BS EN 60987:2009 pdf free download – Nuclear power plants – Instrumentation and control important to safety – Hardware design requirements for computer-based systems.
1.3 Applicability of this standard to programmable logic devices development
l&C components may include programmable logic devices that are given their specific application logic design by the designer of the l&C component. as opposed to the chip manufacturer. Examples of such devices include complex programmable logic devices (CPLD) and field programmable gate arrays (FPGA).
While the programmable nature of these devices gives the development processes used for these devices, some of the characteristics of a software development process and the design processes used for such devices, are very similar to those used to design logic circuits implemented with discrete gates and integrated circuit packages. Therefore, the design processes and design verification applied to programmable logic devices should comply with the relevant requirements of this standard (i.e. taking into account the particular features of the design processes of such devices). To the extent that software-based tools are used to support the design processes for programmable logic devices, those software tools should generally follow the guidance provided for software-based development tools in the appropriate software standard. i.e. lEG 60880 (Class 1 systems) or IEC 62138 (Class 2 systems).
2 Normative references
The following referenced documents are indispensable for the application of this document. For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendments) applies.
IEC 60780, Nuclear power plants — Electrical equipment of the safety system — Qualification
IEC 60812, Analysis techniques for system reliability — Procedures for failure mode and
effects analysis (FMEA)
IEC 60880, Nuclear power plants — Instrumentation and control systems important to safety — Soft ware aspects for computer-based systems performing category A functions
IEC 61000 (all parts), Electromagnetic compatibility (EMC)
IEC 61025, Fault tree analysis (FTA)
IEC 61513:2001, Nuclear power plants — Instrumentation and control for systems important to safety — General requirements for systems
IEC 62138. Nuclear power plants — Instrumentation and control important for safety — Software aspects for computer-based systems performing category B or C functions
ISO 9001, Quality management systems — Requirements
IAEA NS-G 1.3, Instrumentation and control systems important to safety in nuclear power plants
IAEA 50-C/SG-Q:1996, Quality assurance for safety in nuclear power plants and other nuclear installations
3.1
ATE
automated test equipment
3.2
COTS
commercial off the shelf: COTS is a subset of pre-developed products
3.3
diversity
existence of two or more different ways or means of achieving a specified objective. Diversity is specifically provided as a defence against common cause failure, It may be achieved by providing systems that are physically different from each other or by functional diversity, where similar systems achieve the specified objective in different ways
(IEC 60880:2006, definition 3.14J
NOTE This definition is wider than that used by the IAEA NS-G-1.3 which is as follows: The presence of two or more systems or components to carry out an identified function, where the different systems or components have different attributes so as to reduce the possibility of common mode fallure. (IEC 61226:2005. deFinition 3.51
3.4
firmware
software which is closely coupled to the hardware characteristics on which it is installed. The presence of firmware is generally transparent” to the user of the hardware component and, as such, may be considered to be effectively an integral part of the hardware design (a good example of such software being processor microcode). Generally, firmware may only be modified by a user by replacing the hardware components (for example, processor chip, card, EPROM) which contain this software with components which contain modified software (firmware). Where this is the case, configuration control of the hardware components by the users of the equipment effectively provides configuration control of the firmware. Firmware, as considered by this standard, is effectively software that is built in to the hardware
3.5
FMEA
failure modes and effects analysis
3.6
FTA
fault tree analysis
3.7
NPP
nuclear power plant
3.8
pre-developed
item which already exists, is available as a commercial or proprietary product, and is being considered for use in a computer-based system.