The importance of functional safety is increasing in order to prevent hazards and risks to people, machinery, and the environment from failure or error at the manufacturing site. However, designing the system and being certified under functional safety standards such as IEC 61508 requires a great deal of effort and time, which increases cost and could delay the product release significantly compared to non-safe development.
Functional Safety Solution
Renesas offers a one-stop functional safety solution comprised of general-purpose 32-bit microcontrollers (MCUs) and microprocessors (MPUs) with various software solution components.
- Fast: Reduces time for constructing functional safety systems and certification process on MCUs/MPUs
- Easy: Can be implemented in various functional safety applications
- Reliable: Low risk for time to market by building on pre-certified components
Note: The software kits in yellow boxes are certified by TÜV Rheinland.
Solution Portfolio
| Solution | Product Family | RX | RA | RZ | |||||
|---|---|---|---|---|---|---|---|---|---|
| Core | RXv1 | RXv2 | RXv3 | CM4 | CM23 | CM33 | CM85 | CR52 | |
| Self-Test Software Kit check_box | check | check | check | check | check | check | check | check | |
| SIL3 System Software Kit check_box | check | check | check | ||||||
| FSoE Application Software Kit check_box | check | check | check | ||||||
| PROFIsafe Application Software Kit check_box | check | check | check | ||||||
| Reference Document | check | check | check | check*1 | check*1 | check*1 | check*1 | check*1 | |
| Reference Hardware | check | check | check | ||||||
| IEC 61508 Certified Compilers check_box | check | check | check | *2 | *2 | *2 | *2 | *2 | |
check_box Certified
SIL = Safety Integrity Level which is defined in the functional safety standard.
*1: Although the example describes using RX MCUs, it can be used for other MCUs; it is a technical document for the functional safety standard itself and not dedicated to a specific MCU/MPU Family.
*2: EWARM from IAR Systems ready
app_registrationEvaluation Software and Reference Document
Register for complimentary evaluation software and reference document:
Functional Safety System Examples
The following figures show examples of the system configuration for motor control + network control + functional safety.
Figure 1. Use RX or RA MCU in Functional Safety Part
Figure 2. Use RZ MPU in Functional Safety Part
- Self-Test Software Kit
- SIL3 System Software Kit
- FSoE Application Software Kit & PROFIsafe Application Software Kit
- Reference Document
- Reference Hardware
- IEC 61508 Certified Compilers
Solution Introduction
Self-Test Software Kit [RA/RX/RZ]
The Self-Test Software Kit provides a self-diagnostics software library for microcontroller, a complete safety manual, user guide and IEC61508 SIL3 Certificate test report certified by TÜV Rheinland Industrie Service GmbH (Germany). For safe system development, developers can select the information they require from the safety manual and make use of the self-diagnostics software library to alleviate the burden on microcontroller-level development to conform to functional safety.
The Self-Test Software Kit diagnoses the permanent failure of CPU, internal ROM, and internal RAM. Please refer to the reference document for permanent failure diagnosis of other modules and transient failure diagnosis.
Test Timing
At start up, interval execution after start up
Running of Test Condition
All execution or division execution
Development Tool (C Compiler)
Renesas CC-RX compiler for functional safety
IAR Embedded Workbench® for RX FS
IAR Embedded Workbench® for Arm FS
| Series | Compiler | Contents | Certificate | |
|---|---|---|---|---|
| RX100 series*1 | CC-RX compiler V2.03.00 | Image
IEC61508 Certified Software
| ||
| IAR-EWRX compiler V3.10.5 | RX100*14 | |||
| RX200 series*2 | CC-RX compiler V3.01.00 | RXv2 Core, RXv3 Core | ||
| IAR-EWRX compiler V4.14.2 | RX200 | |||
| RX600 series*3 | CC-RX compiler V3.01.00 | RXv2 Core, RXv3 Core*16 | ||
| IAR-EWRX compiler V4.14.2 | RX600*17 | |||
| RX700 series*4 | CC-RX compiler V3.01.00 | RXv2 Core, RXv3 Core | ||
| IAR-EWRX compiler V4.14.2 | RX700 | |||
| Cortex-M85 | RA8 series*5 | IAR-EWARM FS V9.50.3 | RA (CM85) | |
| Cortex-M4 | RA6 series*6 RA4 series*7 | IAR-EWARM V8.22.3 | RA (CM4) | |
| Cortex-M33 | RA6 series*8 RA4 series*9 | IAR-EWARM FS V8.50.10*13 IAR-EWARM FS V9.20.3 | RA (CM23, 33) | |
| Cortex-M23 | RA2 series*10 | |||
| Cortex-R52 | RZ/T series*11 RZ/N series*12 | IAR-EWARM FS V9.20.3 | RZ (CR52) | |
*1: RX111, RX113, RX130, RX140
*2: RX24U, RX24T, RX230/RX231, RX23T, RX23W, RX23E-A
*3: RX671, RX660, RX66T, RX66N, RX651/RX65N, RX64M
*4: RX72M, RX72T, RX72N, RX71M
*5: RA8D1, RA8M1, RA8T1
*6: RA6M1, RA6M2, RA6M3, RA6T1
*7: RA4M1
*8: RA6M4, RA6M5, RA6E1, RA6E2, RA6T2, RA6T3
*9: RA4M2, RA4M3, RA4E1, RA4E2, RA4T1
*10: RA2A1, RA2L1, RA2E1, RA2E2
*11: RZ/T2M, RZ/T2L
*12: RZ/N2L
*13: For RA6E1, RA6T2, RA4E1, and RA2E2, use V9.20.3
*14: RX111, RX113, RX130
*15: RX140
*16: RX66T, RX66N, RX651/RX65N, RX64M, RX671, RX660
*17: RX66T, RX66N, RX651/RX65N, RX64M
app_registrationComplimentary Software for Product Version
Register for complimentary software:
SIL3 System Software Kit [RX/RZ]
The SIL3 System Software Kit provides Functional Safety Platform Software, a safety manual, user guide and IEC61508 SIL3 certificate and test report* certified by TÜV Rheinland Industrie Service GmbH (Germany).
It also includes a configuration tool for evaluating the behavior of Functional Safety Platform Software on a PC, and a software development handbook for easy development.
Key Features of the Functional Safety Platform Software in this package:
- Perform MCU/MPU self-diagnostics and cross monitoring, which vastly reduce the development time and burden when building redundant, dual safety MCU/MPU system.
- Execute user application software control.
- Software partitioning function between safety and non-safety application for simplified re-certification and enabling coexistence of safety software and non-safety software.
- Synchronous process possible on two MCUs//MPUs with multiple clock sources.
*Not included in the evaluation version of the SIL3 system software kit.
| Product | Compiler | Commercial Version*1 | Contents | Certificate | |
|---|---|---|---|---|---|
| RX72M RX72T RX72N RX71M RX671 RX660 RX66T RX66N RX651/RX65N RX64M RX24U RX24T RX230/RX231 RX23T RX23W RX23E-A | CC-RX compiler V3.01.00 | RTK0EF0061F22002SJ *2 | Image
Commercial Version
| Evaluation Version
| RXv2 Core, RXv3 Core |
| IAR-EWRX compiler V4.14.2 | RTK0EF0062F22002SJ *2 | ||||
| RZ/T2M | IAR-EWARM FS V9.20.3 | RTK0EF0103F21001SJ | RZ/T2M | ||
| RZ/T2M (Parallel Use) | RTK0EF0153F21001SJ | RZ/T2M (Parallel Use) | |||
| RZ/T2L RZ/N2L | RTK0EF0154F21001SJ | RZ/T2L, N2L | |||
*1: Commercial version requires a license agreement. Please contact Sales to purchase.
*2: SIL3 System Software Kit provides different programs for each MCU/MPU product group. Please specify the MCU/MPU product group and obtain the SIL3 System Software Kit for that group.
app_registrationEvaluation Version
Register for complimentary evaluation software:
Safety Network Application Software Kits
Renesas offers safety network protocol solutions that can be used with the SIL3 System Software Kit.
- FSoE Application Software Kit*1 [RX/RZ]
Enables FSoE functionality on the EtherCAT slave device*2.- FSoE Slave Control
- FSoE slave state management and data flow control
- Data transmission / reception control with other user applications
- Exchange of FSoE data with a pair of MCUs
- Operation diagnosis of FSoE Application Software itself
- FSoE Protocol Stack
- Diagnosis of input Safety PDU and extraction of safety data (PDU: Protocol Data Unit)
- CRC calculation of input safety data and generation of Safety PDU for return
- FSoE Slave Control
- PROFIsafe Application Software Kit*1 [RX/RZ]
Software for realizing PROFIsafe functionalities on the PROFINET slave devices*2.- PROFIsafe Slave Control
- PROFIsafe slave state management and data flow control
- Data transmission/reception control with other user applications
- Exchange PROFIsafe data between dual MCUs
- Self operation diagnosis of PROFIsafe application S/W
- PROFIsafe Slave Control
*1: In order to use Renesas' Safety Network Protocol Solution, you must meet the following requirements:
- You are a member of ETG.
- You have purchased PROFIsafe driver from Siemens.
*2: Please refer to the Industrial Ethernet & Fieldbus page for EtherCAT/PROFINET slave devices.
FSoE Application Software Kit
| Group | Compiler | Commercial Version*1 | Contents | Certificate | |
|---|---|---|---|---|---|
| RX72M RX72T RX72N RX71M RX671 RX660 RX66T RX66N RX651/RX65N RX64M RX24U RX24T RX230/RX231 RX23T RX23W RX23E-A | CC-RX compiler V3.01.00 | RTK0EF0080F21001SJ | Image
Commercial Version
|
| RXv2 Core, RXv3 Core |
| IAR-EWRX compiler V4.14.2 | RTK0EF0081F21001SJ | ||||
| RZ/T2M RZ/T2L RZ/N2L | IAR-EWARM FS V9.20.3 | RTK0EF0129F21001SJ | CR52 | ||
Please make sure that you are member of ETG.
*1: Commercial version requires a license agreement. Please contact Sales to purchase.
*2: Two sample applications for checking the operation of the FSoE Application Software are bundled.
- Network Communication IC Interface: Application for data exchange between network communication IC and RX MCU
- Data I/O Interface: Application for input/output of safety data
app_registrationEvaluation Version
Register for complimentary evaluation software and reference document:
PROFIsafe Application Software Kit
| Group | Compiler | Commercial Version*1 | Contents | Certificate | |
|---|---|---|---|---|---|
| RX72M RX72T RX72N RX71M RX671 RX660 RX66T RX66N RX651/RX65N RX64M RX24U RX24T RX230/RX231 RX23T RX23W RX23E-A | CC-RX compiler V3.01.00 | RTK0EF0100F21001SJ | Image
Commercial Version
|
| RXv2 Core, RXv3 Core |
| IAR-EWRX compiler V4.14.2 | RTK0EF0101F21001SJ | ||||
| RZ/T2M*4 RZ/T2L RZ/N2L | IAR-EWARM FS V9.20.3 | RTK0EF0172F21001SJ | CR52 | ||
Please note that you need to purchase PROFIsafe Driver from Siemens. Refer to *3.
*1: Commercial version requires a license agreement. Please contact Sales to purchase.
*2: Two sample applications for checking the operation of the PROFIsafe Application Software are bundled.
- Network Communication IC Interface: Application for data exchange between network communication IC and RX MCU
- Data I/O Interface: Application for input/output of safety data
*3: Please purchase and use the following software from SIEMENS.
- For RX: PROFIsafe Driver V2.2.2 for F-Slaves, which is included in PROFIsafe-Starterkit V3.5 with PROFIsafeprofile V2.6 MU1
- For RZ: PROFIsafe Driver V2.2.3 for F-Slaves, which is included in PROFIsafe-Starterkit V3.5.2 with PROFIsafeprofile V2.6 MU1
*4: Please use with Parallel Use SIL3 System Software Kit.
app_registrationEvaluation Version
Register for complimentary evaluation software and reference document:
Reference Document
The Reference Document is a set of documents that provides guidelines for making certification documents and design tips for functional safety systems.
- How to write the document required to obtain the certification of the functional safety standard IEC61508.
- The technical know-how necessary for the development of functional safety equipment.
Content is classified into five categories with various documents
- Motor Control System Documents
- Concept Phase Documents
- Safety Validation Documents
- MCU Internal Diagnosis Documents
- MCU External Diagnosis Documents
| MCU group | Compiler | Full Set*2 | Note |
|---|---|---|---|
| - *1 | - *1 | RTK0EF0005Z21001ZJ | Full set includes 20 documents + 6 excel files |
*1: This document explains the technical method for dealing with functional safety, therefore this document is not dependent on MCU nor compiler.
*2: Commercial version requires a license agreement. Please contact Sales to purchase.
app_registrationComplimentary Digest Version
Register for complimentary evaluation software and reference document:
Reference Hardware [RX]
The Industrial Automation Functional Safety Reference Board is built based on Renesas' experience in safety system specifications and its implementation, and comes from detailed design, safety analysis, and diagnostics on a dual structure microcontroller system. By using this reference board as a template, the customer will be able to reduce system development time.
Since the terminals of each MCU are connected on both ends of the board, customers can extend the board specifications to match the product specifications.
- By connecting with a network communication board, the customer can build a development environment for software with safety network connectivity.
- When adding a motor drive controller board, the customer can build a software development environment for motor drive system with safety network connectivity.
| Product name | Contents | MCU |
|---|---|---|
| Industrial Automation Functional Safety Reference Board |
| RX72N-RX72N Dual MCU |
| RX71M-RX651 Dual MCU | ||
| RX111-RX111 Dual MCU |
Board with Two RX72N MCUs
Board with RX71M and RX651 MCUs
Board with Two RX111 MCUs
IEC 61508 Certified Compilers
For constructing software in the functional safety system, it is necessary to prove that the compiler generates valid code. Renesas offers an IEC 61508 certified C compiler for functional safety.
TÜV-SUD certified IAR Embedded Workbench also available.
| Product Name | Contents |
|---|---|
| C/C++ Compiler Package for RX Family | Image
|
| IEC 61508 Certification Kit for RX Compilers V3.01.00: RTCRX0000TC03ZNR V2.03.00: RTCRX0000TC02ZNR |
|
