Professional Documents
Culture Documents
2 DNV GL ©
LOPA / SIL Classification Presentation
3 DNV GL ©
Objectives
4 DNV GL ©
SIL Classification by LOPA
5 DNV GL ©
Output from this Phase of the Lifecycle
SIS
Safety
Safety Instrumented
Instrumented System
System
The safety functions that The integrity with which the safety
have to be performed functions have to be performed
6 DNV GL ©
Risk Reduction Principles
Consequences Frequency
of hazardous of hazardous
event event
6 1 2
Actual
Actual
remaining Tolerable
Tolerable
remaining Process
Process
risk risk
risk
risk risk
risk
target
target
5 4 3
DNV GL ©
Safety Integrity Levels (SIL)
8 DNV GL ©
SIF Target Integrity Level
The target integrity of a SIF is determined from the highest of the three
assessment:
Safety
Environment
Asset
Target Integrity level = maximum (SIL, EIL, CIL)
The SIF must be designed to achieve the highest target Integrity Level
9 DNV GL ©
LOPA Onion
10 DNV GL ©
Mapping HAZOP Data to LOPA Data
11 DNV GL ©
LOPA Elements
Impact event
Severity level
Initiating cause
Initiation likelihood
Protection layers
– General process design
– BPCS
– Alarms
Additional mitigation
– Bunds
– Relief valves
Intermediate event likelihood
Mitigated event likelihood
12 DNV GL ©
LOPA Maximum Frequency of Mitigated Event Likelihood/yr
(Severity Level) – Personal Safety
DNV GL ©
LOPA Maximum Frequency of Mitigated Event Likelihood/yr
(Severity Level) - Environmental
DNV GL ©
LOPA Maximum Frequency of Mitigated Event Likelihood/yr
(Severity Level) - Financial
DNV GL ©
LOPA Initiating Event (Cause) Frequency Values
DNV GL ©
LOPA Possible Independent Protection Layers (IPLs) and Their
Associated PFDs
DNV GL ©
Initiating Events Examples (Causes From The HAZOP)
18 DNV GL ©
LOPA Independent Protection Layers (IPLs)
Must have the following characteristics
Specific
a PL is designed to prevent or mitigate the consequences of one potentially hazardous event.
Multiple causes may lead to the same hazardous event, and therefore multiple event
scenarios may initiate action by a PL;
Independent
a PL is independent of other protection layers if it can be demonstrated that there is no
potential for common cause or common mode failure with any other claimed PL;
Dependable
The PL can be counted on to do what it was designed to do by addressing both random
failures and systematic failures during its design;
Auditable
a PL is designed to facilitate regular validation of the protective functions.
19 DNV GL ©
Basic Rules Of BPCS & Alarms
20 DNV GL ©
Rules For Pressure Relief Devices (PSVs)
21 DNV GL ©
LOPA Process
Steps
22 DNV GL ©
LOPA Risk Equation
1- Probability Of Ignition
2- Occupancy Factor
Workers are present all the time Presence Factor = 1
Workers are present for less than 12 hours per day = 0.5
Workers are present for 1-2 hours per day= 0.1
3- Operational
24 DNV GL ©
Typical Ignition Probabilities
25 DNV GL ©
Basic Rules For Safety Instrumented Systems (SIS)
26 DNV GL ©
LOPA Worksheet
27 DNV GL ©
References
28 DNV GL ©
Thank you for your attention
www.dnvgl.com
29 DNV GL ©