Definition:
Layer of Protection Analysis (LOPA) is a semi-quantitative method to evaluate risk reduction and assign Safety Integrity Levels (SIL). This has become more common over time. It is often done with the HAZOP in one large/long meeting and in a single tool.
LOPAs are typically done in a big spreadsheet. Sometimes with macros and various functions to auto-colored cells. There are also various software packages that manage HAZOPs and LOPAs.
LOPA strikes a balance between qualitative hazard identification and fully quantitative risk assessment, enabling efficient, defensible risk decision-making without exhaustive data
IEC 61511-3 Annex F is a great breakdown.
Key Points:
- LOPA reviews existing alarms, relief valves, and safety systems to ensure they meet independence and effectiveness criteria before assigning a risk reduction credit.
- Commonly used for SIL determination.
- Often managed via a software package or an Excel spreadsheet.
- Not technically part of the H&RA, but could be done with the HAZOP.
- Each independent protection layer (IPL) must be independent and auditable to be credited for risk reduction.
Example:
A HAZOP determines that a reactor is at risk from over pressurization from various scenarios. A LOPA determines that an independent high-pressure trip is required for the reactor system. The LOPA then examines the protection layers present and decides that a SIF is needed and its target SIL is SIL 2.
See also: HAZOP, H&RA, semi quantitative, IPL
Cited Source:
- IEC 61511-3 §F
- CCPS Guidelines for LOPA.