Doctoral theses at NTNU, 2009:9 M a r Mary Ann Lundteigen y A n n Safety instrumented systems in the L u n d oil and gas industry: t e ig e Concepts and methods for safety and reliability n assessments in design and operation ISBN 978-82-471-1385-1 (printed ver.) ISBN 978-82-471-1386-8 (electronic ver.) ISSN 1503-8181 Doctoral theses a NTNUrwegian University ofence and Technologyesis for the degree ofdoktor ingeniørence and Technologyd Quality Engineering t N NoSciTh Scian T ng on NU, 20 ngineeriProducti 09:9 ulty of Ement of acrt Fa p e D Mary Ann Lundteigen Safety instrumented systems in the oil and gas industry: Concepts and methods for safety and reliability assessments in design and operation Thesisfor the degree of philosophiaedoctor Trondheim, January 2008 Norwegian University of Science and Technology Faculty of Engineering Science and Technology Department of Production and Quality Engineering NTNU Norwegian University of Science and Technology Thesis for the degree of philosophiae doctor Faculty of Engineering Science and Technology Department of Production and Quality Engineering ©Mary Ann Lundteigen ISBN 978-82-471-1385-1 (printed ver.) ISBN 978-82-471-1386-8 (electronic ver.) ISSN 1503-8181 Doctoral Theses at NTNU, 2009:9 Printed by Tapir Uttrykk Mary Ann Lundteigen Safety instrumented systems in the oil and gas industry Concepts and methods for safety and reliability assessments in design and operation Thesisforthedegreeofphilosophiaedoctor Trondheim,November2008 NorwegianUniversityof Science andTechnology FacultyofEngineeringScience andTechnology DepartmentofProductionandQualityEngineering Preface This thesis is the result of a PhD project at the Department of Production andQualityEngineering,theNorwegianUniversityofScienceandTechnology (NTNU).TheworkwascarriedoutfromOctober2005tillNovember2008. The PhD project has been carried out in close collaboration with my main supervisor,ProfessorMarvinRausandatDepartmentofProductionandQuality Engineering(NTNU),andhiscontributionsarereflectedinseveralarticles.The co-supervisorhasbeenProfessorTorOnshusatDepartmentofEngineeringCy- bernetics(NTNU). He hascontributedwithhis broadindustrialnetworkwithin theoilandgasindustry. ThePhDprojecthasbeenauniqueopportunityformakingcontributionstoa fieldinwhichItakegreatinterest,namelyreliabilityofsafetyinstrumentedsys- tems. Previously, I haveworked with safety instrumentedsystems from a more practicalviewpoint.Thisknowledgehasbeenusedasbasisforthedevelopment of newconceptsandmethodswhichI hopewill lead tosafer andmorereliable designandoperationofsuchsystems. Trondheim, February2009 MaryAnnLundteigen Acknowledgements Taking a PhD is a personal project, but it could not been carried out without thesupportofothers.First,Iwouldliketothankmymainsupervisor,Professor MarvinRausand,forallhissupport,guidanceandencouragement.Ihaveseenit beenmentionedbefore,butIwouldliketorepeatithere:IfIevergettosupervise aPhDstudent,hewillserveasarolemodel. Iwouldalsoliketothankmyco-supervisor,ProfessorTorOnshus,forshar- ing his industrial network with me and giving me some guidance on how to connecttotheoilandgasindustryduringtheproject. OneparticularusefulconnectionhasbeenwithStatoilHydroatStjørdal,and IwouldliketothankBjørnarBergandEspenSørensenforinvolvingmeintheir work. Ontwoarticles,IhavecollaboratedwithresearchersfromSINTEF.Thishas leadtofruitfuldiscussions,andIwouldliketothankmyco-authorsSteinHauge from SINTEF Department for Safety and Reliability and Odd Nordland from SINTEFDepartmentofSoftwareEngineering,Safety,andSecurityforthiscol- laboration. I would also like to thank Hans Berstad from SINTEF Department of Applied Cybernetics, who shared his extensive and detailed knowledge on safetyinstrumentedsystemswithmeinseveralindustryprojectsbeforeIstarted thePhDstudy. At the Departmentof Productionand QualityEngineering,we haveweekly meetings where PhD students present their plans, articles, and preliminary re- sults. These meetings have been a valuable arena for getting feedback on own work. I would therefore like to thank all participants in the RAMS group for theirsupportthroughouttheproject. ItisdifficulttostartaPhDprojectwithoutthesupportofmyemployeratthat time,SINTEFDepartmentofAppliedCybernetics.Ihighlyappreciatethatthey havegivenmethetimetocarryoutthisproject. Finally,Iwouldliketothankmyhusband,Egil,andmychildren,Vegardand Eirik,fortheirpatienceandforgivingmesomethingelsetoconcentrateonthan iv Preface thePhDproject.Iwouldalsoliketothankmybrother,Alf,myparents,andmy parents-in-lawfortheirsupportandpracticalhelpalongtheway. Summary This PhD thesis proposesnew methods and gives new insight to safety and re- liabilityassessmentsofsafetyinstrumentedsystems(SISs).Thesesystemsplay an important role in many industry sectors and are used to detect the onset of hazardousevents and mitigate their consequencesto humans,the environment, andmaterialassets. ThisPhDthesisfocusesonSISapplicationsintheoilandgasindustry.Here, theSIS must respondtohazardouseventssuchas gasleakages,fires, andover- pressurization.Becausetherearepersonnelonboardtheoilandgasinstallations, the operations take place in a vulnerable marine environment, and substantial valuesareassociatedwiththeoffshorefacilities,thereliabilityofSISisofgreat concerntothepublic,theauthorities,andtheplantowners. TheobjectiveofthisPhDprojecthasbeentoidentifysomeofthekeyfactors that influence the SIS reliability, clarify their effects on reliability, and suggest means to improve the treatment of these factors in safety and reliability assess- mentsindesignandoperation. The PhD project builds on concepts, methods, and definitions in two key standardsforSISdesign,construction,andoperation:IEC61508andIEC61511. IEC 61508 is a generic standard, and applies to more than one industry sector andtoSISmanufacturerswhodevelopnewproductsforsafetyapplications.IEC 61511 is a process sector standard and applies to SISs that are based on well provenorcertifiedcomponents. ThemaincontributionsfromthisPhDprojectare: • A product development model that integrates reliability, availability, main- tainability,andsafety(RAMS)requirementswithproductdevelopment. • AnapproachforhowtodemonstratecompliancetoIEC61508. • AnapproachforhowtocarryoutreliabilityanalysisofcomplexSIS. • A clarification of the concepts of architectural constraints and safe failure fraction(SFF),andadiscussionofwhytheSFFmaynotbesuitedasadesign parameter.