Register      Login
The APPEA Journal The APPEA Journal Society
Journal of Australian Energy Producers
RESEARCH ARTICLE

IEC 61511—functional safety in the process industry: the prominence of validation and verification in the lifecycle of a safety instrumented system

Andrew Derbyshire
+ Author Affiliations
- Author Affiliations

DNV GL

The APPEA Journal 55(1) 379-384 https://doi.org/10.1071/AJ14031
Published: 2015

Abstract

As the concept of risk management has gathered momentum in the oil and gas industry during the past decade, so to has the adoption of IEC 61511, the internationally recognised standard for functional safety in the process industry. IEC 61511 is a risk-based standard that uses the concept of an electrical/electronic/programmable electronic based control system to implement autonomous means of risk reduction against a pre-defined unwanted hazardous deviation in a process.

While IEC 61511 has been in existence for more than a decade, the correct understanding and implementation of the standard to derive an effective demonstrate of compliance is still debatable.

The standard follows a cradle-to-grave approach to the lifecycle of any safety instrumented system and, unlike other standards where cherry-picking of the requirements may be carried out, IEC 61511 necessitates a demonstration of compliance to all lifecycle phases and their associated requirements.

The author of this peer-reviewed paper is fully aware of how difficult-to-digest the subject is; therefore, this paper on the prominence of validation and verification is presented in a pictorial, unambiguous and easy-to-digest manner while paying particular attention to the requirements defined for validation and verification in the standard. The topic of validation and verification in the overall lifecycle of IEC 61511 will be covered by the following questions:

  1. What is the difference between validation and verification in the context of IEC 61511?

  2. What is the difference between verification against IEC 61511 and IEC 61508?

  3. When should planning for validation and verification happen?

  4. When should validation and verification be carried out?

  5. What are the implications of not carrying out validation and verification?

  6. How does validation and verification fit into the wider context of the IEC 61511 lifecycle?

  7. What level of independence is required for validation and verification?

The paper will also attempt to provide a practical example of how to implement an effective validation and verification strategy into an overall Functional Safety Plan to give the reader a clearer understanding of the obligations toward demonstrating compliance.

Andrew W. Derbyshire started his career in the Royal Air Force before joining BAE Systems after a nine-year tour of duty where he worked as a Systems Safety Engineer in the Airworthiness Division on the Eurofighter project.

During his time at BAE Systems Andrew was involved in several projects as an Airworthiness Systems Safety Engineer, his last of which was overseeing the development of a safety case for the Nimrod MR2 and R1 post the Haddon Cave enquiry into the loss of XV230 over Afghanistan.

Andrew moved into the oil and gas industry more than five years ago where he became a Senior Functional Safety Consultant and a Certification Engineer for SIRA Certification, a CSA International company. He has since moved to DNV GL where he is now a Principal Safety Consultant.

Andrew is a member of the management committee at the IEC 61508 Association and a convener of a Working Group for the association. He is also a member of the Board of Directors at Conformity Assessment of Safety-related Systems (CASS). CASS is a non-for-profit assessment scheme aimed at promoting the functional safety set of standards. Additionally, Andrew is a member of the Professional Review Interviewers (PRI) panel at the IET, interviewing prospective Incorporated and Chartered Engineers for the Engineering Council.

Andrew is presently the Independent Functional Safety Assessor for the QCLNG Project in Queensland. Andrew is also in the process of developing a Joint Industry Project aimed at developing a failure rate and performance database for safety equipment used in the Safety Instrumented System on LNG terminals.