Presentation is loading. Please wait.

Presentation is loading. Please wait.

IAEA – Safety Demonstration of Advanced Water Cooled Nuclear Power Plants Session: Digital I&C Systems Topic: Defence in Depth & Diversity – Challenges.

Published byЛеон Бранковић Modified over 5 years ago

Similar presentations

Presentation on theme: "IAEA – Safety Demonstration of Advanced Water Cooled Nuclear Power Plants Session: Digital I&C Systems Topic: Defence in Depth & Diversity – Challenges."— Presentation transcript:

1 IAEA – Safety Demonstration of Advanced Water Cooled Nuclear Power Plants Session: Digital I&C Systems Topic: Defence in Depth & Diversity – Challenges related to the I&C Architecture Pickelmann Johannes / Gregory Droba AREVA NP / GE Hitachi / June 2017, Vienna

2 Overview The position paper, “Defense-in-Depth and Diversity – Challenges related to the I&C architecture”, is the second in this series and is a continuation of, and builds upon, the work done in the “Safety classification for I&C Systems in Nuclear Power Plants – Current Status & Difficulties” It documents the discussions of the WNA CORDEL DICTF members on the specific challenges they face in the application of Defense-in-Depth and Diversity techniques to I&C activities.

3 Approach The approach of the paper is to:
Define the current landscape by compiling and comparing Defense-in-Depth and Diversity terminology and definitions used in different regions, Tabulate the challenges in defining Defense-in-Depth and Diversity, and Identify and recommend potential solutions.

4 Terminology Landscape
Work of a previous WNA paper, Troublesome Key Words For Safety Classification Of I&C Systems In Nuclear Power Plants, provided the basic data to do the more focused assessment of the key words “Defense-in-Depth” and “Diversity” to understand the landscape. The IAEA dictionary terminology was adopted for all other terminology to have a standard frame of reference and focus. It was agreed to adopt the terminology of diversity attributes from NUREG/CR-6303 and NUREG/CR-7007.

5 Challenges The terms and manner in which Defense-in-Depth and Diversity are used differ between regions. The quantitative aspect of DiD&D assessment will rely on some subjective or qualitative aspect, which ultimately will be accepted or rejected based on the strength of the argument made for the selections, and the argument may not stand when reviewed by different auditors or regulating bodies. The subjective aspects of DiD&D assessment results in ambiguous or incomplete rules relating to how quantification is achieved, and can make the achievement of “Done” difficult to obtain.

6 Challenges (Cont) The guidance with respect to attributes used to asses diversity may be out of date with respect to the way technology is designed, developed, implemented and maintained. Implementation of regulatory guidance in a global market is challenging. The approach of DiD&D, driven by different regulations, varies across regions of the world. Implementation of a single regulatory guidance can often be interpreted, or misinterpreted several ways, and the attempt to apply multiple regional regulation to a single product can aggravate the issue.

7 Challenges (Cont) Digital upgrades face the following challenges:
The original design basis and architecture may be lost or it wasn’t controlled or updated with the plant maintenance and modernization. This might require cost reverse engineering to re-establish the design basis and architecture prior to any upgrades. The application of modern DiD&D regulatory requirements may invalidate parts of the existing design basis or architecture, and may require larger measures than just replacement to upgrade. Even smaller instrument or system upgrades require some sort of DiD&D analysis, which faces all the same challenges of regulator guidance and quantification.

8 Recommendations Use of the terminology “D3” has the effect of amalgamating two distinct concepts into a single concept to casual readers. The term “Defense-in-Depth” or DiD should be separated from “Diversity”, or when appropriate, specified as DiD&D to emphasize that the two are separate concepts that must work together. The definitions used by the IAEA with regards to the two terms “Defense-in-Depth” and “Diversity” appear to be the best and don’t conflict with other organizational definitions and would be the recommended definitions that all organizations should adopt.

9 Recommendations (Cont)
The current DiD attributes used by most organization appear to be those defined by NUREG/CR NUREG/CR-7007 supports the conclusion that these attributes should be re-visited, updated, and modernized as well-defined attributes support clear completion criteria of the DiD&D analysis.

10 Recommendations (Cont)
The terms “levels of defense” and “echelons of defense” are different definitions that are sometimes used to try and relay the same concept. However, interchanging these terms adds confusion in a globalized industry. The IAEA uses the “levels of defense” and this term is widely accepted and understood as by organizations using the term “echelons of defense”. The term “echelons of defense” should be discontinued in place of the IAEA definition of “levels of defense”.

11 Recommendations (Cont)
Additional research into specific issues pertaining to DiD&D Challenges should be done centered around key questions and challenges of: The challenges of upgrading and modernizing existing NPPs More work is required to evaluate the interaction of DiD and particularly the manner in which Diversity criteria interact so that the completion criteria is recognized and agreed to by those performing and those evaluating the DiD&D as “done”.

12 Comparison of different DiD approaches
IAEA Levels [IAEA SSR-2/1] WENRA / EPRI Levels 1 / 2 Level Objectives 1 Prevent deviations from normal operation and the failure of items important to safety. Prevention of abnormal operation and failures 2 Detect and control deviations from normal operational states in order to prevent anticipated operational occurrences at the plant from escalating to accident conditions. Control of abnormal operation and failures (to avoid exceeding reactor trip limits) 3 Escalation of certain anticipated operational occurrences or postulated initiating events might not be controlled at a preceding level and that an accident could develop. 3a Control of accident to limit radiological releases and prevent escalation to core melt conditions 4 Mitigate the consequences of accidents that result from failure of the third level of defense in depth 3b 5 Mitigate the radiological consequences of radioactive releases that could potentially result from accidents. Control of accidents with core melt to limit offsite releases Mitigation of radiological consequences of significant releases of radioactive material 1 WENRA RHWG (2013). Safety of New NPP Designs 2 EPRI (2014). Principles and Approaches for Developing Overall Instrumentation and Control Architectures that Support Acceptance in Multiple International Regulatory Environment

13 Measures for Independence

Download ppt "IAEA – Safety Demonstration of Advanced Water Cooled Nuclear Power Plants Session: Digital I&C Systems Topic: Defence in Depth & Diversity – Challenges."

Similar presentations

Integra Consult A/S Safety Assessment. Integra Consult A/S SAFETY ASSESSMENT Objective Objective –Demonstrate that an acceptable level of safety will.

Integra Consult A/S Safety Assessment. Integra Consult A/S SAFETY ASSESSMENT Objective Objective –Demonstrate that an acceptable level of safety will.
Internal Control–Integrated Framework

Internal Control–Integrated Framework
Why a safety culture matters (Attributes and Issues) Michael Corradini Nuclear Engr. & Engr. Physics University of Wisconsin, Madison WI.

Why a safety culture matters (Attributes and Issues) Michael Corradini Nuclear Engr. & Engr. Physics University of Wisconsin, Madison WI.
ISO 9001 : 2000.

ISO 9001 : 2000.
RISK INFORMED APPROACHES FOR PLANT LIFE MANAGEMENT: REGULATORY AND INDUSTRY PERSPECTIVES Björn Wahlström.

RISK INFORMED APPROACHES FOR PLANT LIFE MANAGEMENT: REGULATORY AND INDUSTRY PERSPECTIVES Björn Wahlström.
ANS RESPONSE TO FUKUSHIMA LESSONS LEARNED Presented to: NESCC November 29, 2012 Washington D.C. Donald J. Spellman, Chair ANS Standards Board American.

ANS RESPONSE TO FUKUSHIMA LESSONS LEARNED Presented to: NESCC November 29, 2012 Washington D.C. Donald J. Spellman, Chair ANS Standards Board American.
INSAG DEVELOPMENT OF A DOCUMENT ON HIGH LEVEL SAFETY RECOMMENDATIONS FOR NUCLEAR POWER Milestone Issues: Group C. Nuclear Safety. A. Alonso (INSAG Member)

INSAG DEVELOPMENT OF A DOCUMENT ON HIGH LEVEL SAFETY RECOMMENDATIONS FOR NUCLEAR POWER Milestone Issues: Group C. Nuclear Safety. A. Alonso (INSAG Member)
AREVA NP EUROTRANS WP1.5 Technical Meeting Task 1.5.1 – Safety approach Madrid, November 13-14 2007 Sophie EHSTER.

AREVA NP EUROTRANS WP1.5 Technical Meeting Task – Safety approach Madrid, November Sophie EHSTER.
Westinghouse Atom Atom- 1 Design of Digital Safety Systems in NPP Improvements regarding: System Requirements, Engineering, Argumentation for a Safety.

Westinghouse Atom Atom- 1 Design of Digital Safety Systems in NPP Improvements regarding: System Requirements, Engineering, Argumentation for a Safety.
AREVA NP EUROTRANS WP1.5 Technical Meeting Task 1.5.1 – ETD Safety approach Safety approach for EFIT: Deliverable 1.21 Stockholm, May 22-23 2007 Sophie.

AREVA NP EUROTRANS WP1.5 Technical Meeting Task – ETD Safety approach Safety approach for EFIT: Deliverable 1.21 Stockholm, May Sophie.
Main Requirements on Different Stages of the Licensing Process for New Nuclear Facilities Module 4.7 Commissioning Geoff Vaughan University of Central.

Main Requirements on Different Stages of the Licensing Process for New Nuclear Facilities Module 4.7 Commissioning Geoff Vaughan University of Central.
Regulatory Body MODIFIED Day 8 – Lecture 3.

Regulatory Body MODIFIED Day 8 – Lecture 3.
1 Regulatory Challenges During and Following a Major Safety or Security Event Muhammad Iqbal Pakistan Nuclear Regulatory Authority Presentation at General.

1 Regulatory Challenges During and Following a Major Safety or Security Event Muhammad Iqbal Pakistan Nuclear Regulatory Authority Presentation at General.
Protection Against Occupational Exposure

Protection Against Occupational Exposure
1 Digital I&C Systems Configuration Management Presented By: David E Woods Senior Engineer – Electrical/I&C Design Engineering June 21, 2011.

1 Digital I&C Systems Configuration Management Presented By: David E Woods Senior Engineer – Electrical/I&C Design Engineering June 21, 2011.
Outcome of the EU Nuclear Safety Stress Tests Andrej Stritar Chairman, ENSREG.

Outcome of the EU Nuclear Safety Stress Tests Andrej Stritar Chairman, ENSREG.
IAEA - Department of Nuclear Safety & Security

IAEA - Department of Nuclear Safety & Security
Practical Implications of changes to the Exemption Orders for Project Teams Alan Fisher, on behalf of The Clearance and Exemption Working Group.

Practical Implications of changes to the Exemption Orders for Project Teams Alan Fisher, on behalf of The Clearance and Exemption Working Group.
> AREVA NP GmbH NRPP-G, 2009-05-27 1 AREVA NP All rights are reserved, see liability notice.

> AREVA NP GmbH NRPP-G, AREVA NP All rights are reserved, see liability notice.
9 th Workshop on European Collaboration for Higher Education and Research in Nuclear Engineering & Radiological Protection Salamanca, Spain 5-7 June 2013.

9 th Workshop on European Collaboration for Higher Education and Research in Nuclear Engineering & Radiological Protection Salamanca, Spain 5-7 June 2013.

Similar presentations

Ads by Google