Book a demo

Cut patent&paper research from weeks to hours with PatSnap Eureka AI!

Try now

IEC 61508 SIL 3 PLC Implementation — PatSnap Eureka

IEC 61508 SIL 3 PLC Implementation — PatSnap Eureka
IEC 61508 · Functional Safety

Implementing IEC 61508 SIL 3 in Programmable Logic Controllers

A patent-intelligence synthesis of the hardware architectures, fault-detection mechanisms, software toolchains, and safe parameterization methods used to achieve SIL 3 compliance in PLCs — drawn from 50+ patents across Siemens, ABB, Omron, and more.

Search SIL 3 Patents in Eureka Explore the Architecture
IEC 61508 SIL Levels and PFD Ranges: SIL 1 (10⁻¹–10⁻²), SIL 2 (10⁻²–10⁻³), SIL 3 (10⁻³–10⁻⁴), SIL 4 (10⁻⁴–10⁻⁵) Visual comparison of IEC 61508 Safety Integrity Levels by Probability of Failure on Demand (PFD). SIL 3 requires PFD in the range of 10⁻³ to 10⁻⁴, demanding stringent hardware fault tolerance, diagnostic coverage, and systematic integrity in PLCs. IEC 61508 — Safety Integrity Levels Probability of Failure on Demand (PFD) per SIL SIL 1 10⁻¹ – 10⁻² SIL 2 10⁻² – 10⁻³ SIL 3 10⁻³ – 10⁻⁴ ▲ THIS PAGE SIL 4 10⁻⁴ – 10⁻⁵ SIL 3 KEY REQUIREMENTS Hardware Fault Tolerance (HFT ≥ 1) Diagnostic Coverage ≥ 90% 1oo1D or 1oo2D Voting Architecture Systematic Integrity — SW & Parameterization PFD: 10⁻³ to 10⁻⁴ (IEC 61508)
By PatSnap Intelligence Team · · 14 min read
Verified by PatSnap Eureka Data
50+
Patents & disclosures analysed
10⁻⁴
SIL 3 minimum PFD target (IEC 61508)
7+
Jurisdictions covered (CN, JP, EP, US, DE, WO)
2026
Pending ABB parallel-execution patent
Hardware Architecture

Dual-CPU Voting Structures: The Canonical SIL 3 Foundation

The most foundational requirement for SIL 3 in PLCs is hardware architecture. Evidence across the patent dataset consistently points to dual-CPU implementations combined with programmable logic devices (PLDs) as the primary means of reaching SIL 3. As described by Shenyang Zhongke Bowei Automation Technology (2015), the controller adopts two SIL 3-certified CPUs to implement both a 1oo1D (one-out-of-one with diagnostics) and a 1oo2D (one-out-of-two with diagnostics) voting structure. In the 1oo1D configuration, a single CPU with sufficient diagnostic coverage can meet SIL 3, while the second CPU handles inter-controller safety communication; two such 1oo1D controllers can then be combined to realize redundant voting.

Upgrading an existing standard PLC to SIL 3 without replacing the entire platform is addressed by ABB's incremental SIL upgrade method (2010). This approach describes attaching a safety hardware unit — typically a circuit board incorporating a CPU, I/O interfaces using memory chips and FPGAs, local digital output channels, and memory shadowing functionality — to a standard controller via a backplane bus, elevating the composite system to SIL 1 through SIL 4 as defined by IEC 61508.

For safety-critical I&C systems, FPGA-implemented self-diagnosable modules with unified architecture, mutual diagnostics and self-diagnostics at both modular and system levels, and diversity technologies operating units across different clock domains directly serve SIL 3 hardware fault tolerance and diagnostic coverage requirements — as demonstrated by the Bakhmach (2023) data processing procedure patent.

ABB Switzerland's pending 2026 patent on parallel safety controller operation groups safety functions into two classes, each compiled and linked into a separate executable, then dispatched to two independent processors. This architecture directly addresses the IEC 61508 requirement that safety-related systems must operate correctly or fail only in predictable (safe) ways.

1oo1D
Single CPU with diagnostics — can reach SIL 3 alone
1oo2D
Two-CPU redundant voting — full SIL 3 redundancy
FPGA
PLD bridges dual CPUs and manages I/O communication
SIL 1–4
ABB add-on module elevates existing PLCs across all SIL levels
  • Dual-CPU with PLD is the canonical SIL 3 architecture
  • 1oo1D single-CPU can achieve SIL 3 with sufficient diagnostic coverage
  • Backplane-attached safety modules upgrade existing PLCs without full replacement
  • Parallel dual-processor execution scales SIL 3 to complex applications
  • FPGA-based self-diagnosable modules provide mutual and system-level diagnostics
Fault Detection & Diagnostics

Achieving High Diagnostic Coverage for SIL 3 PFD Compliance

Achieving SIL 3 requires not only redundancy but also high diagnostic coverage of dangerous failures. These patent-evidenced mechanisms address the full diagnostic stack — from safety state triggers to analog output verification.

Infineon Technologies · 2025

Safety State Trigger — Bypassing the Application Controller

A dedicated safety state trigger monitors all input signals from a supervisory controller, independently identifies fault signals, and bypasses the application controller entirely to send a safety state signal directly to the controlled device. The application controller itself does not need to meet the highest integrity level (SIL 4 or ASIL D), because the safety path is handled by the separate safety state trigger that does satisfy those requirements.

Reduces SIL burden on main CPU
Siemens Industry · 2025

Embedded I/O Safety Function — Reduced Safety Reaction Time

An internal evaluation component embedded directly within the I/O module receives input states, evaluates them, and executes safety functions locally — removing latency from the round-trip through the central controller. This embedded approach is particularly relevant in SIL 3 systems where the safety response time budget is tight.

Tight response time budget
Schneider Electric · 2023

Soft Error Aggregation — Proactive PFD Margin Management

This method aggregates soft error data from multiple safety PLCs, compares actual versus expected soft error rates per I/O module type, predicts future rates, and triggers actions when deviations exceed thresholds — enabling proactive management of latent failures before they accumulate to exceed SIL 3 PFD limits. Soft errors including bit flips in memory must be accounted for in the PFD calculation.

Latent failure prevention
Siemens · 2022

Fail-Safe Analog Output — Closed-Loop Readback Verification

A three-step verification loop: digital-to-analog conversion, readback conversion using fail-safe criteria into a fault-safe digital value, comparison with the original digital output, and a safety action if deviation or reliability criteria are violated. This closed-loop readback is a direct implementation of the IEC 61508 requirement for output monitoring in safety-related systems.

IEC 61508 output monitoring
Siemens · 2023

Fail-Safe Counter Module — SIL 3 / CAT 4 / PL e Rated

A standalone SIL 3 / CAT 4 / PL e rated module capable of monitoring speed, direction, and stop-position deviation independently of any external PLC logic. The module executes its Safety Monitoring functions entirely within its own firmware, reporting violations to the customer's safety control program, which then commands the safe state — demonstrating distributed safety functions with independent integrity paths.

SIL 3 / CAT 4 / PL e
Fisher-Rosemount Systems · 2009

Bypass & Override Coordination — Preventing Systematic Failures

Voting and input function block logic within the safety controller automatically activates bypass or override when a field device enters test mode, and automatically removes it when the device returns to normal — preventing spurious trips and avoiding the human error of forgetting to re-enable safety functions, both of which are systematic failure risks under IEC 61508.

Systematic failure prevention
PatSnap Eureka

Explore every SIL 3 diagnostic patent in one search

50+ patents from Siemens, ABB, Schneider, Infineon and more — mapped and analysed.

Find SIL 3 Diagnostic Patents →
Patent Intelligence

SIL 3 PLC Innovation: Patent Data Visualised

Analysis of 50+ patents across leading assignees and technical approaches reveals where the industry is investing in IEC 61508 SIL 3 compliance.

SIL 3 PLC Patent Filings by Leading Assignee

Siemens leads with the broadest portfolio across hardware modules, analog outputs, and safety circuits; ABB and Omron follow with complementary hardware and software toolchain focus areas.

SIL 3 PLC Patent Filings by Assignee: Siemens 28%, ABB 22%, Omron 18%, Fisher-Rosemount 14%, Schneider Electric 10%, Others 8% Distribution of IEC 61508 SIL 3 PLC patent filings across key industrial automation assignees based on PatSnap Eureka analysis of 50+ patents. Siemens holds the largest share at 28%, with ABB at 22% and Omron at 18%. 50+ patents Siemens — 28% ABB — 22% Omron — 18% Fisher-Rosemount — 14% Schneider Electric — 10% Others — 8% Source: PatSnap Eureka · 50+ SIL 3 PLC patents

Dominant Technical Approaches in SIL 3 PLC Patents

Dual/multi-CPU redundant architectures account for the largest share of technical innovation, followed by fault detection mechanisms and software verification toolchains.

SIL 3 Technical Approaches: Dual/Multi-CPU Architecture 35%, Fault Detection & Safe State 28%, Safety Program Design & Verification 22%, Fieldbus Safety Communication 15% Breakdown of dominant technical approaches across 50+ IEC 61508 SIL 3 PLC patents analysed via PatSnap Eureka. Redundant hardware architectures lead innovation investment, with software toolchains and communication safety as growing areas. 40% 30% 20% 10% 0% 35% 28% 22% 15% Dual/Multi-CPU Architecture Fault Detection & Safe State Safety Program Design & V&V Fieldbus Safety Communication Source: PatSnap Eureka · Patent landscape analysis · 50+ filings

Want the full SIL 3 patent landscape with claim-level analysis?

Run a Deep SIL 3 Patent Search →
Software & Systematic Integrity

Safety Program Design, Verification, and Parameterization

IEC 61508 SIL 3 imposes systematic integrity requirements on software — including tool-supported design, formal verification, and change management. These patents address the full development lifecycle.

🔍

Automated Safety Program Evaluation (Omron, 2017)

An evaluation system extracts instructions related to safe operation from the safety program, maps input signals to output signals, allows the engineer to define expected output values for safe operation, and automatically evaluates whether the program's computed outputs match expectations for all defined input transitions. This automated functional safety evaluation supports the systematic V&V process required by SIL 3.

⚙️

Safety Program Generation Assistance (Omron, 2020)

Generates a safety program by acquiring an input/output setting correlating each input device with the output devices that respond to it, and automatically generating the safety program that transitions output device operational states to safe states whenever the defined input signal changes occur. This reduces manual coding errors — a key source of systematic failures at SIL 3.

🔒

Safe Parameterization with Read-Back Verification (KW-Software, 2012)

Parameter values are selected or entered via an operator interface, transmitted to the device, stored in memory, and then read back at least once for verification of integrity — eliminating the systematic risk of data corruption during parameter download. This read-back requirement is explicitly mandated under SIL 3 parameter integrity verification per IEC 61508.

🛡️

DCS Integration with Physical Key-Lock (State Grid Liaoning, 2016)

A practical SIL 3 implementation guide for integrating a furnace safety system (FSS) and turbine emergency trip system (ETS) with a distributed control system via OPC communication. The procedure includes a physical key-lock mechanism to prevent unauthorized modification of configuration and programs — directly addressing SIL 3 requirements for configuration management and access control.

🔒
Unlock 2 More Software Safety Insights
See how Mitsubishi Electric automates SIL compliance checks and how Schneider Electric uses AI neural networks to generate safety programs.
Mitsubishi safety diagnostic device Schneider AI/ANN program generation + full patent analysis
Explore in PatSnap Eureka →
Innovation Landscape

Key Players and Their SIL 3 Innovation Focus Areas

Based on frequency and depth of relevant filings, these are the leading assignees in IEC 61508 SIL 3 PLC innovation — each with a distinct technical focus area.

Assignee Primary Focus Area Representative Patent Year Jurisdiction
Siemens AG / Industry Fail-safe modules, analog output verification, embedded I/O safety, safety circuits with PLDs Functional Safety High-Speed Fail-Safe Counter Module (SIL 3 / CAT 4 / PL e) 2023 CN, US
ABB AG / Switzerland SIL upgrade retrofit, parallel safety controller operation, adaptive safety supervision Method for Increasing the Safety Integrity Level of a Control System 2010–2026 CN, EP, WO
Omron Corporation Safety program generation, simulation support, functional safety evaluation systems Evaluation System for Safety Programs (automated V&V) 2017, 2020 JP, US, EP
Fisher-Rosemount / Emerson Safety & process control integration, field device state management, intrusion prevention Coordinating Field Device Operations Using Bypass and Override 2009 CN
Schneider Electric Systems USA Soft error management for SIS, AI/ML-driven safety logic generation Soft Error Aggregation Method for Safety Instrumented Systems 2023, 2025 JP, CN
Infineon Technologies Safety state trigger architectures that bypass application controller Safety State Trigger — Dedicated Safety Path Component 2025 WO (pending)
Shenyang Zhongke Bowei Dual-CPU 1oo1D/1oo2D SIL 3 PLC architectures for Chinese industrial automation High-Integrity PLC Controller Based on Functional Safety 2015 CN
Mitsubishi Electric Safety program diagnostic devices, device-level safety level assignment Safety Diagnostic Device and Method for Safety Control Program 2013 JP
🔒
See All Assignees & Full Patent Details
Access complete patent metadata, claim analysis, and competitive positioning for all SIL 3 PLC assignees in PatSnap Eureka.
Shenyang Zhongke Bowei Mitsubishi Electric + KW-Software, Bakhmach, Toyoda Koki
Access Full Assignee Analysis →

Track SIL 3 patent activity across all assignees in real time

PatSnap Eureka monitors new filings from Siemens, ABB, Omron, Schneider and 18,000+ other innovators — automatically.

Monitor IEC 61508 Innovation →
Frequently asked questions

IEC 61508 SIL 3 PLC Implementation — key questions answered

Still have questions about IEC 61508 SIL 3 implementation? Let PatSnap Eureka search the patents for you.

Ask Eureka About SIL 3 →
PatSnap Eureka

Accelerate Your IEC 61508 SIL 3 R&D with Patent Intelligence

Join 18,000+ innovators already using PatSnap Eureka to accelerate their R&D. Search 50+ SIL 3 PLC patents, track assignees, and validate your architecture decisions — instantly.

References

  1. High-Integrity PLC Controller Based on Functional Safety — Shenyang Zhongke Bowei Automation Technology, 2015
  2. Safety State Trigger — Infineon Technologies, 2025 (pending)
  3. Method for Increasing the Safety Integrity Level of a Control System — ABB AG, 2010
  4. Method for Operating a Safety Controller — Parallelization — ABB Switzerland, 2026 (pending)
  5. Soft Error Aggregation Method for Detection and Reporting of Risks in Safety Instrumented System — Schneider Electric Systems USA, 2023
  6. Functional Safety High-Speed Fail-Safe Counter Module — Siemens AG, 2023
  7. Method and System for Providing Analog Output Values in a Fail-Safe Manner — Siemens AG, 2022
  8. Module with Embedded Safety Function to Decrease Safety Reaction Time — Siemens Industry, Inc., 2025
  9. Coordinating Field Device Operations Using Bypass and Override in Process Control and Safety Systems — Fisher-Rosemount Systems, 2009
  10. Method and Apparatus for Safe Parameter Setting of Electronic Devices — KW-Software GmbH, 2012
  11. SIL3 Control Method in DCS Systems — State Grid Liaoning Electric Power Research Institute, 2016
  12. Evaluation System, Non-Transitory Storage Medium Storing Thereon Evaluation Program, and Evaluation Method — OMRON Corporation, 2017
  13. Information Processing Apparatus, Information Processing Method, and Computer Readable Storage Medium — OMRON Corporation, 2020
  14. Safe PLC, Sequence Program Creation Support Software, and Sequence Program Judgment Method — Toyoda Koki Kabushiki Kaisha, 2012
  15. Safety Diagnostic Device and Safety Diagnostic Method for Safety Control Program — Mitsubishi Electric, 2013
  16. Model-Based Safety Instrumented System Programming Using Artificial Neural Networks — Schneider Electric Systems USA, 2025
  17. Data Processing Procedure for Safety Instrumentation and Control (I&C) Systems — Bakhmach, Ievgenii, 2023
  18. Intrusion Prevention for Safety Instrumented Process Control Systems — Fisher-Rosemount Systems, 2009
  19. Safety Circuit for Outputting Switching Signals — Siemens Aktiengesellschaft, 2011
  20. IEC — International Electrotechnical Commission (IEC 61508 standard body)
  21. ISA — International Society of Automation (functional safety standards and guidance)

All data and statistics on this page are sourced from the references above and from PatSnap's proprietary innovation intelligence platform.

Ask PatSnap Eureka
Ask PatSnap Eureka
AI innovation intelligence · always on
Ask anything about IEC 61508 SIL 3 PLC implementation.
PatSnap Eureka searches patents and research to answer instantly.
Try asking
Powered by PatSnap Eureka

© 2026 PatSnap. All rights reserved. Legal | Privacy Policy | Do Not Sell or Share My Personal Information | Modern Slavery Act Transparency Statement