exida explains Blog

Industrial Automation Control Systems (IACS) Cybersecurity based on IEC 62443 was created to be compatible with agile development methodology. The standard deliberately talks about processes and not phases, such as those in the waterfall model. The processes defined can be met simultaneously and are, most likely, already being followed…

Read More...

www.SILSafeData.com is a complimentary resource that contains the upper and lower bounds failure rates for many categories of automation equipment, as well as the methodology used by exida to derive the numbers.  

Many of you have asked how to…

Read More...

As discussed in What do Nuisance Alarms, the 80-20 Rule, and Mental Models Have in Common?, there are typically a handful of alarm points (10 to 20) that create the majority of notifications (50-80%) to the operator (referencing the 80-20 rule). These nuisance alarms are affectionately called “bad…

Read More...

My previous blog mentioned the fact that a Burner Management System (BMS) is unique, in that this instrumented layer is the last line of defense and may be the only protection layer in the case of a BPCS failure.

Have you ever performed an analysis to determine…

Read More...

Unconfirmed vulnerabilities are not usually a big issue, but when one occurs like Supermicro, plant management will ask a simple question: “Do we have an issue or not?” 

Having been on the receiving end of this blunt exchange, I realize it can be painful and embarrassing to communicate,…

Read More...

The world of collaborative robots, or cobots, is making headway. According to a recent report by the International Federation of Robots (IFR), along with Loup Ventures, global robotics spending will reach $13 billion in 2025. Currently, collaborative robots only make up about 3% of all robot sales. This number…

Read More...

I heard about a “safety certified” PLC in the late 1980s at an ISA SP84 standard committee meeting. The “logic solver” (as they later called it) was the focus of attention in the field of functional safety back then. Many engineers even said, “My system is safe because I…

Read More...

As the number, scale, and connectivity of industrial automation systems continues to grow, it becomes increasingly crucial to fundamentally understand, evaluate, and manage cybersecurity risks. The objective of an effective cybersecurity management program should be to maintain the industrial automation system consistent with corporate risk criteria. 

Ownership for industrial…

Read More...

I am often asked whether extending proof test intervals will be a problem. 

This is a tricky question. The design and engineering SIL calculations for the Safety Instrumented Functions (SIFs) are taking credit for a specific proof test interval with a defined level of coverage, as defined within the…

Read More...

In Part 1, we covered the emerging trends in the valve assembly market, how these trends relate to IEC 61511 requirements, and the anatomy of final elements. In Part 2, we discussed the need to show requirements traceability down through the design of the safety instrumented function…

Read More...

During an IACS cybersecurity risk analysis, each zone of a network is given a target security level. The levels are one to four, with one being the least amount of protection and four giving the most protection. For each zone we ask, “How much cybersecurity protection do we…

Read More...

Operations and facility managers have a level of responsibility that requires a great deal of judgment, technical understanding, and the ability to make the right call when managing risk. 

Safe, secure, and profitable plant operations are the cornerstones of how a plant manager is judged. The plant manager relies…

Read More...

Last week I attended the ISA Water/Wastewater and Automatic Controls Symposium in Bethesda, Maryland. The conference was attended by equipment manufacturers and municipalities, but system integrators composed the largest group. The technical sessions mainly discussed new opportunities for implementing the industrial internet of things (IoT) and cybersecurity…

Read More...

In an ideal world, every alarm in a process control system would indicate a malfunction or abnormal condition that required operator action. In the real world, alarms that are irrelevant or annunciate excessively—otherwise known as nuisance alarms—can pop up occasionally to quite frequently. They pose a risk to the…

Read More...

There’s a lot that exida does behind the scenes to advance the industry and benefit you. We try to make sense of data that we collect and put it to good use. One thing we found is that human activities play a role in functional safety, often causing the intended safety performance…

Read More...