3 safety-related architecture, 4 achievable safety level – Pilz PNOZ s30 24-240VACDC 2 n/o 2 n/c User Manual

Supplementary data

Operating Manual PNOZ s30
1001715-EN-13

77

}

If a maximum error variable is exceeded (set/true comparison) the drive controller must

switch to a fault condition and stop the drive (drag error detection). The error reaction to
drag error detection should be a controlled motor stop.

}

Fault detection via the error variable with subsequent shutdown must meet the require-

ments of the safety function, with regard to reaction times for example.

}

The drive controller must evaluate the same incremental/sincos signals from the encod-

er for control as are processed by the safe evaluation device (important on encoders
with combined analogue/digital interface).

Safety-related architecture

Sensor

non-safe encoder

Actuator

SRP/CS

Actuator

SRP/CS

Sensor

PNOZ s30

Logic

+

Diagnostic

SRP/CS

Logic

Drive Control

Diagnostic

To calculate the safety function you will need the following data for the "sensor" subsystem
and "PNOZ s30" subsystem:

Sensor

PNOZ s30 subsystem

Category

MTTFd

DC

Operating mode

PFH (1/h)

2

Manufactur-

er-specific

90 %

Monitoring

1 encoder

2,34E-08

Achievable safety level

Safety function

PL in accordance with EN

ISO 13849-1: 2006

SIL CL in accordance with

EN IEC 62061

Speed
Speed range
Direction
Standstill
Position

PL d (Cat. 2)

2

9.2.5.3

9.2.5.4