Introduction
One of the contemporary warm matters in the discipline of equipment security is mode selection. This can also no longer be crucial for small machines, however, machines place whole-body get entry is viable are increasingly being geared up with mode determination switches and get entry to administration systems. Mode determination and getting the right of entry to administration to allow authorized human beings to enter equipment so they can operate described duties in areas the place there are residual risks. But how do you make sure solely the right humans have access? In the past, humans saw easy key switches or passwords as sufficient. However, greater state-of-the-art structures are higher for decreasing risks. As a result, we have an exceptionally new equipment protection document, PD ISO/TR 22053:2021 for safeguarding supportive systems.
This posted file from BSI is the British equal of ISO technical document ISO/TR 22053:2021, Safety of equipment – Safeguarding supportive systems. Note that it no longer have equal popularity as a standard; it purely offers recommendation and guidance.
Furthermore, ISO/TR 22053 is no longer harmonized with the European Machinery Directive, and PD ISO/TR 22053 is no longer certain for the Supply of Machinery Safety Regulations (SMSR) in Great Britain. Therefore, complying with both models of this record will no longer supply a presumption of conformity with any necessary fitness and security necessities (EHSRs). For greater statistics about the Machinery Directive and SMSR, see this post: What are the variations between UKCA marking and CE marking of machinery?
ISO/TR 22053 helps the layout and integration of safeguarding supportive systems, abbreviated to SSS. Importantly, ISO/TR 22053 is meant for use in conjunction with the global general ISO 11161 Safety of equipment – Integrated manufacturing structures – Basic requirements. And the British Standard equal is BS EN ISO 11161.
Is PD ISO/TR 22053:2021 simply for mode selection?
PD ISO/TR 22053 exceptionally helps mode resolution applications. However, mode resolution regularly ties in with the granting of bodily access. For example, if the ‘teach’ mode is chosen for a robotic cell, approved personnel can enter the mobile to operate and instruct operations. For any given application, you want to set up what modes are required and what must manifest when every mode is selected, which may encompass releasing particular defend interlocks.
In addition, an SSS may want to probably be used to minimize the likelihood of hazardous human mistakes happening in different situations, now not simply mode choice or built-in manufacturing machine (IMS) applications.
Remember that though the center of attention is on defending humans from hazardous machinery, an SSS can additionally assist to forestall unauthorized actions. Such moves ought to affect productivity, quality, power consumption, fabric utilization, or different parameters. This is a case the place spending greater on equipment security measures ought to pay for itself.
Judicious implementation of mode resolution should additionally provide in addition advantages in contrast with the desktop genuinely being ‘on’ or ‘off’. For example, resets and restarts should be quicker, which would gain productiveness and typical gear effectiveness (OEE).
What bodily structure does SSS hardware take?
From the users’ perspective, the SSS would possibly be based totally on a range of technologies, including: machine-readable codes (barcodes or 3D codes); magnetic strips on identification cards; and transponder tokens or playing cards encapsulating RFID tags. Alternatively, an SSS may be counted on high-integrity mechanical keys of the kind used in trapped key interlock systems.
PD ISO/TR 22053 additionally refers to biometric safety systems. These may want to be facial consciousness systems, fingerprint readers, retina scanners, iris recognition, palm vein sample attention or different biometric technologies.
While PD ISO/TR 22053 additionally mentions keypads, these furnish a decreased degree of protection due to the fact customers can effortlessly share passwords with many people. Consequently, keypads and passwords are solely in all likelihood to be used when residual dangers are low.
Examples of SSS hardware and systems
Examples of SSS hardware and structures from equipment security suppliers are:
Castell gets entry to interlocks *
Comitronic-BTI Lockgard isolation swap with RFID
Dold key switch systems
Euchner Electronic-Key-System (EKS)
Fortress Interlocks FRANK RFID get admission to manipulate playing cards *
IDEM trapped key interlocks
KIRK get admission to interlocks *
Pilz PITmode working mode resolution and get entry to the permission system
Schmersal key switch systems
Siemens SIRIUS ACT ID key switches with RFID
STI gets admission to locks and isolation locks *
There may additionally be others.
* Castell, Fortress Interlocks, KIRK and STI are all Halma companies.
What is in PD ISO/TR 22053:2021?
The document’s shape is comparable to that of a standard. It carries a Foreword and Introduction, observed via clauses for Scope, Normative references, Terms and definitions, and Symbols and abbreviated terms. Then there are three greater clauses for the core information:
5. Safeguarding supportive systems.
6. Design of safeguarding supportive systems.
7. Information for use.
At the cease of the record, there are two similar sections, specifically Annex A, Visualisation of integration of SSS inside IMS, and a Bibliography.
Foreword, Introduction, and Scope
The Introduction explains that the report presents data about structures that can limit dangers primarily based on human factors, particularly (but now not exclusively) in built-in manufacturing systems. It goes on to say that an SSS can be used as a technical measure to minimize the likelihood of risky human blunders occurring.
Bear in thinking that an SSS can't dispose of the danger of human error. For example, one individual can effortlessly skip a key or transponder to another, thereby giving unauthorized character access. While biometrics-based structures are greater secure, they have to be very state-of-the-art (and expensive) to make it simply not possible for the incorrect humans to reap access.
In most cases, an SSS is the phase of a mode resolution system. However, the document’s Scope states that an SSS can then again add a layer of personnel authentication and authorization to an IMS (as per ISO 11161).
Normative references, Terms and definitions, and Symbols and abbreviated terms
PD ISO/TR 22053:2021 solely has two Normative references. We have already stated ISO 11162:2007 and the difference is ISO 12100:2010 (Safety of equipment – General concepts for the sketch – Risk evaluation and chance reduction), which is presently the solely Type-A equipment security widespread (see this post: What are Type-A, Type-B and Type-C equipment security standards?).
Most of the phrases and definitions used in PD ISO/TR 22053:2021 originate from elsewhere. These sources are:
ISO/TR 22100-4:2018, Safety of equipment – Relationship with ISO 12100 – Part 4: Guidance to equipment producers for consideration of associated IT-security (cyber security) aspects;
ANSI B11.0-2020, Safety of Machinery; and
ANSI B11.20-2017, Safety Requirements for Integrated Manufacturing Systems.
Most importantly, a safeguarding supportive machine (SSS) is described as a ‘complementary chance reduction/protective measure to allow mode determination by using the use of authentication means’. Note that there is additionally a definition for ‘authentication’.
Clause 5, Safeguarding supportive system
Clause 5 and its subclauses supply an exact introduction to the subject. Figure 1 presents, diagrammatically, how an SSS ought to be implemented. It indicates the factors of an SSS (identification device, human-SSS interface, and good judgment unit) and how they relate to the credential database, the safety-related components of the manage gadget (SRP/CS), and the IMS.
In addition, Clause 5 describes what features an SSS gives [5.2] and gives examples of protection features that an SSS ought to enable/disable [5.3].
Clause 6, Design of safeguarding supportive system
This clause and its subclauses think about the aspects of an SSS in a little greater detail. Each issue of the SSS is addressed in turn, as nicely as the output from the credential database. Note that the credential database can be a phase of the SSS, a far-flung community useful resource, or a mixture of both. A credential database can output three key sorts of information: the duties for which permitted personnel to have permissions; modes based totally on accepted personnel’s permissions; and the mixtures of permitted personnel and duties related to every running mode.
Subclause 6.4 makes it clear that the integrator needs to confirm and validate the graph and shape of the SSS (as per ISO 12100). In addition, the integrator must confirm and validate that the mode resolution meets or exceeds the necessities for the security characteristic (as per ISO 13849 components 1 and 2).
Clause 7, Information for use
This quick clause refers to preparation for the granting of authorization and the dealing with of authorization personnel identification (such as ID playing cards or RFID tags). But see the area under SSS limitations.
Annex A and the Bibliography
Annex A is the sole annex and it simply consists of a layout displaying how an SSS relates to an IMS and SRP/CS. The Bibliography lists seven documents, a number of which we have noted already.
What are the boundaries of an SSS?
Clause 7 refers to the granting of authorization and dealing with the capacity of identification. Unfortunately, this serves to spotlight the limits of an SSS. Although an SSS might also include high-integrity applied sciences however it is now not infallible.
As nicely as the SSS hardware and related elements, security depends on ‘soft’ non-technical elements such as administrative processes, an organization’s protection culture, and the self-discipline and integrity of personnel. Is the character granting authorization with the aid of the credential database able to do so? Will a permitted individual hand a key or RFID token to an unauthorized or unqualified person? What if an approved individual takes the 2nd character into a hazardous place without permission? Might an approved man or woman take a key with them into the hazardous vicinity or depart it backyard with the switch? These factors rely on due to the fact the hazardous vicinity consists of residual dangers with the possibility of reason injury.
Despite its limitations, an SSS is a precious and pragmatic way to allow sure duties to be carried out on hazardous machinery, in particular built-in manufacturing systems.
Comments
Post a Comment