安全仪表功能安全软件开发与验证
文献类型:学位论文
| 作者 | 刘梁梁 |
| 学位类别 | 硕士 |
| 答辩日期 | 2014-05-28 |
| 授予单位 | 中国科学院沈阳自动化研究所 |
| 导师 | 徐皑冬 |
| 关键词 | 功能安全 压力变送器 SIL3等级 软件可靠性 软件测试 |
| 其他题名 | Development and Verification of Functional Safety Software for the Safety Instrument |
| 学位专业 | 控制理论与控制工程 |
| 中文摘要 | 随着工业自动化技术的发展,安全仪表系统广泛应用于保障设备安全运行、避免安全危险事故发生。作为安全仪表系统的重要组成部分,仪器仪表的安全性成为保障系统高可靠性的一个重要环节。但我国仪器仪表的整体综合技术水平比较落后,在安全关键领域无法满足用户的需求,他们更倾向于更加稳定、高精度、智能化的国外仪表。另外,发达国家在安全标准的制定和应用、产品研制与开发、认证等方面处于领先地位。因此,开展安全仪表技术的研究具有重要的现实意义。 功能安全压力变送器能够检测生产环境的关键性输入,为确保生产过程的安全可靠性运行发挥了重要的作用。随着压力变送器的智能化,高可靠性嵌入式系统被广泛应用于压力变送器中。作为压力变送器的重要组成部分,压力变 送器的软件控制着压力变送器大部分的安全功能和非安全功能。因此,安全压力变送器软件的可靠性研究是安全仪表技术研究的重要组成部分。 本文在充分研究国内外相关领域的文献和标准的基础上,以功能安全压力变送器为研究对象,设计和实现了功能安全压力变送器软件。 首先对传统软件可靠性设计和测试方法与E/E/PE系统功能安全标准中软件要求的安全技术进行了详细的描述,确定了以软件安全生命周期和V模型为指导的软件开发方法。 其次针对软件安全生命周期中可能出现的软件失效问题进行了归纳和分析,探讨了软件需求阶段、设计阶段和编码实现阶段可能的软件失效模式。并根据功能安全要求,提出了相应的解决方法。 给出了功能安全压力变送器的软件整体设计方案,根据安全功能要求和安全完整性等级要求,选取多版本编程、程序流监控等安全保障技术对软件进行开发实现,并详细介绍了软件各模块的设计和运行机制。 实现了基于Profisafe安全通信机制的安全通信层来处理总线上数据传递中出现的错误。通过使用虚拟序列号、时间戳、CRC、代码名等措施,来检测通信过程中的故障。实验数据验证了安全通信层的有效性。 最后,搭建安全压力变送器的软件测试平台,包括模块测试平台和软硬件集成测试平台。在模块测试中,功能和黑盒测试验证了软件模块功能符合模块设计标准,通过覆盖率分析检查了模块的安全性;在软硬件集成测试中,通过故障插入实验,检验故障发生时,软件能否执行相应的功能,实验结果显示,安全压力变送器软件满足安全需求规范和安全完整性等级的要求。 |
| 索取号 | TH7/L72/2014 |
| 英文摘要 | As the development of industrial automation technology, safety instrument system has been widely applied to guarantee safe operations for devices and thus to avoid dangerous accidents. As an important part of safety instrument system, the security of instrument itself is the key factor to ensure high reliability for the system. However, due to the relatively laggard overall instrument technology in China, users’ requirements usually cannot be met in the key fields related to safety because of their tendency to foreign intellectualized instruments with high stability and accuracy. What’s more, developed countries are also taking the leading position in formulating and applying standard of safety, product research, development and authentication. Thus the research of safety instrument technology is of practical significance. Functional safety pressure transmitter can detect critical inputs from the working environment, playing an important role in guaranteeing the safety and reliability during the operation process. With the intellectualization of pressure transmitter, embedded system with high reliability has been widely used in pressure transmitters. Being the significant component of pressure transmitter, the software for pressure transmitter is in charge of most safety function and non-safety function. Therefore, studying the reliability of safety pressure transmitter’s software is an essential part in the research of safety instrument technology. Based on related areas’ literatures and standards both in China and abroad, a software of functional safety pressure transmitter is designed and realized by studying the functional safety pressure transmitter. To begin with, make a detailed description of reliability design and test method for traditional software, and of safety technology within software requirements in E/E/PE system’s functional safety standard. Then, determine the software development methodology guided by software security’s life cycle and V model. Secondly, generalize and analyze the software failure problems that can occur during software security’s life cycle, and discuss the potential software failure mode during periods of software requirement, design, coding and implementation. The corresponding solutions are put forward according to the requirement of functional safety. Moreover, overall design scheme for the software of functional safety pressure transmitter is presented. As required by safety function and the safety integrity level, proper security technology is selected to develop the software. Then introduce in detail each software module’s design and operation mechanism. In addition, the secure communication layer, which is based on Profisafe secure communication mechanism, is used to deal with the errors of data transmission on the bus. Namely, detect the errors communication by using virtual serial number, timestamp, CRC, the name of code, and so forth. The experimental data verify the validity of secure communication layer. Finally, the software testing platform is established for the safety pressure transmitter, including module-testing platform and soft-hardware integrated testing platform. In module testing, functional testing and black-box testing demonstrate that the function of software module accords with the module design standard, and also, the module’s safety is inspected via coverage analysis; in the soft-hardware integrated testing, by means of fault insertion experiments, examine that whether the software can implement corresponding function when errors happen, and the results show that the safety pressure transmitter software can meet the requests of safety requirement standard and the safety integrity level. |
| 语种 | 中文 |
| 产权排序 | 1 |
| 页码 | 68页 |
| 分类号 | TH7 |
| 源URL | [http://ir.sia.ac.cn/handle/173321/14821]  |
| 专题 | 沈阳自动化研究所_工业控制网络与系统研究室 |
| 推荐引用方式 GB/T 7714 | 刘梁梁. 安全仪表功能安全软件开发与验证[D]. 中国科学院沈阳自动化研究所. 2014. |
入库方式: OAI收割
来源:沈阳自动化研究所
浏览0
下载0
收藏0
其他版本
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。