• Proceedings of the KSR Conference
• /
• 2010.06a
• /
• pp.838-849
• /
• 2010

It is inevitable to control the systematic failure to obtain the software safety integrity of embedded software installed in rolling stock. Because it is not possible to assess systematic failure integrity by quantitative methods, SILs are used to group documentation, methods, tools and techniques throughout software development lifecycle which, when used effectively, are considered to provide an appropriate level of confidence in the realization of a system to a stated integrity level. Normally, safety approval process is through generic product, generic application and specification application for. For safety approval on generic application of software based system, it is required to apply the certified software processes from the planning stage for the assigned SIL. As such, we will develop project specific application with high safety integrity within time limit of contractual delivery schedule through software assessment to the modified area with the re-use of certified software module and documentation. At this point, Hyundai Rotem has developed software processes applicable to support SIL 4 based on EN50128 which was assessed and certified by TUV SUD. This paper introduces the Hyundai Rotem's detailed approach and prospective action to achieve software safety integrity level.

• IEMEK Journal of Embedded Systems and Applications
• /
• v.17 no.3
• /
• pp.157-165
• /
• 2022

As the number of the installed escalators in Korea continues to increase, the accident rate is also increasing. Therefore, it would be necessary to proactively secure safety. PESSRAE is a controller that implements safety functions as electric/electronic/programmable electronic devices to respond to risks that may occur in escalators. Safety Integrity Level (SIL) is assigned to the safety functions of PESSRAE and it must be verified that the quantitative target value according to the SIL level is satisfied. In this paper, the initial PESSRAE is analyzed using the FMEDA (Failure Mode, Effects and Diagnostic Analysis), which is a quantitative safety analysis method, and design improvement specifications are derived from the analysis in order to satisfy the quantitative target values. Based on the derived design specifications, the improved PESSRAE controller was manufactured. And the appropriateness of the design was verified experimentally in a testbed environment simulating the real environment.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.12 no.12
• /
• pp.6079-6097
• /
• 2018

Safety-related systems (SRSs) has widely used in shipbuilding and power generation to prevent fatal accidents and to protect life and property. Thus, SRS performance is a high priority. The safety integrity level (SIL) is the relative performance level of an SRS with regard to its ability to operate reliably in a safe manner. In this article, we proposed an optimal design procedure to achieve the targeted SIL of SRSs. In addition, a more efficient failure mode and effects diagnostic analysis (FMEDA) process and optimization model were developed to improve cost efficiency. Based on previous IEC 61508 diagnostic analyses that revealed unnecessary costs associated with excessive reliability, the new approach consists of two phases: (i) SIL evaluation by FMEDA, and (ii) solution optimization for achieving the target SIL with minimal cost using integer-programming models. The proposed procedure meets the required safety level and minimizes system costs. A case study involving a gas-detection SRS was conducted to demonstrate the effectiveness of the new procedure.

• Journal of the Korean Institute of Gas
• /
• v.15 no.5
• /
• pp.57-62
• /
• 2011

Modern chemical plants including petroleum refinery and gas industries have evolved into more complex and specialized. In these industrial complexes, it is important to maintain acceptable safety level protecting from various potential disasters caused by fire, explosion and the leakage of toxic materials. Recently possibility and consequence of accidents are increasing in the industrial process. So there is a trade-off between the plant operation efficiency and safety level. In this study SIF(Safety instrument Functions) was incorporated into SIL(Safety Integrity Levels). As a result, the safety level was upgraded by designing resonable allocation of safety instruments.

• Fire Science and Engineering
• /
• v.29 no.1
• /
• pp.60-66
• /
• 2015

The present study was aimed to analyze enclosure integrity test, which is the performance experiment of soaking time, in a fire zone equipped with gaseous extinguishing system in an effort to find understand the effect of precaution factors upon the success of fire extinguishment. To achieve the goal of this study, it divided the fire zones of internal and external power plants into ones taking precaution measures and not taking them and then enclosure integrity test was given respectively. Therefore, this study examined the success rate if the test according to the presence and absence of the precaution measure and confirmed the failure factors, designed concentration soaking time and proportion of leakage area to total volume area by type of gaseous extinguishing system and rooms. Precaution measures were applied to the fire zones without them to confirm the increase of the success rate of enclosure integrity test. By doing so, it was found that reduced number of experiments caused by failure led to cost saving.

• Journal of Applied Reliability
• /
• v.10 no.2
• /
• pp.107-122
• /
• 2010

Functional safety is the part of the overall safety of a system that depends on the system or equipment operating correctly in response to its inputs, including the safe management of likely operator errors, hardware failures, systematic failures, and environmental changes. One of the essential concepts of functional safety is Safety Integrity Level(SIL). It is defined as a relative level of risk-reduction provided by a safety function, or to specify a target level of risk reduction. In this paper, each element of SIL assessment will be defined. Based on each element, specific process of SIL selection will be established by using flowchart. The flowchart provides a SIL assessment guideline for functional safety engineers. The proposed theory will be verified by applying to a oil refining plant for SIL assessment.

• Journal of the Korean Society of Safety
• /
• v.35 no.6
• /
• pp.1-8
• /
• 2020

In recent years, hydrogen has received much attention as an alternative energy source to fossil fuels. In order to ensure safety from the increasing number of hydrogen refueling stations, prevention methods have been required. In this regard, this study suggested an approach to reduce the risk of hydrogen refueling station by increasing Safety Integrity Level (SIL) for a Steam Methane Reformer (SMR) in On-Site Hydrogen Refueling Station. The worst scenario in the SMR was selected by HAZOP and the required SIL for the worst scenario was identified by LOPA. To verify the required SIL, the PFDavg.(1/RRF) of Safety Instrumented System (SIS) in SMR was calculated by using realistic failure rate data of SIS. Next, several conditions were tested by varying the sensor redundancy and proof test interval reduction and their effects on risk reduction factor were investigated. Consequently, an improved condition, which were the redundancy of two-out-of-three and the proof test interval of twelve months, achieved the tolerable risk resulting in the magnitude of risk reduction factor ten times greater than that of the baseline condition.

• Journal of Positioning, Navigation, and Timing
• /
• v.9 no.3
• /
• pp.285-292
• /
• 2020

This paper introduces a new computational efficient Dilution of Precision (DOP)-based landmark exclusion method while ensuring the safety of the LiDAR-based navigation system that uses an innovation-based Nearest-Neighbor (NN) Data Association (DA) process. The NN DA process finds a correct landmark association hypothesis among all potential landmark permutations using Kalman filter innovation vectors. This makes the computational load increases exponentially as the number of landmarks increases. In this paper, we thus exclude landmarks by introducing DOP that quantifies the geometric distribution of landmarks as a way to minimize the loss of integrity performance that can occur by reducing landmarks. The number of landmarks to be excluded is set as the maximum number that can satisfy the integrity risk requirement. For the verification of the method, we developed a simulator that can analyze integrity risk according to the landmark number and its geometric distribution. Based on the simulation, we analyzed the relationship between DOP and integrity risk of the DA process by excluding each landmark. The results showed a tendency to minimize the loss of integrity performance when excluding landmarks with poor DOP. The developed method opens the possibility of assuring the safety risk of the Lidar-based navigation system in real-time applications by reducing a substantial amount of computational load.

• Nuclear Engineering and Technology
• /
• v.42 no.3
• /
• pp.237-248
• /
• 2010

The safety of metal cask and concrete cask storage technology has been verified by CRIEPI through several research programs on demonstrative testing for the interim storage of spent fuel. The results have been reflected in the safety requirements for dry casks issued by NISA/METI (Nuclear and Industrial Safety Agency, Ministry of Economy, Trade and Industry) of the Japanese government. On top of that, spent fuel integrity has been studied by the Japan Nuclear Energy Safety Organization (JNES). This paper reviews these research programs. Future issues include the long-term integrity of cask components and high burn-up spent fuel.

• The Journal of the Korea institute of electronic communication sciences
• /
• v.8 no.12
• /
• pp.1905-1910
• /
• 2013

This paper demonstrates the result of Safety Integrity Level (SIL) allocation for IL-type Train Control System(IL-TCS), by applying the semi-quantitative approach. IL-type TCS is defined in this paper as the set of Hardware and Software ATS equipment, Track-side ATP equipment, On-board ATP equipment, Track-side ATO equipment, On-board ATO equipment. SIL allocation is performed for these constituent subsystems of TCS. Based on three principles of the semi-quantitative method, the SIL allocation process is performed for the subsystems composing TCS.