English

Long Product Life

View All Products

Committed To Providing Customers With Efficient And Perfect Service

View All Products

Top-Ranking Supplier

View All Products

Turck Banner - Machine safety, diagnostics and data security

2022-10-08 17:50:40 By : Ms. judy zhu

This website uses cookies primarily for visitor analytics. Certain pages will ask you to fill in contact details to receive additional information. On these pages you have the option of having the site log your details for future visits. Indicating you want the site to remember your details will place a cookie on your device. To view our full cookie policy, please click here. You can also view it at any time by going to our Contact Us page.

It does not enhance the machine’s performance and has the ability to stop production at any point, hence the “evil” label, despite having the very “good”, function of protecting people from the dangerous motion.

Once an emergency stop has occurred, assuming that there are no other emergencies to deal with, restarting production is usually the highest priority. 

Good diagnostic information is key to achieving this in the most efficient way. Gate interlocks and emergency stop buttons are normally the main problem area for diagnostics.

Gate interlocks and E-stop buttons are typically linked in series, on long chains. Whilst this reduces costs and simplifies installation, it makes identifying which E-stop has been pushed or which door has been opened difficult to find as there are multiple devices connected to a single input. As the alternative is to wire each individual point back to an input, this is obviously very costly in wiring and inputs.

The introduction of In-Series Diagnostics (ISD) eliminates this problem. Utilising a four-wire series chain, up to 32 ISD devices can be added to each chain. Either a safety controller with ISD built in or an external ISD module monitors the status of every ISD module. This is separate from the safety function. 

As well as the activated/not activated status of the device, each ISD device provides an array of additional information, including a unique identifier, internal temperature and voltage, along with device-specific details such as alignment and distance between the sensor and actuator of a safety switch. 

The system will send warning alarms if a device is near to the tripping point, so that remedial action can be taken before a nuisance trip occurs, for example, from a door sagging on its hinges.

When a device is tripped, the location of the device is identified and can be displayed through an HMI, indicator lights or other means, such as a smartphone app, or by turning the machine lighting red in the vicinity of the activated device. This clear and unambiguous information can quickly and efficiently guide an operator to the device that was activated, allowing the machine to be restarted with minimum downtime.

Devices with inbuilt ISD include RFID safety switches and illuminated E-stops, however, there is also an ISD Connect device which connects conventional emergency stop buttons or safe mechanical switch contacts, such as those on a safety locking switch, to an ISD chain, thus extending the diagnostic functions to those devices.

The ISD controller can connect to IO-Link or other bus systems and edge devices allowing the diagnostic data to be sent to cloud based OEE systems, where analysis of the data can highlight areas where performance improvements can be made.

Turck Banner has produced a unique IP67/IP69K, field-mountable safety module. It has a glass-fibre reinforced housing and fully potted electronics. This makes it robust enough to withstand the rigours of being mounted on a machine without the need for a cabinet.

Each module can operate in conjunction with an external safety controller or independently as a decentralised safety controller. 

The full block I/O module has:

• Four redundant safety inputs. 

• Four configurable, redundant safety inputs/outputs.

• Two power connectors. One male, one female, so that multiple modules can be daisy chained together.

• Two bus connectors, so that multiple modules can be daisy chained together

The benefits of the full block module include cost savings and expandability over a traditional cabinet-mounted solution. Huge time savings can be made on machines requiring tooling changes, where the safety products are mounted on the tooling.

Safety I/O modules are currently available for Profinet/Profisafe and Ethernet/IP/CIP Safety. Simple installation and commissioning are achieved with a free software tool and an integrated web server.

• Two redundant safety inputs. 

• Two configurable, redundant safety inputs/outputs.

• Four configurable digital inputs/outputs.

• Two power connectors. One male, one female. 

Each IO-Link Master can take 32 inputs or outputs, giving the hybrid module a total of 68 non-safety I/O.

The hybrid module has all the advantages of the full block module and can be combined with the ISD/IO-Link module to create a self-contained safety system, with operator guidance to any doors, gates and E-stops that have been activated. As all are in IP67 field mountable devices a control cabinet is not required. 

In recent months, there has been a lot of interest in the vulnerabilities associated with connecting IT and OT (Operational Technology). IT systems have a continuous development of devices and upgrades to prevent cyber attacks from outside of the organisation, but cyber attacks have not been a consideration for OT until very recently. 

Questions are often raised about whether OT is now the weak point through which a cyber attack gains entry into the IT. That question is beyond the scope of this article however similar questions are raised as to whether a cyber attack on a connected safety system could lead to a “failure to danger” situation. 

Safety systems, such as those manufactured by Banner Engineering, utilise dual diverse redundancy. This involves using two different processor types running two different programs that do not share any coding. Both halves receive the same information from the safety inputs and process it independently, constantly checking that they both get the same result. If at any time the results are different, the safety controller will initiate a safe stop. 

The safety circuits and the information circuits are separate parts of the controller providing another level of isolation. This combined with the redundancy principles above may not guarantee that a cyber attack could not cause an emergency stop. 

However, the chances of a cyber attack being able simultaneously to create identical results by breaching the isolation in two places, and manipulating two different processors, running different coding are negligible. That is not to say that cyber attacks should be dismissed as a potential cause of production loss but that the safety system is unlikely to be the target.

Safety systems are an integral part of machines with dangerous motion, where personnel have access. No one wants to expose their operators to potential harm without a safety system to protect them. Employing good diagnostics, combined with good operator guidance, can improve efficiency and productivity while offsetting the cost of a good safety system.

Print this page | E-mail this page

Featured Products

News & Blog