-P-E

Valve Communication Solutions. Safety instrumented systems

Driver Training School Instructor Curriculum Requirements for Student Learning & Performance Goals

Functional safety. Functional safety of Programmable systems, devices & components: Requirements from global & national standards

Introduction to Machine Safety Standards

Exercise 3-2. Two-Wire and Three-Wire Controls EXERCISE OBJECTIVE DISCUSSION OUTLINE DISCUSSION. Two-wire control

Safety Manual OPTISWITCH series relay (DPDT)

CHAPTER 28 DEPENDENT FAILURE ANALYSIS CONTENTS

Vehicle Components. (High)/15765 (CAN) Cab Controller - Primary. PACCAR CECU3 N/A (High)/15765 (CAN) Vehicle Key Data Points

Ch.5 Reliability System Modeling.

Proof Testing A key performance indicator for designers and end users of Safety Instrumented Systems

SIDRA INTERSECTION 6.1 UPDATE HISTORY

Table 1: Safety Function (SF) Descriptions

A4s Operation Manual

Doppelmayr Connect: Welcome to the future

2600T Series Pressure Transmitters Plugged Impulse Line Detection Diagnostic. Pressure Measurement Engineered solutions for all applications

Procedure Troubleshooting the Interconnect Cables

THE CANDU 9 DISTRffiUTED CONTROL SYSTEM DESIGN PROCESS

Safety in pneumatic automation


Road Data Input System using Digital Map in Roadtraffic

Real-Time & Embedded Systems

The Safety Case. Structure of Safety Cases Safety Argument Notation

TECOTHERM NEO. Instructions for Use. MEDICAL EQUIPMENT for HYPOTHERMIA of NEONATES and INFANTS. Addendum 1 to

Control & Maintenance. INT69 Diagnose INT69 TM Diagnose. Protect the heart of your system

MIL-STD-883G METHOD

OMS Technical Information Technical data

The Safety Case. The safety case

AN31E Application Note

System description Electric gripper EGP with safety functions

LENNOX SLP98UHV DIAGNOSTIC CODES

M-06 Nitrogen Generator (Nitrogen Making Machine)

Application Note. Safety Sub-function PUS Category 1, up to PL c. Application Note PUS, Category 1, up to PL c M20 S22 R20 M1 Q20

Understanding safety life cycles

Job Sheet 1. Geothermal Energy

Safety Manual VEGASWING 61, 63. NAMUR With SIL qualification. Document ID: 52084

The Discussion of this exercise covers the following points:

Functional Development Process of the electric Anti-Roll-Stabilizer ears. Dipl. Ing. Daniel Lindvai-Soos Dr. techn.

EXPERIMENTAL STUDY OF EXOSKELETON FOR ANKLE AND KNEE JOINT

Vehicle Components. (High)/15765 (CAN) Cab Controller - Primary. PACCAR CECU3 N/A (High)/15765 (CAN) Vehicle Key Data Points

Engr2110. Week 6 Product Safety/Liability

5 CIRCULATION AND STREET DESIGN

VENTILATION OF PROTECTED AREAS IN ROAD TUNNELS

Vibrating Switches SITRANS LVL 200S, LVL 200E. Safety Manual. NAMUR With SIL qualification

USER MANUAL. JET TST and JET TST S.

Water Level Indicator Project

BERKSHIRE II: AN EXPERIENTIAL DECISION MAKING EXERCISE. Tom F. Badgett, Texas Christian University Halsey R. Jones, Texas Christian University

Solaris Nitrogen. Installation Guide. Solaris Nitrogen Installation Guide Rev 1 PN IG /09/16

Gripping rotary modules

Test and Adjustment Instructions Compressed Air Processing System Air Processing Unit (APU)

INTERNATIONAL SKATING UNION

Distributed Control Systems

A study on the relation between safety analysis process and system engineering process of train control system

Product Overview. Product Description CHAPTER

Classification according to PED 97/23/EG results in categories, depending on:

Achieving Compliance in Hardware Fault Tolerance

Safety-critical systems: Basic definitions

FACTORS OF DIFFICULTY IN SYNCHRONIZED SKATING

CASE STUDY. Compressed Air Control System. Industry. Application. Background. Challenge. Results. Automotive Assembly

Manual Power relay SR853

Dimensions [All numbers in brackets are in millimeters.] K4-2 US (supplied) 1/2" Centered (Default)

OMS, OMT and OMV Orbital Motors. Technical Information

Rescue Rover. Robotics Unit Lesson 1. Overview

FTC130 Transmitter. Operating Manual

SIP 1000 OPERATION AND PROGRAMMING MANUAL

Operating Instructions Spare parts list

e.do Gripper Safety requirements, technical features and assembly and integration instructions

OMS Technical Information. Versions OMS. Versions

PROCESS AUTOMATION SIL. Manual Safety Integrity Level. Edition 2005 IEC 61508/61511

USER MANUAL OPERATION AND THE USE OF A CAR WITH. Diego G3 / NEVO SEQUENTIAL GAS INJECTION SYSTEM

INTRODUCTION TO SIGNAL TIMING & TRAFFIC CONTROL

Purpose. Scope. Process flow OPERATING PROCEDURE 07: HAZARD LOG MANAGEMENT

The RCM Analyst - Beyond RCM

Failure Modes, Effects and Diagnostic Analysis

CONTROL LOGIC DESCRIPTION DOCUMENT IC-410ND

Re: ENSC 440 Functional Specification for the Wall Climbing Robot. Dear Mr. Leung,

HW #5: Digital Logic and Flip Flops

BTW Lesson 5. Traffic Flow

KENNEDY VALVE OPERATION & MAINTENANCE MANUAL

Roller AC Servo System

User Manual. Heads-Up Display (HUD) DiveCAN. Mechanical Button Version

Vestas Cold Climate Solutions and next stepsclimate Offerings

LEGO Engineering Conferences ROBOLAB and MINDSTORMS Education Version 4.5 March 2008

Along-string pressure, temperature measurements hold revolutionary promise for downhole management

Chapter 2: Standards for Access, Non-Motorized, and Transit

Transcription:

DMC5 Inverter safety unit (ISU) Handout Version 1.0 BRUSA Elektronik AG Neudorf 14 CH-9466 Sennwald +4181 758 19 00 info@brusa.biz www.brusa.biz

1 INTRODUCTION... 3 2 IMPORTANT SAFETY INSTRUCTIONS... 3 3 INVERTER SAFETY UNIT (ISU)... 4 3.1 Architecture and overall concept in vehicles... 4 3.2 What means ISU and why is it necessary?... 4 3.3 Operation of the ISU... 4 3.4 Characteristics and function of the ISU... 5 3.5 Why is the ISU only optional?... 5 4 BLOCK DIAGRAM... 6 5 RESPONSIBILITIES FOR ENSURING THE SAFETY... 7 Seite 2 von 7

Version Datum Name Kommentar 1.0 01.12.2011 Holger Schmidt neues Dokument 1 Introduction The Inverter Safety Unit (ISU) is an optional integrable safety module of the inverter DMC5 and offers the possibility for intrinsically safe operation. This document describes the concept and the functionality of the ISU and shows possibilities for custom development to reach the necessary safety requirements for the overall system. 2 Important safety instructions For all vehicles, which participates in public transport according to the country specific traffic regulations, is recommended urgently to develop the safety concept in attendance to the current ISO26262. BRUSA Elektronik AG only ensures the inverter-safety itself not the safety for the overall system the inverter is integrated in. The ISU was developed according the ISO26262 as a SEooC (Safety Element Out Of Context). In this manner that assumptions were made about safety objectives of the overall system. The integrator* himself is responsible for the overall safety concept. As long as the safety system of the vehicle does not correspond to ASIL-C and no verification has been carried out by a certified institute, it is highly recommend to install an emergency button, to stop the car in emergency situations any time! During development phase it is recommend to access to the vehicle only for trained persons, which are instructed in the special dangers of electric vehicles. * persons or companies, which integrates the inverter into a vehicle-system and placing it into circulation. Seite 3 von 7

3 Inverter Safety Unit (ISU) 3.1 Architecture and overall concept in vehicles By integrating an electric drive train into a vehicle there has to be done fundamental considerations regarding measures of the vehicle architecture, to monitor conditions and to reach a safe state by appropriate acting on components. 3.2 What means ISU and why is it necessary? The ISU is considered as the primary safety device. By using an electric drive train there s usually no powerflow interruption, so the safety of the drive train has to be guaranteed in different ways. The torque generated by the motor has to be safe and controllable in any situations. The ISU controls the generated torque anytime and shuts down the inverter if an error occurs. The control-side of the ISU must be designed by considering all possible faults and dangers. The ISU has to operate fail-safe anytime and brings the vehicle in a safe state if the ISU itself has a malfunction. The following failures can occur by the motor: Too much recuperation Unexpected vehicle movements Incorrect signed vehicle movements 3.3 Operation of the ISU The ISU controls the phase current and phase voltage of the motor. With this data the ISU calculates the torque continuously (estimated torque), which will be compared with the desired torque. In case of a violation of certain configurable rules and limits the inverter assumes an error and shuts down immediately. For shutting down the inverter and bring the vehicle in a safe state the following shutdown-paths are possible: Clamp 15 Clamp 30 Pin ExtAW1 + ExtAW2 The output-signals ENA OUT1 und ENA OUT2 can be used for shutdown any other components (e.g. connection to HV-supply). The block diagram in chapter 4 shows the ways of communication between the individual drive components and clarifies the statements. Seite 4 von 7

3.4 Characteristics and function of the ISU Different drive-train-concepts requiring different measures to reach the needed safety in the vehicle. Especially the use of two drives on one axis (without mechanical coupling) requires an enormous effort to ensure the safety. According to BRUSA Elektronik AG this constellation already requires ASIL-D, which must be guaranteed by the overall system. The following table shows an overview about possible drive concepts: Front-wheel drive single and double Rear-wheel drive single and double Four-wheel drive single and double 3.5 Why is the ISU only optional? Basically, the hardware of the inverter is designed to facilitate the achievement of ASIL C. Due the different customer requirements and integration of different variants in vehicles it is not possible to develop a comprehensive ISU, which covers all these requirements. This was explained in previous chapters. Seite 5 von 7

4 Block diagram Seite 6 von 7

5 Responsibilities for ensuring the safety Basically it is important to know, that the integrator is responsible for installation of components in any overall-concepts. This applies installations in vehicles and also installations in test-stands. Details can be found in section 10 of the current ISO26262. BRUSA Elektronik AG will be assistance for the Implementation of safety requirements and will work generally supportive.thus, parallel to the development of the pattern stands the security measures could be gradually introduced. The following illustration shows a possible way of development: A-prototype Prototype engine test bench / vehicle ISU is integrated but NOT activated B-prototype Verification Initial safety findings are already been implemented in ISU C-prototype Customer vehicle All safety requirements according to ISO26262 are integrated* * To reach the required automotive safety level (ASIL-C or ASIL-D), a customer-specific project must be started. For evaluation of the overall-system it is advisable to consult a certified body (e.g. TÜV). Seite 7 von 7

2024 © sportdocbox.com Privacy Policy | Terms of Service | Feedback