D
Derek Potter
- Jan 1, 1970
- 0
I wonder if anyone can help me? 
I am trying to find out what the current "best practice" would be
apropos fire hazard protection in a particular situation as follows:
The unit is a (small) fire alarm, it has a 12V external alarm line.
The curreent level there is normally 120mA but because it is external,
there is a significant risk of someone interfering with the wiring and
shorting it out. The 12V is essentially unlimited current but the
circuit is protected against gross faults by a 1A fuse. The external
alarm driver is a TO92l MOSFET, Ron ~2 ohms, which will obviously rise
as it heats up, so I can envisage it taking a couple of amps for
several seconds before the MOSFET literally burns out. Whilst most
small semiconductor burn-outs take place harmlessly in the air above
the PCB, it is obviously a fire hazard, albeit a remote one. To
provide some protection my colleagues have suggested a semiconductor
current limit.
My question is what we should be aiming to do - it is common enough
for people to talk of "single component failure" i.e. good practice
requires that a hazard will not be caused by any single component
failure. Unfortunately I believe there are strings attached: IIRC,
generic European and American standards specify that potentially
hazardous faults should be monitored or discoverable through routine
testing. In addition I believe they only count if they are spontaneous
internal component failures, not external conditions caused bu human
interference or bad installation.
The problem is thus that the current limit could fail spontaneously -
a single component failure - and this not be detected. So we are back
to square one, with the system vulnerable if someone causes an
external short. This causes an internal burn-out which may be a slight
fire hazard. All in all, the frequency of such fires occuring is
probably incalculably small, but I think the system could escape the
"single component failure" criterion if this is applied strictly.
This query has appeared in alt.electronics. Please note that I am not
asking for circuit suggestions as I can design circuits in my sleep
(and frequently do). I have had a string of circuit suggestions
ranging from relying on a PCB trace as a fuse, through to using a PTC
thermistor as well as the current limit, all of which are unacceptable
for various reasons. Clearly such additional protection would be "belt
and braces" but, in any case, such specific circuit suggestions only
reflect one individual's ingenuity, they do not elucidate the safety
design *critera* which, in the worst possible scenario could be
invoked in court under the heading of "due care"... I just want to
know what regulations, recognised best practice, and general standards
(US and Europe) have to say about this kind of situation: where
multiple faults are needed to cause a hazard but the faults may not
meet the criteria of being
1 spontaneous
2 internal
3 monitored
TIA - remember, no circuit suggestions, thank you.
I am trying to find out what the current "best practice" would be
apropos fire hazard protection in a particular situation as follows:
The unit is a (small) fire alarm, it has a 12V external alarm line.
The curreent level there is normally 120mA but because it is external,
there is a significant risk of someone interfering with the wiring and
shorting it out. The 12V is essentially unlimited current but the
circuit is protected against gross faults by a 1A fuse. The external
alarm driver is a TO92l MOSFET, Ron ~2 ohms, which will obviously rise
as it heats up, so I can envisage it taking a couple of amps for
several seconds before the MOSFET literally burns out. Whilst most
small semiconductor burn-outs take place harmlessly in the air above
the PCB, it is obviously a fire hazard, albeit a remote one. To
provide some protection my colleagues have suggested a semiconductor
current limit.
My question is what we should be aiming to do - it is common enough
for people to talk of "single component failure" i.e. good practice
requires that a hazard will not be caused by any single component
failure. Unfortunately I believe there are strings attached: IIRC,
generic European and American standards specify that potentially
hazardous faults should be monitored or discoverable through routine
testing. In addition I believe they only count if they are spontaneous
internal component failures, not external conditions caused bu human
interference or bad installation.
The problem is thus that the current limit could fail spontaneously -
a single component failure - and this not be detected. So we are back
to square one, with the system vulnerable if someone causes an
external short. This causes an internal burn-out which may be a slight
fire hazard. All in all, the frequency of such fires occuring is
probably incalculably small, but I think the system could escape the
"single component failure" criterion if this is applied strictly.
This query has appeared in alt.electronics. Please note that I am not
asking for circuit suggestions as I can design circuits in my sleep
(and frequently do). I have had a string of circuit suggestions
ranging from relying on a PCB trace as a fuse, through to using a PTC
thermistor as well as the current limit, all of which are unacceptable
for various reasons. Clearly such additional protection would be "belt
and braces" but, in any case, such specific circuit suggestions only
reflect one individual's ingenuity, they do not elucidate the safety
design *critera* which, in the worst possible scenario could be
invoked in court under the heading of "due care"... I just want to
know what regulations, recognised best practice, and general standards
(US and Europe) have to say about this kind of situation: where
multiple faults are needed to cause a hazard but the faults may not
meet the criteria of being
1 spontaneous
2 internal
3 monitored
TIA - remember, no circuit suggestions, thank you.
