Safety Systems

ESD Valve Design

Design and specify emergency shutdown valves with proper actuator selection, fail-safe action, partial stroke testing, and SIL-rated assemblies per IEC 61511 and API 6D.

Launch Calculator Actuator Sizing

IEC 61511

Process Safety

SIS design standard for process industry

Fail-Safe

De-energize to Trip

Fail-closed on loss of signal/supply

Partial Stroke Test

10-30% Travel

Online proof test without full closure

Contents

Use this guide when:

  • Specifying ESD valves for safety systems
  • Sizing actuators for fail-safe operation
  • Implementing partial stroke test programs
  • Verifying SIL capability of valve assemblies

1. Overview

Emergency shutdown (ESD) valves are the final control elements in safety instrumented systems (SIS). When a hazardous condition is detected, the ESD valve isolates process sections to prevent escalation of an incident. The valve must operate reliably on demand after potentially years of inactivity, making design, testing, and maintenance critical to safety system integrity.

Pipeline Isolation

Mainline Block Valves

Automated block valves on pipelines for rapid isolation during leak detection or overpressure.

Process Isolation

Facility ESD

Inlet and outlet isolation at compressor stations, gas plants, and processing facilities.

Wellhead Safety

SSV / SSSV

Surface safety valve and subsurface safety valve for well control and isolation.

Fire & Gas

Depressuring

Blowdown valves that open on fire detection to depressure equipment and prevent BLEVE.

Critical reliability requirement: ESD valves may sit in the open position for months or years between demands. When called upon, they must close reliably and completely. This "low demand" operating mode makes dangerous undetected failures the primary concern, and drives the need for periodic proof testing.

2. Valve Types for ESD Service

The valve body style affects closure time, seat integrity, flow capacity, and maintenance requirements. The two dominant types for ESD service are ball valves and gate valves.

Valve TypeClosure TimeSeat IntegrityBest For
Trunnion ballFast (2-10 sec)Excellent (soft seat) / Good (metal seat)Gas pipelines, process ESD, high-pressure
Floating ballFast (2-10 sec)Excellent (soft seat)Small bore, low-medium pressure
Through-conduit gateModerate (5-30 sec)Very good (double block)Pipeline mainline block valves, pigging
Butterfly (triple offset)Very fast (1-5 sec)Good (metal seat)Large bore, low-pressure, fast closure
Valve Selection Criteria for ESD: 1. Tight shutoff: API 598 Rate A (zero leakage) or ISO 5208 Rate A required for most ESD applications 2. Fire-safe: API 607 fire test certification required Soft seats must demonstrate acceptable leakage after fire exposure 3. Fugitive emissions: API 641 / ISO 15848 certification for stem seal and body joint emissions 4. SIL capability: Manufacturer must provide SIL capability data (failure rates, failure modes) per IEC 61508 and exida/TUV certification 5. Closure time: Must achieve full closure within the process safety time specified in the SRS

3. Actuator Selection & Sizing

The actuator converts stored energy (compressed air, hydraulic pressure, or spring force) into mechanical motion to operate the valve. For ESD service, the actuator must provide sufficient torque or thrust to close the valve against maximum differential pressure with an adequate safety margin.

Actuator Torque Requirement (Ball Valve): T_required = SF × max(T_breakaway, T_running, T_end) Where: T_breakaway = Torque to initiate movement from open T_running = Torque during travel (dynamic friction) T_end = Torque to seat the ball against pressure SF = Safety factor (1.25-1.50 typical) Valve manufacturer provides torque values at MAWP. Actuator must deliver T_required at minimum supply pressure (for pneumatic) or minimum spring force. Pneumatic Actuator Output: Double-acting: T = P × A × r (both directions) Spring-return: T_spring = k × x (at fail position) T_air = P × A × r (at normal position) The spring must provide sufficient torque to close the valve at minimum spring compression (end of stroke).

Actuator Types for ESD

Actuator TypeFail ActionResponse TimeApplication
Pneumatic spring-returnSpring closes on air loss1-30 secondsMost common for ESD, simple, reliable
Pneumatic double-acting + springSpring closes on air loss1-30 secondsLarge valves needing high opening torque
Hydraulic spring-returnSpring closes on hydraulic loss1-15 secondsSubsea, high-pressure, large bore
Electro-hydraulicSpring or accumulator2-30 secondsRemote locations, no air supply available
Gas-over-oilSpring return2-30 secondsPipeline mainline valves, remote sites

4. Fail-Safe Design Principles

Fail-safe design ensures that any single failure of the ESD system drives the valve to its safe position. The safe position is determined by the process hazard analysis and is typically fail-closed (FC) for isolation valves and fail-open (FO) for depressuring valves.

Fail-Safe Design Requirements: 1. Loss of instrument air → Valve goes to safe position 2. Loss of electrical signal → Solenoid de-energizes 3. Loss of power supply → System trips to safe state 4. Broken instrument tubing → Air vents, spring closes 5. Solenoid failure → Fails de-energized (safe) De-energize to Trip (Standard Practice): Normal operation: Solenoid energized, air to actuator Trip condition: Solenoid de-energized, air vents Spring drives valve to fail-safe position This ensures that ANY failure (power, signal, air, solenoid) results in the valve going to the safe state.
Solenoid valve selection: The solenoid valve is the interface between the SIS logic solver and the actuator. For SIL-rated applications, use redundant solenoids (1oo2 for de-energize to trip) or SIL-certified solenoid valves. The solenoid must be sized for the actuator air volume and required exhaust time.

5. Partial Stroke Testing

Partial stroke testing (PST) verifies that the ESD valve can move from its normal operating position without requiring a full process shutdown. The valve is stroked 10-30% of its travel, confirming that the valve is not stuck and the actuator is functional.

Partial Stroke Test Benefits: 1. Detects stuck valves (most common failure mode) 2. Extends proof test interval (reduces shutdowns) 3. PFD credit: Reduces dangerous undetected failure rate 4. Online test: No process interruption required PFD Improvement from PST: Without PST: PFD depends on full proof test interval With monthly PST: PFD can be reduced by 50-70% This may allow extending full test interval from 1 year to 2-5 years PST Coverage: Detects: Stuck valve, broken spring, seized actuator Does NOT detect: Seat leakage, partial blockage Typical PST diagnostic coverage: 60-70% Full stroke test diagnostic coverage: 90-95%

PST Implementation Methods

MethodEquipmentAutomation
Smart positionerDigital valve controller with PST functionFully automated, scheduled
Solenoid-basedDedicated PST solenoid with flow restrictorSemi-automated, operator-initiated
SIS-initiatedLogic solver controls PST sequenceFully automated, integrated with SIS
ManualManual bleed valve on actuatorOperator-performed, witnessed

6. SIL Requirements for ESD Valves

ESD valves are the final elements in safety instrumented functions (SIF). Their reliability directly determines whether the SIF can achieve its required safety integrity level (SIL). The valve assembly (valve + actuator + solenoid) must be evaluated as a complete subsystem.

SIL Targets and PFD: SIL 1: PFD = 0.01 to 0.1 (risk reduction 10-100x) SIL 2: PFD = 0.001 to 0.01 (risk reduction 100-1,000x) SIL 3: PFD = 0.0001 to 0.001 (risk reduction 1,000-10,000x) Final Element PFD Calculation: PFD_valve = (λ_DU × T_proof) / 2 Where: λ_DU = Dangerous undetected failure rate (per hour) T_proof = Proof test interval (hours) With partial stroke testing: PFD = (λ_DU_PST × T_PST) / 2 + (λ_DU_FT × T_FT) / 2 Where: λ_DU_PST = DU failures detectable by PST T_PST = PST interval λ_DU_FT = DU failures requiring full test T_FT = Full proof test interval

Typical Failure Rate Data

Componentλ_DU (per hour)Source
Ball valve (ESD-rated)1-5 × 10²&sup7;exida SERH, OREDA
Pneumatic actuator (spring-return)0.5-2 × 10²&sup7;exida SERH, OREDA
Solenoid valve (SIL-rated)1-5 × 10²&sup7;Manufacturer SIL certificate
Position switch (limit switch)0.5-2 × 10²&sup7;exida SERH
Complete ESD assembly3-15 × 10²&sup7;Sum of components

7. Practical Considerations

Closure Time Calculation

Pneumatic Actuator Closure Time: t_close ≈ V_actuator / (C_v_solenoid × ΔP_exhaust) The closure time depends on: - Actuator air volume (larger = slower) - Solenoid exhaust capacity (C_v) - Tubing size and length (restriction) - Spring force vs friction (driving force) - Quick-exhaust valve (if installed) Typical closure times: 2-4" valve: 1-3 seconds 6-8" valve: 3-8 seconds 10-16" valve: 5-15 seconds 20-30" valve: 10-30 seconds Quick-exhaust valves can reduce time by 30-50%.

Installation and Commissioning

  • Perform full stroke test during commissioning before startup
  • Verify closure time meets process safety time requirement
  • Confirm fail-safe action matches P&ID designation (FC/FO)
  • Test all initiating causes to verify logic solver response
  • Document valve signature (torque/time profile) as baseline
  • Verify limit switches provide correct position feedback
  • Check for tubing leaks that could prevent full closure

Maintenance and Testing Schedule

ActivityFrequencyNotes
Partial stroke testMonthly to quarterlyAutomated preferred, no shutdown needed
Full stroke testAnnually to 5 yearsRequires process isolation or shutdown
Seat leakage testDuring full testVerify tight shutoff per API 598
Solenoid function testWith each PSTVerify exhaust function
Actuator inspection2-5 yearsSpring condition, diaphragm, seals
Common failure mode: The most common ESD valve failure is "stuck in position" due to corrosion, scale buildup, or packing friction that has increased over time. This failure is dangerous because it is undetected until the valve is demanded or tested. Regular partial stroke testing is the most effective way to detect this failure before it matters.

Ready to size an ESD valve?

→ Launch ESD Valve Calculator