Partial Stroke Testing of Block Valves - Chapter, “Partial Stroke Testing of Block Valves”, Instrument Engineers Handbook, Volume 4, Chapter 6.9 - For many operating companies, one of the most difficult parts of complying with the standards is the testing interval often required for final elements, such as emergency isolation valves or emergency block valves, this excellent chapter covers this in detail.

Recommendations on the Design and Operation of Fuel Storage Sites -This 52 page report sets out recommendations to improve safety in the design and operation of fuel storage sites.

Improve Facility SIS Performance and Reliability
Angela E. Summers, Ph.D., P.E, President, SIS-TECH Solutions, LP and Bryan A. Zachary, Operations Manager

Introduction to Layer of Protection Analysis
This paper provides an overview of the LOPA process, highlighting the key considerations

High Integrity Protective Systems for Reactive Processes
This paper discusses how to assess, design, and implement HIPS to effectively manage potential overpressure of equipment used for reactive processes.

Perspectives on ANSI/ISA 84.00.01-2004 (IEC61511)-An Emerging International Consensus Standard
Angela E. Summers, Ph.D., P.E., President, SIS-TECH Solutions, LP

Estimation and evaluation of common cause failures in SIS
Angela E. Summers, Ph.D., Kimberly A. Ford, and Glenn Raney

Is your SIS "grandfathered" under ANSI/ISA S84.01-2004?
Kimberly A. Ford and Angela E. Summers, Ph.D., P.E.

Techniques for assigning a target integrity level
Angela E. Summers, Ph.D.

Viewpoint on ISA TR84.0.02 - simplified methods and fault tree analysis
Angela E. Summers, Ph.D., P.E.- Simplified equations and fault tree analysis are two techniques that can be used to verify safety integrity level. The two methods do yield different results but both provide acceptable approximations. 

SIS Links -TUV provides links to more Safety Instrumented Systems Information

SIS Technical Papers - Exida.com provides links and excellent technical information as follows on Safety Instrumented Systems;
61508 and 61511; What Is an Operations Company Supposed to Do? - Eric Scharpf - The typical first reaction from the process operations side of the table when confronted with a new standard is, "How much will this cost and how much extra paperwork will it involve?".... IEC 61508 and 61511, the standards covering the design and use of a safety instrumented system to reduce process plant accidents, are no exception to this initial reaction.
Accurate Failure Metrics for Mechanical Instruments -Dr. William M. Goble -Probabilistic calculations done to verify the integrity of a Safety Instrumented System design require failure rate data and failure mode data of all equipment including the mechanical devices.
Assessment Levels for Safety Equipment - Dr. William M. Goble - The end user must carefully choose all instrumentation equipment used in Safety Instrumented System (SIS) applications. All such equipment must be carefully justified... IEC 61511, Functional Safety for the Process Industries, requires that equipment used in safety instrumented systems be chosen based on either IEC 61507 certification to the appropriate SIL level or justification based on "prior use" criteria.
Common Cause Simulation - Dr. William M. Goble - Fault tolerant systems have been designed for safety critical applications including the protection of potentially dangerous industrial processes.
Development of a Mechanical Component Failure Database -Dr. William Goble & Julia Bukowski - In this paper, they present a methodology to derive component failure rate data for mechanical components used in automation systems based on warranty and field failure rate data as well as expert opinion.
Estimating The Beta Factor - Dr. William M. Goble - A Safety Instrumented System (SIS) is often designed to help protect an industrial process against potentially dangerous hazards. These systems often use redundant equipment to achieve the needed levels of protection. If the design was done to meet requirements of IEC 61511 or IEC 61508, probabilistic evaluation is done to verify that the design achieves risk reduction goals.
Evolution of European Standards - Rainer Faller - Slide show presentation of his Rockwell Automation 2002 speech
FMEDA - Accurate Product Failure Metrics - John C. Grebe and Dr. William Goble - The letters FMEDA form an acronym for "Failure Modes Effects and Diagnostic Analysis." The name was given by one of the authors in 1994 to describe a systematic analysis technique that had been in development since 1998 to obtain subsystem / product level failure rates, failure modes and diagnostic capability.
Functional Safety Terms and Acronyms Glossary - exida - This list of functional safety terms and acronyms has been compiled from a number of sources listed at the end including the IEC 61508, IEC 61511 (ISA84.01) standards. It is meant to provide a general reference for engineers practicing safety lifecycle engineering in the process industry. As such it provides both safety and related non-safety term definitions in a clear useable form. It specifically highlights the most important terms and acronyms from the safety lifecycle standards with working level definitions. The reader is encouraged to pursue IEC 61508 or IEC 61511 for additional definitions and for additional information on applying the safety lifecycle to the process industry.
Getting Failure Rate Data - Dr. William M. Goble - Safety verification calculations for each safety instrumented function are a key concept in functional safety standards like ISA 84.01 and IEC 61511.
IEC 61508 Certification Of Safety-Related Software Products With C/C++ -  John C. Grebe - What is the purpose of a coding standard? In the perspective of a safety-related software there are two valid answers. A coding standard's primary purpose is to reduce programming errors. A secondary purpose could be to achieve IEC 61508 certification for safety-related software.
IEC 61508 Overview - exida - IEC 61508 is an international standard for the “functional safety” of electrical, electronic, and programmable electronic equipment. This standard started in the mid 1980s when the International Electrotechnical Committee Advisory Committee of Safety (IEC ACOS) set up a task force to consider standardization issues raised by the use of programmable electronic systems (PES). At that time, many regulatory bodies forbade the use of any software-based equipment in safety critical applications. Work began within IEC SC65A/Working Group 10 on a standard for PES used in safety-related systems. This group merged with Working Group 9 where a standard on software safety was in progress. The combined group treated safety as a system issue.
IEC61511 Standard For Functional Safety - exida - IEC 61511 has been developed as a Process Sector implementation of the international standard IEC 61508: "Functional safety of electrical / electronic / programmable electronic safety-related systems."
Implementing IEC61508 In The Process Industries - Dr. Eric W. Scharpf & Dr. William M. Goble - IEC 61508 and its process-specific companion IEC 61511 are providing new codification to safety instrumented systems and their application to the process industry.
Mechanical Database Verification Report -Julia Bukowski - The purpose of this document is to report on exida's successful efforts to validate statistically certain random equipment failure rate data used in a mechanical parts failure rate and failure mode database and, by extension, to validate the techniques used to derive the data. To accomplish this, a Failure Modes, Effects, and Diagnostic Analysis (FMEDA) is initially used to predict the useful- life failure rate for the fail-to-open condition of a particular pressure relief valve (PRV) using the failure rates from the mechanical parts database. Next, this prediction is statistically tested against three independent data sets consisting of proof test data for PRV provided by Fortune 500 operating companies. The data sets all meet the intent of the quality assurance of proof test data as documented by the Center for Chemical Process Safety (CCPS) Process Equipment Reliability Database (PERD) initiative.
Mechanical Failure Rate Data for Low Demand Applications - exida - The use of IEC 61508 [1] and IEC 61511 [2] has increased rapidly in the past several years. Along with the adoption of the standards has come an increase in the need for accurate reliability data for devices used in Safety Instrumented Systems (SIS), both electronic and mechanical. While the methodology of determining failure rates for electronic equipment is fairly well accepted and applied, the same can not be said for mechanical equipment. Several methods are currently being utilized for generating failure rates for mechanical components. These methods vary in their approach and often lead to dramatically different failure rates which can lead to significant differences when calculating the reliability of a safety instrumented function (SIF). Some methods can result in dangerously optimistic failure rate numbers.
Mechanical FMEDA Presentation - Slide show presentation by Dr. William M. Goble
Modeling & Analyzing The Effects Of Periodic Inspection On The Performance Of Safety-Critical Systems - Julia V. Bukowski - This paper presents a method for incorporating into Markov models of safety-critical systems, periodic inspections and repairs which occur deterministically in time.
Open IEC 61508 Certification of Products -Rainer Faller & Dr. William Goble -IEC 61508 has been in use for several years since the final parts were released in 2000. Although written from the perspective of a bespoke system, it is more commonly used to certify products for a given SIL level. Valid product certification schemes must involve the assessment of specific product design details as well as an assessment of the safety management system of the product manufacturer and the personnel competency of those professionals involved in the product creation.
Partial Valve Stroke Testing - Iwan van Beurden - The objective of a Safety Instrumented System (SIS) is to reduce the risk associated with a particular process to a level lower than or equal to the tolerable risk level.
PFDavg Calculations For Redundant Systems With Incomplete Testing - Harry Cheddie - A common definition of a Safety Instrumented Function (SIF) as defined in Functional Safety Standards is "Function to be implemented by a Safety Instrumented System (SIS) to mitigate or prevent a specific hazardous event."
PLC vs Safety PLC - Dr. William M. Goble - Safety Programmable Logic Controllers (PLCs) are special purpose machines that are used to provide critical control and safety applications for automation users. These controllers are normally an integral part of a safety instrumented system (SIS) which are used to detect potentially dangerous process situations.
Project Experience with IEC 61508 and its Consequence - Rainer Faller -  This paper reports on the experiences with implementation of IEC 61508 in recent projects with European, North American and Japanese system vendors. The paper describes problems identified in implementing the standard and proposes a knowledge tool and a combination of software verification methods to mitigate these issues.
Real Time Operating Systems for IEC 61508 - Mike Medoff - In today’s world many potentially dangerous pieces of equipment are controlled by embedded software. This equipment includes cars, trains, airplanes, oil refineries, chemical processing plants, nuclear power plants and medical devices. As embedded software becomes more pervasive so too do the risks associated with it. As a result, the issue of software safety has become a very hot topic in recent years. The leading international standard in this area is IEC 61508: Functional safety of electrical/electronic/ programmable electronic safety-related systems. This standard is generic and not specific to any industry, but has already spun off a number of industry specific derived standards, and can be applied to any industry that does not have its own standard in place. Several industry specific standards such as EN50128 (Railway), DO-178B (Aerospace), IEC 60880 (Nuclear) and IEC 601-1-4 (Medical Equipment), are already in place. Debra Herrmann (Herrmann, 1999) has found a total of 19 standards related to software safety and reliability cut across industrial sectors and technologies. These standards’ popularity is on the rise, and more and more embedded products are being developed that conform to these standards. Since an increasing number of embedded products also use an embedded real time operating system (RTOS), it has become inevitable that products with an RTOS are being designed to conform to such standards. This creates an important question for designers: how is my RTOS going to effect my certification? This article will attempt to explore the challenges and advantages of using an RTOS in products that will undergo certification.
SIL Verification - Dr. William M. Goble - The safety lifecycle (SLC) is one of the fundamental concepts presented in the ANSI/ISA 84.01 and IEC 61508 functional safety standards.
Software - Stress Vs. Strength - Dr. William M. Goble - Considering the components used in the current control systems, hardware failure cause have been widely studied.
Software Safety Technique - Dr. William M. Goble - There is a strong trend toward the use of programmable electronics in safety instrumented systems. yet some users still avoid software-based systems.
State-Of-The-Art Safety Verification - Dr. Eric W. Scharpf & Dr. William M. Goble -The past few years have brought significant changes to the control safety field in both technology (i.e., fieldbus) and regulation (i.e., IEC 61508).
What Does Proven In Use Imply? - Rachel Amkreutz & Iwan van Beurden - The functional safety standards, IEC 61508, IEC 61511, and ANSI/ISA 84.01 each specify the Safety Integrity Level performance parameter of Safety Instrumented Functions.
What is PFDavg.? - Dr. William M. Goble - IEC 61508 requires probabilistic evaluation of each set of equipment used to reduce risk in a safety related system.
The Grandfather Clause and existing equipment - Dr. William Goble - International safety standards permit users to utilise a ‘Proven in Prior Use’ methodology to justify  SIS equipment ie., A Grandfather Clause ; but can users take on the responsibility? - Following a recent internally initiated audit of your facility’s SIS, you realized your systems do not meet the “grandfather clause” requirements described in ANSI/ISA 84.01.00. Now you face the task of bringing those systems into conformance with international safety standards. One of the questions your SIS team raised is, “Do our installed transmitters meet the ‘prior use’ requirements described in Section 11.5.3 of IEC 61511-1 – Requirements for the selection of components and subsystems based on prior use?” From the ISA and InTech.

SIL Determination Techniques Report, this excellent document covers;

• SIL Determination and the Safety Life Cycle
• SIL determination Techniques
• ALARP and Tolerable Risk Concept
• Semi-Quantitative Method – Fault Tree and Event Tree Analysis
• Safety Layer Matrix
• Calibrated Risk Graph
• Layer of Protection Analysis (LOPA)
• Evaluating the SIL Determination Options
• Process Industry Observations
• SIL Program Benefits

Functional Safety and Safety Integrity Levels - An application note from Bentley Nevada.

Recommended Guidelines for the application of IEC 61508 and IEC 61511 in the petroleum activities on the Norwegian Continental Shelf - This very comprehensive 55 page guideline from the Norwegian oil Industry association is very useful.