Siemens SINUMERIK 840D Description Of Functions

Also see for SINUMERIK 840D: Function manual Function manual Function manual Equipment manual Programming manual

11.03 2 General Information about Integrated Safety Systems2.12 Error analysis© Siemens AG 2003 All Rights ReservedSINUMERIK 840D/SIMODRIVE 611 digital SINUMERIK Safety Integrated (FBSI) - Edition 11.03 2-49Error control enables easy and cost-effective implementation of therequirements of Machinery Directive 98/37EC (MDIR column, Appendix 1).1.2.41) Stopping, normal stopping and stopping in an emergency1.2.51) Mode selector switch1.2.61) Power supply fault1.2.71) Control circuit fault1.3.61) Risks relating to variations in tool speeds1.3.71) Preventing risks relating to moving parts1.3.81) Selecting protective equipment against risks relating to moving parts1.4.21) Special requirements placed on isolating protective equipment1.4.31 ) Special requirements placed on non-isolating protective equipment.Risk assessment enables the machine manufacturer to determine the residualrisk for his machine with respect to the control. The following residual risks aredefined:• SI is not active until the control system and drive have completely run-up.SI cannot be activated if any one of the control or drive components is notpowered-up.• Faults in the absolute track (C-D track), cyclically interchanged phases ofmotor connections (V-W-U instead of U-V-W) and a reversal in the controldirection can cause an increase in the spindle speed or axis motion.Category 1 and 2 Stop functions according to EN 60204-1 (defined asStops B to E in Safety Integrated) that are provided are not effective due tothe fault. Category 0 stop function according to EN 60204-1 (defined asStop A in Safety Integrated) is not activated until the transition or delaytime set via machine data has expired. When SBR is active, these errorsare detected (STOP B/C) and the Category 0 stop function according toEN 60204-1 (STOP A in Safety Integrated system) is activated as early aspossible irrespective of this delay (refer to Chapter 3.8, "Safe brakingramp").Electrical faults (defective components etc.) can also result in the responsedescribed above.• When incremental encoders are used, the functions "safe software limitswitch" (SE) and "safe software cam" (SN) are not guaranteed untilreferencing has been successfully completed.• When no user agreement has been given (refer to Chapter 2 "Useragreement"), the safe software limit switches (SE) are not operative; thesafe software cams (SN) are operative, but not safe as defined by SafetyIntegrated.• The simultaneous failure of two power transistors (one in the upper and theother offset in the lower inverter bridge) in the inverter may cause the axisto move briefly.Example: Synchronous motor:1) Refer to: Appendix, References General /1/Topics or Chapterheadings of MDIR,Appendix 1Residual risk