Introductory course on Functional safety & Proof Testing:

Questions

No. Question Answer

1 The concept of risk is based on:

a. The severity of the consequence of a specific event (e.g. one person killed)
b. The likelihood a specified consequence arising (e.g. 1 in 500 years)
c. The likelihood of the consequence together with the severity of the consequence (e.g.
one person killed with the estimated likelihood of 1 in 500 years)

2 When determining whether a Tolerable Risk has been achieved, the decision:
a. Can be based solely upon the requirements in IEC 61511 & IEC 61508
b. Can be based solely upon the explicit specific numerical targets set by HSE (in UK)
c. Is the responsibility of the company producing the risk and they have to define the
risk methodology and quantified targets
3 The relevant standard for manufacturers and suppliers of devices to be used in a Safety
Instrumented System is/are:
a. IEC 61508
b. IEC 61511
c. A combination of IEC 61508 & IEC 61511

4 The relevant standard for system integrators of Safety Instrumented Systems for the
process sector is:
a. IEC 61508
b. IEC 61511

5 Compliance to IEC 61508 & IEC 61511 requires that:

a. It is only necessary to comply with the relevant technical requirements specified in
the standard
b. It is necessary to comply with the relevant technical requirements and with
requirements relating to the management of functional safety, verification, validation
and functional safety assessment.
c. It is necessary to comply with the relevant technical requirements but requirements
relating to the management of functional safety, verification, validation and
functional safety assessment are recommended but are not compliance
requirements.
6 Determining the actions a Safety Instrumented Function has to perform (i.e. the
functionality of the safety instrumented function) is based on:
a. A risk assessment
b. A hazard analysis
c. A combination of a risk assessment and a hazard analysis
d. Professional judgement based on past experience
e. A reliability analysis

1
 Introductory course on Functional safety & Proof Testing:

Questions

No. Question Answer

7 Determining the safety integrity (i.e. the SIL) of a Safety Instrumented Function is based
on:
a. A risk assessment
b. A hazard analysis
c. A combination of a risk assessment and a hazard analysis
d. Professional judgement based on past experience
e. A reliability analysis
8 A Safety Instrumented System (SIS):
a. Cannot carry out more than a single Safety Instrumented Function
b. Can carry out many Safety Instrumented Functions
9 The Low Demand Mode of operation is where the frequency of demands for operation of
the Safety Instrumented Function is:
a. No greater than one per year
b. Less than one year
c. At least 10 times per year
10 The risk reduction related to a safety function of SIL 2 operating in low demand mode of
operation is:
a. 10-100
b. 10,000-100,000
c. 100-1000
d. 500-5000
11 Safety Integrity consists of:
a. Systematic Safety Integrity
b. Hardware Safety Integrity
c. Systematic Safety Integrity and Hardware Safety Integrity
12 The design requirements to achieve a specified SIL comprise:
a. Requirements for systematic safety integrity for the specified SIL
b. Requirements for the quantification of random hardware failures to meet the target
failure measure for the specified SIL
c. Requirements for the degree of redundancy that is required by the specified SIL
d. All of the above
13 To determine whether a failure is a “safe failure” or a “dangerous failure”:
a. It is necessary to know precisely the functionality of the SIF
b. It is necessary to know the SIL of the SIF
c. The functionality of the SIF is not relevant and whether failure is “safe” or
“dangerous” depends upon engineering judgement
d. It is necessary to know both the SIL of the SIF and the functionality of the SIF
14 A Proof Test is:
a. Is the same as a Functional Test
b. Is intended to detect dangerous hidden failures in a Safety Instrumented System with
respect to a specified SIF

2
 Introductory course on Functional safety & Proof Testing:

Questions

No. Question Answer

15 Proof Testing is related to:

a. Systematic Safety Integrity
b. Hardware Safety Integrity (quantification of random hardware failures)
16 With respect to Proof Testing it is:
a. Reasonable to assume that Proof Testing will detect 100% of dangerous undetected
failures is (i.e. a perfect proof test)
b. Not reasonable to automatically assume without adequate evidence that the Proof
Test will detect 100% of dangerous undetected failures
17 Proof Testing:
a. Is fundamentally important in ensuring that the required target failure
measure (PFDavg) for the SIF is achieved in practice
b. Is useful but not essential
Is necessary because of compliance to quality system requirements
18 When undertaking a Proof Test:
a. It is not necessary to follow precisely the specified procedures providing engineering
judgement is used
b. Very important that the specified procedures or followed
c. Permissible to deviate from a specified procedures providing this is recorded
19 The concept of Proof Test Coverage:
a. Provides a basis for specifying the degree of effectiveness of a Proof Test
b. Indicates the frequency at which a Proof Test should be carried out
c. Provides a basis for indicating how much time should be spent on the Proof Test
20 The procedures for the specified Proof Test for a specific SIF are developed:
a. Based solely on engineering judgement
b. Based on an analysis of the failure modes related to the SIF
c. Are based on past experience not related to the specific SIF