Danfoss PLUS 1 GUIDE Operating guide
User Manual
PLUS+1® GUIDE
Software
www.danfoss.com
User Manual
PLUS+1® GUIDE Software
Revision history Table of revisions
Date Changed Rev
February 2021 Updated to support 12.2 2301
June 2020 supports 12.1 and later 2201
June 2020 Changed document number from 'AQ00000026' and '10100824' to 'AQ152886483724' 2102
October 2019 supports 12.0 and later 2001
September 2019 Major update - supports 12.0 and later 1901
May 2019 Major update - supports 11.1 and later 1901
October 2018 Major update - supports 11.0 and later 1801
May 2018 Major update - Supports 10.1x and later 1703
November 2017 Major update - Supports 10.0x and later 1601
April 2017 Major update - Supports 9.1.x and later 1503
December 2016 Minor revision to document layout only 1502
October 2016 Major update - Supports 9.0.x and later 1501
February 2016 Major update - Supports 8.0.x and later 1401
August 2015 Major update - Supports 7.2.x and later 1300
December 2014 Supports 7.1.x and later MC
December 2013 LA
2 | © Danfoss | February 2021 AQ152886483724en-002301
User Manual
PLUS+1® GUIDE Software
Contents
IEC 61508:2010 Certified Support Tool
About IEC 61508:2010 Certification........................................................................................................................................ 14
SIL2 compilation requirements.................................................................................................................................................16
Additional SIL2 certification requirements...........................................................................................................................17
Responsibilities for IEC 61508 and ISO 13849-1 requirements..................................................................................... 18
Terminology............................................................................................................................................................................... 18
Features........................................................................................................................................................................................18
Prerequisites...............................................................................................................................................................................19
Division of Responsibility between Danfoss and the User............................................................................................. 20
General Software Safety Life Cycle Requirements.............................................................................................................21
Software Safety Requirements Specification.......................................................................................................................22
Validation Plan for Software Aspects of System Safety....................................................................................................24
General Software and Design Requirements.......................................................................................................................25
Requirements for Software Architecture Design................................................................................................................28
Requirements for Support Tools and Programming Languages..................................................................................29
Requirements for Detailed Design and Development.....................................................................................................31
Requirements for Code Implementation.............................................................................................................................. 32
Requirements for Software Module Testing........................................................................................................................ 33
Requirements for Software Integration Testing.................................................................................................................33
Programmable Electronics Integration (Hardware and Software)...............................................................................34
Software Operation and Modification Procedures............................................................................................................35
Software Safety Validation..........................................................................................................................................................36
Software Modification..................................................................................................................................................................37
Software Verification.................................................................................................................................................................... 38
Functional Safety Assessment...................................................................................................................................................41
Appendix A — IEC 61508............................................................................................................................................................41
Software Safety Requirements Specification................................................................................................................. 41
Software Design and Development—Software Architecture Design...................................................................41
Software Design and Development—Support Tools and Programming Language.......................................43
Software Design and Development—Detailed Design..............................................................................................43
Software Design and Development—Software Module Testing and Integration...........................................44
Programmable Electronics Integration (Hardware and Software)......................................................................... 45
Software Aspects of System Safety Validation...............................................................................................................45
Modification................................................................................................................................................................................46
Software Verification...............................................................................................................................................................47
Functional Safety Assessment............................................................................................................................................. 47
Appendix B — IEC 61508............................................................................................................................................................ 47
Design and Coding Standards............................................................................................................................................. 47
Dynamic Analysis and Testing............................................................................................................................................. 48
Functional and Black-Box Testing...................................................................................................................................... 49
Failure Analysis..........................................................................................................................................................................49
Modeling......................................................................................................................................................................................49
Performance Testing............................................................................................................................................................... 50
Semi-Formal Methods.............................................................................................................................................................50
Static Analysis............................................................................................................................................................................ 51
Modular Approach...................................................................................................................................................................51
EN ISO 13849-1:2015.....................................................................................................................................................................52
Safety-Related Application SoftWare (SRASW)..............................................................................................................53
Software-Based Parameterization......................................................................................................................................56
Licensing
PLUS+1 GUIDE License.................................................................................................................................................................57
Upgrade Features.......................................................................................................................................................................... 57
User Interface
Overview........................................................................................................................................................................................... 59
Start Page.................................................................................................................................................................................... 61
Languages........................................................................................................................................................................................ 61
Menus.................................................................................................................................................................................................62
File Menu..................................................................................................................................................................................... 63
©
Danfoss | February 2021 AQ152886483724en-002301 | 3
User Manual
PLUS+1® GUIDE Software
Contents
Edit Menu.....................................................................................................................................................................................66
View Menu...................................................................................................................................................................................68
Compile Menu........................................................................................................................................................................... 70
Setup Menu.................................................................................................................................................................................71
Add Menu....................................................................................................................................................................................72
Tools Menu..................................................................................................................................................................................73
Help Menu...................................................................................................................................................................................74
Toolbar...............................................................................................................................................................................................75
Dialogs............................................................................................................................................................................................... 78
Options.........................................................................................................................................................................................78
PLUS+1 GUIDE Settings.................................................................................................................................................... 78
General Settings.................................................................................................................................................................. 79
Auto Pop-ups Settings.......................................................................................................................................................80
Preview Settings.................................................................................................................................................................. 81
Shortcuts Scheme Settings..............................................................................................................................................82
File Association Settings...................................................................................................................................................88
Messages................................................................................................................................................................................90
Simulink Settings.................................................................................................................................................................91
Debugger Tool Settings....................................................................................................................................................92
Errors, Warnings and Hints Settings.............................................................................................................................93
Zoom Settings...................................................................................................................................................................... 98
PLC Settings........................................................................................................................................................................100
Compilation Settings.......................................................................................................................................................104
Project Open/Close Settings.........................................................................................................................................105
Search Settings..................................................................................................................................................................106
Screen Editor Settings.....................................................................................................................................................107
Layouts................................................................................................................................................................................. 108
Print.............................................................................................................................................................................................109
Project View..............................................................................................................................................................................110
Parameter Overview..............................................................................................................................................................111
Logical Net................................................................................................................................................................................113
Dependencies..........................................................................................................................................................................115
Comment Editor..................................................................................................................................................................... 116
Search/Replace....................................................................................................................................................................... 119
Search....................................................................................................................................................................................119
Replace................................................................................................................................................................................. 134
Page Interface Editor.............................................................................................................................................................141
Page Interface Editor Window Menus.......................................................................................................................142
Page Interface Editor—File Menu...............................................................................................................................143
Page Interface Editor—Edit Menu..............................................................................................................................144
Page Interface Editor—View Menu............................................................................................................................145
Page Interface Editor—Setup Menu..........................................................................................................................146
Page Interface Editor—Add Menu............................................................................................................................. 147
Page Interface Editor—Tools Menu...........................................................................................................................147
Page Interface Editor Window Toolbar.....................................................................................................................148
About Pages, Page Top views, and the Page Interface Editor Window........................................................150
How to Add Page with the Page Command...........................................................................................................152
How to Add a Basic Page................................................................................................................................................153
How to Change an Old Page.........................................................................................................................................154
Traceability Properties..........................................................................................................................................................155
Tabs...................................................................................................................................................................................................156
Hardware...................................................................................................................................................................................156
Search Window..................................................................................................................................................................158
Project Manager..................................................................................................................................................................... 159
About the Project Manager and Hardware tabs....................................................................................................161
How to Remove Items from the Project Manager Tab........................................................................................162
Page Navigator........................................................................................................................................................................163
Component.............................................................................................................................................................................. 164
Function.....................................................................................................................................................................................165
4 | © Danfoss | February 2021 AQ152886483724en-002301
User Manual
PLUS+1® GUIDE Software
Contents
File Types
Programming
My Code.....................................................................................................................................................................................166
Inspector....................................................................................................................................................................................168
Compiler Messages................................................................................................................................................................169
Test Tool..........................................................................................................................................................................................170
About Creating Test Cases for a Page.............................................................................................................................171
Test Case Manager Window—Menus and buttons...................................................................................................173
About Generating a Test Case Definition Table for a Page.....................................................................................174
Test Case Definition table................................................................................................................................................... 175
About Test Case Execution and Test Results................................................................................................................177
About Test Case Results.......................................................................................................................................................178
About the Test Manager Tab View...................................................................................................................................179
Debugger Tool..............................................................................................................................................................................181
Debugger Tool Elements.....................................................................................................................................................182
About Breakpoints and Net Values............................................................................................................................ 184
About the Display of Net Values..................................................................................................................................185
About Set Breakpoints....................................................................................................................................................186
About Breakpoints and Debugger Tool buttons...................................................................................................187
Debug Window.......................................................................................................................................................................189
Debug Window—Local Variables tab.......................................................................................................................190
Debug Window—Watches tab....................................................................................................................................191
Debug Window—Call Stack tab..................................................................................................................................193
Debug Window—Breakpoints tab.............................................................................................................................194
Debug Window—Loop Input tab...............................................................................................................................195
Debug Window—Loop Output tab...........................................................................................................................197
Generate FMU...............................................................................................................................................................................198
Limitations................................................................................................................................................................................198
How to generate an FMU.................................................................................................................................................... 198
Generated FMU Properties................................................................................................................................................. 199
Co-Simulation step size.................................................................................................................................................. 200
OS Signals............................................................................................................................................................................200
Non-volatile memory...................................................................................................................................................... 200
Set Pulse...............................................................................................................................................................................200
Repeat/Until........................................................................................................................................................................200
Unique signal names.......................................................................................................................................................200
Simulated CAN interface..................................................................................................................................................... 200
CAN Database.................................................................................................................................................................... 201
Select CAN port................................................................................................................................................................. 201
Set default bit value.........................................................................................................................................................202
PLUS+1 GUIDE File Types......................................................................................................................................................... 203
STRING Types................................................................................................................................................................................ 204
How to Specify a STRING Value.........................................................................................................................................205
Escape Sequences..................................................................................................................................................................205
STRING Examples................................................................................................................................................................... 206
PLC Functions..........................................................................................................................................................................207
VBSE Control Codes...............................................................................................................................................................207
Using STRING in C Code Files and C Code POUs.........................................................................................................207
PLUS+1 GUIDE Graphical Code.............................................................................................................................................. 208
Hardware Templates.............................................................................................................................................................208
Route Names............................................................................................................................................................................209
Data Types................................................................................................................................................................................ 210
About Overflow Conditions..........................................................................................................................................211
About the Time Base data type................................................................................................................................... 212
About the Array Data Type............................................................................................................................................213
PLUS+1 GUIDE Components..............................................................................................................................................214
About the Hardware - Dependency of Components...........................................................................................214
Context-sensitive Help for Components..................................................................................................................214
©
Danfoss | February 2021 AQ152886483724en-002301 | 5
User Manual
PLUS+1® GUIDE Software
Contents
Screen Editors
About Component Descriptions.................................................................................................................................215
About Execution Order...................................................................................................................................................216
About Capped Components.........................................................................................................................................219
General Menu.....................................................................................................................................................................220
Mathematical Menu.........................................................................................................................................................222
Limit Menu.......................................................................................................................................................................... 242
Compare Menu..................................................................................................................................................................248
Constant Menu.................................................................................................................................................................. 260
Logical Menu......................................................................................................................................................................266
Switch, Counter, Memory Menu..................................................................................................................................279
Array Menu..........................................................................................................................................................................297
Data Conversion Menu...................................................................................................................................................313
Transition, Time Menu.................................................................................................................................................... 319
Connection Menu.............................................................................................................................................................332
Module Menu.....................................................................................................................................................................367
Manage Menu....................................................................................................................................................................373
Access Menu.......................................................................................................................................................................380
Read-only Parameter Menu.......................................................................................................................................... 393
Display Menu......................................................................................................................................................................398
Application Log Menu.....................................................................................................................................................400
Cloud Menu.........................................................................................................................................................................404
Page Layout Guidelines....................................................................................................................................................... 409
Port Label Abbreviations................................................................................................................................................411
Port Label Unit Abbreviations......................................................................................................................................412
IEC61131-3 PLC Languages..................................................................................................................................................... 412
About PLC Data Types..........................................................................................................................................................412
About POUs..............................................................................................................................................................................413
Create New PLC Unit and POU.....................................................................................................................................413
Import Existing PLC Unit................................................................................................................................................ 417
Edit ST....................................................................................................................................................................................418
Edit FBD/LD.........................................................................................................................................................................419
Querying Components................................................................................................................................................... 421
FBD/LD Networks..............................................................................................................................................................422
EN/ENO Components......................................................................................................................................................422
Use PLUS+1 GUIDE to Call Program Organizational Units (POUs)..................................................................423
Call from PLUS+1 GUIDE — Inside the POU Component.................................................................................. 424
SFC POUs..............................................................................................................................................................................424
About Global Variables........................................................................................................................................................ 425
C Code in PLUS+1 GUIDE..........................................................................................................................................................425
General Considerations Regarding C Code in a PLUS+1 GUIDE Environment................................................426
About Compatibility........................................................................................................................................................ 426
Accessing C Code Generated by PLUS+1 GUIDE from C Code POUs or C Code Files..............................426
Supported HWDs.............................................................................................................................................................. 427
#include directives........................................................................................................................................................... 428
About C Data Types...............................................................................................................................................................428
C Code POUs............................................................................................................................................................................429
C Code Files..............................................................................................................................................................................431
Precompile Analysis.........................................................................................................................................................432
Programming Tips and Tricks................................................................................................................................................. 433
Issue Indicators.............................................................................................................................................................................433
Classic Screen Editor...................................................................................................................................................................435
Classic Screen Editor Elements..........................................................................................................................................436
Define Areas Page..................................................................................................................................................................438
Define Areas Page—Inspector Tab............................................................................................................................ 439
Define Areas Page—About the Enable Property.................................................................................................. 440
Define Areas Page—About the Order Property.................................................................................................... 441
Define Areas Page—About the Corner Property.................................................................................................. 444
Define Screen Page................................................................................................................................................................445
6 | © Danfoss | February 2021 AQ152886483724en-002301
User Manual
PLUS+1® GUIDE Software
Contents
Define Screen Page—Add Library Items..................................................................................................................446
Define Screen Page—Inspector Tab..........................................................................................................................447
Define Screen Page—Image Register....................................................................................................................... 452
Define Screen Page—Text Register........................................................................................................................... 455
Vector-Based Screen Editor......................................................................................................................................................456
Elements of the Vector-Based Screen Editor................................................................................................................457
Danfoss Recommends the SVG Format....................................................................................................................457
About Screen Definitions and the Screen Editor Window......................................................................................458
About Show Screen Components and Screen Definitions..................................................................................... 459
Screen Editor Window..........................................................................................................................................................460
Project Library Tab............................................................................................................................................................460
External Library Tab......................................................................................................................................................... 463
Edit Image Window .........................................................................................................................................................464
Edit Text Window..............................................................................................................................................................467
Common Properties Windows.....................................................................................................................................472
Screen Manager Tab........................................................................................................................................................473
Inspector Tab......................................................................................................................................................................480
Toolbar..................................................................................................................................................................................483
Design Area.........................................................................................................................................................................484
Data Types................................................................................................................................................................................ 487
Integer, Boolean and Color .......................................................................................................................................... 487
Text and Image..................................................................................................................................................................488
String.....................................................................................................................................................................................488
Text and String Rendering..................................................................................................................................................488
Code Point Set................................................................................................................................................................... 489
Edit Code Point Range.................................................................................................................................................... 490
Control Codes.....................................................................................................................................................................491
Zero-width Glyphs............................................................................................................................................................491
Missing Glyphs...................................................................................................................................................................491
Font Output Format.........................................................................................................................................................491
Screen Definitions and Widgets........................................................................................................................................492
Screen Definition Properties.........................................................................................................................................493
Using Widgets....................................................................................................................................................................495
Layout.........................................................................................................................................................................................496
Screen Definition Layout................................................................................................................................................497
Layout Manager................................................................................................................................................................ 497
Manual Layout................................................................................................................................................................... 499
Call POU.....................................................................................................................................................................................500
Internal Connections.............................................................................................................................................................501
Signal Assignment Table................................................................................................................................................502
Connect Bus........................................................................................................................................................................502
Add and Connect Bus......................................................................................................................................................504
Configure Object Interface............................................................................................................................................506
Invalid Connections......................................................................................................................................................... 512
About the Show Screen Component and the Query Screen Component Window...................................... 515
About the Query Screen Component Window and Screen Definition Signals............................................... 516
About the Query Screen Component Window and Screen Definition Buses..................................................518
About the Query Screen Component Window and KPH Screen Definition..................................................... 520
About the Query Screen Component Window and MPH Screen Definition....................................................521
About Exporting and Importing Screen Definitions................................................................................................. 522
Import Screen Definitions—Import Screens Window.........................................................................................523
Import Screen Definitions—Screen Library Placement Window....................................................................524
Import Screen Definitions—Import Duplicate Library Items Window..........................................................525
Import Screen Definitions—Import Window......................................................................................................... 526
About Exporting and Importing Library Objects........................................................................................................527
Import Library Objects—Import Duplicate Library Items..................................................................................528
Import Screen Definitions—Import Window......................................................................................................... 529
Touch Display Functionality...............................................................................................................................................529
Local Touch Coordinates................................................................................................................................................531
©
Danfoss | February 2021 AQ152886483724en-002301 | 7
User Manual
PLUS+1® GUIDE Software
Contents
Application Data Logging
Tutorials
Generic Viewport....................................................................................................................................................................531
Overview of Application Data Logging...............................................................................................................................532
Classic Application Log..............................................................................................................................................................532
Basic Elements of Application Data Logging...............................................................................................................532
Define Application Log Areas Page.................................................................................................................................534
Define Application Log Areas Page/Inspector Tab...............................................................................................535
Define Application Log Page/Text Register tab.................................................................................................... 538
Define Application Log Page............................................................................................................................................. 539
Define Application Log Page/Add Texts.................................................................................................................. 540
Define Application Log Page/Inspector Tab—Data Write Properties...........................................................541
Define Application Log Page/Inspector Tab—DataValue Properties............................................................542
Application Log 2........................................................................................................................................................................ 542
Application Log Definitions................................................................................................................................................542
Write Applog............................................................................................................................................................................543
Application Log 2 Editor......................................................................................................................................................543
Application Log 2 Editor Window...............................................................................................................................543
Text Component Properties..........................................................................................................................................545
Using Application Log 2.......................................................................................................................................................546
Defining Texts.................................................................................................................................................................... 546
Application Log Definition Interface......................................................................................................................... 546
Putting It Together...........................................................................................................................................................547
How to Read the Contents of an Application Data Log................................................................................................ 548
About the Properties that Determine Data Logging Values.................................................................................. 550
Learning About the PLUS+1 GUIDE Software...................................................................................................................551
Before You Start......................................................................................................................................................................551
Mouse and Keyboard Actions............................................................................................................................................551
Lesson 1: Create an Application.............................................................................................................................................552
1. Start the PLUS+1 GUIDE software and create a new PLUS+1 project folder............................................... 552
2. Get the PLUS+1 GUIDE window ready to select the hardware files................................................................553
3. Click and drag the MC24-10 Hardware Description and Template to the Project Manager tab..........554
4. Enter the Application of the template and select the components needed to construct an
oscillator............................................................................................................................................................................ 555
5. Wire together the components that you have placed in the Application page.........................................556
6. Use the Edit Value window to apply values to the 3 Digit Auto-type and Time Base constants..........557
7. Wire the output of the Oscillator component to the Outputs bus..................................................................558
8. Navigate to the OS page.................................................................................................................................................559
9. Delete the constant True applied to the LED_GREEN..........................................................................................560
10. Route the Green_LED signal to the LED_GREEN port........................................................................................561
11. Compile the application into an LHX format file that you can download..................................................562
12. Compress the project files into P1P format file and exit PLUS+1 GUIDE....................................................563
Lesson 2: Download an Application..................................................................................................................................... 563
PLUS+1 Service Tool window............................................................................................................................................ 565
Using the PLUS+1® CG150-2 USB/CAN Gateway Interface Communicator.................................................566
Preparing to Download the Application File to the Controller........................................................................567
Downloading the File to the Controller and Exit PLUS+1 Service Tool........................................................ 571
PLUS+1—How-To....................................................................................................................................................................... 572
How to Select...........................................................................................................................................................................573
How to Undo Your Mistakes...............................................................................................................................................573
How to Zoom with Mouse Clicks......................................................................................................................................574
How to Zoom with the Mouse Wheel.............................................................................................................................574
How to Zoom with Keystrokes.......................................................................................................................................... 574
How to Delete a Single Item...............................................................................................................................................575
How to Delete Many Items................................................................................................................................................. 576
How to Delete a Signal-to-Bus Connection..................................................................................................................577
How to Copy the Entire Contents of a Page to another Page................................................................................579
How to Refresh a View..........................................................................................................................................................581
8 | © Danfoss | February 2021 AQ152886483724en-002301
User Manual
PLUS+1® GUIDE Software
Contents
How to View a Full Page...................................................................................................................................................... 581
How to Pan a View by Right-Clicking and Dragging.................................................................................................581
How to Pan a View by Right-Clicking..............................................................................................................................581
How to Navigate an Application with Buttons............................................................................................................582
How to Navigate an Application with the Page Navigator Tab............................................................................ 582
How to Show and Hide Tabs..............................................................................................................................................583
How to Install a Hardware Description...........................................................................................................................584
How to Change Properties with the Inspector Tab................................................................................................... 586
How to Change Properties with the Pop-up Edit Window..................................................................................... 587
How to Create a Custom Keyboard Shortcut Scheme..............................................................................................588
How to Reset a Custom Keyboard Shortcut Scheme to either the Classic or the Windows.......................590
How to Create a Page from Scratch.................................................................................................................................591
How to use View Logical Net Tool....................................................................................................................................599
How to Create Read-only Parameter Files ....................................................................................................................602
How to Create Read-only Parameters File from Scratch.....................................................................................602
How to Create an Additional Read-only Parameter File with Different Values..........................................609
How to Create a New Read-only Parameters File with Changed Parameters............................................ 612
About the CSV Template File Format........................................................................................................................ 617
How to Add a Readme File to an LHX File.....................................................................................................................618
How to Restrict Downloads by Part Number or Serial Number............................................................................ 620
How to Use the Tool Key to Restrict Service Tool Access to Application Values.............................................622
How to Access Values in a Tool Key-Protected Application..............................................................................624
How to Create Linked Pages.............................................................................................................................................. 625
About Linked Pages.........................................................................................................................................................626
About Linked Page Properties..................................................................................................................................... 627
How to Reposition the Link Symbol...........................................................................................................................628
How to Turn a Linked Page into an Object Page........................................................................................................630
About Working with Linked and Object Pages...........................................................................................................631
Do Not Use these Components in Linked Pages...................................................................................................632
Do Not Use these Components in Object Pages...................................................................................................633
How to Make Changes inside a Linked Page..........................................................................................................635
How to Break Links between Pages........................................................................................................................... 636
How to Break Links between Child Pages................................................................................................................637
How to Display a Page Property Value...........................................................................................................................639
Page Property and String Value...................................................................................................................................640
How to Disable (Lock) a Page View..................................................................................................................................641
About Access Properties................................................................................................................................................ 642
How to Change a Page View Access Property........................................................................................................645
How to Customize the Font and Color of Comments...............................................................................................647
How to Limit Downloads to Keyed Hardware............................................................................................................. 650
How to Add a Compiled Code Package.........................................................................................................................652
How to Simplify Opening the Correct P1D File...........................................................................................................654
How to Create and Execute a Test Case.........................................................................................................................656
How to Generate an S-Function....................................................................................................................................... 666
About the S-Function Files............................................................................................................................................668
How to Trace between Implementation and Requirements..................................................................................669
Tracing from Requirements to Implementation................................................................................................... 671
How to Generate an Architecture Document..............................................................................................................673
How to Create and Use a C Code POU............................................................................................................................674
How to Create and Use a C Code File..............................................................................................................................678
How to Import and Use an Existing C Code File..........................................................................................................685
How to Manage Boot Logo.................................................................................................................................................691
How to use the Comment editor......................................................................................................................................692
Classic Screen Editor—How To.............................................................................................................................................. 696
How to Start a Classic Screen Editor Project.................................................................................................................696
How to Update a Project to PLUS+1 GUIDE 5.1.x or Later.......................................................................................700
Define Areas Page—How to Create More Screen Areas..........................................................................................703
Define Areas Page—How to Rename a Screen Area.................................................................................................704
Define Areas Page—How to Delete a Screen Area....................................................................................................705
©
Danfoss | February 2021 AQ152886483724en-002301 | 9
User Manual
PLUS+1® GUIDE Software
Contents
Support Tools
Define Areas Page—How to Change Screen Area Properties............................................................................... 706
Define Areas Page—How to Initialize Signal-Enabled Screen Areas...................................................................708
Define Screen Page—How to Assign Additional Screen Areas.............................................................................709
Define Screen Page—How to Remove a Screen Area.............................................................................................. 710
Define Screen Page—How to Create Bar Graphs ......................................................................................................711
Define Screen Page—How to Install Unicode Fonts.................................................................................................712
Define Screen Page—How to Create a Text Group...................................................................................................715
Define Screen Page—How to Set the Font Properties of Text.............................................................................. 718
Define Screen Page—How to Set a Language that a User Cannot Change.....................................................721
Define Screen Page—How to Allow a User to Change Languages..................................................................... 722
Define Screen Page—How to Import Translated Text into an Application......................................................723
How to Export a CSV File with Text that Needs Translation..............................................................................724
How to Add Translated Text to the CSV File........................................................................................................... 726
How to Import a CSV File with the Translated Text..............................................................................................728
About the Language Order...........................................................................................................................................729
Define Screen Page—How to Create Text that Flashes an Alarm........................................................................730
Define Screen Page—How to Display a Data Value.................................................................................................. 734
Define Screen Page—How to Format a Data Value.................................................................................................. 735
Define Screen Page—How to Display an Image List.................................................................................................736
Define Screen Page—How to Display a Text List....................................................................................................... 740
Define Screen Page—How to Display Video................................................................................................................744
Define Screen Page—How to Print a Screen............................................................................................................... 746
Define Screen Page—How to Show the Stacking Order of Items in the Layout Tab....................................749
Define Screen Page—How to Change the Stacking Order of Items in the Layout Tab ...............................750
Change the Order of Items in the Layout Tab........................................................................................................750
Change Stacking Order by Right-clicking................................................................................................................751
Define Screen Page—How to Alphabetically List the Items in the Layout Tab...............................................752
Module Viewer..............................................................................................................................................................................753
Module Viewer Window Menu..........................................................................................................................................754
File Menu in SCS Files......................................................................................................................................................754
Edit Menu in SCS Files..................................................................................................................................................... 755
View Menu in SCS Files................................................................................................................................................... 755
Setup Menu in SCS Files................................................................................................................................................. 756
Add Menu in SCS Files.....................................................................................................................................................756
Module Viewer Window Toolbar......................................................................................................................................757
Module viewer options........................................................................................................................................................ 758
Starting the Module Viewer............................................................................................................................................... 759
Compare SCS Files.......................................................................................................................................................................761
Starting PLUS+1 Compare SCS from the Page Navigator Tab...............................................................................762
Starting PLUS+1 Compare SCS from the Project Manager Tab.............................................................................762
Starting PLUS+1 Compare SCS from the Command Line....................................................................................... 763
How to Add PLUS+1 Compare SCS as a Diff Tool to TortoiseSVN........................................................................764
PLUS+1 Compare SCS...........................................................................................................................................................766
PLUS+1 Compare SCS Toolbar..........................................................................................................................................767
Compare SCS options...........................................................................................................................................................769
About the Order in which Checksum Differences are Identified..........................................................................769
About the Page Tree View.................................................................................................................................................. 770
About the Single, Combined Page Tree View........................................................................................................ 770
About the Separate Page-Tree View..........................................................................................................................771
About the Overlay Pages and the Separate Pages Views........................................................................................771
About the Overlay Pages View..........................................................................................................................................772
About the Separate Pages View........................................................................................................................................773
About the Selection of Comparison Pages...................................................................................................................774
About the Select Root Nodes Window...........................................................................................................................775
About Viewing Page – Example 1...............................................................................................................................776
About Viewing Page – Example 2...............................................................................................................................776
About Viewing Page – Example 3...............................................................................................................................777
Command Line Mode ............................................................................................................................................................... 777
10 | © Danfoss | February 2021 AQ152886483724en-002301
User Manual
PLUS+1® GUIDE Software
Contents
Index................................................................................................................. 784
Example Usage........................................................................................................................................................................782
©
Danfoss | February 2021 AQ152886483724en-002301 | 11
W
User Manual
PLUS+1® GUIDE Software
Risk reduction
It is important to design, test and secure applications developed with the PLUS+1® GUIDE software to
reduce the risk of personal injury and equipment damage.
The applications that you create with the PLUS+1® GUIDE software typically control heavy, powerful, and
mobile off-road equipment such as tractors, cranes, and harvesters. Under normal operating conditions,
using this type of machinery always involves the risk of personal injury and equipment damage.
Abnormal operating conditions greatly increase the risk of personal injury and equipment damage.
The PLUS+1® GUIDE software has no automatic protections against these risks. The tool has no protection
against the risks that result from bugs in the tool software, errors in the tool manual, or incompatibilities
between software versions of the tool.
Warning
You must design and test your application to reduce these risks. Secure your application against
unauthorized changes in its operating parameters to reduce these risks.
Design
You have the responsibility when you design a PLUS+1® GUIDE application to include the fault checking
and the error handling needed to reduce risks in normal and abnormal operating conditions. The
following are some items to consider when developing fault checking and error handling for your
application:
How the machine is normally used.
•
Possible operator errors and their consequences.
•
Industry safety standards and legal requirements.
•
Input and output failures and their consequences. These failures can include:
•
Joystick, sensor, and other inputs suddenly going to ±100 % or to 0 %.
‒
Outputs that control machinery direction, speed, and force suddenly changing direction or going
‒
to ±100 % or to 0 %. Decide how likely each failure is. The more likely a failure, the more you need
to protect against the consequences of the failure.
The sequence of events and consequences of a fault or error.
•
The sequence of events and consequences of an emergency stop.
•
Test
You have the responsibility once you have created an application to test the application. You should
download your application to hardware and test its operation under both normal and abnormal
operating conditions. You should make sure that:
Individual inputs produce expected outputs.
•
Fault handling and error checking work as designed.
•
You must repeat your tests whenever you make configuration, calibration, or software changes to your
application.
Secure
You have the responsibility to secure your application against unauthorized changes.
•
You should always use the PLUS+1® GUIDE program’s Tool Key feature (or a parameter PIN feature for
•
PLUS+1® C Open) to restrict access to your application’s operating parameters.
12 | © Danfoss | February 2021 AQ152886483724en-002301
W
User Manual
PLUS+1® GUIDE Software
Risk reduction
Without Tool Key or PIN protection, there is an increased risk that unauthorized personnel could
‒
use the PLUS+1® Service Tool program to change your application’s operating parameters
Tool Key/PIN protection reduces the risk that unauthorized personnel could use the PLUS+1
‒
Service Tool program to change your application’s operating parameters.
Warning
Changes in your application’s operating parameters could cause unexpected machinery movement that
result in personnel injury and equipment damage.
®
©
Danfoss | February 2021 AQ152886483724en-002301 | 13
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
About IEC 61508:2010 Certification
The PLUS+1® GUIDE and the PLUS+1® Service Tool programs fulfill the requirements of International
Electrotechnical Commission (IEC) standard 61508:2010 for use as off-line support tools in the
development of safety application software.
IEC standard 61508-3:2010 defines all the requirements that must be fulfilled to create application
software to meet a certain SIL level. The designer of the application is responsible for making sure that
these requirements are fulfilled.
Contact the PLUS+1® Helpdesk for information about which versions of the PLUS+1® GUIDE and the PLUS
+1® Service Tool programs carry the IEC 61508:2010 support tool certification.
In order to claim conformance to IEC 61508:2010 for an application that is based on this certificate, the
application software needs to ensure that the PLUS+1® Service Tool program cannot affect the
application’s run-time behavior. This can be done by using the ServiceTool.DisableWrite and
ServiceTool.DisableDownload signals.
The application software then has to define when it is unsafe to do modifications and set these two
signals to true. These two signals, when true, will prevent the PLUS+1® Service Tool program from
downloading application software and operating parameters to a controller when the controller is
running the application.
To claim the PLUS+1® Service Tool program as an off-line service tool, the developer has to verify that the
application software prevents the PLUS+1® Service Tool program from affecting the application’s runtime behavior. This verification can be done by reading the ServiceTool.DisableWrite and the
ServiceTool.DisableDownload signals and verifying that they are true (activated) when the application
is running.
During application development, the ServiceTool.MasterPassword.Write signal can be used to enable
recovery if the logic to disable downloads is incorrect.
The use of a master password allows downloads to the application even if the application tries to prevent
these downloads.
The following figure shows how to implement this logic
Legend:
1. When the application runs, it sets the Boolean Application_in_operation signal to true. A true
Application_in_operation signal sets both the ServiceTool.DisableWrite and
ServiceTool.DisableDownload signals to true.
2. When true, the ServiceTool.DisableWrite signal prevents the PLUS+1® Service Tool program from
downloading parameters to the controller.
3. When true, the ServiceTool.DisableDownload signal prevents the PLUS+1® Service Tool program
from downloading an application to the controller.
4. When the value of the ServiceTool.MasterPassword.Write signal matches the password value (the
item 5), the ServiceTool.DisableDownload signal goes false. A false ServiceTool.DisableDownload
signal lets you download an application to the controller even if a programming error holds the
Application_in_operation signal true.
5. The value of the ServiceToolMasterPassword.Write signal must match this value to set the
ServiceTool.DisableDownload signal to false.
14 | © Danfoss | February 2021 AQ152886483724en-002301
W
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
The ServiceTool.MasterPassword.Write signal must be removed from the final application in order to
claim the PLUS+1® Service Tool application as an off-line support tool.
Warning
The logic for the ServiceTool.MasterPassword.Write signal allows developers to download application
software and parameter values to a controller that is running an application.
Allowing end users to download to a controller that is running an application can result in machinery that
operates in an erratic and dangerous manner with the potential for both personal injury and equipment
damage. It also voids the PLUS+1® Service Tool IEC 61508:2010 support tool certification claim.
Developers should always remove the logic for the ServiceTool.MasterPassword.Write signal before
releasing an application to an end user.
©
Danfoss | February 2021 AQ152886483724en-002301 | 15
W
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
SIL2 compilation requirements
The purpose of a SIL2 compilation is to ensure that only released and certified versions of the PLUS+1
GUIDE software are used and that the developer ensures that the application fulfills the requirements as
stated in IEC 61508. The SIL2 Certified component, when used within an application, verifies that IEC
61508 requirements have been met.
The following requirements must be fulfilled to successfully complete a SIL2 compilation.
In addition, the PLUS+1® Service Tool application that you use to download the certified LHX file must be
market-released and certified to comply with IEC 61508.
IEC 61508 requirements:
1. A market-released version of PLUS+1® GUIDE that is certified to comply with IEC 61508 and a Quality
Assurance License (Reference PLUS+1® GUIDE add on license Quality Assurance Data Sheet,
AI170686484256).
2. A market-released version of the HWD in use that is certified to comply with IEC 61508.
3. The developer confirms that the application fulfills SIL2 certification requirements as stated in IEC
61508.
4. Call Module needs to have a constant TRUE connected to the call input in order to have a
deterministic behavior.
®
PLC (POU) requirements
If any safety function in an application involves PLC, Strict Mode is required when compiling PLC code to
comply with IEC 61508.
Compiled Code Package (CCP) requirements
If any safety function in an application involves the code contained in a CCP, the designer of the
application must make sure that the development of the CCP fulfills all the requirements of IEC 61508-3
when creating the CCP.
C code POU and C code File requirements
If any safety function in an application involves the user defined code contained in a C code File or C code
POU, the designer of the application must make sure that the development of the C code File or C code
POU fulfills all the requirements of IEC 61508-3 when creating the application.
Warning
Any change that you make in a PLUS+1® application file with a non- PLUS+1® GUIDE tool can produce an
application that operates unpredictably. It also voids SIL2 certification for the application.
An unpredictable application can result in machinery that operates in an erratic and dangerous manner
with the potential for both personal injury and equipment damage.
Only use the PLUS+1® GUIDE application to make changes in PLUS+1® GUIDE application files.
16 | © Danfoss | February 2021 AQ152886483724en-002301
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
Additional SIL2 certification requirements
When using the PLUS+1® GUIDE software tool, these additional requirements must also be fulfilled to
produce a SIL2 certified application.
1. Minimize, as much as possible, the use of read-only and read/write parameters. Especially minimize
the use of parameters that affect application behavior.
2. In any application that uses a downloadable read-only parameters file, the output of the Parameter
Open component must be used to ensure that the parameters file is correct for the application.
3. Analyze and document if output signals can overflow. Determine what actions should occur in cases
of overflow. This applies to both capped and non-capped components.
4. A SIL2 application must use the SIL2 Certified component to indicate the fulfillment of requirements
for a SIL2 certified application. If the requirements are not fulfilled, the application shall not be
started.
5. Analyze and document error handling and how the application implements error handling.
6. Analyze and document that the application minimizes the risk in startup situations that involve
initializing variables and outputs.
7. Analyze and document that the application minimizes the risk involved in write delays to non-volatile
memory.
8. When using a Compiled Code Package in an application, you should read, understand, and then
follow the Warning in topic Create Externally Defined Class on page 332 and the topic Call Method of
Externally Defined Class on page 333 in the chapter PLUS+1 GUIDE Components on page 214 of this
manual.
©
Danfoss | February 2021 AQ152886483724en-002301 | 17
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
Responsibilities for IEC 61508 and ISO 13849-1 requirements
The following sections, from this page up to Software-Based Parameterization on page 56, describe the
software requirements in IEC 61508 and ISO 13849-1 that are fulfilled automatically through the use of
the PLUS+1 tools or requires actions by the software application designer to fulfill.
Terminology
Term Description
EUC
IEC 61508
ISO 13849-1
Off-line execution
On-line execution
Service Tool
Software support tool
SP
Equipment Under Control
Used for IEC 61508:2010, parts 1-7 (reference [1])
Used for EN ISO 13849-1:2015 (reference [2])
Execution of code before application starts
Execution of application code. This is the final code and any development code
has been removed.
Support tool developed by Danfoss
According to IEC 61508: tool needed for software development.
SP Technical Research Institute of Sweden
Features
Feature Description
Debugger
Dependency view
Diff tool
ECU History
GUIDE to Simulink
Modules
PLUS+1 Development
Guidelines
PLUS+1® GUIDE
PLUS+1® Service Tool
PLUS+1 User manual
Read Only Parameters
Safety Function Block Library
ServiceTool.DisableDownload
PLC
Test tool
Tool Key
Version control support
Enables debugging of source code.
Shows dependency between signals in the software and shows it directly in the
code.
A tool to compare two source code files in SCS-format.
History Information about unit history that can be read out from the ECU directly.
Provides the functionality to export GUIDE code and run it in a simulation
environment in Simulink.
Enables split up of source code into several files.
Development guidelines to promote structured programming in a consistent
way.
Support tool — graphical programming tool.
Support tool — modification and parameterization tool.
User manual for PLUS+1® GUIDE.
Enables the software to be updated with a predefined set of parameters that is
validated. Application sets default if parameter set is invalid.
Function block library containing function blocks for safety functions fulfilling IEC
61508:2010 SIL3.
Application signal that enables the application to be in control of when PLUS+1
Service Tool is able to download to the system.
IEC 61131 language that provides textual programming in addition to the
graphical programming of PLUS+1® GUIDE.
A tool to test the source code and capture test cases and results.
Provides system provider with functionality to limit access to their system.
Supports working with version control software.
®
18 | © Danfoss | February 2021 AQ152886483724en-002301
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
Prerequisites
The Statements: Yes, No, Partial in the table below appear in the Fulfill columns in the tables on the
following pages.
The statements in this table are only from a PLUS+1® tool perspective.
The overall responsible person for checking the fulfillment of the requirement in IEC 61508 and ISO
13849-1 must investigate which additional measures that needs to be taken for each individual
requirement before it is completely fulfilled.
Statement Description
Yes
Yes*
No
Partially
Partially*
N/A
This requirement is automatically fulfilled by using PLUS+1® tools.
Full conformance with this requirement demands that the software application designer
considers the measures described in the column “detailed description.”
This requirement is not fulfilled by using PLUS+1® tools.
Indicate that the PLUS+1® tools do not cover all the requirements in an Annex B table that is
referenced from a certain technique and measure described in an Annex A table, or only covers
certain of the requirements within the sub chapter.
The additional measures, beyond those described in the column “Detailed description,” that has
to be performed for claiming full conformance with this requirement will vary from case to case.
The application designer will be responsible for this work.
Not applicable for support tools.
©
Danfoss | February 2021 AQ152886483724en-002301 | 19
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
Division of Responsibility between Danfoss and the User
6.2—Additional Requirements for the Management of Safety-Related Software
Subclause
1. The requirements are as detailed in 6.2 of IEC 61508-1, with the following additional
requirements.
2. The functional safety planning shall define the strategy for software procurement,
development, integration, verification, validation, and modification to the extent required by
the safety integrity level of the safety functions implemented by the E/E/PE safety-related
system.
3. Software configuration management shall:
A) Apply administrative and technical controls throughout the software safety lifecycle, in
order to manage software changes and thus ensure that the specified requirements for
safety-related software continue to be satisfied
B) Guarantee that all necessary operations have been carried out to demonstrate that the
required software systematic capability has been achieved
C) Maintain accurately and with unique identification all configuration items which are
necessary to meet the safety integrity requirements of the E/E/PE safety-related system.
Configuration items include at least the following: safety analysis and requirements;
software specification and design documents; software source code modules; test plans and
results; verification documents; pre-existing software elements and packages which are to
be incorporated into the E/E/PE safety-related system; all tools and development
environments which are used to create or test, or carry out any action on, the software of the
E/E/PE safety-related system.
D) Apply change-control procedures:
To prevent unauthorized modifications; to document modification requests
•
To analyze the impact of a proposed modification, and to approve or reject the request
•
To document the details of, and the authorization for, all approved modifications
•
To establish configuration baseline at appropriate points in the software development,
•
and to document the (partial) integration testing of the baseline
To guarantee the composition of, and the building of, all software baselines (including the
•
rebuilding of earlier baselines).
E) Ensure that appropriate methods are implemented to load valid software elements and
data correctly into the run-time system
F) Document the following information to permit a subsequent functional safety audit:
configuration status, release status, the justification (taking account of the impact analysis)
for and approval of all modifications, and the details of the modification.
G) Formally document the release of safety-related software. Master copies of the software
and all associated documentation and version of data in service shall be kept to permit
maintenance and modification throughout the operational lifetime of the released software.
1)
See the table in Prerequisites on page 19 for more information about the items in this column.
PLUS+1 GUIDE Tools
Fulfill1)Detailed Description
N/A ——
N/A ——
Partially*
PLUS+1 GUIDE software tools
guarantees that valid software
elements and data are correctly
loaded into the run-time system (E).
Version control support built in (D
and G).
Subsections A-C are dependent on
the organization where the system is
developed. The tools have no explicit
support for these steps.
20 | © Danfoss | February 2021 AQ152886483724en-002301
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
General Software Safety Life Cycle Requirements
The objective of the requirements of this subclause is to structure the development of the software into
defined phases and activities (see Table 1 and Figures 3 to 6 in IEC 61508-3).
7.1.2— General Software Safety Life Cycle Requirements
PLUS+1 GUIDE Tools
Subclause
1. A safety lifecycle for the development of software shall be selected and specified during safety
planning in accordance with Clause 6 of IEC 61508- 1.
2. Any software lifecycle model may be used provided all the objectives and requirements of this
clause are met.
3. Each phase of the software safety lifecycle shall be divided into elementary activities with the
scope, inputs, and outputs specified for each phase.
4. Provided that the software safety lifecycle satisfies the requirements of Table 1, it is acceptable to
tailor the V-model (see Figure 6) to take account of the safety integrity and the complexity of the
project.
5. Any customization of the software safety lifecycle shall be justified on the basis of functional
safety.
6. Quality and safety assurance procedures shall be integrated into safety lifecycle activities. N/A ——
7. For each lifecycle phase, appropriate techniques and measures shall be used.
Annexes A and B provide a guide to the selection of techniques and measures, and references to
IEC 61508-6 and IEC 61508-7.
IEC 61508-6 and IEC 61508-7 give recommendations on specific techniques to achieve the
properties required for systematic safety integrity.
Selecting techniques from these recommendations does not guarantee by itself that the required
safety integrity will be achieved.
8. The results of the activities in the software safety lifecycle shall be documented (see Clause 5). N/A ——
9. If at any phase of the software safety lifecycle, a modification is required pertaining to an earlier
lifecycle phase, then an impact analysis shall determine (1) which software modules are impacted,
and (2) which earlier safety lifecycle activities shall be repeated.
1)
See the table Prerequisites on page 19 for more information about the items in this column.
Fulfill1)Detailed description
N/A ——
N/A ——
N/A ——
N/A ——
N/A ——
Partially* See Annexes A and B.
N/A ——
©
Danfoss | February 2021 AQ152886483724en-002301 | 21
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
Software Safety Requirements Specification
The objectives are to specify the requirements for safety-related software in terms of the requirements for
software safety functions and the requirements for software systematic capability, for the software safety
functions for each E/E/PE safety-related system necessary to implement the required safety functions and
for the software systematic capability for each E/E/PE safety-related system necessary to achieve the
safety integrity level specified for each safety function allocated to that E/E/PE safety –related system.
7.2.2—Software Safety Requirements Specification
Subclause
1. If the requirements for safety-related software have already been specified for the E/E/PE
safety-related system (see Clause 7 of IEC 61508- 2), then the specification of software safety
requirements need not be repeated.
2. The specification of the requirements for safety related software shall be derived from the
specified safety requirements of the E/E/PE safety-related system (see IEC 61508-2, 7), and
any requirements of safety planning (see Clause 6). This information shall be made available
to the software developer.
3. The specification of the requirements for safety related software shall be sufficiently detailed
to allow the design and implementation to achieve the required safety integrity (including
any requirement for independence, see 7.4.3 of IEC 61508-2), and to allow an assessment of
functional safety to be carried out.
4. In order to address independence, a suitable common cause failure analysis shall be carried
out. Where credible failure mechanisms are identified, effective defensive measures shall be
taken.
5.
The software developer shall evaluate the information in 7.2.2.2 to ensure that the
requirements are adequately specified. In particular, the software developer shall consider
the following:
A) Safety functions;
B) Configuration or architecture of the system;
C) Hardware safety integrity requirements (programmable electronics, sensors, and
actuators);
D) Software systematic capability requirements;
E) Capacity and response time;
F) Equipment and operator interfaces, including reasonably foreseeable misuse.
6. If not already adequately defined in specified safety requirements of the E/E/PE safetyrelated system, all relevant modes of operation of the EUC, of the E/E/PE system, and of any
equipment or system connected to the E/E/PE system shall be detailed in the specified
requirements for safety-related software.
7. The software safety requirements specification shall specify and document any safetyrelated or relevant constraints between the hardware and the software.
8.
To the extent required by the E/E/PE hardware architecture design, and considering the
possible increase in complexity, the software safety requirements specification shall
consider the following:
A) Software self-monitoring (for examples see IEC 61508-7);
B) Monitoring of the programmable electronics hardware, sensors, and actuators;
C) Periodic testing of safety functions while the system is running;
D) Enabling safety functions to be testable when the EUC is operational;
E) Software functions to execute proof tests and all diagnostic tests in order to fulfill the
safety integrity requirement of the E/E/PE safety-related system.
9. When the E/E/PE safety-related system is required to perform non-safety functions, then the
specified requirements for safety-related software shall clearly identify the non-safety
functions.
PLUS+1 GUIDE Tools
Fulfill1)Detailed Description
N/A ——
N/A ——
N/A ——
N/A ——
N/A ——
N/A ——
Partially* PLUS+1® GUIDE provides a fixed interface
to the hardware through the HWD file.
This includes range check, execution
time, and data storage capacity.
Partially* PLUS+1 Development Guidelines gives
guidance on how to create software that
fulfills the intention of this sub-clause.
Danfoss can supply hardware that
includes functionality to fulfill this
requirement.
N/A ——
22 | © Danfoss | February 2021 AQ152886483724en-002301
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
7.2.2—Software Safety Requirements Specification (continued)
Subclause
10.
The software safety requirements specification shall express the required safety properties
of the product, but not of the project as this is covered by safety planning (see Clause 6 of
61508-1). With reference to 7.2.2.1 to 7.2.2.9, the following shall be specified as appropriate.
A) The requirements for the following software safety functions:
1) Functions that enable the EUC to achieve or maintain a safe state;
2) Functions related to the detection, annunciation and management of faults in the
programmable electronics hardware;
3) Functions related to the detection, annunciation and management of sensor and
actuators faults;
4) Functions related to the detection, annunciation and management of faults in the
software itself (software self-monitoring);
5) Functions related to the periodic testing of safety functions online (i.e. in the
intended operational environment);
6) Functions related to the periodic testing of safety functions offline (i.e. in an
environment where the EUC is not being relied upon for its safety function);
7) Functions that allow the PE system to be safely modified;
8) Interfaces to non-safety-related functions;
9) Capacity and response time performance;
10) Interfaces between the software and the PE system;
11) Safety-related communications (see 7.4.11 of IEC 61508-2).
B) The requirements for the software systematic capability:
1) The safety integrity level(s) for each of the functions in A) above;
2) Independence requirements between functions.
11.
Where software safety requirements are expressed or implemented by configuration data,
the data shall be:
A) Consistent with the system safety requirements;
B) Expressed in terms of the permitted range and authorized combinations of its operational
parameters;
C) Defined in a manner which is compatible with the underlying software (for example
sequence of execution, run time, data structures, etc.).
12. Where data defines the interface between software and external systems, the following
performance characteristics shall be considered in addition to 7.4.11 of IEC 61508-2:
A) The need for consistency in terms of data definitions;
B) Invalid, out of range or untimely values;
C) Response time and throughput, including maximum loading conditions;
D) Best case and worst case execution time, and deadlock;
E) Overflow and underflow of data storage capacity.
13. Operational parameters shall be protected against:
A) Invalid, out of range or untimely values;
B) Unauthorized changes;
C) Corruption.
1)
See the table Prerequisites on page 19 for more information about the items in this column.
PLUS+1 GUIDE Tools
Fulfill1)Detailed Description
Partially*
Partially* PLUS+1® GUIDE User Manual includes
Partially* PLUS+1® GUIDE provides a fixed interface
Partially* PLUS+1® GUIDE and PLUS+1® Service
PLUS+1 Development Guidelines.
PLUS+1® GUIDE provides a fixed interface
to the hardware through the HWD file.
This includes range check, execution
time, and data storage capacity.
description of how to handle parameters
in a safe way.
PLUS+1 Development Guidelines.
to the hardware through the HWD file.
This includes range check, execution
time, and data storage capacity (B and
D–E).
PLUS+1® Service Tool is capable of
handling invalid range and data storage
capacity (B and D).
Tool have built in functionality to protect
against corruption (C); and support to
protect against invalid values (A) and
unauthorized changes (B).
©
Danfoss | February 2021 AQ152886483724en-002301 | 23
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
Validation Plan for Software Aspects of System Safety
The objective of the requirements of this sub-clause is to develop a plan for validating the safety-related
software aspects of system safety.
7.3.2—Validation Plan for Software Aspects of System Safety
Subclause
1. Planning shall be carried out to specify the steps, both procedural and technical, that will be
used to demonstrate that the software satisfies its safety requirements.
2.
The validation plan for software aspects of system safety shall consider the following:
A) Details of when the validation shall take place;
B) Details of those who shall carry out the validation;
C) Identification of the relevant modes of the EUC operation including:
1) Preparation for use including setting and adjustment;
2) Start up, teach, automatic, manual, semi-automatic, steady state operation;
3) Resetting, shut down, maintenance;
4) Reasonably foreseeable abnormal conditions and reasonably foreseeable operator
misuse.
D) Identification of the safety-related software which needs to be validated for each mode of
EUC operation before commissioning commences;
E) The technical strategy for the validation (for example analytical methods, statistical tests
etc.);
F) In accordance with item e), the measures (techniques) and procedures that shall be used
for confirming that each safety function conforms with the specified requirements for the
safety functions, and the specified requirements for software systematic capability;
G) The required environment in which the validation activities are to take place (for
example, for tests this could include calibrated tools and equipment);
H) The pass/fail criteria;
I) The policies and procedures for evaluating the results of the validation, particularly
failures.
3. The validation shall give a rationale for the chosen strategy. The technical strategy for the
validation of safety-related software shall include the following information:
A) Choice of manual or automated techniques or both;
B) Choice of static or dynamic techniques or both;
C) Choice of analytical or statistical techniques or both.
D) Choice of acceptance criteria based on objective factors or expert judgment or both.
4. As part of the procedure for validating safety-related software aspects, the scope and
contents of the validation plan for software aspects of system safety shall be agreed with
the assessor or with a party representing the assessor, if required by the safety integrity level
(see Clause 8 of IEC 61508-1). This procedure shall also make a statement concerning the
presence of the assessor during testing.
5.
The pass/fail criteria for accomplishing software validation shall include:
A) The required input signals with their sequences and their values;
B) The anticipated output signals with their sequences and their values; and
C) Other acceptance criteria, for example memory usage, timing, and value tolerances.
1)
See the table Prerequisites on page 19 for more information about the items in this column.
PLUS+1 GUIDE Tools
Fulfill1)Detailed description
Partially* Test tool and Dependency view can
Partially*
Partially* Test tool supports both manual and
N/A ——
Partially* Test tool supports defining required
support the planning of software safety
validation.
Test tool provides the framework to
support validation and can be used to
fulfill the validation plan requirements
(E–H).
Subsections A–C and I are dependent on
the organization where the system is
developed. The tools have no explicit
support for these steps.
automatic validation (A). It can handle
both static and dynamic validation (B).
But it does not provide statistical
analysis, only analytical analysis is
available (C).
inputs and anticipated output signals.
And is also capable of handling other
acceptance criteria such as value
tolerances.
24 | © Danfoss | February 2021 AQ152886483724en-002301
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
General Software and Design Requirements
7.4.2—General Software and Design Requirements
PLUS+1 GUIDE Tools
Subclause
1. Depending on the nature of the software development, responsibility for conformance with
7.4 can rest with the supplier of a safety related programming environment (e.g. PLC
supplier) alone, or with the user of that environment (e.g. the application software
developer) alone, or with both. The division of responsibility shall be determined during
safety planning (see Clause 6).
2.
In accordance with the required safety integrity level and the specific technical
requirements of the safety function, the design method chosen shall possess features that
facilitate:
A) Abstraction, modularity and other features which control complexity;
B) The expression of:
1) Functionality;
2) Information flow between elements;
3) Sequencing and time related information;
4) Timing constraints;
5) Concurrency and synchronized access to shared resources;
6) Data structures and their properties;
7) Design assumptions and their dependencies;
8) Exception handling;
9) Design assumptions (pre-conditions, post-conditions, invariants);
10) Comments.
C) Ability to represent several views of the design including structural and behavioral views;
D) Comprehension by developers and others who need to understand the design;
E) Verification and validation.
3. Testability and the capacity for safe modification shall be considered during the design
activities in order to facilitate implementation of these properties in the final safety-related
system.
4. The design method chosen shall possess features that facilitate software modification. Such
features include modularity, information hiding, and encapsulation.
5. The design representations shall be based on a notation which is unambiguously defined or
restricted to unambiguously defined features.
6. As far as practicable the design shall keep the safety-related part of the software simple. Partially* Dependency view will give support in
7. The software design shall include, commensurate with the required safety integrity level,
self-monitoring of control flow and data flow. On failure detection, appropriate actions shall
be taken.
8. Where the software is to implement both safety and non-safety functions, then all of the
software shall be treated as safety-related, unless adequate design measures ensure that
the failures of nonsafety functions cannot adversely affect safety functions.
1)
Fulfill
Partially The user of the PLUS+1® GUIDE software
Yes*
Yes* PLUS+1® GUIDE and PLUS+1® Service
Yes PLUS+1® GUIDE graphical coding
Yes The design representation is interpreted
No ——
Partially* Dependency view shows dependencies
Detailed description
tool and the software tool itself share the
responsibility for software design and
development. (See Clauses 7.4.2.2–
7.4.2.14)
PLUS+1® GUIDE software tool possesses
features that facilitate references (A–D)
as described in clause 7.4.2.2.
Test tool supports verification and
validation (E).
Tool provide sufficient means to enable
testability and capacity for safe
modifications as a design aspect. Test
tool provides further improvements
regarding testability.
environment includes features that
facilitate software modifications. Such
features include modularity, information
hiding, and encapsulation.
as a high-level design description. The
notation is defined as the available
graphical components. The PLUS+1
GUIDE User Manual clearly defines these
graphical components.
visualizing the complexity of the
implementation of the safety-related
software parts.
between signals and can be used to
show independence between safety and
non-safety functions within the software.
Dividing the software into different
modules is a way to separate safety and
non-safety functions.
®
©
Danfoss | February 2021 AQ152886483724en-002301 | 25
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
7.4.2—General Software and Design Requirements (continued)
Subclause
9.
Where the software is to implement safety functions of different safety integrity levels, then
all of the software shall be treated as belonging to the highest safety integrity level, unless
adequate independence between the safety functions of the different safety integrity levels
can be shown in the design. It shall be demonstrated either (1) that independence is
achieved by both in the spatial and temporal domains, or (2) that any violation of
independence is controlled. The justification for independence shall be documented.
10. Where the systematic capability of a software element is lower than the safety integrity
level of the safety function which the software element supports, the element shall be used
in combination with other elements such that the systematic capability of the combination
equals the safety integrity level of the safety function.
11. Where a safety function is implemented using a combination of software elements of
known systematic capability, the systematic capability requirements of 7.4.3 of IEC 61508-2,
shall apply to the combination of elements.
12.
Where a pre-existing software element is reused to implement all or part of a safety
function, the element shall meet both requirements (A and B below) for systematic safety
integrity:
A) Meet the requirements of one of the following compliance routes:
Route 1S: compliant development. Compliance with the requirements of this standard
•
for the avoidance and control of systematic faults in software;
Route 2S: proven in use. Provide evidence that the element is proven in use. See 7.4.10 of
•
IEC 61508-2;
Route 3S: assessment of non-compliant development. Compliance with 7.4.2.13.
•
B) Provide a safety manual (see Annex D of IEC 61508-2 and Annex D of this standard) that
gives a sufficiently precise and complete description of the element to make possible an
assessment of the integrity of a specific safety function that depends wholly or partly on the
pre-existing software element.
PLUS+1 GUIDE Tools
1)
Fulfill
Partially* Dependency view shows dependencies
N/A ——
N/A ——
Partially* Safety Function Block Library meet these
Detailed description
between signals and can be used to
show independence between different
safety functions within the software.
Dividing the software into different
modules is a way to separate functions
of different safety integrity level.
requirements (A—Route 1S and B).
26 | © Danfoss | February 2021 AQ152886483724en-002301
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
7.4.2—General Software and Design Requirements (continued)
Subclause
13.
To comply with Route 3S a pre-existing software element shall meet all of the following
requirements from A) to I):
A) The software safety requirements specification for the element in its new application
shall be documented to the same degree of precision as would be required by this standard
for any safety related element of the same systematic capability. The software safety
requirements specification shall cover the functional and safety behavior as applicable to
the element in its new application and as specified in 7.2. See Table A.1.
B) The justification for use of a software element shall provide evidence that the desirable
safety properties specified in the referenced subclauses (i.e. 7.2.2, 7.4.3, 7.4.4, 7.4.5, 7.4.6,
7.4.7, 7.5.2, 7.7.2, 7.8.2, 7.9.2, and Clause 8) have been considered, taking account of the
guidance in Annex C.
C) The element’s design shall be documented to a degree of precision, sufficient to provide
evidence of compliance with the requirement specification and the required systematic
capability. See 7.4.3, 7.4.5 and 7.4.6, and Tables A.2 and A.4 of Annex A.
D) The evidence required in 7.4.2.13 A) and 7.4.2.13 B) shall cover the software’s integration
with the hardware. See 7.5 and Table A.6 of Annex A.
E) There shall be evidence that the element has been subject to verification and validation
using a systematic approach with documented testing and review of all parts of the
element’s design and code. See 7.4.7, 7.4.8, 7.5, 7.7 and 7.9 and Tables A.5 to A.7 and A.9 of
Annex A as well as related tables in Annex B.
F) Where the software element provides functions which are not required in the safety
related system, then evidence shall be provided that the unwanted functions will not
prevent the E/E/PE system from meeting its safety requirements.
G) There shall be evidence that all credible failure mechanisms of the software element
have been identified and that appropriate mitigation measures have been implemented.
H) The planning for use of the element shall identify the configuration of the software
element, the software and hardware run-time environment and if necessary the
configuration of the compilation / linking system.
I) The justification for use of the element shall be valid for only those applications which
respect the assumptions made in the compliant item safety manual for the element (see
Annex D of IEC 61508-2 and Annex D).
14.
This sub-clause 7.4.2 shall, in so far as it is appropriate, apply to data and data generation
languages.
A) Where a PE system consists of pre-existing functionality that is configured by data to
meet specific application requirements, the design of the application software shall be
commensurate with the degree of application configurability, pre-delivered existing
functionality, and complexity of the PE safety-related system.
B) Where the safety-related functionality of a PE system is determined significantly or
predominantly by configuration data, appropriate techniques and measures shall be used
to prevent the introduction of faults during the design, production, loading and
modification of the configuration data and to ensure that the configuration data correctly
states the application logic.
C) The specification of data structures shall be:
1) Consistent with the functional requirements of the system, including the application
data;
2) Complete;
3) Self consistent;
4) Such that the data structures are protected against alteration or corruption.
D) Where a PE System consists of pre-existing functionality that is configured by data to
meet specific application requirements, the configuration process itself shall be
documented appropriately.
1)
See the table Prerequisites on page 19 for more information about the items in this column.
PLUS+1 GUIDE Tools
1)
Fulfill
—— Not applied since Route 1S is currently
Partially*
Detailed description
the only one used.
Read-only Parameters fully covers the
requirements on data structure
specification (C), as well as preventing
introduction of faults during production,
loading and modification of the
configuration data (B).
Subsections A and D are dependent on
the organization where the system is
developed. The tools have no explicit
support for these steps.
©
Danfoss | February 2021 AQ152886483724en-002301 | 27
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
Requirements for Software Architecture Design
7.4.3—Requirements for Software Architecture Design
Subclause
1. Depending on the nature of the software development, responsibility for conformance with
7.4.3 can rest with multiple parties. The division of responsibility shall be documented
during safety planning (see Clause 6 of IEC 61508-1).
2.
The software architecture design shall be established by the software supplier and/or
developer, and shall be detailed. The software architecture design shall:
A) Select and justify (see 7.1.2.7) an integrated set of techniques and measures necessary
during the software safety lifecycle phases to satisfy the software safety requirements
specification at the required safety integrity level. These techniques and measures include
software design strategies for both fault tolerance (consistent with the hardware) and fault
avoidance, including (where appropriate) redundancy and diversity;
B) Be based on a partitioning into elements/subsystems, for each of which the following
information shall be provided:
1) Whether the elements/subsystems have been previously verified, and if yes, their
verification conditions;
2) Whether each subsystem/element is safety-related or not;
3) Software systematic capability of the subsystem/element.
C) Determine all software/hardware interactions and evaluate and detail their significance;
D) Use a notation to represent the architecture which is unambiguously defined or
restricted to unambiguously defined features;
E) Select the design features to be used for maintaining the safety integrity of all data. Such
data may include plant input-output data, communications data, operator interface data,
maintenance data and internal database data;
F) Specify appropriate software architecture integration tests to ensure that the software
architecture satisfies the software safety requirements specification at the required safety
integrity level.
3. Any changes required to the E/E/PE System Safety Requirements Specification (see 7.2.2)
after applying 7.4.3.2 shall be agreed with the E/E/PE developer and documented.
1)
See the table Prerequisites on page 19 for more information about the items in this column.
PLUS+1 GUIDE Tools
Fulfill1)Detailed description
Partially The user of the PLUS+1 GUIDE software
Partially*
N/A ——
tool and the software tool itself share the
responsibility for software design and
development. (See clauses 7.4.3.2–
7.4.3.3.)
PLUS+1 GUIDE graphical coding
environment provides the means to
realize different hierarchies by dividing
the code into different pages (B and D).
With Test tool verification conditions of
previously verified elements/subsystems
can be identified (B).
Test tool is also used to specify
appropriate integration tests (F).
Dependency view features built in and
PLUS+1 Development Guidelines is
describing how to build up the software
architecture design (C).
Subsections A and E are dependent on
the organization where the system is
developed. The tools have no explicit
support for these steps.
28 | © Danfoss | February 2021 AQ152886483724en-002301
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
Requirements for Support Tools and Programming Languages
7.4.4—Requirements for Support Tools and Programming Languages
PLUS+1 GUIDE Tools
Subclause
1. A software on-line support tool shall be considered to be a software element of the safety
related system.
2. Software off-line support tools shall be selected as a coherent part of the software
development activities.
3. The selection of the off-line support tools shall be justified. Yes PLUS+1® GUIDE and PLUS+1® Service
4. All off-line support tools in classes T2 and T3 shall have a specification or product
documentation which clearly defines the behavior of the tool and any instructions or
constraints on its use. See 7.1.2 for software development lifecycle requirements, and 3.2.11
of IEC 61508-4 for categories of software off-line support tool.
5.
An assessment shall be carried out for offline support tools in classes T2 and T3 to
determine the level of reliance placed on the tools, and the potential failure mechanisms of
the tools that may affect the executable software. Where such failure mechanisms are
identified, appropriate mitigation measures shall be taken.
6.
For each tool in class T3, evidence shall be available that the tool conforms to its
specification or documentation. Evidence may be based on a suitable combination of
history of successful use in similar environments and for similar applications (within the
organization or other organizations), and of tool validation as specified in 7.4.4.7.
7.
The results of tool validation shall be documented covering the following results:
A) A chronological record of the validation activities;
B) The version of the tool product manual being used;
C) The tool functions being validated;
D) Tools and equipment used;
E) The results of the validation activity; the documented results of validation shall state
either that the software has passed the validation or the reasons for its failure;
F) Test cases and their results for subsequent analysis;
G) Discrepancies between expected and actual results.
8. Where the conformance evidence of 7.4.4.6 is unavailable, there shall be effective measures
to control failures of the executable safety related system that result from faults that are
attributable to the tool.
9. The compatibility of the tools of an integrated toolset shall be verified. Yes
10.
To the extent required by the safety integrity level, the software or design representation
(including a programming language) selected shall:
A) Have a translator which has been assessed for fitness for purpose including, where
appropriate, assessment against the international or national standards;
B) Use only defined language features;
C) Match the characteristics of the application;
D) Contain features that facilitate the detection of design or programming mistakes;
E) Support features that match the design method.
11. Where 7.4.4.10 cannot be fully satisfied, the fitness for purpose of the language, and any
additional measures which address any identified shortcomings of the language shall be
justified.
1)
Fulfill
N/A Not applicable since PLUS+1® GUIDE and
Yes Selecting tools is covered by using PLUS
Yes PLUS+1® GUIDE and PLUS+1® Service
Yes PLUS+1® GUIDE and PLUS+1® Service
Yes
Yes
— Not applied since 7.4.4.6 is fulfilled.
N/A
— Not applied since 7.4.4.10 is fulfilled.
Detailed description
PLUS+1® Service Tool are certified as offline support tools. Documented by the
certificate.
+1® GUIDE and PLUS+1® Service Tool.
Tool are certified as off-line support tools
in accordance to IEC61508.
Tool User Manuals defines the behavior
of the tools.
Fully covered and documented by the
certificate
.
Tool are certified as off-line support tools
in accordance to IEC61508.
Fully covered and documented by the
certificate.
PLUS+1® GUIDE is certified as off-line
support tool in accordance to IEC61508.
Fully covered and documented by the
certificate.
PLUS+1® GUIDE and PLUS+1® Service
Tool are certified as off-line support tools
in accordance to IEC61508.
Fully covered and documented by the
certificate.
PLUS+1® GUIDE and PLUS+1® Service
Tool are certified as off-line support tools
in accordance to IEC61508.
Fully covered and documented by the
certificate.
PLUS+1® GUIDE is certified as off-line
support tools in accordance to IEC61508
(A).
Dependency view support detection of
design and programming mistakes (D).
PLUS+1® GUIDE provides features to
match the characteristics of control
applications and control flow designs (C
and E).
©
Danfoss | February 2021 AQ152886483724en-002301 | 29
User Manual
PLUS+1® GUIDE Software
IEC 61508:2010 Certified Support Tool
7.4.4—Requirements for Support Tools and Programming Languages (continued)
Subclause
12. Programming languages for the development of all safety-related software shall be used
according to a suitable programming language coding standard.
13.
A programming language coding standard shall specify good programming practice,
proscribe unsafe language features (for example, undefined language features,
unstructured designs, etc.), promote code understandability, facilitate verification and
testing, and specify procedures for source code documentation. Where practicable, the
following information shall be contained in the source code:
A) Legal entity (for example company, author(s), etc.);
B) Description;
C) Inputs and outputs;
D) Configuration management history.
14. Where automatic code generation or similar automatic translation takes place, the
suitability of the automatic translator for safety-related system development shall be
assessed at the point in the development lifecycle where development support tools are
selected.
15.
Where off-line support tools of classes T2 and T3 generate items in the configuration
baseline, configuration management shall ensure that information on the tools is recorded
in the configuration baseline. This includes in particular:
A) The identification of the tool and its version;
B) The identification of the configuration baseline items for which the tool version has been
used;
C) The way the tool was used (including the tool parameters, options and scripts selected)
for each configuration baseline item.
16. Configuration management shall ensure that for tools in classes T2 and T3, only qualified
versions are used.
17. Configuration management shall ensure that only tools compatible with each other and
with the safety-related system are used.
18.
Each new version of off-line support tool shall be qualified. This qualification may rely on
evidence provided for an earlier version if sufficient evidence is provided that:
A) The functional differences (if any) will not affect tool compatibility with the rest of the
toolset; and
B) The new version is unlikely to contain significant new, unknown faults.
19.
Depending on the nature of the software development, responsibility for conformance with
7.4.4 can rest with multiple parties. The division of responsibility shall be documented
during safety planning (see Clause 6 of IEC 61508-1).
1)
See the table Prerequisites on page 19 for more information about the items in this column.
PLUS+1 GUIDE Tools
1)
Fulfill
Yes* PLUS+1 Development Guidelines.
Yes* PLUS+1 Development Guidelines.
Yes
Yes Version control support of the project
Yes For certified hardware there is the
Yes
Yes
Yes* The user of the PLUS+1 GUIDE software
Detailed description
PLUS+1® GUIDE is certified as off-line
support tool in accordance to IEC61508.
Fully covered and documented by the
certificate.
file (P1x) contains the information to
fulfill this clause.
possibility to compile as safety related
software.
That will require qualified PLUS+1
GUIDE and PLUS+1® Service Tool.
For complete Danfoss systems this is
fully covered and documented by the
certificate.
For systems containing non-Danfoss
parts the system integrator needs to
document the compatibility.
PLUS+1® GUIDE and PLUS+1® Service
Tool are certified as off-line support tools
in accordance to IEC61508.
Fully covered and documented by the
certificate.
tool and the software tool itself share the
responsibility for support tools and
programming languages.
(See clauses 7.4.4.1–7.4.4.18.)
®
30 | © Danfoss | February 2021 AQ152886483724en-002301
Loading...