The importance of functional safety is increasing in order to prevent hazards and risks to people, machinery, and the environment from failure or error at the manufacturing site. However, designing the system and being certified under functional safety standards such as IEC 61508 requires a great deal of effort and time, which increases cost and could delay the product release significantly compared to non-safe development.
Functional Safety Solution
Renesas offers a one-stop functional safety solution comprised of general-purpose 32-bit microcontrollers (MCUs) and microprocessors (MPUs) with various software solution components.
- Fast: Reduces time for constructing functional safety systems and the certification process on MCUs/MPUs
- Easy: Can be implemented in various functional safety applications
- Reliable: Low risk for time to market by building on pre-certified components
Note: The software kits in yellow boxes are certified by TÜV Rheinland.
Solution Portfolio
| Solution | Product Family | RX | RA | RZ | |||
|---|---|---|---|---|---|---|---|
| Core | RXv2 | RXv3 | CM23 | CM33 | CM85 | CR52 | |
| Self-Test Software Kit check_box | check | check | check | check | check | check | |
| SIL3 System Software Kit check_box | check | check | check | ||||
| FSoE Application Software Kit check_box | check | check | check | ||||
| PROFIsafe Application Software Kit check_box | check | check | check | ||||
| CIP Safety Application Software Kit check_box | check | check | check | ||||
| Reference Document | check | check | check*1 | check*1 | check*1 | check*1 | |
| Reference Hardware | check | check | |||||
| IEC 61508 Certified Compilers check_box | check | check | *2 | *2 | *2 | *2 | |
check_box Certified
SIL = Safety Integrity Level, which is defined in the functional safety standard.
*1: Although the example describes using RX MCUs, it can be used for other MCUs; it is a technical document for the functional safety standard itself and not dedicated to a specific MCU/MPU Family.
*2: EWARM from IAR Systems ready
app_registrationDive into Renesas Functional Solution
Register to request for download access of Functional Safety Solution Kits. Read more to discover the detailed support of each solution kit.
Functional Safety System Examples
The following figures show examples of the system configuration for motor control + network control + functional safety.
Figure 1. Use RX or RA MCU in Functional Safety Part
Figure 2. Use RZ MPU in Functional Safety Part
- Self-Test Software Kit
- SIL3 System Software Kit
- Safety Network Solutions (FSoE, PROFIsafe, CIP Safety)
- Reference Document
- Reference Hardware
- IEC 61508 Certified Compilers
Solution Introduction
Self-Test Software Kit [RA/RX/RZ]
The Self-Test Software Kit provides a self-diagnostics software library for microcontroller, a complete safety manual, user guide and IEC61508 SIL3 Certificate test report certified by TÜV Rheinland Industrie Service GmbH (Germany). For safe system development, developers can select the information they require from the safety manual and make use of the self-diagnostics software library to alleviate the burden on microcontroller-level development to conform to functional safety.
The Self-Test Software Kit diagnoses the permanent failure of CPU, internal ROM, and internal RAM. Please refer to the reference document for permanent failure diagnosis of other modules and transient failure diagnosis.
Test Timing
At startup, interval execution after startup
Running of Test Condition
All execution or division execution
Development Tool (C Compiler)
Renesas CC-RX compiler for functional safety
IAR Embedded Workbench® for RX FS
IAR Embedded Workbench® for Arm FS
| Series | Compiler | Contents | Certificate | |
|---|---|---|---|---|
| RX200 series*1 | CC-RX compiler V3.01.00*11 | Image
IEC61508 Certified Software
| RX Family*11 | |
| RX600 series*2 | CC-RX compiler V3.01.00*12 | RX Family*12 | ||
| RX700 series*3 | CC-RX compiler V3.01.00 | RX Family | ||
| Cortex-M85 | RA8 series*4 | IAR-EWARM FS V9.50.3 | RA (CM85) | |
| Cortex-M33 | RA6 series*5 RA4 series*6 | IAR-EWARM FS V8.50.10*13 IAR-EWARM FS V9.20.3*14 IAR-EWARM FS V9.50.3*15 | RA (CM23, 33) | |
| Cortex-M23 | RA2 series*7 RA0 series*8 | |||
| Cortex-R52 | RZ/T series*9 RZ/N series*10 | IAR-EWARM FS V9.20.3 | RZ (CR52) | |
*1: RX24U, RX24T, RX230/RX231, RX23T, RX23W, RX23E-A, RX23E-B, RX26T
*2: RX671, RX660, RX66T, RX66N, RX651/RX65N, RX64M
*3: RX72M, RX72T, RX72N, RX71M
*4: RA8D1, RA8M1, RA8T1
*5: RA6M4, RA6M5, RA6E1, RA6E2, RA6T2, RA6T3
*6: RA4M2, RA4M3, RA4E1, RA4E2, RA4T1
*7: RA2A1, RA2A2, RA2L1, RA2E1, RA2E2, RA2E3
*8 RA0E1
*9: RZ/T2M, RZ/T2L
*10: RZ/N2L
*11: RX24U, RX24T, RX230/RX231, RX23T, RX23W, RX23E-A, RX23E-B, RX26T
*12: RX66T, RX66N, RX651/RX65N, RX64M, RX671, RX660
*13: RA6M4, RA6M5, RA4M2, RA4M3, RA2L1, RA2E1, RA2A1
*14: RA6M4, RA6M5, RA6E1, RA6E2, RA6T2, RA6T3, RA4M2, RA4M3, RA4E1, RA4E2, RA4T1, RA2L1, RA2E1, RA2E2, RA2A1
*15: RA6M4, RA6M5, RA6E1, RA6E2, RA6T2, RA6T3, RA4M2, RA4M3, RA4E1, RA4E2, RA4T1, RA2L1, RA2E1, RA2E2, RA2E3, RA2A1, RA2A2, RA0E1
SIL3 System Software Kit [RX/RZ]
The SIL3 System Software Kit provides Functional Safety Platform Software, a safety manual, a user guide, and an IEC61508 SIL3 certificate and test report* certified by TÜV Rheinland Industrie Service GmbH (Germany).
It also includes a configuration tool for evaluating the behavior of Functional Safety Platform Software on a PC, and a software development handbook for easy development.
Key Features of the Functional Safety Platform Software in this package:
- Perform MCU/MPU self-diagnostics and cross monitoring, which vastly reduces the development time and burden when building a redundant, dual safety MCU/MPU system.
- Execute user application software control.
- Software partitioning function between safety and non-safety applications for simplified re-certification and enabling the coexistence of safety software and non-safety software.
- Synchronous process possible on two MCUs//MPUs with multiple clock sources.
*Not included in the evaluation version of the SIL3 system software kit.
| Product | Compiler | Contents | Certificate |
|---|---|---|---|
| RX72M RX72T RX72N RX71M RX671*1 RX660*1 RX66T RX66N RX651/RX65N RX64M RX26T*1 RX24U RX24T RX230/RX231 RX23T RX23W RX23E-A RX23E-B*1 | CC-RX compiler V3.01.00 | Image
| RXv2 Core, RXv3 Core |
| RZ/T2M | IAR-EWARM FS V9.20.3 | RZ/T2M | |
| RZ/T2M (Parallel Use) | |||
| RZ/T2M (CPU Dedicated) | |||
| RZ/T2L RZ/N2L | RZ/T2L, N2L | ||
| RZ/T2H RZ/N2H | RZ/T2H, N2H |
*1: CC-RX compiler version only.
*2: SIL3 System Software Kit provides different programs for each MCU/MPU product group. Please specify the MCU/MPU product group and obtain the SIL3 System Software Kit for that group.
Safety Network Solutions
- FSoE Application Software Kit*1 [RX/RZ]
Enables FSoE functionality on the EtherCAT slave device*2.- Application control
- FSoE slave state management and data flow control
- Data transmission/reception control with other user applications
- Exchange of FSoE data with a pair of MCUs/MPUs
- Operational diagnosis of the FSoE Application Software itself
- Protocol stack
- Diagnosis of input Safety PDU and extraction of safety data (PDU: Protocol Data Unit)
- CRC calculation of input safety data and generation of Safety PDU for return
- Application control
- PROFIsafe Application Software Kit*3 [RX/RZ]
Software for realizing PROFIsafe functionalities on the PROFINET slave devices*2.- Application control
- PROFIsafe slave state management and data flow control
- Data transmission/reception control with other user applications
- Exchange PROFIsafe data between dual MCUs/MPUs
- Self-operation diagnosis of PROFIsafe application S/W
- Application control
- CIP Safety Application Software Kit*4 [RX/RZ]
Enables CIP Safety functionality on the EtherNet/IP slave device*2.- Application control
- CIP Safety target device state management and data flow control
- Data transmission/reception control with other user applications
- Exchange of CIP Safety data with a pair of MCU/MPUs
- Operational diagnosis of the CIP Safety Application Software itself
- Protocol stack
- Diagnosis of input Safety PDU and extraction of safety data (PDU: Protocol Data Unit)
- CRC calculation of input safety data and generation of Safety PDU for return
- Application control
*1: You must be a member of ETG in order to use.
*2: Please refer to the Industrial Ethernet & Fieldbus page for EtherCAT, PROFINET, and EtherNet/IP slave devices.
*3: You must have purchased PROFIsafe driver from Siemens in order to use.
*4: You must be a member of ODVA in order to use.
FSoE Application Software Kit
| Group | Compiler | Contents | Certificate |
|---|---|---|---|
| RX72M RX72T RX72N RX71M RX671*1 RX660*1 RX66T RX66N RX651/RX65N RX64M RX26T*1 RX24U RX24T RX230/RX231 RX23T RX23W RX23E-A RX23E-B*1 | CC-RX compiler V3.01.00 | Image
| RXv2 Core, RXv3 Core |
| RZ/T2M RZ/T2L RZ/N2L | IAR-EWARM FS V9.20.3 | CR52 |
Please make sure that you are a member of ETG.
*1: CC-RX compiler version only.
*2: Two sample applications for checking the operation of the FSoE Application Software are bundled.
- Network Communication IC Interface: Application for data exchange between network communication IC and RX MCU/RZ MPU
- Data I/O Interface: Application for input/output of safety data
PROFIsafe Application Software Kit
| Group | Compiler | Contents | Certificate |
|---|---|---|---|
| RX72M RX72T RX72N RX71M RX671*1 RX660*1 RX66T RX66N RX651/RX65N RX64M RX26T*1 RX24U RX24T RX230/RX231 RX23T RX23W RX23E-A RX23E-B*1 | CC-RX compiler V3.01.00 | Image
| RXv2 Core, RXv3 Core |
| RZ/T2M*5 RZ/T2L RZ/N2L | IAR-EWARM FS V9.20.3 | CR52 |
Please note that you need to purchase PROFIsafe Driver from Siemens. Refer to *4.
*1: CC-RX compiler version only.
*2: Two sample applications for checking the operation of the PROFIsafe Application Software are bundled.
- Network Communication IC Interface: Application for data exchange between the network communication IC and the RX MCU/RZ MPU
- Data I/O Interface: Application for input/output of safety data
*4: Please purchase and use the following software from SIEMENS.
- For RX: PROFIsafe Driver V2.2.3 for F-Slaves, which is included in PROFIsafe-Starterkit V3.5 with PROFIsafeprofile V2.6 MU1
- For RZ: PROFIsafe Driver V2.2.3 for F-Slaves, which is included in PROFIsafe-Starterkit V3.5.2 with PROFIsafeprofile V2.6 MU1
*5: Please use with Parallel Use SIL3 System Software Kit.
CIP Safety Software Kit
| Group | Compiler | Contents | Certificate |
|---|---|---|---|
RX72M RX671 RX26T | CC-RX compiler V3.01.00 | Image
| RXv2 Core, RXv3 Core |
| RZ/T2M RZ/T2L RZ/N2L | IAR-EWARM FS V9.20.3 | CR52 |
Please make sure that you are a member of ODVA.
*1: Two sample applications for checking the operation of the CIP Safety Application Software are bundled.
- Network Communication IC Interface: Application for data exchange between the network communication IC and the RX MCU/RZ MPU
- Data I/O Interface: Application for input/output of safety data
Reference Document
The Reference Document is a set of documents that provides guidelines for making certification documents and design tips for functional safety systems.
- How to write the document required to obtain the certification of the functional safety standard IEC61508.
- The technical know-how is necessary for the development of functional safety equipment.
Content is classified into five categories with various documents
- Motor Control System Documents
- Concept Phase Documents
- Safety Validation Documents
- MCU Internal Diagnosis Documents
- MCU External Diagnosis Documents
| MCU group | Compiler | Full Set | Note |
|---|---|---|---|
| - *1 | - *1 | RTK0EF0005Z21001ZJ | Full set includes 20 documents + 6 excel files |
*1: This document explains the technical method for dealing with functional safety; therefore, this document is not dependent on the MCU nor the compiler. The reference explanation is based on the RX63N MCU solution.
IEC 61508 Certified Compilers
For constructing software in the functional safety system, it is necessary to prove that the compiler generates valid code. Renesas offers an IEC 61508-certified C compiler for functional safety.
TÜV-SUD-certified IAR Embedded Workbench is also available.
| Product Name | Contents |
|---|---|
| C/C++ Compiler Package for RX Family | Image
|
| IEC 61508 Certification Kit for RX Compilers V3.01.00: RTCRX0000TC03ZNR V2.03.00: RTCRX0000TC02ZNR |
|
app_registrationDownload Packages
Register to request download access for Functional Safety Solution Kits
