Maj 24, 2026
In a pharma automation context, the clean mental chain is:
business need → user requirements → functional requirements → design → risk-based validation evidence → continued verification.
FDA describes process validation as a lifecycle (three stages, not a one-time event), and ICH Q9 says the level of effort, formality, and documentation should match the level of risk.
The Document Split
1. User Requirements Specification (URS)
The what and why from the user/business side. Describes process intent, operator needs, data capture, compliance needs, quality outcomes. ISA-88 gives a shared batch-control language for structuring this.
2. Functional Requirements Specification (FRS)
The what the system shall do. Translates URS into system behaviors: sequences, interlocks, alarms, modes, recipe handling, exception handling, reporting.
3. Design Specification (DS / DDS / SDS)
The how it will be built. Architecture, object model, equipment hierarchy, interfaces, states, phase logic. ISA-88 maps the batch-control architecture here.
4. Validation Package
The evidence that it works. Testing and documentation proportional to risk, driven by scientific understanding and patient impact.
What Goes Where
| URS | FRS | Design | Acceptance Criteria |
|---|---|---|---|
| need | behavior | implementation structure | proof conditions |
| “The operator must be able to…” | “The system shall…” | “Uses class X, signal Y” | “Given X, when Y, then Z” |
Science- and Risk-Based Validation
ICH Q9(R1) defines quality risk management as a systematic process for assessing, controlling, communicating, and reviewing risk across the product lifecycle. Decisions must be based on scientific knowledge and linked to patient protection.
- High-risk functions → stronger requirements, deeper design, stronger testing
- Lower-risk functions → lighter documentation, fewer tests
- Rationale must be explicit — the justification for effort level must be documented
FDA’s Process Validation guidance uses three stages: Process Design → Process Qualification → Continued Process Verification. There is no fixed “three batches” rule.
Practical S88-Oriented Template
- Purpose and scope — process, unit, line, product family
- Process and equipment model — S88 physical model (process cell, unit, equipment module, control module)
- User requirements — operator needs, batch tracking, recipe control, reporting, data integrity
- Functional requirements — recipe execution, unit allocation, phase control, permissives, alarms, modes
- Design description — object model, state machines, interfaces, recipe structure, error handling
- Risk assessment — CQAs, CPPs, failure modes, severity/probability/detectability, justification
- Acceptance criteria — observable, unambiguous, testable, tied to intended use
- Verification strategy — review, inspection, scripted testing, challenge testing, FAT/SAT, data integrity
- Validation lifecycle — Stage 1/2/3 per FDA guidance
- Traceability matrix — URS ↔ FRS ↔ Design ↔ Risk ↔ Test ↔ Result
Mental Model for Detail Level
Write enough that a reviewer can understand the intent, a developer can build it, a tester can verify it, and an auditor can trace it back to risk and intended use.
Se også: Requirements Engineering, Design Documents, The Traceability Chain