HIMax®

Nonstop safety for everyone who thinks ahead

High plant productivity thanks to intelligent safety solutions

Do you wish safety solutions that neither cause unscheduled shutdowns and nor need to stop the plants for maintenance works, changes or extensions? Do you think that safety systems are neither supposed to limit the productivity of a system nor to cause excessive and unnecessary investments?

Then you need intelligent safety solutions that both ensure maximized safety and availability, and increase plant pro-ductivity. These safety solutions can, for example:

Reduce lifecycle costs Reduce investment costs Minimize planning and operating failures Reduce costs due to operating stops

HIMax will meet your expectations:

No compromises in safety! No compromises in productivity

HIMax Safety is a must. Productivity as well

HIMA. Safety. Nonstop.

It’s a philosophy more than 100 years in the making. It’s built on HIMA’s singular focus on safety and is proven by decades of technology breakthroughs. It represents our commitment to providing maximum safety and uninterrupted plant operations. Our goal isn’t just to design the world’s best safety systems. It’s to help keep your business safe and running. No shutdowns. No failures. Maximum uptime. Maximum profi tability.

Reference list

Excerpt from our customer list:ABB, AKZO NOBEL, AMK, Angola LNG, BASF, Bayer, BAYERNOIL, BP, Clariant, EnBW, ESSO, Evonik, ExxonMobil, Henkel, HOLBORN, HP, INEOS, INPEX, LANXESS, MAN, Metso, MIPRO, MiRO, MOMENTIVE, OMV, PEMEX, Petrobras, QATAR PETROCHEMICAL, RWE, Shell, TATA Steel,TOTAL, Vattenfall, Vinnolit, YARA

3

4

HIMax — growing with the tasks

Nonstop SIL 3 safety for the process industry

HIMax solutions are used in the most various SIL 3 applications. For instance:

Steam crackers Polyethylene, polypropylene and PVC production plants Fertilizer plants Onshore/offshore facilities, platforms and FPSO Pipelines Tank farms and gas containers Loading stations Refi neries Combustion and power plants Turbines and compressors Batch operations Others

Thinking ahead within the lifecycle

With HIMax, HIMA provides you not only the world's leading nonstop safety system, but also supports you simultaneously with qualifi ed, sophisticated and coordinated services for all phases of the safety lifecycle.

Thin

With Hnonstowith quphases

5

HIMax — more margin for action

Major solutions

High-availability solutions with HIMax guarantee safe and uninterrupted operation for every safety-critical process in your facility. Emergency shutdown systems (ESD), Fire & Gas systems or high-integrity pressure protection systems (HIPPS) are but a few typical applications.Additionally, HIMax is the core element of the new com-plete solutions developed for the process industry:

FlexSILon TMC for turbines and compressors FlexSILon BCS for burner control and boiler

protection FlexSILon PMC for the management of gas and

liquid fuel pipelines

HIMax provides the fl exibility you need. Because HIMax offers safe SIL and standard NonSIL modules. In case of a safety related revalidation of a machine you are able to substitude NonSIL for SIL modules quickly and easily afterwards.

Profi tability on top

Buy only what you need. HIMax adapts to meet virtually any application requirement.

HIMax can be your single platform for all I/O count, response time and fault-tolerance requirements, as well as centralized or distributed applications.

Save engineering time and costs using a fl exible, intuitive and easily adaptable platform.

HIMax integrates with any DCS that you use today or in the future.

HIMax offers virtually unlimited expansion – hardware and software changes can be performed on demand, without interruption, for the full life cycle. Cabinet size is mini-mised because there's no need to allocate slots for spares.

Benefi t from HIMax’s unprecedented performance and system fl exibility by integrating more I/Os or greater application complexity per system.

HIMax is a cost-effective solution with different rack sizes to match your physical space requirements.

No hidden software costs. With a SILworX® software license, you get a single intuitive software tool for all tasks.

Your advantage

User programs, system modules, racks and operating systems can be extended or modifi ed at any time without interrupting the system or plant operation.

6

User-friendly features

How HIMax makes it easier for the user: Automatic module detection Fully integrated and protected power distribution eliminates

the need for external wiring Fast implementation via HIMA SILworX, a user-friendly

software tool with an intuitive interface, self-documentation and embedded version control

Accelerate start-up by building-up and testing the hardware confi guration without the application program (Loop check mode)

Comprehensive diagnostics, automatic recording of 500/2,500 diagnostic entries on each module

Built-in user management for project- and system access HART protocol support simplifi es asset management

solutions Multitasking affords interference free, parallel processing

of applications Integrated version comparison provides exact and

graphical traceability of changes

Your advantage

Performing simulations with X-OTS, the HIMax safety simulator, increases safety and enhances profi tability.

Your advantage

Application errors are dramatically reduced and valuable time in the planning and installation phase is saved.

Learn more at our websitewww.hima.com/X-OTS

Greater effi ciency through simulation

The X-OTS HIMax Safety Simulator adds the aspects of safety to the classical OTS (Operator Training System). X-OTS is based on HIMA’s programming tool SILworX and a corresponding number of extended soft PLCs. Each HIMax controller will be simulated by one soft PLC. Up to 10 soft PLCs can be run on one PC (performance depending).

Application software can be checked in real scenarios prior to commissioning, leading to shorter commissioning times

Shorter commissioning times lead to an earlier plant start up

Application software can already be optimized prior to start up, leading to a higher plant effi ciency already at start-up (instead of optimizing in the running plant)

Avoiding of plant trips by improved behaviour of operators

7

HIMax — intelligent design

Flexible nonstop system solution

HIMax is a fl exible SIL 3 platform designed for critical production processes that can never afford to go down. HIMax adapts to all I/O count, response-time and fault-tolerance requirements as well as centralized or distrib-uted applications. Yet it always delivers maximum plant availability and future-proof fl exibility.

Two different CPU modules with optimized performance accordance with the required number of I/Os

XMR architecture: scalable redundancy for operation in quad, triple (TMR), dual and single modes

Unlimited change and expansion of hardware and software, including operating systems, while the system is running

Multitasking operations: Separate applications indepen-dently executed in the same processor module

Sophisticated mechanics

For the best possible handling: Fully enclosed modules Replace module without disturbing I/O or power wiring All racks are panel mountable; the 15 slot is also available

for 19-inch rack installation Fully integrated and protected power distribution Two different fi eld wiring options, i. e., direct wiring using

terminal strips or system cables on fi eld termination assemblies

Requirement based rack sizes

Three available rack sizes: 10, 15 and 18 slots In case of using X-CPU 31, up to 4 slots can be used with

additional I/O or COM modules

1

2

3

15 slot rack

10 slot rack

ready!

18 slot rack 18 slot rack

Modules

Rack

Wiring

Insert …

press …

99

1010

Performance pays off

HIMax is the most powerful safety platform ever invented. Its unprecedented performance is based on high-perfor-mance components and smart system architectures.

Cycle time of 50 ms with 1,000 I/Os (split 50% analog/digital)

Unlimited complex calculations Impact of calculation of 1,000 PIDs on cycle time: 10 ms Signal conditioning directly on I/O modules with no im-

pact on CPU performance Up to 2,048 I/Os per cabinet A system with up to 12,800 I/Os Up to 200 I/Os in up to 16 racks per system 250 systems per network Multitasking: Set fi xed scan times for dedicated

applications Sequence of event (SOE), 1 ms resolution quality

Online expandability

In case of expanding the update is written to a second memory area, after which the system switches seamlessly to the update. This method of intelligent memory management ensures that the controller is always operational regardless of whether it is mono or redundant. There is no limit to the number of times a program can be reloaded during operation. Even operating systems can be updated during operation.

I/O modules, their associated connector boards, base plates and remote components can also be added during operation. The same applies to new base plates and remote components. All can be modifi ed without having to stop the plant. Online expandability of hardware and software guarantees maximum fl exibility during the entire life cycle.

Optimizing plant effi ciency, e.g., using C code

New process optimization potential is opened up by integrating mathematical and statistical models for dynamic process control or by more frequent sampling of process values within the safety system. Critical processes with continuously changing process variable values can thus be run closer to the limit ranges. For example: If the dynamic process value temperature in an ethylene cracker can be kept 1 to 2 degree closer to the critical limit, plant productivity increases considerably, while full process safety and availability are maintained.

Self education

If the system diagnoses an internal fault, the module involved can be replaced quickly during operation. Only a few moves are required.

If a processor module is swapped, the new module is automati-cally brought up to date with the currently operative modules. The parameter setting and the user program are imported from the functional processor module and then loaded.

“Self-education” has other benefi ts for the user: Your inventory of spare parts will be smaller You do not have to search for correct software versions When replacing a processor module, you do not have to

connect a computer, which eliminates subsequent potential fault causes.

HIMaxUnrivalled performance for nonstop operation

I/O

I/

poinn

tsts

1,000

50

2,000

10ms

50ms

100ms

Cycle time(Scan time)HIMax

o

1111

CPU

HIMaxHIMax

HIMax HIMax

HIMax HIMax

no CPU needed

no CPU needed

no CPU needed

no CPU needed

Multitasking for enhanced performance

HIMax can process or change up to 32 user programs simul-taneously and independently and interference-free from one another. Each application with user-defi ned cycle time Various applications/programs within a system are

possible, e.g., ESD, TMC, BCS, HIPPS or others Even, e.g., C++ code and ESD Time-critical and non-time-critical applications within

one system Individual checksums for minimized certifi cation efforts Interference-free addition of applications Each program with individual cycle time/scan time Fixed cycle time possible for every application

Meaningful diagnostics

Stores up to 2,500 diagnostic entries in the processor module and 500 entries per I/O module automatically

Maintenance log includes relevant information such as reload, download, run, stop, force automatically

All diagnostic information can be transferred to the DCS Condition monitoring, e.g., for relay modules

Proof test at any time without stops

In accordance with IEC 61508 and IEC 61511, all safety systems must be subjected to proof tests at regular intervals to reliably ensure compliance with the latest standards. With HIMax, test-ing is done as required – with no need to stop the safety system.

HIMaxEngineered for fl exibility and productivity

Redundant networking via system bus

Thanks to its remote rack functionality, HIMax offers the widest range of remote/distributed SIL 3 solutions Local solution within one rack Distributed solution with racks connected with copper

cables and a maximum distance of 100 m between the racks in a line

Distributed solution with racks connected with media converters via fi bre optics and a maximum expansion of ~20 km in a line

Remote Rack functionality offers the ability to distribute up to 16 racks of a HIMax system in free (e.g. star) topology. The internal system bus can be used in a redundant manner and at theoretical maximum distance of 10,000 km. Remote Rack functionality enables faster reaction time than distributed CPUs via safeethernet.

System bus with external switchesMax. rack distance: 10,000 kmMax. system expansion: 20,000 km

ESD

HIPPS

TMC

BMS

SD TM

...

1212

Fully integration capable

HIMA continuously tests all options for integrating HIMax in the leading control systems, thoroughly documents the results and develops effi cient, pre-tested confi gurations. Irrespective of the process control system in use, the cus-tomers will be able to fully benefi t from all the advantages offered by HIMax. DCS SIS integration is achieved through high-capacity, cross-manufacturer communication stand-ards. HIMA's DCS specialists have the required integrations know-how and make sure that all features wished by the customers will be implemented:

Integration of alarms and events into the alarm management of the DCS

Integration of faceplates for operating and monitoring Transfer and visualisation of diagnostic data Transfer and visualisation of process data and safety-

related locking states Timestamp transfer Maintenance overwrite switch (MOS) Partial stroke test (PST) Start-up bypass (SUB)

Redundant networking via safeethernet

All of the necessary parameters such as IP address, network mask, routes and standard gateway can be setup in accord-ance with the Ethernet standard. SIL 3 Data transmission at 1 GBit/s Fast response times, even for networked applications No limitations on physical separation Use of standard Ethernet functionalities Use of any transmission media Networking of up to 255 systems in each project Up to 64 connections (each up to 1100 Byte) between

two systems Any infrastructure Intelligent, diverse redundancy concepts and reload

functionality for uninterrupted system operation

Supported protocols include: OPC DA and OPC A&E Modbus TCP Master & Slave Modbus RS485 Master & Slave PROFIBUS DP Master & Slave PROFINET IO Controller & Device Send & Receive TCP HART ComUserTask, programmable protocols

safeethernet on any Ethernet infrastructureVirtually no limit in the expansion

HIMaxHIMax

HIMaxHIMax

HIMaxHIMax

HIMaxHIMax

HIMaxHIMax

1313

Maximizing availability as needed

HIMax is designed to maximize plant availability and there-fore improve productivity. Key to this promise is HIMax’s revolutionary XMR architecture. XMR combines the best of all existing safety architectures. As the X in “XMR” can represent values from 1 to 4, HIMax offers unprecedented levels of redundancy and fault-tolerance at constant maximum safety (SIL 3).

The results are “available for life” safety solutions with no single point of failure. Even multiple failures will not trigger a shutdown. Replace the faulty module online - at any time and without restrictions. HIMax need not be shutdown, even when upgrading software or hardware, or performing main-tenance.

XMR architectureMoving beyond TMR fault tolerance and functionality

Control roomwith a HIMax system

X = 4SIL = 3

X = 3SIL = 3

X = 2SIL = 3

X = 1SIL = 3

XMRModularity

Protecting against common-cause failures

HIMax offers reliable protection against common-cause failures through the physical separation of the redundant system components. Supposing critical components of the safety system fail in a control cabinet due to fi re or water damage, the redundant components located in another control cabinet continue to operate, ensuring the system complete functionality.

This results in enhanced availability, system runtime and productivity.

1414

Remote locationwith a fully redundant HIMax system running the same application

1

2

3

4

Benefi tsModes of operation DescriptionArchitecture

An application that provides maximum common cause hardware protection and maximum availability.

A traditional architecture, also known as TMR, which can provide similar safety and availability characteristics as X = 2. This application is offered for cus-tomers who “require” TMR technology.

The most widely used safety archi-tecture providing absolute safety and availability.

The original safety architecture – used wherever multiple process facilities need protection without redundancy.

Quad inputsQuad outputsQuad CPUs

Triple inputsTriple outputsTriple CPUs

Dual inputsDual outputsDual CPUs

Single inputsSingle outputs Single CPU

INPUT OUTPUTCPU

INPUT OUTPUTCPU

INPUT OUTPUTCPU

INPUT OUTPUTCPU

1515

HIMax module specifi cations

Compliance with all major standards

IEC 61508:2000, Part 1-7 IEC 61511:2004 ANSI/ISA-84.00.01-2004 EN ISO 13849-1:2008 (PL e) EN 62061:2005 EN 50156-1:2004 EN 12067-2:2004 EN 298:2003 EN 230:2005 EN 61131-2:2007 EN 61000-6-2:2005 EN 61000-6-4:2007 EN 54-2:1997/A1:2007 EN 50130-4:1998-2003 EN 954-1:1996 (Cat. 4) NFPA 85:2007, 86:2007, 72:2007 EN 60079-15:2003 ATEX

(Zone 2, T4) ANSI/ISA-S 71.04 Class G3

(Tropicalisation) UL (UL 508) cUL (CSA-C22.2 Nr. 142) FM CLASS 1 DIV2

(FM 3600, 3611, 3810) Achilles Level I Certifi cation SIL 4 (CENELEC) BUREAU VERITAS DNV (DET NORSKE VERITAS) GOST R Certifi cate GOST R Ex Certifi cate Russia RMRS

The world’s most advancedsafety application manager

SILworX is HIMA’s easy-to-use, fully integrated confi guration, programming and diagnostic environment. Its state-of-the art interface with drag&drop programming helps users avoid mistakes and speeds up the engineering process. Different levels of user guidance, clear display of all status and diagnostic information and comprehensive validation tools help engineers achieve safe applications.

16

SILworX highlights:

A single fully integrated software tool for all tasks One licence for all functions IEC 61131-3-compliant, supporting all functions and

variable types for safety-related programming Flexible programming using function block diagrams,

sequential function charts Supports reload funcitonality for hardware and logic changes Project saved automatically each time it is loaded Safe comparator for hardware and logic changes,

including detail view and Go to ... functionality Program validation inlcuding offl ine simulation, online test

Secure double code generation with code comparison Monitored forcing of signals Project-wide cross-references and navigation Password protection for projects and controller access ST (Structered Text) Supports SOE programming Supports multitasking for up to 32 independent programs Hardware import/export via XML Library including function blocks developed in accordance

with IEC 61511 C Code function block option

Central modules Type Description

Processor module X-CPU 01 For high performance requirements and large safety applications, 4 x RJ-45

Processor module X-CPU 31 For smaller and mid-size safety applications, 4 x RJ-45

System bus module X-SB 01

Communication module X-COM 01 4 x RJ-45, 2 x 9-pole D-Sub, up to 6 different protocols

Input/output modules Type Description

Input modules

Digital input module X-DI 64 01 64 channels, 24 VDC, SIL 3

Digital input module X-DI 64 51 64 channels, 24 VDC

Digital input module X-DI 32 01 32 channels, 24 VDC, SIL 3

Digital input module X-DI 32 02 32 channels, 8,2 VDC, proximity switch, line monitoring, SIL 3

Digital input module X-DI 32 03 32 channels, 48 VDC, SIL 3

Digital input module X-DI 32 04 32 channels, 24 VDC, SOE, SIL 3

Digital input module X-DI 32 05 32 channels, 8,2 VDC, proximity switch, line monitoring, SOE, SIL 3

Digital input module X-DI 32 51 32 channels, 24 VDC

Digital input module X-DI 32 52 32 channels, 8,2 VDC, proximity switch, line monitoring

Digital input module X-DI 16 01 16 channels, 120 VAC, SIL 3

Analog input module X-AI 16 51 16 channels, 0/4 … 20 mA, ± 280 mV, galvanically isolated, thermocouple TC, Pt100

Analog input module X-AI 32 01 32 channels, 4 ... 20 mA, line monitoring, SIL 3

Analog input module X-AI 32 02 32 channels, 4 ... 20 mA, line monitoring, SOE, SIL 3

Analog input module X-AI 32 51 32 channels, 0/4 ... 20 mA, line monitoring

Counter module X-CI 24 01 24 channels, 0 ... 20 kHz, SIL 3

Counter module X-CI 24 51 24 channels, 0 ... 20 kHz

Output modules

Digital output module X-DO 32 01 32 channels, 24 VDC, 0,5 A, short-circuit monitoring LS, individual channel shut-off, SIL 3

Digital output module X-DO 32 51 32 channels, 24 VDC, 0,5 A, protected outputs, group shut-off

Digital output module X-DO 24 01 24 channels, 24 VDC, 0,5 A, line monitoring LS/LB, individual channel shut-off, SIL 3

Digital output module X-DO 24 02 24 channels, 48 VDC, 0,5 A, line monitoring LS/LB, individual channel shut-off, SIL 3

Relay output module X-DO 12 01 12 channels, 230 VAC/DC, current measurement, cycle counting, SIL 3

Digital output module X-DO 12 02 12 channels, 24 VDC, 2 A, short-circuit monitoring LS, individual channel shut-off, SIL 3

Relay output module X-DO 12 51 12 channels, 230 VAC/DC

Analog output module X-AO 16 01 16 channels, 4 ... 20 mA, pairwise galvanically isolated

Analog output module X-AO 16 51 16 channels, 4 ... 20 mA

Further modules

HART communication module X-HART 32 01 32 modems, SIL 3, X-AI 32 01, X-AI 32 02, X-AI 32 51, X-AO 16 01, X-AO 16 51

Overspeed trip module X-MIO 7/6 01 3 counter, 4 digital input, 5 digital output, 1 relay channel, SIL 3

Dimensions Type Description

Size of modules All 310 x 29 x 230 mm

17

HIMA is the world’s leading specialist for safety-related auto-mation solutions. HIMA solutions provide maximum safety and maximum availability and can be integrated into any automa-tion environment. More than 35,000 HIMA systems have been installed in over 80 countries, protecting the assets of the world’s largest companies in the oil, gas, chemicals, pharmaceu-ticals and power generation industries for more than 40 years. In the fi elds of rail, logistics and machine safety, HIMA solutions are leading the way to increased safety and profi tability.

HIMA develops solutions that provide both maximum safety and availability for processes, plants and machinery – nonstop. The HIMA LIFECYCLE SERVICES concept gives customers an overview of all the requirements of ‘functional safety’ allowing them to always make the right decision at the appropriate time. HIMA solutions therefore offer maximum safety, strengthen a plant's productivity and profi tability whilst ensuring compliance to global statutory requirements.

HIMA was founded in Germany in 1908. Since 1970, the com-pany has achieved numerous milestones in the fi eld of safety-related automation engineering, including the introduction of the world’s fi rst TÜV-certifi ed safety system. HIMA now has over 800 employees with every third member of staff at the head-quarters in Brühl working solely in research and development.

Through a steadily growing network of group companies, sales and service centres, as well as representatives in more than 50 countries, HIMA implements projects of all sizes all over the world. Thanks to its corporate independence, the family-run company is able to work in any project structure – taking on complete projects or partial tasks, and working both directly for end customers and as part of a team with EPCs, MACs and DCS manufacturers. This enables HIMA to continue to concentrate on safety solutions. The results are quality products, unrivalled specialist knowledge and customer confi dence built on decades of successful projects.

Why HIMA?

1818

19

For a detailed list of all our subsidiaries and representatives,please visit our website: www.hima.com/contact

96 9000347 0514 V09© 2014 HIMA Paul Hildebrandt GmbH + Co KG® = registered trademarks of HIMA Paul Hildebrandt GmbH + Co KGSpecifi cations are subject to change.

HIMA Paul Hildebrandt GmbH + Co KGAlbert-Bassermann-Str. 28 I 68782 Brühl, GermanyPhone +49 6202 709-0 I Fax +49 6202 709-107info@hima.com I www.hima.com

systems

Uniquely fast, uniquely flexible

DevelopedforapplicationsrequiringafewI/OpointstoseveralhundredI/Opoints,HIMatrixfeaturescost-effectivenessandbig-systemperformance.Idealfornetworkedandtime-criticalapplications,theHIMatrixseriesofsafety-relatedcontrollersandremoteI/Omodulesdeliversexcellentsystemperformance,compactnessandeasyassembly.DeviceswithenhancedperformanceofferPROFINET,multitasking,SOErecordingandreloadcapability.

Engineering tools

HIMatrixsystemscanbeengineeredusingELOPIIFactoryorSILworX®.DeviceswithenhancedperformanceareexclusivelyprogrammedwithSILworX.■■ Functionblockdiagrams■■ Sequentialfunctioncharts■■ Certifiedfunctionblocks

SystemFactsHIMatrix® systems

■■ SIL3,PLe,Cat.4■■ Fast,flexible,compact■■ Extremelycost-effective■■ Distributedapplications■■ Applicationswithjustafew

I/Opoints

List of certificates

■■ ENISO13849(PLe)■■ EN954-1:1969(Cat.4)■■ EN62061(SIL3)■■ IEC61511:2004(SIL3)■■ IEC61508Parts1-7:2000(SIL3)■■ EN12067-2:2004,

EN198:203,EN230:1990■■ NFPA85:2001■■ DINVDE0116:1989,

EN50156-1:2004■■ EMCDirective89/336/EEC■■ ExDirective94/9/EC,EN1127-1■■ EN54-2:1997,NFPA72:2002:

F35,F60,F3AIO8/401■■ Lloyd’sRegister,UL,

FMApprovals:seehandbook■■ SIL4(CENELEC)

HIMatrixList of modules

Theextensivehardwarerangeandsafety-relatednetworkingofthesystemsviasafeethernet (redundantconnectionisalsopossible), guaranteehighlevelsofflexibilityandoptimumadaptationtotheapplicationrequirements.

Operating conditions and CE mark

■■ IEC/EN61131-2:2006ProgrammableControllersPart2,EquipmentRequirementandTests

■■ IEC/EN61000-6-2:2001EMC,GenericStandards,ImmunityforIndustrialEnvironments

■■ IEC/EN61000-6-4:2001EMC,GenericEmmisionStandard,Residential,Commercial,andLightIndustry

■■ EMCDirective■■ LowVoltageDirective■■ MachineryDirective■■ ATEXDirective

Additionallocalcertificatesavailable

Operating principles

■■ De-energizetotrip■■ EnergizetotripforF35,

F60andF3AIO8/401

Communication options

■■ SIL3viasafeethernet■■ OPCDA(OPCA&E)■■ ModbusTCPMaster&Slave■■ PROFINETandPROFIsafe■■ Ethernet/IP■■ Send&ReceiveTCP■■ PROFIBUSDPMaster&Slave■■ ModbusRTUMaster&Slave■■ INTERBUSMaster■■ ComUserTask(CUT),

user-programmableport■■ SNTP■■ IntegratedEthernetswitch,

100MB(withVLAN)

96

90

00

418

09

11V0

2©

byH

IMA

Pau

lHild

ebran

dtG

mb

H+

Co

KG

HIM

atrixand

SIL

wo

rXarereg

isteredtrad

emarkso

fHIM

AP

aulH

ildeb

rand

tGm

bH

+C

oK

G

Typical applications

Process industry■■ Pipelines■■ Distributedpharmaceuticals

applications■■ BMSsolutionsforsingleandmultiple

burnersystems■■ DecentralisedFire&Gassystems■■ Turbinemonitoring■■ Wellheadcontrol■■ Subseaapplications

Rail sector■■ Signalling■■ Railwaycrossings■■ Rollingstock■■ Powersupply

Logistics and machine safety■■ Conveyorsystems■■ Cranes,cranenetworksandlifting

equipmentinproductionfacilitiesorondocks

■■ AGV(Automatedguidedvehicle)■■ Stampingandpresses■■ Paintingplants■■ Robotcells■■ Elevators■■ Locksandpolders■■ Liftersandelevatingplatforms■■ Cablecars■■ High-baywarehouses■■ Completesolutionsforairports

www.hima.comIinfo@hima.com

systems

Inputs analog / digital

Outputs analog / digital

Ethernet-switchports

Line monitoring*

Special features

Compact PES

F35 01/03 8/24 -/8 4 - Plus2counters100kHz,approvedforuseinEx-Zone2F3 1 02/03 -/20 -/8 4 yes WithoutfieldbusinterfaceF30 01/03 -/20 -/8 4 yes -F20 01 -/8* -/8* 2 yes 8channelswhichcanbeconfiguredindividuallyasI/Os

F10 PCI 03 -/- -/- 4 -RedundantpowersupplyviaPCplusexternal24Vpossible

Remote I/Os

F1 DI 16 01 -/16 -/- 2 yes -F2 DO 16 01 -/- -/16 2 - 8outputs2A,8outputs0.5AF2 DO 16 02 -/- -/16 2 - Relayoutputsuptoacontactpotentialof60VF2 DO 8 01 -/- -/8 2 - Relayoutputsuptoacontactpotentialof230VF2 DO 4 01 -/- -/4 2 - Loadofupto5AF3 DIO 8/8 01 -/8 -/8 2 yes Additional2L-switchingoutputsF3 DIO 16/8 01 -/16 -/8 2 yes 2-pinoutputsF3 DIO 20/8 02 -/20 -/8 2 yes -F3 AIO 8/4 01 8/- 4**/- 2 - SupplyforNAMURproximityswitchesand24V

Modular PES 6slotsforanytypeofI/Omodule

F60 CPU 01/03 -/- -/- 4 -

I/O modules

AI 8 01 8/- -/- - - -DI 32 01 -/32 -/- - yes Cross-circuitinginconnectionwithDIO24/16DI 24 01 -/24 -/- - - 110VinputvoltageMI 24 01 24/24 -/- - - Currentinputs4-20mA,alternativelyNAMURinputsDIO 24/16 01 -/24 -/16 - yes -CIO 2/4 01 -/- -/4 - - 2countersupto1MHzAO 8 01 -/- 8/- - yes -DO 8 01 -/- -/8 - - Relayoutputsuptoacontactpotentialof230V

Specificationsaresubjecttochangewithoutnotice. *configurable **non-safety-related

HICore 1 – Safety System-on-Chip

■■ TÜV-certified up to SIL 3■■ Safe up to PL e ■■ SIL 3-certified integrated

circuit (IC), operating system and middleware

■■ Optional: graphical engineering tool with FBD language

■■ Fully redundant 1oo2D architecture

■■ Interference-free COM system

Standards

■■ IEC 61508 Edition 2, part 1–7■■ IEC 61131■■ EN 13849-1■■ EN 60601

Applications

HICore 1 is the chip-based programmable safety system for customised solutions, providing flexible SIL 3-compliant safety solutions that can be tailored to the most diverse customer applications

1Shorter time to certification – shorter time to marketWith HICore 1, HIMA is offering a complete, TÜV-certified hardware and software package, as well as selected functional safety services. For customers who require IEC 61508 certification for their application, HICore 1 can make this otherwise complex certification process faster and easier. HICore not only optimises the ‘time to market’, but it also cuts costs. That’s because the high integration density of the HICore architecture means that fewer additional components have to be purchased. Passive cooling and just-in-time programming also serve to significantly optimise costs.

SystemFacts

Features

■■ Energy-efficient, high-performance DC80390 (8-bit) processor cores

■■ Optimised MCS-51 (8051) instruction set

■■ Maximum pulse: 135 MHz■■ Memory “SAFE System”:

■■ 2 x 256 KB Flash■■ 2 x 64 KB SRAM

■■ Memory “COM System”:■■ 512 KB Flash■■ 128 KB SRAM

■■ Core voltage: 1.8 V ■■ I/O voltage: 3.3 V■■ Typ. power consumption:

below 400 mW (with all outputs active)

■■ Operating temperature: –40°C to +105 °C

■■ Storage temperature: –55°C to +150 °C

■■ Enclosure: FPBGA256

I/Os

■■ 32 safe digital inputs■■ 8 safe counter inputs■■ 30 safe digital outputs■■ 2 safe PWM outputs■■ Safe, redundant SPI for

additional I/Os

Interfaces

■■ SPI■■ UART■■ 2 x CAN bus■■ Ethernet

Development environment

■■ IAR workbench■■ logi.CAD (online test capable)

Services

With more than 33,000 TÜV-certified systems installed over the course of 40 years, HIMA is a reliable partner for functional safety. This experience and know-how is available with every HICore 1 Safe System-on-Chip and related consulting services:

■■ Functional safety consulting■■ Customer product certification■■ Component selection■■ PCB development■■ Software development■■ HIMA LIFECYCLE SERVICES

HICore 1 architecture

HIMA’s HICore 1 architecture is based on a redundant 1oo2D microprocessor system with DC80390 processor cores. Thanks to an additional microprocessor, the integrated communication subsystem operates independently and interference-free. All three embedded microprocessors feature individual, integrated data and program memories, separate on-chip debugging units, and communication interfaces. Integrated compar-ators, memory protection units, programmable watchdogs, power supply monitoring and other features allow HICore 1 to fulfil all functional safety requirements of the IEC 61508 standard.

SAFE System COM System

P1

32 Inputs

80390

FLASH

SRAM

30 Outputs

2 PWM

8 Counter

UART

SPI

P3

Ethernet

2 CAN

UART

SPI

80390

FLASH

SRAM

P2

32 Inputs

80390

FLASH

SRAM

30 Outputs

2 PWM

8 Counter

UART

SPI

High integration density of HICore 1 architecture

SystemFacts

www.hima.com I info@hima.com

SystemFacts | HICore 1 Safety System-on-Chip

96

90

00

54

7 06

13 V

01 ©

by HIM

A P

aul Hildebrandt G

mbH

+ Co K

G®

= registered trademark H

IMA

Paul H

ildebrandt Gm

bH + C

o KG

Specifi

cations subject to change without notice.

Availability

Expected September 2013

Highlights

■■ Certified up to SIL 3, PL e■■ High granularity ■■ Certified function blocks for

connection to numerous sensors■■ High computing power and

processing of complex data structures

■■ Implementation of large quantities of I/Os

■■ Import of C programs■■ Decentralization via backplane

extension for longer distances■■ Large selection of modules

Applications

■■ Automated storage and retrieval systems

■■ Automated guided vehicles (AGV)

■■ Electric monorail systems■■ Amusement rides■■ Cranes■■ Stackers■■ Reclaimers■■ Baggage handling systems■■ Assembly plants

Safety Functions

■■ Safe monitoring of positions, speed, acceleration, breakdown torque

■■ Safe load monitoring■■ Safe distance monitoring■■ Complex range and/

or location-dependent monitoring and emergency stops

Simplify Safe Motion Control. Multiply Efficiency.Thanks to its computing power, a large variety of sensor interfaces and granular architec-ture, the new HIMatrix M45 is suitable for complex safety-critical applications in the area of logistics and machine safety. It makes safe motion control solutions simpler, more flexible and more profitable. Advantages■■ Fewer components (e.g. no smart bus coupling modules needed) than other solutions■■ Significant reduction of planning and engineering effort■■ Fewer fault sources■■ Simplified procedure for extensions or changes during operation■■ Implementation of CPU-intensive solutions

ProductNewsHIMatrix® Safety System M45

Edition November 2012

Networks

■■ Networking/decentralization via backplane extension with connections to various sensors

■■ Networking via safeethernet with usage of all Ethernet functions for safety-critical applications

■■ Integrated switch for a variety of network structures (line, tree, star)

Software

■■ SILworX®, the fully integrated configuration, programming and diagnostic tool from HIMA

■■ Library of certified motion function blocks

■■ Import of C programs possible

Communication Options

■■ safeethernet■■ OPC (DA and A&E)■■ Modbus TCP (Master & Slave)■■ PROFINET IO (Controller & Device)■■ PROFIsafe (F-Host and F-Device

for PROFINET IO)■■ Send & Receive TCP■■ PROFIBUS DP (Master & Slave)■■ Modbus RTU (Master & Slave)■■ SNTP■■ SSI, CAN, CANopen, RS485,

RS422, RS232 ■■ Proprietary protocols via all

interfaces with ComUserTask

Features

■■ Simplified and flexible connection of a wide range of sensors via various interfaces and certified function blocks

■■ Simplified implementation of mathematical functions via■■ Support for 64-bit data types■■ Multidimensional arrays and struct variables■■ Execution of complex mathematical operations

■■ Economic implementation of large quantities of I/Os, as each CPU supports up to 62 I/O modules

■■ Simplified implementation of complex programs thanks to import options for safety-related C programs and their corresponding conversion to function blocks

■■ Simplified and economic decentralization via backplane extension for longer distances

ProductNews

www.hima.com I info@hima.com

ProductNews | HIMatrix Safety System M45

96

90

00

38

1 1112 V

01 ©

by HIM

A P

aul Hildebrandt G

mbH

+ Co K

G®

= registered trademarks of H

IMA

Paul H

ildebrandt Gm

bH + C

o KG

Edition November 2012

Available Modules

CPU

COM-processor PROFIBUS Master, RS485 and RS485/RS422

COM-processor PROFIBUS Slave, RS232 and RS485/RS422

COM-processor SSI, RS485 and RS485/RS422

COM-processor CAN, RS485 and RS485/RS422

8-fold DI

8-fold DO

8-fold unidirectional counters

may be pairwise interconnected to bidirectional counters, timestamp with 1 µs resolution

2-fold relay module

Certified Motion Function Blocks in Detail

H-MO-Hiperface Hiperface® interface H-MO-SOS Safe operating stop

H-MO-WCS3B WCS3B interface H-MO-SLP Safe limited position

H-MO-CDH75M CDH75M interface H-MO-SLI Safe limited increment

H-MO-PCV80t Safe 2D barcode H-MO-SLS Safe limited speed

H-MO-OLM100t Barcode OLM100 H-MO-SSR Safe speed range

H-MO-CAN_Pt CANopen position H-MO-SDI Safe direction

H-MO-1oo2 1oo2 function block H-MO-SSM Safe speed monitoring

H-MO-16CRC24 CRC function block H-MO-SLA Safe limited acceleration

H-MO-8CRC16 CRC function block H-MO-SAR Safe acceleration range

H-MO-TSS1 Traction slip supervision H-MO-1Derivation First derivative

H-MO-SSx Safe stop 1/2 H-MO-2Derivation Second derivative

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22