Access System – LASS/LACS L. Ponce On behalf of the OP team.

Slides:



Advertisements
Similar presentations
Beta Testing: The Contractor’s Perspective Trns·port User Group Meeting October 2005.
Advertisements

1 User Analysis Workgroup Update  All four experiments gave input by mid December  ALICE by document and links  Very independent.
Commissioning the access system M. Gruwé Machine checkout workshop November 8 th 2007.
Computer Engineering 203 R Smith Requirements Management 6/ Requirements IEEE Standard Glossary A condition or capability needed by a user to solve.
COMP8130 and 4130Adrian Marshall 8130 and 4130 Test Execution and Reporting Adrian Marshall.
Pertemuan Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.
Implementation/Acceptance Testing / 1 Implementation and Acceptance Testing Physical Implementation Criteria: 1. Data availability 2. Data reliability.
Issues on Software Testing for Safety-Critical Real-Time Automation Systems Shahdat Hossain Troy Mockenhaupt.
Tomasz Ladzinski GS/ASE. LASS Annual Maintenance & Tests General Principles Each winter shutdown preventive maintenance of EIS takes place. It is followed.
How to improve operational efficiency ? [R. Alemany] [CERN AB/OP] [Engineer In Charge of LHC] Beam Commissioning Workshop, Evian Jan 2010.
Christophe Delamare EDMS Accelerator Consolidation Workshop GS/ASE activities.
1 Shawlands Academy Higher Computing Software Development Unit.
1 Chapter 2 Socio-technical Systems (Computer-based System Engineering)
Chapter 2 The process Process, Methods, and Tools
System Analysis and Design
LHC machine Schedule, coordination & WAT K. Foraz March 22 nd, 2011 IMWG - LHC machine1.
Session th January 2010 R.Schmidt TE/MPE Hardware Commissioning 2010 and beyond R.Schmidt.
CS 360 Lecture 3.  The software process is a structured set of activities required to develop a software system.  Fundamental Assumption:  Good software.
Installation and Maintenance of Health IT Systems
Consolidation of access systems for the injector Complex ATOP days 4-6 March 2009 P. Ninin & R, Nunes in behalf of the PS and SPS access project teams…
Usability Issues Documentation J. Apostolakis for Geant4 16 January 2009.
LHC ACCESS SYSTEM 1Authors: P, Ninin, S. Grau & LHC access team EDMS: Access System during the LHC Injection tests P. Ninin, S. Grau - TS/CSE Workshop.
16 1 Installation  After development and testing, system must be put into operation  Important planning considerations Costs of operating both systems.
Testing -- Part II. Testing The role of testing is to: w Locate errors that can then be fixed to produce a more reliable product w Design tests that systematically.
How to achieve satisfactory performance of the access system: stability, efficiency, operation, fluidity Timo Hakulinen (GS/ASE) Thanks: LHC access team.
Operational tools Laurette Ponce BE-OP 1. 2 Powering tests and Safety 23 July 2009  After the 19 th September, a re-enforcement of access control during.
LHC Access System August 2006 LHC Access System – Status and Planning August 2006 Elena Manola-Poggioli Eva Sanchez-Corral TS-CSE on behalf of the LHC.
TS Workshop, Archamps, May 24 – May 26, 2005 The LHC Access System Status report – May 2005 P. Ninin & the Access project team TS/CSE.
Status Report from LHC Safety System Task Force Emmanuel Tsesmelis / TS-LEA on behalf of the Task Force LEAF 11 May 2007.
LHC ACCESS SYSTEM 1 Authors: P. Ninin, L. Scibile, T. LadzinskiEDMS: Access Control and Safety System for the LHC Experiments P. Ninin L. Scibile.
HC Review, May 2005 Hardware Commissioning Review Hardware Commissioning Review Quality Assurance and Documentation of Results Félix Rodríguez Mateos,
Access zones and Training Steve Hutchins BE-ASR IEFC workshop 7/3/2012.
ST/MAforLHC April 2003Sixth ST workshop1 Summary of ST/MA deliverables for LHC Luigi Scibile for the ST/MA group.
LHC ACCESS SYSTEM 1 Authors: P, Ninin, L. Scibile T, Ladzinski EDMS: The LHC Access System Where do we stand ? P. Ninin, T. Ladzinski, L. Scibile,
FGC Upgrades in the SPS V. Kain, S. Cettour Cave, S. Page, J.C. Bau, OP/SPS April
2 IMPACT - THE FIRE PERMIT = Hot Work Permit 3 Welcome ! This course is linked to the use of IMPACT, so it is assumed that: You know how to use IMPACT.
1 Beam Dumping System MPP review 12/06/2015 Jan Uythoven for the ABT team.
Access system M. Gruwé (AB/OP) Thanks to TS/ASE group Extended LTC meeting March 3 rd 2008.
Silberschatz, Galvin and Gagne  Operating System Concepts UNIT II Operating System Services.
Samy Chemli – Configuration Management - S. Chemli EN-MEF – Contents Configuration Management Hardware Baseline Change Management.
For more info:
Review of Safety Systems for the LHC Experiments & Experimental Areas Emmanuel Tsesmelis / TS-LEA LEMIC 20 March 2007.
Software Development Life Cycle (SDLC)
ANALYSIS PHASE OF BUSINESS SYSTEM DEVELOPMENT METHODOLOGY.
Software Development Process CS 360 Lecture 3. Software Process The software process is a structured set of activities required to develop a software.
LHC ACCESS SYSTEM 1 EDMS: January 2008 Global Tests of the LHC Access system Outcome P. Ninin, T. Petterson, S Grau, T. Ladzinski 18 th January.
AB/CO Review, Interlock team, 20 th September Interlock team – the AB/CO point of view M.Zerlauth, R.Harrison Powering Interlocks A common task.
Access system global tests M. Gruwé LHCCWG January 15 th 2007.
Conclusions on UPS powering test and procedure I. Romera Acknowledgements: V. Chareyre, M. Zerlauth 86 th MPP meeting –
Linac2 and Linac3 D. Küchler for the linac team. Planning first preparative meeting for the start-up of Linac2 in June 2013 –this early kick-off useful.
CO Timing Review: The OP Requirements R. Steerenberg on behalf of AB/OP Prepared with the help of: M. Albert, R. Alemany-Fernandez, T. Eriksson, G. Metral,
BEAM INSTRUMENTATION GROUP DEPENDABILITY APPROACH CERN, Chamonix 26th January 2016 William Viganò
Controls, Safety and Engineering Databases 18 Jan 2006PS & SPS Days Access Safety Systems Modifications & tests in 2006 Presented by Rui Nunes TS-CSE-AAS.
TCR Remote Monitoring for the LHC Technical Infrastructure 6th ST Workshop, Thoiry 2003U. Epting, M.C. Morodo Testa, S. Poulsen1 TCR Remote Monitoring.
CV works in the non- LHC accelerator complex during 2008 and plans for 2009 ATOP days 2009.
Access system LHC-SPS M. Gruwé and J. Ridewood OP days March 18 th 2008.
Access system and radiation monitors session (session 5) Topics and subjects discussed Main issues Magali Gruwé and Tomasz Ladzinski 5 th February 2010.
LHC intervention scheduling with the Work Acceptance Tool
(Access system for HWC)
CENF – Personnel Protection System Preliminary Study
CENF – Personnel Protection System Preliminary Study
Evolution and future of the Access safety and control systems
Quality Assurance applied to Accelerator Safety
the CERN Electrical network protection system
Software Requirements
Chapter 2 – Software Processes
Workshop on Accelerator Operations
Assumption for a given sector
Powering and Safety day Underground access during powering tests
Presentation transcript:

Access System – LASS/LACS L. Ponce On behalf of the OP team

2 LHC Performance Workshop- Chamonix 2009 Outline Hardware/Software Status of: LACS : LHC Access Control system LASS : LHC Access Safety system Outlook to 2009 Interlocking with the power converters Some organizational problems

3 LHC Performance Workshop- Chamonix 2009 Preliminary remarks Based on experience from 2008, and looking at the 2009 planning we should expect a significant number of interventions requiring controlled access Controlled access is needed as soon as a sector is cold Most of the existing problems are linked to the use of the access system in RESTRICTED mode : RESTRICTED mode was designed for a short access of a limited number of persons in a delimited area it was never envisaged for extended periods to control interleaved activities by a large number of people (up to 320/day)‏ Powering tests period will be more affected than beam operation because of the duration and frequency of access periods

4 LHC Performance Workshop- Chamonix 2009 LACS status System is operational, but treatment of non conformities (repeatedly mentioned since May 2008) still on-going Main issues for operation due to non-conformities : – Problem of key restitution/distribution – False patrol drop when going through the PAD – Tracing of person in underground areas in GENERAL mode (info for fire brigade): multiple exits and inter-site circulation‏ – Stability of the application ‏on the CCC consoles (crashes, video freezing...)‏ New version of the LACS software deployed beginning of December on request of OP for testing in real conditions: Problem during key restitution seems to be understood and fixed But only couple of days of tests, in only 3 access points

5 LHC Performance Workshop- Chamonix 2009 LACS evolution during shut-down New version of the software promised for mid-January, postponed to mid-March for deployment on test bench : should correctly handle errors in case of communication loss New holder for PAD position contacts + full maintenance: should avoid spurious drop of the patrol even during the standard entrance/exit procedure => Now in GENERAL mode, not possible to test the modifications. Technical solution to make people in zone counter more reliable (mainly linked to exit problems) still under investigation No proposed solutions yet for all the other well known OP requests See review of OP requests at LHC-PerC presentation 14/11/08

6 LHC Performance Workshop- Chamonix 2009 LASS status The LASS contract phase is finished. System is operational. Main problems found during 2008 operation: unexplained patrol drop in point 2 during beam operation No distinction between Beam Imminent Warning and evacuation sirens (safety problem)‏ Connection between SPS interlocks chains and LHC access systems : cause of frequent BIW in point 8 Last update done end of October : Should solve the patrol drop tested by Access team but DSO tests to be done

7 LHC Performance Workshop- Chamonix 2009 LASS evolution LASS upgrades must be fully validated : strict procedure is required by Access Team Project to guarantee the level of safety of the LASS ( presented in LHC-PerC): Includes test platform validation phase, update of the documentation, upgrade + tests tests require no access and/or closing of the whole machine for a couple of day => GS/ASE should request to be included in the planning DSO tests to be included in the planning Next release targeted for mid-April: Scope of the new release: SPS signals sorting out and most of the OP change requests concerning LASS

8 LHC Performance Workshop- Chamonix 2009 MAD problem MAD still permits people to access in undetected manner. To date, GS/ASE's best proposed solution with existing HW = adjustment of movement detection parameters Tests by OP end of January: Improvements : no false detection, no “accidental” intrusion But still possible to enter too easily when deliberately trying What are the risks: In GENERAL mode : possible entry in controlled area without proper access rights (many examples available)‏ In RESTRICTED mode : undetected entry allows presence of persons when reestablishing dangerous condition (powering/beam)‏ In CLOSED mode : no impact because MAD not usable

9 LHC Performance Workshop- Chamonix 2009 MAD problem consequences RESTRICTED mode does not provide the specified functionality Temporary compensatory measures are required to guarantee personal safety for 2009 run and a more permanent solution is mandatory for longer term Possible short term solutions?: No access with material in RESTRICTED mode?: => not realistic, just because of bikes... Systematic patrol after access and before powering (equivalent to no RESTRICTED mode)‏?: => Difficult: grouping access, multiplication of patrols and procedure replaces interlocks Human control of the MAD usage (local or remote)‏? : => ONLY viable solution with dedicated guard (CSA) for the task 24h/7d and the proper infrastructure.

10 LHC Performance Workshop- Chamonix 2009 Interlock of the Power Converters with the LASS? A matrix of access conditions in the different zones vs powering zones has to be revisited/defined (Safety Task Force input)‏ Short term possibilities: fixed display to help applying the procedure + proof of concept Principle: use the Software Interlock System to generate the logic from the LASS alarms and send commands to the power converters via the PIC Command to send via the PIC to be discussed: give/remove PC permit, Fast Power Abort/Slow Abort?? Safety/reliability aspect of the proposed solution to be evaluated: False trigger risk, safety level of the LASS alarms, SIS... Efficiency of an interlock for personnel protection?

11 LHC Performance Workshop- Chamonix Other organizational issues (1/2)‏ How to get enough patrollers? Good willing decreases rapidly with the number of patrols to be done Good willing decreases rapidly with the number of patrols to be done Patrol requires MANPOWER and TIME! Patrol requires MANPOWER and TIME! Who will rearm doors? Who will rearm doors? External/surface envelop, powering tests envelop? External/surface envelop, powering tests envelop? Mandate and priorities to be agreed between different actors: CSA, site managers, teams on shift in the CCC Mandate and priorities to be agreed between different actors: CSA, site managers, teams on shift in the CCC

12 LHC Performance Workshop- Chamonix Other organizational issues (2/2)‏ Flow of information between persons who authorize the access and on shift personnel needs to be improved Flow of information between persons who authorize the access and on shift personnel needs to be improved Unique procedure for the whole period: Unique procedure for the whole period: – Access requests made by the users via Avis D'intervention – Requests approved by the coordinators (could be different persons for the different periods)‏ – web interface used by the operators to grant access automatically filled from ADI (to be developed) or directly by EiC for access granted on the spot Restricted lists at the PAD (no operator action) not really efficient because we need a filtering of activities, not a nominative filtering (LACS task)‏ Restricted lists at the PAD (no operator action) not really efficient because we need a filtering of activities, not a nominative filtering (LACS task)‏

13 LHC Performance Workshop- Chamonix 2009 LACS vs OP constraints Customization of the application is an iterative process: if all the requirements cannot be fulfilled for the deadline, we prefer to adapt to pragmatic technical solutions rather than pushing the deadline In practice: conflicting constraints LACS contractor: start of implementation is triggered by a written specification from Access Team project (not by the OP request to ASE)‏ OP: Modifications must be implemented before we need to switch back to RESTRICTED mode For non-safety critical aspects, process from identifying the problem to the issuing of the specification is too long, to the detriment of defining the possible implementation(s)‏ Systematic delays in software delivery result in a very lengthy process for fixing non conformities and for improvements

14 LHC Performance Workshop- Chamonix Conclusions Access system should be OK for operation with beam (CLOSED mode!)‏ Main worry is the period before: During the shut-down: tracking of people in the underground area During the powering tests: how to guarantee that the proper zone is empty when dangerous conditions For the Access System to be adequate to safe use during the powering phase, specifications (and implementation) have to be revisited As the LACS/LASS projects are reaching the end, what about future developments, maintenance, manpower?