Implementation of Safety Instrumented Systems using Fuzzy Risk Graph Method

Similar documents
Analysis of hazard to operator during design process of safe ship power plant

Implementing IEC Standards for Safety Instrumented Systems

Safety Analysis Methodology in Marine Salvage System Design

Understanding safety life cycles

A study on the relation between safety analysis process and system engineering process of train control system

Advanced LOPA Topics

innova-ve entrepreneurial global 1

SIL explained. Understanding the use of valve actuators in SIL rated safety instrumented systems ACTUATION

A quantitative software testing method for hardware and software integrated systems in safety critical applications

High Integrity Pressure Protection Systems HIPPS

Methods of Determining Safety Integrity Level (SIL) Requirements - Pros and Cons

FAULT DIAGNOSIS IN DEAERATOR USING FUZZY LOGIC

DETERMINATION OF SAFETY REQUIREMENTS FOR SAFETY- RELATED PROTECTION AND CONTROL SYSTEMS - IEC 61508

Partial Stroke Testing. A.F.M. Prins

Definition of Safety Integrity Levels and the Influence of Assumptions, Methods and Principles Used

Ultima. X Series Gas Monitor

Application of fuzzy logic to explosion risk assessment

Valve Communication Solutions. Safety instrumented systems

Workshop Functional Safety

Every things under control High-Integrity Pressure Protection System (HIPPS)

Nandkumar Wagh, D.M. Deshpande

Marine Risk Assessment

PROCESS AUTOMATION SIL. Manual Safety Integrity Level. Edition 2005 IEC 61508/61511

Knowledge, Certification, Networking

Reliability Analysis Including External Failures for Low Demand Marine Systems

Proposal title: Biogas robust processing with combined catalytic reformer and trap. Acronym: BioRobur

Solenoid Valves used in Safety Instrumented Systems

Risk Management Qualitatively on Railway Signal System

Safety of railway control systems: A new Preliminary Risk Analysis approach

COMMON MISUNDERSTANDINGS ABOUT THE PRACTICAL APPLICATION OF IEC 61508

THE IMPROVEMENT OF SIL CALCULATION METHODOLOGY. Jinhyung Park 1 II. THE SIL CALCULATION METHODOLOGY ON IEC61508 AND SOME ARGUMENT

Combining disturbance simulation and safety analysis techniques for improvement of process safety and reliability

C. Mokkapati 1 A PRACTICAL RISK AND SAFETY ASSESSMENT METHODOLOGY FOR SAFETY- CRITICAL SYSTEMS

Linking Risk and Reliability Mapping the output of risk assessment tools to functional safety requirements for safety related control systems.

DeZURIK Double Block & Bleed (DBB) Knife Gate Valve Safety Manual

DeZURIK. KSV Knife Gate Valve. Safety Manual

SIL Allocation. - Deterministic vs. risk-based approach - Layer Of Protection Analysis (LOPA) overview

Proposed Abstract for the 2011 Texas A&M Instrumentation Symposium for the Process Industries

Identification and Screening of Scenarios for LOPA. Ken First Dow Chemical Company Midland, MI

RESILIENT SEATED BUTTERFLY VALVES FUNCTIONAL SAFETY MANUAL

VALIDATE LOPA ASSUMPTIONS WITH DATA FROM YOUR OWN PROCESS

Safety-critical systems: Basic definitions

SAFETY SEMINAR Rio de Janeiro, Brazil - August 3-7, Authors: Francisco Carlos da Costa Barros Edson Romano Marins

Transformer fault diagnosis using Dissolved Gas Analysis technology and Bayesian networks

DeZURIK. KGC Cast Knife Gate Valve. Safety Manual

Safety manual for Fisher GX Control Valve and Actuator

This manual provides necessary requirements for meeting the IEC or IEC functional safety standards.

Hazard Operability Analysis

A Novel Gear-shifting Strategy Used on Smart Bicycles

Using LOPA for Other Applications

A SEMI-PRESSURE-DRIVEN APPROACH TO RELIABILITY ASSESSMENT OF WATER DISTRIBUTION NETWORKS

Online DGA-monitoring of power transformers

PREDICTING HEALTH OF FINAL CONTROL ELEMENT OF SAFETY INSTRUMENTED SYSTEM BY DIGITAL VALVE CONTROLLER

Impact on People. A minor injury with no permanent health damage

The Risk of LOPA and SIL Classification in the process industry

The IEC61508 Operators' hymn sheet

The Key Variables Needed for PFDavg Calculation

Application of the probabilistic-fuzzy method of assessing the risk of a ship manoeuvre in a restricted area

Section 1: Multiple Choice

MODERN APPROACH FOR CONDITION MONITORING OF POWER TRANSFORMERS USING DISSOLVED GAS ANALYSIS

TRI LOK SAFETY MANUAL TRI LOK TRIPLE OFFSET BUTTERFLY VALVE. The High Performance Company

Improving Accuracy of Frequency Estimation of Major Vapor Cloud Explosions for Evaluating Control Room Location through Quantitative Risk Assessment

LECTURE 3 MAINTENANCE DECISION MAKING STRATEGIES (RELIABILITY CENTERED MAINTENANCE)

Rosemount 2130 Level Switch

Accelerometer mod. TA18-S. SIL Safety Report

Intrinsic safety 101 hazardous locations

4-sight Consulting. IEC case study.doc

Transmitter mod. TR-A/V. SIL Safety Report

Module No. # 03 Lecture No. # 01 Dose assessment, Safety regulations

Expert System for LOPA - Incident Scenario Development -

PL estimation acc. to EN ISO

Session Fifteen: Protection Functions as Probabilistic Filters for Accidents

Functional Safety SIL Safety Instrumented Systems in the Process Industry

Functional safety. Functional safety of Programmable systems, devices & components: Requirements from global & national standards

The Best Use of Lockout/Tagout and Control Reliable Circuits

Pneumatic QEV. SIL Safety Manual SIL SM Compiled By : G. Elliott, Date: 8/19/2015. Innovative and Reliable Valve & Pump Solutions

SIL Safety Manual. ULTRAMAT 6 Gas Analyzer for the Determination of IR-Absorbing Gases. Supplement to instruction manual ULTRAMAT 6 and OXYMAT 6

Flexible Method for Corrective Actions Ranking in the Field of Protection Against Explosion

QUANTIFYING THE TOLERABILITY OF POTENTIAL IGNITION SOURCES FROM UNCERTIFIED MECHANICAL EQUIPMENT INSTALLED IN HAZARDOUS AREAS

FP15 Interface Valve. SIL Safety Manual. SIL SM.018 Rev 1. Compiled By : G. Elliott, Date: 30/10/2017. Innovative and Reliable Valve & Pump Solutions

Introduction to HAZOP Study. Dr. AA Process Control and Safety Group

Safety Manual OPTISWITCH series relay (DPDT)

EL-O-Matic E and P Series Pneumatic Actuator SIL Safety Manual

FUNCTIONAL SAFETY: SIL DETERMINATION AND BEYOND A CASE STUDY FROM A CHEMICAL MANUFACTURING SITE

L&T Valves Limited SAFETY INTEGRITY LEVEL (SIL) VERIFICATION FOR HIGH INTEGRITY PRESSURE PROTECTION SYSTEM (HIPPS) Report No.

Analysis of Pressure Rise During Internal Arc Faults in Switchgear

Failure Modes, Effects and Diagnostic Analysis

Safety Manual VEGAVIB series 60

EMERGENCY SHUT-DOWN RELIABILITY ADVANTAGE

Session One: A Practical Approach to Managing Safety Critical Equipment and Systems in Process Plants

EVALUATING CRITERIA FOR DP VESSELS

Hydraulic (Subsea) Shuttle Valves

Reliability of Safety-Critical Systems Chapter 3. Failures and Failure Analysis

Transducer mod. T-NC/8-API. SIL Safety Report

Enhancing NPP Safety through an Effective Dependability Management

Bespoke Hydraulic Manifold Assembly

Safety Manual. Process pressure transmitter IPT-1* 4 20 ma/hart. Process pressure transmitter IPT-1*

D-Case Modeling Guide for Target System

The Criticality of Cooling

Eutectic Plug Valve. SIL Safety Manual. SIL SM.015 Rev 0. Compiled By : G. Elliott, Date: 19/10/2016. Innovative and Reliable Valve & Pump Solutions

Transcription:

Proceedings of the 2014 International Conference on Industrial Engineering and Operations Management Bali, Indonesia, January 7 9, 2014 Implementation of Safety Instrumented Systems using Fuzzy Risk Graph Method Nouara Ouzraoui, Bilal Rabah, Rachid Nait Said, and Mouloud Bourarech Safety Department Institute of Health and Occupational Safety, University of Batna Road Med El-Hadi Boukhlouf, Batna, Algeria Abstract Although the risk graph method, described by the IEC 61508 standard is widely used for the determination of Safety Integrity Levels for the Safety Instrumented Functions (SIF) which performed by Safety Instrumented Systems (SIS). This technique has limits regarding the linguistic interpretation of the parameters of the risk analyzed. In addition, the calibration of the risk graph method as defined at the IEC61511 standard consists to use discrete intervals include also a problem of uncertainty in the calculation of Safety Integrity Levels. The purpose of this work is to improve of conventional risk graph in order to ensure a better implementation of safety instrumented systems (SIS). The proposed model based on fuzzy rules, considers the parameters defining the risk graph as inputs of a fuzzy inference systems and the Safety Integrity Level (SIL) as unique output. In order to validate the proposed model, a case study on an industrial system is carried out. The obtained results show a particular interest of fuzzy graph risk for estimating the appropriate Safety Integrity Level than that given by the risk graph conventional. Keywords Risk graph, Safety Instrumented Systems, Safety Integrity Levels, fuzzy rules. 1. Introduction The main objective of safety analysis s related to the industrial process is the reduction of the risks identified and considered to be unacceptable to an acceptable level. These risks could be led to physical harms, damage of property or negative environmental impact. Risk reduction is usually achieved by several safety related systems (SRS) [3]. Each SRS is characterized by one or more safety functions with a factor of reduction (RRF) which is the inverse of the probability of failure on demand (PFD) of that SRS. These safety systems have different roles according to whether they intervene, prevention by reducing the probability that the hazardous event occurred or protection by mitigation the consequences of this event. Reducing risk is achieved by using several systems including shutdown systems known Safety Instrumented Systems (SIS) in order to make the process in safe state. The standards IEC 61508 and IEC 61511 define four safety integrity levels (SIL) for the safety function. The implementation of SIS requires defining the SIL which should be reached by the SIF. The assessment of integrity level could be calculated by qualitative and quantitative methods [IEC 61508 98], [IEC 61511 00], [SAL 06], [SAL 08]. The risk graph is the most qualitative method used to determine the safety integrity level of which described on part 5 of standard IEC 61508 [IEC 61508 98]. Although the risk graph is a relatively easy method for application and allowing a fast assessment of SIL, it has also some disadvantages in the interpretation of linguistic terms used to define the parameters C, F, P and W, which may differ between evaluators due of subjectivity related to the definition of these parameters.. Even we make quantitative definition to the parameters the numerical intervals used will still present uncertainty of information upon which the evaluators base their judgmentfuzzy logic due to L.A Zadah [ZAD 65] seems to provide an adequate environment for the treatment of uncertainty related to the different parameters of risk graph [NAI 09], [SIM 07]. In this work, a fuzzy approach of risk graph based on fuzzy rules is proposed in order to treat the ambiguity of parameters by using the operations of fuzzy logic, the calibrated a parameters of risk graph are introduced into the fuzzy inference system to determine the SIL required. The approach is validated experimentally on an operational industrial system " Heater. 2. Conventional risk graph 2323

The most qualitative method used for determining the SIL is the one that called risk graph [IEC 61508 98]. The risk graph based on the following equation: R=F x G, or R is the risk during the absence of the related safety system F is the frequency of the dangerous event during the absence of the safety systems and C is the consequences of the dangerous event. The frequency of dangerous event supposed to be the result of three following factors: Probability that the exposed area is occupied ; The probability of avoiding the hazardous situation; Number of times per year that the hazardous situation would occur. Finally, we take the following 4 measures of the risk: Consequence of the hazardous event (C) ; Occupancy (F) ; Probability of avoiding the hazardous event (P) ; Demand rate (W). Combining these parameters, we obtain the risk graph which presented at the figure (1). The use of these parameters of risk C, F and P results at certain number of outputs (X1, X2, Xn). Each output is mapped in three scales (W1, W2 and W3). Each point of these scales indicates the required SIL that has to be generated by the system. This method supposed to be qualitative, the most of criteria often remain qualitative, due the necessity to calibrate the graph and gives a numerical intervals to different parameters which described by linguistics terms(table 2), Fig (2). The standard IEI 61511-3 provides a semi-qualitative method that is the calibrated risk graph [6], [7], [20]. Figure 1: Risk graph example [IEC61508-5 98] Figure 2: Risk graph with qualitative description of parameters SIL Range of average PFD Range of RRF 2324

4 [10 5, 10 4 [ ]10 4, 10 5 ] 3 [10 4, 10 3 [ ]10 3, 10 4 ] 2 [10 3, 10 2 [ ]10 2, 10 3 ] 1 [10 2, 10 1 [ ]10 1, 10 2 ] Table 1: Definitions of SIL for low-demand mode [IEC61508 98] Parameter Consequence (C) Exposure (F) Avoidance (P) Demand rate (W) Qualitative description Quantitative description Minor [10-2,10-1] Marginal [10-2,10-1] Critical [10-1,1] Catastrophic > 1 < 10% de temps Frequent 10% de temps 90% probabilité d évitement de danger Impossible 90% probabilité d évitement de danger Very low <1dans 30 ans <0.03an Low 1 dans [3,30] ans [0.03, 0.3] par an High 1 dans [0.3,3] ans [0.3,3] par an Table 2 : Exemple of qualitative definitions of param The faults noticed are originally incoherences of results and eventually of conservatism, which may translate by overestimation of SIL. In consideration of insufficiencies established on the conventional risk graph, this work proposes to develop a calibrated risk graph more flexible which based on fuzzy inference system. 3. Fuzzy risk graph 3.1 Proposed risk graph model The proposed fuzzy risk graph is a model which takes in a count the problem of calibration, the fuzzy scales of SIL and the parameters C, F, P and W are numerical with the orders of grandeur given by the tables I and II. The fuzzy intervals defines on the univers RRF allow the value of SIL to be between two successive sections with different memberships. The global structure of fuzzy risk graph proposed is given at figure 3. Input Fuzzy Ranges Rules issued from risk graph Ensembles flous de sortie et fonctions d appartenanc e Consequence Exposure Avoidance Demand rate Fuzzification Fuzzy Consequence Fuzzy Exposure floue Fuzzy Avoidance Fuzzy Demand rate Fuzzy inference Fuzzy SIL du risque Défuzzification Unique value de criticité RRF (1PFD) Figure 3: Global procedure of SIL assessment using fuzzy approach The implementation of fuzzy risk graph model based on three principal units: Fuzzification : this step requires the transformation of real inputs to another fuzzy ones 2325

Fuzzy Inference : The process for obtaining the fuzzy output using the maxmin inference method consists of the following substeps : (i) Finding the firing level of each rule: the truth value for the premise of each rule Ri is computed and applied to the conclusion part of this rule. It is computed as follows: αi = min μ Ai j (u 0 j) j (ii) Inferencing: in the inference step, the output of each rule is computed using a conjunction operator min. Then, B_i = αi ^Bi is given by : μb i (v) = min(α i, μb i (v)). (iii) Aggregation: for obtaining the overall system output, all the individual rule outputs are combined using the union operator. Then, B = i B i = i α i ^ B i with membership function : μ B (v) = max μb i (v). i=1,...,n Defuzzification : It produces a representative value v 0 of Y in B. Among defuzzification methods, the center of gravity is the most commonly (a) used, and it is given by following equation : v0 =_v V μb_ (v) v dv_v V μb_ (v) dv (a) (b) (c) (d) Figure 4: Membership functions generated for risk parameters: (a) Consequence, (b) Occuppancy, (c) Avoidance, and (d) demand rate. 2326

The SIL is the unique output, it is defined on RRF range.the values between 1 and 10-6 and represented on logarithmic scale with regular partition figure (5). Figure 5: Membership functions generated for SIL 3.2 Establishment of fuzzy rules Fuzzy sets are associated to make in conclusions of rules to make the fuzzy rules base (table 3). Rule Consequence Occupancy Avoidance Demand rate SIL 1 2 3 4 5 6 Minor Minor Minor Marginale Marginale Marginale High Low Very low high Low Very low a 1 a Table 3 : Combined rules of parameters The previous table present the rules generated by combining the different parametres C, F, P et W obtained from risk graph. The rule number 4, for example, should be given as : If the Consequence is marginale and occuppancy israre and avoidance is possible and demand rate is high so the SIL is 1. The issued surface from fuzzy rules is given by the figure (6). 4. Case study 4.1 Presentation of process Figure 6: Issued surface In order to demonstrate the applicability of the proposed fuzzy risk graph model, our case study has focused on a heater of the MPP3-plant at sensitive plant of the company SONATRACH, which is considered one of the most 2327

critical systems that can generate, in the case of failure, a critical and even catastrophic material, human and environmental consequences. Figure (4) shows in a simplified diagram the furnace rebouilor Four H-101 system and its various components. The furnace rebouillor is operational in a permanent way, its main role is to produce fuels gas, which are mainly composed of methane and ethane. The condensate from the bottom of column C-101, is sent by means of the pump P-101 A B, to furnace rebouilor H-101 with 150 C for reheating, then the outgoing fluid of the heated rebouillor with 180 C, is returned to the column like hot backward flow in order to extract gases 4.2 Scenarios of accidents Figure 7: Heataer process H101 (SONATRACH) In order to develop the scenarios of potentials accidents that may present in the heater H-321, we proceed with an inductive analysis by HAZOP (Hazard and Operability). this method allows to identify the causes, the consequences and the safety barriers of systems already implemented to prevent the development of these scenarios. Although the system is equipped of BPCS for the control of fuel gas pressure and oil flow, the results of this analysis displays that the scenarios of major accident which can be happened on this system are: - Explosion of the furnace caused by the elevation of fuel gas pressure (SC1) - Fire caused by low flow of oil circulated inside the heater (SC 2) The control system (BPCS) can not always be enough to manage these hazards, Shutdown system with instrumented nature fully independent of control and regulation system seems mandatory in order to make the heater in safe state. To implement this system, the required SIL should be calculated. The values of parameters C,F,P,W related to the our system are given by the following table (Tab 4). Table 4 : Values of parameters C, F, P, W Scenario Consequence Occupation Avoidance Demand rate 1 CC FA PA W2 2 CB FA PB W2 The SIL required for the two scenarios is given in the following table (Table 5). 2328

Table 5: Obtained SIL using classic and fuzzy models Scenario Input Output (SIL) High pressure of fuel gas C F P W Classic Model Fuzzy Model RRF [0,1-1] [0-25] [90-100] 0,2 SIL 3 SIL2-0,8SIL3-0.4 3,89 Low flow of hot oil [0,01-0,1] [0-25] [0-10] 1,1 SIL 2 SIL1-0,7SIL2-0.5 1.8 4.3 Interpretation of obtained results The results comparison of the two assessments approaches of SIL, show a difference of values of SIL. We noticed that the SIL determined by the fuzzy risk graph is characterized by a progressive membership more than one level. In the case of the first scenario, the SIL belongs to level 2 and 3 with a degrees of respectively memberships 0.8 and 0.4. The same, for the scenario 2, the SIL obtained belongs to two levels 1 and 2 with a degrees of respectively memberships 0.7 and 0.5. This comparison shows that there is overestimation of SIL in the case of two scenarios. Although that this overestimation leads to conservative results, which requires high costs of installation and maintenance of the SIS. 5. Conclusion The objective of this work is to show the importance of fuzzy approach for determining of SIL. The concepts of fuzzy sets, linguistic variables and fuzzy rules issued from this logic which allows us to take in consideration: The issue of interpretation of parameters related to graph (C,F,P et W). Indeed, the fuzzy scales have the capacity to describe the continuity of categories with progressive transition from one to another ; The problem of SIL classification: the SIL could belong to more than one level with various memberships degrees. The fuzzy risk graph model has the flexibility which allows us to treat the linguistic parameters. The input parameters introduced in inference system were obtained from expertise, or the results of analyse risk model such as fault tree References IEC61508, Functional safety of electricalelectronicprogrammable electronic (eepe) safety related systems. International Electrotechnical Commission (IEC), 1998. IEC61511, Functional safety : Safety instrumented systems for the process industry sector. International Electrotechnical Commission (IEC), 2000. Nait-Saïd R., Zidani F. and Ouzraoui N., Modified risk graph method using fuzzy rule-based approach, Journal of Hazardous Materials, vol. 164, no. 2-3, pp. 651-658, 2009. Sallak, M., Simon, C., and Aubry., J.-F, Evaluating safety integrity level in presence of uncertainty. The 4th International Conference on Safety and Reliability, Krakow, Poland, 2006. Sallak, M., Simon, C., and Aubry, J.-F, A fuzzy probabilistic approach for determining safety integrity level. IEEE Transactions on Fuzzy Systems, 16(1) :239-248, 2008. Simon, C., Sallak, M., and Aubry., J.-F, SIL allocation of sis by aggregation of experts opinions. In ESREL, Safety and Reliability Conference, Stavanger, Norvège, 2007. Zadeh L, Fuzzy sets, Information and Control, vol. 8, pp. 338 353, 1965. 2329

2024 © sportdocbox.com Privacy Policy | Terms of Service | Feedback