Understanding Safety Integrity Levels

What are the odds your safety system will work when needed?

02/01/2000



T
he perception of Safety Integrity Level (SIL), as related to ANSI/ISA S84.01-1996 and IEC 61508, currently exists somewhere between science fiction and marketing. The science fiction version is bounded by a belief that SIL describes the absolute performance of the Safety Instrumented System (SIS) in terms of potential incidents. Vendors and service providers, who make claims concerning product performance, control the marketing perception. Neither perception is true.

SIL is a measure of the SIS performance related only to the devices that comprise the SIS. This measure is limited to device integrity, architecture, testing, diagnostics, and common mode faults inherent to the specific SIS design. It is not explicitly related to a cause-and-effect matrix, but it is related to the devices used to prevent a specific incident. Further, SIL is not a property of a specific device. It is a system property; input devices through logic solver to output devices. Finally, SIL is not a measure of incident frequency. It is defined as the probability (of the SIS) to fail on demand (PFD). A demand occurs whenever the process reaches the trip condition and causes the SIS to take action.

A simple explanation of the relationship between incident frequency and SIL is to consider a roulette wheel. A roulette wheel consists of a horizontal wheel containing numbered slots. The wheel is spun and a ball is tossed onto the wheel. In a gaming establishment, bets are placed on a specific numbered slot. If the ball lands in the slot the player selected, the house pays the player.

In an SIL roulette game, the ball represents the SIL# and the chance, or probability, the SIL ball will land in a specific slot on the wheel has been defined by international standards.

In an 'SIL 1' roulette game, assume there are ten slots (minimum required for SIL 1). One slot is painted red; the other nine are painted black. The roulette wheel begins spinning and the ball is tossed onto the wheel when a process demand occurs, i.e., the level in a tank reaches the high-level trip point. If the ball lands in any of the nine black slots, the safety function works, i.e., the dump valve opens lowering the level. If the ball lands in the red slot, the safety function does not work and whatever the safety function was designed to prevent occurs, i.e., the tank overflows. How often the tank overflows is a product of the number of spins (process demand) and the ratio of red slots to black slots (PFD or SIL). Therefore, in this game, the player can control the probability of success by controlling the number of slots (SIL). The player can also reduce the incident frequency by reducing the number of spins (process demands).


SIL

Probability categories

1

1 in 10 to 1 in 100

2

1 in 100 to 1 in 1,000

3

1 in 1,000 to 1 in 10,000

4

1 in 10,000 to 1 in 100,000

How many slots are required and what actions should be taken to reduce the number of process demands is based on the perceived risk and tolerable incident frequency. The risk, as identified during the process hazards analysis, is essentially the 'bet' placed on the red slot. The bet may consist of injuries, fatalities, environmental releases, property/equipment damage, permit violations, and the plant's 'license to operate.' If the bet is small, i.e., high level in a tank occurring ten times per year with the potential consequence of overflowing water into a dike, maybe ten slots are acceptable with a resultant incident frequency of once per year. If the bet is large, i.e., high pressure in a process vessel with the potential for rupture, release of flammable gas, subsequent ignition, and multiple fatalities and catastrophic damage occurring once in 10 years, maybe 1,000 slots are required with a resultant incident frequency of 1 in 10,000 years.

Unfortunately, while it is easy from a risk standpoint to understand the penalty behind the failure of a safety function to work, it is more difficult to acknowledge that the true payout is when the safety function does what it is supposed to do. After all, how many times do plant engineers get a pat on the back because a safety function worked? The plant engineers don't get a hefty check related to the successful prevention of the incident. No small bets or large bets are actually paid to anyone. Therefore, this game is difficult to play, because the game only issues penalties (the incident) for incorrect design choices.

Making matters worse is that pressuresa drive for increased production may lead operators produce a desire to 'ride-out' process excursions by temporarily disabling or bypassing safety trip outputs. This action (action or only the desire for the action-unclear) results in the wheel being reduced to one slot with the operator making the ultimate bet. Will the wheel spin before the process is brought back into control?

In most of the literature, SIL is referred to as a performance criterion-the capability of the safety function to perform at the time needed. As previously explained, the choice of the SIL is more often related to the cost of non-performance-a blurry, sometimes difficult to sell concept, especially at project budget meetings. However, no matter how SIL is viewed, the concept represents an important shift in industry's attitude toward safety system design. SIL must be chosen to reduce the incident frequency to a tolerable level. SIL is the design basis for all engineering decisions related to the safety function. When the design is complete, it must be validated against the SIL. Therefore, SIL closes the design cycle-r - risk identified, requirements quantified, and design validated.

Contact information

SIS-TECH Solutions, LLC
PMB-295, 2323 Clear Lake City Blvd., Houston, TX 77062-8032
P: (713) 320-4777
www.sis-tech.com





Comments? E-mail dharrold@cahners.com





The Engineers' Choice Awards highlight some of the best new control, instrumentation and automation products as chosen by Control Engineering subscribers. Vote now (if qualified)!
The System Integrator Giants program lists the top 100 system integrators among companies listed in CFE Media's Global System Integrator Database.
Each year, a panel of Control Engineering and Plant Engineering editors and industry expert judges select the System Integrator of the Year Award winners in three categories.
This eGuide illustrates solutions, applications and benefits of machine vision systems.
Learn how to increase device reliability in harsh environments and decrease unplanned system downtime.
This eGuide contains a series of articles and videos that considers theoretical and practical; immediate needs and a look into the future.
HMI effectiveness; Distributed I/O; Engineers' Choice Award finalists; System Integrator advice; Inside Machines
Women in engineering; Engineering Leaders Under 40; PID benefits and drawbacks; Ladder logic; Cloud computing
Robotic integration and cloud connections; SCADA and cybersecurity; Motor efficiency standards; Open- and closed-loop control; Augmented reality
Programmable logic controllers (PLCs) represent the logic (decision) part of the control loop of sense, decide, and actuate. As we know, PLCs aren’t the only option for making decisions in a control loop, but they are likely why you’re here.
This digital report explains how motion control advances and solutions can help with machine control, automated control on assembly lines, integration of robotics and automation, and machine safety.
This article collection contains several articles on how advancements in vision system designs, computing power, algorithms, optics, and communications are making machine vision more cost effective than ever before.

Find and connect with the most suitable service provider for your unique application. Start searching the Global System Integrator Database Now!

Control room technology innovation; Practical approaches to corrosion protection; Pipeline regulator revises quality programs
Cloud, mobility, and remote operations; SCADA and contextual mobility; Custom UPS empowering a secure pipeline
Infrastructure for natural gas expansion; Artificial lift methods; Disruptive technology and fugitive gas emissions
Automation Engineer; Wood Group
System Integrator; Cross Integrated Systems Group
Jose S. Vasquez, Jr.
Fire & Life Safety Engineer; Technip USA Inc.
This course focuses on climate analysis, appropriateness of cooling system selection, and combining cooling systems.
This course will help identify and reveal electrical hazards and identify the solutions to implementing and maintaining a safe work environment.
This course explains how maintaining power and communication systems through emergency power-generation systems is critical.
The Engineers' Choice Awards highlight some of the best new control, instrumentation and automation products as chosen by Control Engineering subscribers. Vote now (if qualified)!
The System Integrator Giants program lists the top 100 system integrators among companies listed in CFE Media's Global System Integrator Database.
Each year, a panel of Control Engineering and Plant Engineering editors and industry expert judges select the System Integrator of the Year Award winners in three categories.
This eGuide illustrates solutions, applications and benefits of machine vision systems.
Learn how to increase device reliability in harsh environments and decrease unplanned system downtime.
This eGuide contains a series of articles and videos that considers theoretical and practical; immediate needs and a look into the future.
HMI effectiveness; Distributed I/O; Engineers' Choice Award finalists; System Integrator advice; Inside Machines
Women in engineering; Engineering Leaders Under 40; PID benefits and drawbacks; Ladder logic; Cloud computing
Robotic integration and cloud connections; SCADA and cybersecurity; Motor efficiency standards; Open- and closed-loop control; Augmented reality
Programmable logic controllers (PLCs) represent the logic (decision) part of the control loop of sense, decide, and actuate. As we know, PLCs aren’t the only option for making decisions in a control loop, but they are likely why you’re here.
This digital report explains how motion control advances and solutions can help with machine control, automated control on assembly lines, integration of robotics and automation, and machine safety.
This article collection contains several articles on how advancements in vision system designs, computing power, algorithms, optics, and communications are making machine vision more cost effective than ever before.

Find and connect with the most suitable service provider for your unique application. Start searching the Global System Integrator Database Now!

Control room technology innovation; Practical approaches to corrosion protection; Pipeline regulator revises quality programs
Cloud, mobility, and remote operations; SCADA and contextual mobility; Custom UPS empowering a secure pipeline
Infrastructure for natural gas expansion; Artificial lift methods; Disruptive technology and fugitive gas emissions
Automation Engineer; Wood Group
System Integrator; Cross Integrated Systems Group
Jose S. Vasquez, Jr.
Fire & Life Safety Engineer; Technip USA Inc.
This course focuses on climate analysis, appropriateness of cooling system selection, and combining cooling systems.
This course will help identify and reveal electrical hazards and identify the solutions to implementing and maintaining a safe work environment.
This course explains how maintaining power and communication systems through emergency power-generation systems is critical.
The Engineers' Choice Awards highlight some of the best new control, instrumentation and automation products as chosen by Control Engineering subscribers. Vote now (if qualified)!
The System Integrator Giants program lists the top 100 system integrators among companies listed in CFE Media's Global System Integrator Database.
Each year, a panel of Control Engineering and Plant Engineering editors and industry expert judges select the System Integrator of the Year Award winners in three categories.
This eGuide illustrates solutions, applications and benefits of machine vision systems.
Learn how to increase device reliability in harsh environments and decrease unplanned system downtime.
This eGuide contains a series of articles and videos that considers theoretical and practical; immediate needs and a look into the future.
HMI effectiveness; Distributed I/O; Engineers' Choice Award finalists; System Integrator advice; Inside Machines
Women in engineering; Engineering Leaders Under 40; PID benefits and drawbacks; Ladder logic; Cloud computing
Robotic integration and cloud connections; SCADA and cybersecurity; Motor efficiency standards; Open- and closed-loop control; Augmented reality
Programmable logic controllers (PLCs) represent the logic (decision) part of the control loop of sense, decide, and actuate. As we know, PLCs aren’t the only option for making decisions in a control loop, but they are likely why you’re here.
This digital report explains how motion control advances and solutions can help with machine control, automated control on assembly lines, integration of robotics and automation, and machine safety.
This article collection contains several articles on how advancements in vision system designs, computing power, algorithms, optics, and communications are making machine vision more cost effective than ever before.

Find and connect with the most suitable service provider for your unique application. Start searching the Global System Integrator Database Now!

Control room technology innovation; Practical approaches to corrosion protection; Pipeline regulator revises quality programs
Cloud, mobility, and remote operations; SCADA and contextual mobility; Custom UPS empowering a secure pipeline
Infrastructure for natural gas expansion; Artificial lift methods; Disruptive technology and fugitive gas emissions
Automation Engineer; Wood Group
System Integrator; Cross Integrated Systems Group
Jose S. Vasquez, Jr.
Fire & Life Safety Engineer; Technip USA Inc.
This course focuses on climate analysis, appropriateness of cooling system selection, and combining cooling systems.
This course will help identify and reveal electrical hazards and identify the solutions to implementing and maintaining a safe work environment.
This course explains how maintaining power and communication systems through emergency power-generation systems is critical.
click me