Implementation of safety requirements from applicable standards

The function block has been developed according to the safety requirements (from applicable standards) listed in this section. All other requirements from these standards must be observed when implementing the safety-related function.

This section describes either how the function block meets the requirements of the standards or what measures need to be taken to meet the requirements of the standards.

Standards	Context/Requirement	Implementation
EN ISO 12100-2	Start-up after failure of supply voltage/spontaneous restart	The function block supports a start-up inhibit and/or restart inhibit of the function block after start-up of the Safety Logic Controller or activation of the function block (S_StartReset = SAFEFALSE), the light beam of the safety-related sensor is no longer being interrupted (S_AutoReset = SAFEFALSE). You are responsible for planning and implementing the start-up/restart behavior according to your risk analysis. To prevent an unintended start-up/restart, you may need to perform an additional function start once the safety-related function has been reset. This will depend on both the results of the risk analysis and the signal path of the reset signal.
IEC 61496-1	Special requirements for type 2 ESPE	The function block verifies whether the value set for TestTime is plausible. A value greater than 150 ms is not permitted. Neither of the sensor test phases may be longer than the value specified with TestTime. The function block provides a start-up/restart inhibit after the Safety Logic Controller has started up and after the safety-related function has returned. The function block always implements a start-up inhibit after an error has occurred during a test. The function block supports the two-stage test. Use the StartTest function block input to control the tests. The S_TestOut function block output controls the test input for the connected safety-related sensor. The status of the safety-related sensor (the S_OSSD_In input) must reflect the defined test sequence to ensure the test run can be completed without errors. The test sequence is monitored in accordance with the time specified at TestTime. The test sequence monitored by the function block is outlined in the 'Sensor test phases' section. The function block is switched to the defined safe state (output S_OSSD_Out = SAFEFALSE) if the results of the test are incorrect. The start-up inhibit keeps it in the defined safe state.
EN ISO 13849-1	Manual reset device	The Reset input supports the function of a manual reset device. NOTE: Resetting does not occur with a negative (falling) edge, as specified by standard EN ISO 13849-1, but with a positive (rising) edge.
EN ISO 13849-1	Category B to 2	No more than one channel is required for the application design. You are responsible for controlling the StartTest input and for carrying out tests. It is your responsibility to perform periodic tests in accordance with the results of the risk analysis you performed. Refer to the hazard message below this table.

WARNING
	NON-CONFORMANCE TO SAFETY FUNCTION REQUIREMENTS Regularly check the safety-related sensor by periodically switching the StartTest input from FALSE to TRUE in accordance with the risk analysis. Make certain that appropriate procedures and measures have been established to help avoid hazardous situations when applying TRUE to the StartTest input. Failure to follow these instructions can result in death, serious injury, or equipment damage.

WARNING

NON-CONFORMANCE TO SAFETY FUNCTION REQUIREMENTS

Regularly check the safety-related sensor by periodically switching the StartTest input from FALSE to TRUE in accordance with the risk analysis.
Make certain that appropriate procedures and measures have been established to help avoid hazardous situations when applying TRUE to the StartTest input.

Failure to follow these instructions can result in death, serious injury, or equipment damage.