C09 Profibus and Profinet in a safety related system - Mark Carter, BAE Systems

What is a Safety Related System Astute Class Submarine

PROFIBUS & PROFINET Conference 2015

23-24th June 2015 / Not Protectively Marked © BAE Systems Marine Ltd 2015 1

23-24th June 2015, Stratford. UK

Presenters: M Carter MSc CEng FIET

2

Introduction Brief Overview

© BAE Systems Marine Ltd 2015

• Based in Barrow-in-Furness

• History

• Holland

• Upholder

• Future

• Vanguard

• Trafalgar

• Astute

Complexity

23-24th June 2015 / Not Protectively Marked

Justify its SAFE! (within ALARP principals)

3

Reason Why? Submarines Primary Goal

© BAE Systems Marine Ltd 2015 23-24th June 2015 / Not Protectively Marked

Primary Goal

1. Act as a deterrent to

aggression.

2. Deliver aggression, if

needed.

FIGHT!!!

B

A

Secondary Goal

1. Ability to MOVE.

a) Propulsion

b) Power Generation

c) Navigation

Humans

4

Reason Why Summary


Fight!!

Move

Humans

In terms of Safety 1. To Humans

2. To the Asset Asset

5

Platform Management System Overview


6 © BAE Systems Marine Ltd 2015 23-24th June 2015 / Not Protectively Marked

Platform Management

System (PMS)

HCI

Safety

Functions

Normal

Functions

Fight

Life- Support

Control

Console

Control

Console

Steering

Drive

Steam

Fight!!

Move

Humans


7 © BAE Systems Marine Ltd 2015 23-24th June 2015 / Not Protectively Marked

Platform Management

System (PMS)

HCI

Safety

Functions

Normal

Functions

Fight

Life-Support

Control

Console

Control

Console

Steering

Drive

Steam

Data

Gathering


8

Platform Management Summary - Safety


Humans 1. Protect from such as:

a) Electrocution

b) Materials (toxicity)

c) Weight

d) Sharp edges

Asset 1. Provide situational awareness

2. Provide control to manage mission

3. Common

a) Provide functionality required

b) Application

c) Product to support Application

d) Fit for Purpose

9

Platform Management Architecture


Vessel Systems and Local Controls

Combat

Primary

Platform

Propulsion

Communication Network

Data Collection

& Control Units Local Operating

Panel

(LOP)

Ship Control ConsoleCentralised Control ConsoleStarting Platform

Console

Printer

Printer

Inputs and Outputs

(I/O)

Data-LoggerData-Logger

Vehicle Control

Ethernet

Profibus

10

Safety What does it mean!


Safe to Operate Safe to Maintain

Human

Computer Interface

11

Safety What Safe to operate mean!



Data-Logger

Sequence

Controller

Remote

I/O

Safe to Operate

Safe to Operate Provide Situational

Awareness

Human

Computer Interface

12



Remote

I/O Sequence

Controller

Data-Logger

Valve

Open

Safe to Operate

Provide Control

Human

Computer Interface

13



Remote

I/O Sequence

Controller

Data-Logger

14

Safety What Safe to maintain mean!



Data-Logger

Sequence

Controller

Human

Computer Interface

Remote

I/O

15

Strategy Making your Argument?


Goal 1

The System ‘X’ is

acceptably safe.

My

Argument

Is???

Str 1

Argue is safe to

Maintain & Operate

Goal 1.1

The System is safe to

Maintain.

Goal 1.2

The System is safe to

Operate.

Goal

Structuring

Notation

Evidence

16

Stakeholders Most Important Lesson


Involve your Stakeholders, ensure they understand your argument

its Safe !!!!

Thank you

Engineering

C09 Profibus and Profinet in a safety related system - Mark Carter, BAE Systems