SIL Verification

How SIL Verification Works – Step by Step

1. Inputs and Planning

The work starts by gathering the right information and agreeing the basis:

• Using the SIF list and target SILs from the SIL assessment.
• Collecting the SRS draft, drawings, logic narratives, and alarm philosophy.
• Confirming demand mode, mission time, maintenance strategy, and bypass rules.
• Agreeing data sources for failure rates and diagnostics.
• Fixing key assumptions, responsibilities, and review cadence.

This step ensures that later calculations rest on a clear, shared foundation.

2. Data and Modelling Basis

Next, the modelling approach and data are defined:

• Selecting credible failure rate data and noting any FMEDA references.
• Defining diagnostic coverage, proof-test coverage, and common cause assumptions.
• Setting proof-test intervals for each subsystem.
• Documenting partial and full tests where applicable.
• Recording all inputs in a transparent Assumptions Log.

With this in place, the team can see exactly how each SIF’s performance is being represented.

3. Architectural Constraints and Capability

Verification then addresses the architecture and device capability:

• Checking hardware fault tolerance against the applicable route.
• Applying Route 1H or Route 2H tables where device evidence supports them.
• Applying the IEC 61511 route when appropriate for installed equipment.
• Confirming systematic capability / SIL capability requirements for devices.
• Treating architecture limits as mandatory alongside the numeric result.

This ensures that SIFs comply with both the performance targets and the structural rules of the standards.

4. PFDavg / PFH Calculation

With inputs and architecture defined, the core calculations are carried out:

• Calculating PFDavg for low-demand SIFs or PFH for high-demand / continuous modes.
• Reflecting diagnostics, test interval, test coverage, and mission time.
• Modelling configured voting (e.g., 1oo1, 1oo2, 2oo3) and β-factor effects.
• Showing how longer test intervals or lower coverage increase PFDavg.
• Keeping the calculation path traceable in line with ISA TR84.00.02 and recognized practice.

The result is a transparent numerical demonstration of whether each SIF meets its target SIL.

5. Results, Gaps, and Optimization

Once calculations are completed, attention shifts to decisions and improvements:

• Comparing results to the target SIL and your risk criteria.
• Identifying gaps and presenting practical options to close them.
• Considering options such as architecture changes, improved proof testing, or device selection.
• Quantifying the impact of each option on PFDavg/PFH and architectural constraints.
• Agreeing a preferred solution with clear actions and dates.

This step turns verification insight into concrete design and maintenance improvements where needed.

6. Documentation and Handover

Finally, documentation is prepared for ongoing use and future audits:

• Delivering a clean SIL Verification report and calculation files.
• Updating the SRS sections that depend on verification assumptions.
• Providing device data requests and notes on proof-test scheduling.
• Defining re-verification triggers and interfaces with PSM/MOC processes.
• Briefing the team and remaining available for FAT/SAT-related questions.

The handover supports procurement, testing, and operation while preserving a clear audit trail.