Technical Concepts PAS IND Controls for FAIR GSI Helmholtzzentrum - - PowerPoint PPT Presentation

GSI Helmholtzzentrum für Schwerionenforschung GmbH GSI Helmholtzzentrum für Schwerionenforschung GmbH

Technical Concepts PAS IND Controls for FAIR

GSI Helmholtzzentrum für Schwerionenforschung GmbH

Einleitung / Inhalt

Part 1: PAS in Relation to FAIR Personnel Safety Part 2: PAS System Architecture Part 3: PAS Prototype System Part 4: PROFINET/Industrial Ethernet Structure Part 5: Equipment Part 6: State diagrams, SIFs, Safety program structure ideas Part 7: Timeline Part 8: Open Issues/Next Steps

2

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P1: PAS in Relation to FAIR Personnel Safety

3

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P2: PAS System Architecture

4

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P3: PAS Prototype System

5

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P4: PROFINET/Industrial Ethernet Structure

6

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P4: PROFINET/Industrial Ethernet Structure

7

SAD NE29s SAD NE38s AAD NE1/NE22 AAD NE23s/NE50 AAD NE23s/NE30

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P5: Equipment (PAG)

8

Ultrasonic detector to detect single persons QR Code Reader Safety mat

Panel inside of the PAG Monitor Hand vein scanner Key transfer system (30 pieces) Dosimeter station (30 pieces)

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P5: Equipment Doors

9

ECD, SAD extern

Monitor Position Lock Door (closed-circuit current) electronic device SIL3/PLe

AAD, SAD intern

Monitor Position Lock Door (closed-circuit current SAD or working current AAD) electromechanical devices together SIL3/PLe

MAD OR AND

Monitor Position Lock Door (closed-circuit current) electronic device SIL3/PLe Locked Key: Door locked Released and removed Key: Door unlocked for material transport electromechanical device SIL3/PLe

PAG

Inner Door: Monitor Position Lock Door (closed-circuit current) electronic device SIL3/PLe Outer Door: Monitor Position electronic device SIL3/PLe Unlock Button to escape/ exit from inside NE Unlock Button to escape/ exit from inside NE Unlock Button to escape/ exit from inside NE

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P5: Equipment SAD Panel for Search

10

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P5: Equipment control units

11

NE area: BOG:

PAG/MAD/SAD/ECD/TED/RSD AAD

Detection (Sensors) Interpretation (SW+Safety Relais) Reaction (Actors)

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P5: Equipment central services

12

SCADA and HMI: Database:

• WinCC OA Server
• ULC UX client at PAG PC/monitor, activated with entrance of

person

• local HMI Panel outside PAG for actual status information
• OWS at FCC
• Central OWS Station at Safety Department
• Oracle DB of Accelerator Control System
• Data transfer to CAFM database
• Managed Data: User with roles, status of briefing, rights for

dedicated areas, QR-code, Hand Vein data

• Interfaces to PAG PC, Hand Vein Scanner Controller, Input

terminals at FCC and Safety Department

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P3: PAS System Architecture (BOG)

13

1 1

PAS/Dipole interface for 400V AC power supplies

PAS PAS PAS PAS PAS

PAS PAS

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P3: PAS System Architecture (BOG)

14 PAS/Dipole interface for 20kV power supplies

PAS PAS PAS PAS PAS

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P3: PAS System Architecture (BOG)

15

PAS/Dipole interface for additional DC-Load Switch for single dipoles

PAS PAS PAS PAS PAS

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P3: PAS System Architecture (BOG)

16

N

PS 1 PS 1 PS 1 PS 2 PS 2 PS 2 PS 1 PS 2 K1

ICM In ICM In

24V DC + 230V AC 230V AC 24V DC +

PS 2 PS 2 PAS

N

F-

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P6: State diagrams, SIFs, Safety program structure ideas

17

Controlled access: not searched BOG SAFE

BOG for General Access Mode

General access BOG SAFE

BOG for Controlled Access Mode

BOG SAFE

BOG for Intruded State

Undefined BOG SAFE

BOG for Closed Access Mode wo beam permit

Closed access wo beam permit BOG UNSAFE

sources for high level BOG for Closed Access Mode w beam permit

Closed access w beam permit Controlled access: searched Controlled access

testing Error

BOG SAFE

BOG for NE, NEs, Door, PAG or MAD in error

BOG SAFE

higher level BOG for NE, NEs, Door, PAG

• r MAD in testing

BOG SAFE

higher level BOG for lower level BOG in error

BOG SAFE

higher level BOG for lower level BOG in testing

TK1 GSI

is switched OFF

GSI facility for highest level BOG in error/testing

testing Error testing Error

testing Error

States/Modes with special meaning for Error Handling and Testing Procedure

Init State Any State or Testing Start

BOG UNSAFE Beam permit BOG SAFE No Beam permit

prepared

BOG SAFE Prepare for beam

Closed access w beam permit

BOG normal Operation Modes

NO NE beam permit

Controlled access

Intrusion

NE beam permit

Empty + Mode

NE normal Operation Main Modes

NO NE beam permit

Undefined Closed access wo beam permit

Intrusion Closed + Mode Empty + Mode Mode

General access

Mode

Beam not interlocked Beam Interlock Beam not interlocked Beam Interlock

Controlled access

Beam not interlocked Beam Interlock

Controlled access: searched Controlled access: Radiation clearance Controlled access: search for persons Controlled access: not searched Undefined

Intrusion Intrusion

General access

Mode Mode Closed + Mode

Closed access w beam permit

Closed access wo beam permit

Empty + Mode Mode Mode Empty + armed denied armed denied

NE normal Operation Modes

Beam Interlock Beam not interlocked

Mode

Mode Mode

NEs normal Operation Modes

Beam Interlock possibly Beam not interlocked Beam Interlock

Closed access searched /cleared

Undefined General access Controlled access: searched Controlled access: Radiation clearance Controlled access: search for persons Closed access uncleared Closed access not searched

Closed Mode + NE controlled Access + cleared denied armed Intrusion Mode + NE controlled Access armed NE Mode Closed Access w Beam permit Mode + NE controlled Access denied Closed + Mode denied

possibly Beam not interlocked

Intrusion Mode + NE controlled Access + uncleared

Door SAFE Door UNSAFE Locked Door prepare SAFE

ECD, AAD normal Operation Modes

Unlocked Closed + unlock time exp.

TEG, RSD normal Operation Modes

Opened

possibly Beam not interlocked Beam Interlock possibly Beam not interlocked Beam Interlock

Door SAFE Door UNSAFE Closed Opened

Door SAFE Door UNSAFE Locked + Blocked Door prepare SAFE

MAD normal Operation Modes

Unlocked Closed + unlock time exp. Opened

possibly Beam not interlocked Beam Interlock possibly Beam not interlocked Beam Interlock

prepare Transport UNSAFE Transport UNSAFE finalize Transport UNSAFE Intrusion Requested + Released Unlocked + T_Area inspection Closed Blocked + Locked + T_Area emptied

PAG D_SAFE PAG UNSAFE PAG prepare SAFE Both Opened Both Closed + unlock time exp.

PAG normal Operation Modes

Both Opened

possibly Beam not interlocked Beam Interlock possibly Beam not interlocked Beam Interlock

PAG OFF/ SAFE Entry Procedure D_SAFE Exit Procedure D_SAFE Entry Request Exit Request Key violation PAG switched OFF PAG switched ON Both Closed + inner locked Entry OK Exit OK

Test Request:

• 1. Automatically at any state

after time of 365d? is expired

• 2. Manually for authorities or

timer restart before time is expired

Any State

General Error Handling

Safety Error detected

General Testing Procedure

possibly Beam not interlocked Beam Interlock possibly Beam not interlocked Beam Interlock

testing Error

Error fixed + acknowledged Init State Any State or Testing Start Test Request Test successful executed Init State

Controlled access: not searched

Category of persons for entry in General Access Mode

General access

Category of persons for entry in Controlled Access Modes (Patrol)

Controlled access

Category of persons for entry in Intruded State

Undefined

Category of persons for entry in Closed Access Mode

Closed access

Category of persons for entry in Controlled Access Modes for Users

Controlled access: searched GSI staff w. building permit GSI staff

• w. special

area/ category permit GSI staff

• w. patrol/

rad.dep. permit GSI staff

• w. special

area/ category permit GSI staff

• w. patrol/

rad.dep. permit GSI staff

• w. patrol/

rad.dep. permit GSI staff w. rad.dep. permit

GSI staff w. rad.dep. permit

Category of persons with Mode Change permit

Controlled access GSI staff w. Category authority Closed access

Category of persons with Category Change permit

Controlled access: searched GSI staff

• w. patrol

permit Laser General access AEB Radiation GSI staff w. rad.dep. authority

etc.

Mode <= Mode Change Empty <= Searched Mode and all keys present armed <= patrol success armed denied <= patrol success denied Intrusion <=

• min. 1 door UNSAFE or MAD UNSAFE or PAG UNSAFE

Closed <= all doors SAFE and MAD SAFE and PAG SAFE

Logic of SF/transition NE:

Mode <= Mode Change Empty <= Searched Mode armed <= patrol success armed denied <= patrol success denied Intrusion <=

• min. 1 door UNSAFE

Closed <= all doors SAFE

NEs:

beam permit <= all NEs in "Closed Access w. beam permit" NO beam permit <=

• min. 1 NE not in Closed Access w. beam

permit" prepared <= Beam imminent warning finished

BOG:

Closed <= door position closed Opened <= door position opened unlock time exp. <= unlock time expired Locked <= door magnet locked Unlocked <= door magnet unlocked Blocked <= transport key blocked Requested <= transport requested Released <= transport key released T_Area inspection <= transport area insp. system started

Logic of SF/transition RSD, TEG, ECD, AAD, MAD:

Both Closed <= inner and outer door closed Both Opened <= inner and outer door opened PAG switched OFF <= PAG out of function PAG switched ON <= PAG in function Entry Request <= Entry requested and allowed Exit Request <= Exit requested Entry OK <= Entry procedure finished with success Exit OK <= Exit procedure finished with success Key violation <= maluse of keys during entry/exit detected

PAG:

Safety Error detected <= diagnostic detected safety malfunction Error fixed + acknowledged <= manual intervention and acknowledge

ERROR Handling:

Test Request <= automatically or manually Test successful executed <= test in dependency

• f device

successfully

Testing Procedure:

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P6: State diagrams, SIFs, Safety program structure ideas

31

Matrix to structure safety program:

NE BOG NEs intern NEs extern PAG SAD MAD ECD AAD Quantity BOG x List of BOG ID x Quantity NE x List of NE ID x x x Quantity PAG x List of PAG ID x Quantity MAD x x List of MAD ID x x Quantity NEs intern x x x x List of NEs intern ID x Quantity NEs extern x x x x List of NEs extern ID x Quantity SAD x x List of SAD ID x x Quantity ECD x x x List of ECD ID x x x Quantity AAD x x x List of AAD ID x x x Quantity Magnets x List of Magnet ID x Quantity Diffusors x List of Diffusor ID x Quantity special Equipment x List of Equipment ID x fire brigade key x x

• wn CPU

x x x

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P6: State diagrams, SIFs, Safety program structure ideas

32

Naming conventions to structure the system:

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P6: State diagrams, SIFs, Safety program structure ideas

33

Naming conventions to structure the system:

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P6: State diagrams, SIFs, Safety program structure ideas

34

Naming conventions to structure the system:

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P6: State diagrams, SIFs, Safety program structure ideas

35

Example for the naming: ==AF200=FP22-FQT01-BG01+G004.E10.001 ==AF200 is the main technical system and stands generally for the PAS =FP22 is the NE area sub system: e.g. NE22 =FQT01 is the equipment: e.g. escape door 1

• BG01 is the specific device: e.g. position switch 1

+G004 is the location in building: e.g. G004 E10 is the floor: e.g. E10 001 is the room number: e.g. 001

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P6: State diagrams, SIFs, Safety program structure ideas

36

Safety program structure ideas:

• Standardisation of HW Konfiguration including the addressing

concept for the different types of PLC systems (NE, BOG, AAD), according to the maximum configuration required

• Development of a PAS safety Library, which includes blocks

for all required basic SIFs, for each type of door (ECD, TED, RSD, MAD, SAD, AAD), for PAGs, for dipole/main contactor interface, main safety blocks for NEs, BOGs, AADs

• Development of a call configuration concept for the

standardisation of the main safety block for the different PLC system types, according to the maximum configuration

• Development of F-types for the different remote IO station

types (ECD, TED, RSD, MAD, SAD, PAG/MAD)

• Development of test systems for pretesting and software

evaluation and for operational function tests

GSI Helmholtzzentrum für Schwerionenforschung GmbH

P7: Timeline

37

GSI Helmholtzzentrum für Schwerionenforschung GmbH GSI Helmholtzzentrum für Schwerionenforschung GmbH

Thank you