Control Performance: An Imperative for Safety

Similar documents
Proposed Abstract for the 2011 Texas A&M Instrumentation Symposium for the Process Industries

Every things under control High-Integrity Pressure Protection System (HIPPS)

Avoiding Short Term Overheat Failures of Recovery Boiler Superheater Tubes

Cascade control. Cascade control. 2. Cascade control - details

Understanding safety life cycles

Fukushima: Outside the Imagination and Lack of Preparation. Benefit of PST (Partial Stroke Test)

RICK FAUSEL, BUSINESS DEVELOPMENT ENGINEER TURBOMACHINERY CONTROL SYSTEM DESIGN OBJECTIVES

THE BAKER REPORT HOW FINDINGS HAVE BEEN USED BY JOHNSON MATTHEY TO REVIEW THEIR MANUFACTURING OPERATIONS

Process Control Loops

The Relationship Between Automation Complexity and Operator Error

HOW TO MANAGE VAPORIZATION IN AN ANALYTICAL SYSTEM By Dean Slejko and Tony Waters

Training Fees 3,400 US$ per participant for Public Training includes Materials/Handouts, tea/coffee breaks, refreshments & Buffet Lunch.

STICTION: THE HIDDEN MENACE

Fuel Gas Pressure Control Solutions for Fired Heaters and Boilers

Safety in Petroleum Industry

Safe management of industrial steam and hot water boilers A guide for owners, managers and supervisors of boilers, boiler houses and boiler plant

Connect with Confidence NO POWER NO PROBLEM

Fail Operational Controls for an Independent Metering Valve

Process Safety and the Human Factor

GUIDE TO RUNNING A BIKE SHARE. h o w t o p l a n a n d o p e r a t e a s u c c e s s f u l b i k e s h a r e p r o g r a m

CONTROL SOLUTIONS DESIGNED TO FIT RIGHT IN. Energy Control Technologies

Ingersoll Rand. X-Series System Automation

TRI LOK SAFETY MANUAL TRI LOK TRIPLE OFFSET BUTTERFLY VALVE. The High Performance Company

Basic STPA Exercises. Dr. John Thomas

IE098: Advanced Process Control for Engineers and Technicians

BACK PRESSURE / SUSTAINING

SIL explained. Understanding the use of valve actuators in SIL rated safety instrumented systems ACTUATION

BACK PRESSURE / SUSTAINING

Process Safety Management Of Highly Hazardous Chemicals OSHA 29 CFR

INSPECTIONS OF THE LPG ESTABLISHMENTS IN PORTUGAL. Graça Bravo. 26th September 2017

Session One: A Practical Approach to Managing Safety Critical Equipment and Systems in Process Plants

UNIVERSITY OF WATERLOO

Best Practice RBI Technology Process by SVT-PP SIMTECH

Double whammy: the benefits of valve signatures and partial stroke testing

IST-203 Online DCS Migration Tool. Product presentation

RESILIENT SEATED BUTTERFLY VALVES FUNCTIONAL SAFETY MANUAL

( ) ( ) *( A ) APPLICATION DATA. Procidia Control Solutions Coarse/Fine Control. Split-Range Control. AD Rev 2 April 2012

Sustainable Application of Model Predictive Control (MPC) to the minimization of Flaring from Fuel Gas supply networks

How many intakes can I operate from the control center? Up to 4 intakes can be controlled from the control center.

OPERATING PROCEDURES

CHIEF S FILE CABINET

EVT * -Pro Electronic Valve Tester

GAS FUEL VALVE FORM AGV5 OM 8-03

Release: 1. UEPOPL002A Licence to operate a reciprocating steam engine

Point level switches for safety systems

PSM TRAINING COURSES. Courses can be conducted in multi-languages

Unattended Bleeder Valve Thaws, Causing Fire

Improving distillation tower operation

ON-SITE EMERGENCY PLAN

Valve Communication Solutions. Safety instrumented systems

Introduction to Emergency Response & Contingency Planning

Identification and Screening of Scenarios for LOPA. Ken First Dow Chemical Company Midland, MI

SEMS II: BSEE should focus on eliminating human error

DeZURIK. KGC Cast Knife Gate Valve. Safety Manual

Operator Exposed to Chlorine Gas

Instrumentation (and

OIL SUPPLY SYSTEMS ABOVE 45kW OUTPUT 4.1 Oil Supply

NT09-21 Cruise Report SURUGA-BAY Cable Laying Experiment / VBCS Function Test

DeZURIK Double Block & Bleed (DBB) Knife Gate Valve Safety Manual

NORMAL OPERATING PROCEDURES Operating Parameter Information

How to Optimize the Disposal System With Staggered Analysis Using BLOWDOWN Technology. Jump Start Guide

LECTURE 3 MAINTENANCE DECISION MAKING STRATEGIES (RELIABILITY CENTERED MAINTENANCE)

ME 8843-Advanced Mechatronics. Project Proposal-Automatic Bike Transmission

Reliability Assessment of the Whistler Propane Vaporizers

DeZURIK. KSV Knife Gate Valve. Safety Manual

Energy capture performance

Using LOPA for Other Applications

Systems Theoretic Process Analysis (STPA)

Tank and Silo Weighing. 5 Safety Tips For Tanks and Silos

Advanced Training for DP Operators

4m Blanco Glycol Chiller system: history, recent events, present status and plans

Success Paths: A Risk Informed Approach to Oil & Gas Well Control

MARIPOSA COUNTY LOCKOUT/TAGOUT PROGRAM

How to Combat Process Disturbances and Interactions

Incorrect Relief Valve Material Causes Release

General Duty Clause. Section 112(r)(1) of CAA. Chris Rascher, EPA Region 1

T e l N o : F a x N o : E m a i l : a i s h c m c - m e. c o m w w w. c m c - m e.

Human Reliability Analysis of Ultimate Response Guideline in a Compound Disaster. Hyatt Regency Tokyo, Japan April 16, 2013

INNOVATIVE MOORING SYSTEMS

The IEC61508 Inspection and QA Engineer s hymn sheet

KOMPRESSOREN COMPRESSORS KAESER AIR SERVICE Our Services An Overview

FP15 Interface Valve. SIL Safety Manual. SIL SM.018 Rev 1. Compiled By : G. Elliott, Date: 30/10/2017. Innovative and Reliable Valve & Pump Solutions

Advanced LOPA Topics

Abstract. 1 Introduction

Hydraulic (Subsea) Shuttle Valves

The Nitrogen Threat. The simple answer to a serious problem. 1. Why nitrogen is a risky threat to our reactors? 2. Current strategies to deal with it.

Solenoid Valves used in Safety Instrumented Systems

This manual provides necessary requirements for meeting the IEC or IEC functional safety standards.

The RCM Analyst - Beyond RCM

2007 Gas-Lift Workshop

VS Series Leak Detectors for Vacuum Furnaces LEAK DETECTION FOR VACUUM FURNACES

Fig.1. September, 2017 An Äager Brand Storagetech tank equipment may saved the entire storage tank refinery of Grupsoil in Colombia.

HUMAN FACTORS CHECKLIST

2600T Series Pressure Transmitters Plugged Impulse Line Detection Diagnostic. Pressure Measurement Engineered solutions for all applications

ENSURING AN ACCURATE RESULT IN AN ANALYTICAL INSTRUMENTATION SYSTEM PART 1: UNDERSTANDING AND MEASURING TIME DELAY

PREDICTING HEALTH OF FINAL CONTROL ELEMENT OF SAFETY INSTRUMENTED SYSTEM BY DIGITAL VALVE CONTROLLER

Review and Assessment of Engineering Factors

CONTRACTOR WHS HAZARD STANDARD HAZARDOUS CHEMICALS EXTERNAL USE ONLY

Module No. # 01 Lecture No. # 6.2 HAZOP (continued)

Net$ync II. Net$ync II. System Controllers

Transcription:

Control Performance: An Imperative for Safety George Buckbee 2014 ExperTune, a Metso Company Page 1

Control Performance: An Imperative for Safety George Buckbee, ExperTune 2014 ExperTune, a Metso Company Summary Safety is the primary requirement of any control system. After that comes environmental requirements, stability, efficiency, and optimization. But safety is always the very first concern. When handling dangerous energy, chemical, and mechanical hazards, the automated control system is the first layer of safety. It can respond more quickly, predictably, and repeatedly than a human operator. Yet few plants are measuring the performance of the control system and its resulting effect on safety. This means that the control system may not be capable of meeting its design requirements, and could fail in the face of a serious safety hazard. This paper explains the link between control performance and safety, reviewing the minimum requirements for effective control system operation. Overview What is Control Performance? Control Performance is made up of the complete performance of all parts of the control system. This includes the performance of: Instrumentation Controller Configuration Controller Tuning Control Valves, Variable Speed Drives, and Actuators Control System Operation Process & Control Interactions When any component of the control system fails to function, one or more layers of safety have been removed or disabled. For example, a pressure controller running in manual leaves a pressure vessel with only one layer, the safety relief valve, to handle an unexpected surge in pressure. Motivations: Some Industrial Examples BP Texas City One of the most significant incidents in recent years was the explosion at BP in Texas City, south of Houston. On March 23 rd, 2005, a hydrocarbon vapor cloud explosion occurred killing 15 workers and injuring more than 170 others. The Page 2

Texas City Refinery was the second-largest oil refinery in the state, and the thirdlargest in the United States with an input capacity of 437,000 barrels. US Chemical Safety Board's video of the events concluded what had led to the explosion. The video takes you from the start to the end of the incident, and clearly explains what caused it. It appears to be a combination of bad control system design, poor instrument maintenance, and multiple operator errors. Fukishima Friday, March 11 th, 2011 a magnitude 9.0 earthquake struck northeast of Tokyo, Japan. The quake caused serious damage at Tokyo Electric Power Company's (TEPCO) Fukushima Daiichi nuclear power plant, south of Sendai. Three of the plant's six reactors, which came into service between 1970 and 1979, were already shut down for inspection at the time the disaster struck. Those still in operation were designed to also shut down in the event of a quake, with diesel generators pumping water around the reactors to keep them cool. But when the tsunami hit, flood waters swamped the generators, causing them to fail. The reactors began to heat up, this resulted in the operators' guessing at the level of cooling water, and because they guessed wrong, they drastically delayed the start of cooling by the few emergency means at their disposal, such as by using helicopters, fire trucks and sea water. The solution to this unacceptable situation is not only to measure the in-core level, but when the fuel rods are about to be uncovered, automatically start emergency cooling by opening the gravity flow from elevated open or from pressurized closed tanks (or from helicopters, fire engines, etc.). Are These Exceptions? Unfortunately these are not exceptions. Process plants are in heritably dangerous places. There are serious safety-hazards in just about ever plant whether you are producing oil & gas, pulp & paper, metals, chemicals or food. When your control system is not performing at its best, the probability and seriousness of these hazards can be dramatically increased. Measuring Control Performance Measuring the performance of the control system highlights hazards as they develop. As we have already seen, ignoring these hazards can have serious consequences. Yet most plants do not monitor even the simplest aspects of control system performance. In fact, many plants have collected tremendous data history, fully recording the risk, and yet have never considered looking through the data to address the Page 3

issues of control performance. This presents further legal issues of due diligence in case of an incident. There are over 80 known measures for control performance. These performance measures range from simple to complex, and most can be monitored automatically. Several key metrics for safety are described below. Time in Normal In North America, as many as 30% of control loops are operating in manual. With loops in manual, the control system is not doing any control. In fact, it is not capable of doing anything until the operator returns it to automatic operation. The system will not respond to upsets. Safety and environmental results may be easily compromised by a process upset condition. The protection provided by the automated control loop is completely gone. For most effective control, and the highest level of safety, control loops should be operating in their Normal mode of operation. This may be automatic, cascade, feedforward, or some other mode of control. Despite the clear importance of this metric, few plants are monitoring which controllers are in manual. And very few have organized plans to return controls to their normal mode of operation. Loop at Limit The second most important measure of control performance measures whether the controller is operating at a limit. Examples of loops operating at limit include: Control output at its maximum, or valve fully open Consequences to Safety If you can only monitor one aspect of control performance, you should know which controllers are running in MANUAL. This is often an indication of process capacity or constraint. The controller is unable to respond to further increases in flow. The operator cannot override this. It is a physical limit. Control output at its minimum, or valve fully closed Process measurement at its maximum Process measurement at its This often indicates that the valve is too large. When a valve is too large, control is poor, resulting in stability issues due to overly aggressive moves of the control valve, and an overreaction in the process. When the process measurement, such as a temperature or pressure, reaches the upper limit of the instrument, then the operator is running blind. We cannot say the actual condition of the process, and we cannot assess the degree of hazard in the situation. Again, the operator is running blind. When an instrument reports its minimum value, this is often a sign Page 4

minimum that the instrument or wiring has failed. If the controller is in automatic, it may then cause the valve to wind fully to a limit, adding energy to the process in an uncontrolled manner. Loops operating at a limit represent a clear and imminent danger to plant safety. Unable to Hold Setpoint Even if the loop is running in its normal mode and position, the control loop may not successfully achieve its primary objective; to hold the process variable at its set point. There may be problems: process upsets, control strategy, or process capability. Identifying loops that are unable to hold set point is a critical step in improving the safety of the plant. Variability When Process has high variability it is more difficult to keep operation in safe bounds. Quality and environmental constraints may also be violated. Improved control performance will stabilize the process, reduce the variability and reduce the risk of safety, quality, and environmental violations. Interaction Process plants are complex. The true source of upsets and variability may be far upstream in the process. It is important to find the true root cause of all process upsets, rather than treat the downstream symptoms. Page 5

How to Implement Control Performance Monitoring Justifications Are You at Risk? A one-time audit or evaluation can help identify the major risks at your plant. This evaluation can used to clarify the scope of benefits from a control performance monitoring solution. Scope of Control Performance Monitoring Should you monitor the performance of every control loop? This is a cost/benefit analysis that most plant face. The initial temptation is to monitor only the control loops with the highest safety risk. While this is a good starting point, you should also consider those controllers that have process interactions with these critical loops. Beyond that, it may be important to add some measurement-only instruments to the monitoring system. One rule of thumb to determine the size of a control monitoring system is to take the number of analog outputs in a DCS, then add 10 to 20% to cover the important measurement-only devices. All of the performance measures discussed (time in normal mode, are loops at limit, setpoint, variability, root cause) should be monitored continuously to insure the plant does not drift into a dangerous situation. Prioritizing Corrective Actions A typical oil refinery may have over 3,000 control loops, if 30% of the control valves have mechanical issues that would mean 900 valve repairs are needed. In the real world, most plants do not have the resources to address this many valve repair issues. Prioritizing the corrective actions is a critically important task. Control performance monitoring tools allow for automated prioritization of corrective actions based on technical, economic safety matters. Staffing and Implementation Today many plants struggle to meet management demands with fewer in house resources. There are a few plants that have the internal resources dedicated to Page 6

take on full control performance monitoring on their own. Fortunately, automation suppliers, such as Metso, have recognized the need and are offering control performance solutions. With these offerings many combinations of internal and external resources are possible. Sustaining Safety If you were somehow to resolve 100% of control performance issues for your plant and then stop monitoring, problems would slowly creep back. In fact, the half-life of control performance problems would return in 12 months. So it is absolutely critical to follow any control performance improvement program with a sustained monitoring effort. Summary & Conclusions The control system is one of the most important links in the chain of safety of risk management. Monitoring the performance of the control system is essential the minimizing the risk factors in a process plant. Control performance monitoring tools and services are readily available and provide a proven practical methods to improve safety, environmental and quality results. Get More Detail ExperTune has over 25 years experience in control loop evaluation. If you would like a personal review of your control system issues, please contact us at +1.262.369.7711 for a consultation. Page 7

Sponsored by ExperTune s PlantTriage This white paper is sponsored by ExperTune s PlantTriage. This Control Loop Performance Monitoring software optimizes your entire process control system, including instrumentation, controllers, and control valves. Using advanced techniques, such as Active Model Capture Technology, PlantTriage can identify, diagnose, and prioritize improvements to your process. CONTROL PERFORMNCE Continuous Improvement Tools PlantTriage improves performance every day. It monitors the entire facility, looking for the biggest improvement opportunities. PlantTriage notifies you of the issues, than gives you deep-dive analysis, so you know exactly what the issue is. Expert Analysis Every PlantTriage system contains an expert system, developed by industry leaders like F. Greg Shinskey. It s like having a world-class expert looking at your plant, every day. Open System Compatibility PlantTriage works with your control system. For over 25 years, ExperTune has studied process control systems, and learned the intricacies of working with each one. PlantTriage knows how to work with over 700 industrial control algorithms. Also, PlantTriage is certified OPC-Compliant. It can connect to your control system via OPC, or to your data historian via OPC-HDA. A Complete System PlantTriage comes complete, with everything you need, including configuration services and training. You do not need to buy any other software. You will have unlimited users working with the true thin-client interface. Engineers, operators, managers, and technicians can all use PlantTriage to make their plant run better. Page 8

PlantTriage registered Trademark of ExperTune, a Metso Company ExperTune registered Trademark of ExperTune, a Metso Company 2014 ExperTune About the Author George Buckbee is General Manager of ExperTune. George has over 25 years of practical experience improving process performance in a wide array of process industries. An experienced manager and instructor, George has also been elected a Fellow at ISA. George holds a B.S. in Chemical Engineering from Washington University, and an M.S. in Chemical Engineering from the University of California. About PlantTriage PlantTriage is Control Loop Performance Monitoring software that optimizes your entire process control system, including instrumentation, controllers, and control valves. Using advanced techniques, such as Active Model Capture Technology, PlantTriage can identify, diagnose, and prioritize improvements to your process. About ExperTune ExperTune Inc. is a division of Metso Automation. ExperTune has been in the business of control system improvement since 1986, and has received numerous awards for its PlantTriage software. References Boyes, Walt. The BP Texas City Accident Report. Control Global, Thursday, January 5, 2006. Jones, Bryony for CNN. Timeline: How Japan s nuclear crisis unfolded. March 20, 2011. Lipták, Béla PE, Columnist for Control Global. Watch Out for Outdated and/or Unreliable Instruments. These Can Cause Major Disasters. Aug 31, 2011 Page 9

2024 © sportdocbox.com Privacy Policy | Terms of Service | Feedback