· Considering the safety of production data under GMP process, redundancy of data servers and C/S control architecture are adopted, ensuring redundant backup of production data while avoiding direct operation by operators on the servers.
· To address risks related to controllers and control modules, the network architecture employs redundant controller design, and the communication link between CPU and IO slave stations can choose either PROFIBUS-DP redundancy or PROFINET ring redundancy to enhance control link stability.
· The network architecture considers system scalability and reserves remote data interfaces (WINCC-OPC DA/UA).
· For ease of maintenance operations in the later stages of automation system, IO remote modules use ET200MP or ET200SP, supporting hot swap without shutdown for module replacement.
Item | Risk Factor (0-5) |
---|---|
Controller Failure | 5 |
I/O Module Failure | 2 |
Interface and Communication | 4 |
Data Loss | 5 |
Network Failure | 5 |
Instrument Failure | 2 |
Valve Failure | 2 |
Process Failure | 3 |
Electromagnetic Interference | 1 |