EN IEC 61500 pdf free download

EN IEC 61500 pdf free download.Nuclear power plants – Instrumentation and control systems important to safety – Data communication in systems performing category A functions.
5.3 Performance requirements
Data communication channels shall provide sufficient performance to ensure that any message sent from any communication node is received by the intended destination node within a predefined maximum period.
Data communication shall meet the performance requirements in terms of response time and data capacity which result from the functional requirements and the architectural design of the l&C systems. The mechanisms and protocols used shall guarantee that any delay which may occur during communication or during access to the communication equipment is known and bounded by design.
Communication channels shall be verified to meet the specified real time response requirements of the category A functions to be performed, under credible worst-case conditions. The specified values of the required real time response and the worst-case conditions shall be justified by analysis. Deterministic communication shall be used so that the communication load does not vary, irrespective of plant conditions.
Where communication equipment is used for manual plant control and indication through a control room, the time from operating the physical switch or soft control until the confirmation of the action by indication of the changed state in the control room should be assessed under all potential circumstances including worst-case conditions.
For monitoring functions and manually initiated functions that are needed in accident conditions to bring the plant back into a safe state, the worst-case time response and limited usage of resources shall be justified by analysis.
5.4 Communication within and between division
The data communication within a segregated division (train) shall be protected from adverse influences from outside of the division. Thus messages in a division shall be passed directly from the sending communication node to the receiving one without involvement of any communication equipment outside the division.
Data communication in a division shall be separated from the other divisions. However, communication between divisions may be acceptable for voting logic.
5.5 Interfaces to systems of lower importance to safety
Communication equipment of systems performing category A functions shall be adequately segregated from communication equipment of systems performing only lower category functions.
When plant systems performing functions of different categories are required to communicate over communication channels, then the plant data flow should be from category A functions to lower category functions only.
Data flow from lower categories to category A functions should be prevented unless the design of the communication channel is such that category A functions cannot be adversely affected by such a connection.
If communication equipment of systems performing category A functions is interfaced to systems of lower importance to safety then cybersecurity measures shall be applied in accordance with lEG 62645 and lEG 62859.
6 Electrical isolation and physical separation
6.1 ElectrIcal isolation
The electrical isolation of systems performing category A functions connected by communication channels to other systems shall be considered in accordance with lEG 60709.
NOTE 1 The degree of electrical isolation will depend on the station power supply voltages present, national practice, and plant-specific requirements.
NOTE 2 A method of achieving a high degree of electrical isolation is by means of optical fibre connections or opto-electronic isolators.
Appropriate isolation shall be demonstrated between data communication equipment and connected equipment. This shall be sufficient to prevent faults of the connected equipment and cables from affecting the operation of the data communication equipment. Connected equipment includes sensors, contacts, power supplies and other communication equipment.
6.2 Physical separation
The communication equipment should be designed such that faults are not propagated from one part of the equipment to another, or to another system. IEC 60709 gives requirements for this and specifically for communication from equipment performing functions of one category to equipment performing functions of another category.EN IEC 61500 pdf download.